Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer
File: H3amlEQsq0PX0XzW_fmpfgt_qo4.cer (raw, json)
Hash identifier: m4KZyMizq/TmBG+ZtrNBOZh8bV3danxl5vkTh1swBG8=
Subject key identifier: 1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0244F6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 08 May 2025 15:05:21 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 142042
IP: 103.165.97.0/24
IP: 2001:df6:6680::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 18 May 2025 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148726 (0x244f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 8 15:05:21 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A9158059, serialNumber=1F76A694442CAB43D7D17CD6FDF9A97E0B7FAA8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d3:c7:d1:0b:32:72:ae:bd:c0:4c:44:25:6b:
8b:ad:99:6a:d1:81:b5:3e:89:fb:1a:b7:2f:0f:8c:
56:30:ad:21:5b:ea:73:d5:1b:b0:7a:05:53:bd:9f:
12:3f:9c:ca:43:15:d9:67:6d:51:67:35:b0:0a:88:
e9:e0:dd:30:e7:21:67:ac:d7:57:20:41:dd:96:c4:
4e:ac:7f:cc:b7:8e:0f:10:26:d7:aa:4d:7a:71:a9:
bd:89:0f:9e:53:cc:d7:dc:e4:bf:05:b9:0f:8f:48:
17:89:3f:89:d8:b0:24:77:03:d7:61:f8:0b:4b:0f:
d5:13:00:72:2b:37:9b:ca:53:f3:8a:6b:c0:76:d7:
0c:60:9f:50:c9:45:11:aa:bc:ec:cb:fa:a6:9b:0c:
33:81:af:69:3d:66:45:fd:f2:26:12:0d:9e:31:7b:
3d:f7:30:b9:76:d5:42:3f:28:33:bb:57:20:7d:12:
76:9d:12:94:a3:63:1d:86:7d:b0:e3:d9:b2:00:29:
db:77:41:45:1b:88:c1:2b:e8:cb:7d:2b:8a:09:e8:
3a:ef:49:70:43:46:f1:32:1d:13:84:1f:fc:92:a3:
e4:5d:cb:d4:91:36:0f:8f:d6:fa:7d:35:d8:5e:4d:
17:c8:13:8b:e6:5e:f6:59:4a:d1:12:27:31:c3:01:
25:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142042
sbgp-ipAddrBlock: critical
IPv4:
103.165.97.0/24
IPv6:
2001:df6:6680::/48
Signature Algorithm: sha256WithRSAEncryption
8c:58:2f:60:b0:b6:f7:7e:21:c6:77:46:6e:fa:3e:ef:fc:e4:
de:0d:ad:a1:ad:da:65:40:3b:25:b2:e1:6b:15:98:34:b7:6f:
22:fb:07:25:09:dc:cf:7d:4e:ef:28:ce:3f:11:74:31:f0:3e:
ee:92:20:91:d2:c5:f6:3a:6f:42:08:8b:03:b1:20:bb:6d:1e:
75:ab:90:65:26:66:59:15:17:43:5c:bf:f4:f8:53:91:75:4f:
bd:48:ce:55:30:36:b2:bb:53:8a:8f:74:9c:40:35:87:e9:1b:
1e:c6:4b:a5:62:ea:e5:32:9e:3c:e1:a5:10:40:66:fa:7b:8d:
84:c9:6c:d9:87:a7:0e:96:4c:3d:ff:7e:20:3a:c2:b9:a4:f1:
53:ee:d5:bf:35:da:8a:b1:ec:6d:5e:ba:e2:83:fd:4e:18:c6:
e5:0e:7a:e6:bb:04:16:36:fe:96:2d:26:15:bf:4e:e1:f2:5e:
7c:72:13:46:5d:b1:aa:57:58:06:d3:7f:da:71:a7:73:64:4d:
3f:c2:07:53:d6:cf:1a:e8:84:f2:15:28:33:bf:3e:a0:79:4d:
2d:aa:a5:90:f9:7b:79:3f:43:ac:54:91:20:f5:35:e9:e6:d2:
40:0b:a3:e9:b1:e4:58:f1:05:75:d3:b1:4b:a0:91:70:06:c1:
8c:b6:5c:ad
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun May 11 09:28:50 2025 by rpki-client