Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HC6Z_mGk-2-ihnNfjgaRmDakD_g.cer
File: HC6Z_mGk-2-ihnNfjgaRmDakD_g.cer (raw, json)
Hash identifier: zCbVntjnr1G7M1u7L2vBImRDsyH0q3/aoFhr94oofOk=
Subject key identifier: 1C:2E:99:FE:61:A4:FB:6F:A2:86:73:5F:8E:06:91:98:36:A4:0F:F8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021B34
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D246A/69C2D350057111EC94A2EC2CC4F9AE02/HC6Z_mGk-2-ihnNfjgaRmDakD_g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D246A/69C2D350057111EC94A2EC2CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 13 Nov 2024 18:07:13 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 2001:df0:d980::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138036 (0x21b34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 13 18:07:13 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91D246A/serialNumber=1C2E99FE61A4FB6FA286735F8E06919836A40FF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:90:49:6b:1a:42:5d:36:0d:65:f4:d9:2b:14:
c3:44:11:d6:6c:2a:48:ed:f5:7b:0b:fd:0d:1b:6f:
b2:e8:6e:37:92:dc:38:83:1c:b2:81:97:39:d4:9b:
92:5f:29:8d:b5:4b:1f:e0:90:c8:45:44:a5:f5:c7:
61:41:2c:13:83:20:c6:fb:cf:47:05:cc:bb:fe:25:
ed:ae:4e:2d:4e:af:30:1a:bd:ea:99:57:b8:bf:90:
ee:fd:cc:af:91:2e:bf:46:12:24:1a:3a:2c:0c:fe:
77:24:54:1b:0b:d6:46:a2:a0:59:ff:30:86:b9:0c:
6b:2a:6c:eb:e4:c2:39:69:b1:fb:e8:b8:0b:b4:29:
2e:ad:68:47:95:d0:e4:01:2d:76:92:f9:19:08:1a:
ae:89:52:64:24:02:80:71:82:f7:09:ec:c8:6c:63:
dc:86:1c:34:ff:26:c3:fd:6b:55:f2:a7:32:81:16:
c2:f0:bf:29:1c:40:da:dd:dc:c6:df:47:0f:38:90:
d6:73:bb:f8:c9:58:53:49:9c:64:b1:bd:4f:30:9d:
91:c8:11:be:88:68:ed:c0:0b:d1:fa:5e:2f:a5:dc:
04:d5:5c:49:08:9b:d1:e3:25:4a:0e:e0:29:a6:b3:
3f:83:0e:c8:f3:bb:64:bc:37:c1:57:a0:42:6b:4d:
f1:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:2E:99:FE:61:A4:FB:6F:A2:86:73:5F:8E:06:91:98:36:A4:0F:F8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D246A/69C2D350057111EC94A2EC2CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D246A/69C2D350057111EC94A2EC2CC4F9AE02/HC6Z_mGk-2-ihnNfjgaRmDakD_g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:d980::/48
Signature Algorithm: sha256WithRSAEncryption
b4:6b:31:81:5d:28:38:06:b6:db:64:19:49:1e:5d:f1:71:42:
09:45:e5:d2:de:4e:0a:e2:f4:a5:31:90:c6:2d:12:91:1b:9a:
35:65:83:2a:8f:4d:64:83:de:c6:b7:82:30:a9:5f:4e:08:42:
72:62:05:0e:d6:3e:e5:be:c8:80:af:2f:61:51:fe:1c:94:f8:
1e:60:04:a9:9c:9d:38:27:d4:31:a0:e8:87:d2:16:49:a3:a7:
b4:a1:b4:30:45:01:57:e7:63:b3:47:08:08:ed:59:ca:06:eb:
6c:ab:ec:0b:d3:4d:4c:85:b5:22:be:77:c4:8f:8b:05:af:ee:
76:3b:96:1d:83:00:83:e9:5d:e2:c0:ae:7f:ad:89:ab:0e:87:
26:78:7b:59:66:3f:e1:12:f1:51:2b:53:83:af:5f:9e:a3:48:
a3:85:00:9e:50:bd:19:08:d5:37:56:26:20:51:f6:b5:b1:42:
34:72:b4:d0:1b:a3:0a:11:74:ed:d5:43:94:ab:c1:0b:f1:b3:
1c:db:55:66:e3:d7:ba:9d:08:7e:13:6b:84:c8:ad:ab:96:e0:
63:d3:40:f9:91:b0:8f:6c:6b:78:09:8d:41:b4:26:fd:56:a9:
5f:cf:ec:88:b0:7e:6c:78:a9:e3:5e:85:b1:b5:5e:fe:ff:69:
68:83:d9:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:07:38 2024 by rpki-client on console-ams.rpki-client.org