Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer
File: VU9dfGbsUOhKiru6mWgXfkcp02Y.cer (raw, json)
Hash identifier: mykGuhtDm/9KNc+DPU4BaTsLis0AxCPfJfvOYF3VzlI=
Subject key identifier: 55:4F:5D:7C:66:EC:50:E8:4A:8A:BB:BA:99:68:17:7E:47:29:D3:66
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0223FD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 21 Dec 2024 13:10:26 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 135608
IP: 2001:df4:ccc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 13 Feb 2025 03:45:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140285 (0x223fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 21 13:10:26 2024 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91E8BE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:93:3f:2c:48:0a:c4:b0:75:9a:f4:e2:c0:02:
e2:21:9d:4f:d3:4c:8f:0a:df:60:9c:c0:cc:a6:c2:
91:a7:d1:a8:1b:71:cb:78:36:84:26:8c:40:9b:cd:
7a:2f:c3:27:d0:5b:af:f7:89:b9:99:f1:a4:c1:83:
18:55:76:75:c1:7c:8d:8a:d4:45:05:ed:a9:8c:ae:
e7:a1:06:ae:af:71:b6:f1:60:91:d1:0f:d2:7f:d7:
ee:39:78:67:a8:02:33:39:a4:bd:2d:29:ae:8f:25:
75:90:3c:4c:eb:76:15:ef:7a:6e:18:02:1e:89:30:
83:75:1d:c5:d0:d5:e9:f0:0c:95:2c:7b:6e:9b:3b:
76:25:77:d1:b1:01:25:2c:2d:50:3d:3f:00:e6:f3:
99:af:8c:37:7a:91:4f:d7:e8:98:b7:da:69:23:dc:
dd:53:22:2c:0a:a8:3b:9e:c7:4d:c8:89:5e:0d:20:
a2:1f:a3:e6:a3:e4:dd:e9:c4:5c:e9:35:45:c6:a0:
cb:f4:62:f9:89:17:fd:e8:1b:b9:cd:13:05:fd:d3:
78:97:58:a8:62:ed:87:fd:44:60:dd:26:d6:62:de:
c9:90:e1:1e:ba:b5:d3:5f:59:c2:71:0f:a2:19:61:
41:65:c4:8a:3a:87:53:a3:60:af:ea:15:65:25:5a:
22:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:4F:5D:7C:66:EC:50:E8:4A:8A:BB:BA:99:68:17:7E:47:29:D3:66
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135608
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:ccc0::/48
Signature Algorithm: sha256WithRSAEncryption
d9:ab:49:1a:f8:a9:b0:ad:4f:3b:8b:d6:e9:bb:1e:17:1e:70:
d6:93:b6:de:c3:7a:d8:30:3b:18:16:95:24:22:5a:51:6e:1b:
c6:91:31:a2:f1:af:e9:87:a3:6e:71:66:e3:06:f5:5c:d4:f6:
b5:a2:f5:65:2a:e9:79:68:0c:a5:0c:dd:31:ae:4e:cf:da:68:
b9:a7:5b:c1:64:83:8e:2e:db:ca:25:ef:c9:a0:6b:ee:44:31:
0f:63:8e:c6:fb:99:39:82:0a:04:37:c9:9c:d4:4f:d3:8d:e3:
cc:43:5c:5d:05:26:00:fb:f2:8f:d9:51:ba:d8:ee:60:17:a9:
68:98:9d:8b:90:4e:ff:15:f4:60:0d:b2:1b:08:c5:06:85:f8:
96:fd:22:60:3a:29:ec:39:04:ca:bd:72:30:f0:d7:1a:98:d1:
ec:44:4d:60:f9:bd:d0:f2:7c:1d:d5:1e:3a:aa:69:dd:92:ef:
01:04:03:23:88:e0:b6:55:34:e6:e2:1c:d0:fe:2e:72:02:dc:
a8:c3:68:4a:f2:bb:b6:27:2a:d0:b6:4a:b3:ad:d9:25:59:e0:
02:dd:f8:24:a5:37:a2:52:11:a0:18:5b:1b:64:69:34:ac:ac:
d7:e0:9d:33:14:cd:31:24:ba:ef:a0:c4:85:9a:aa:47:8c:85:
25:24:54:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 6 07:11:18 2025 by rpki-client