Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer
File: XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer (raw, json)
Hash identifier: INLUAqMDmudTJ6UsoT/4YvpqYQ8ySODJhVsHTqLBIgw=
Subject key identifier: 5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CBDC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 20 Nov 2023 20:54:19 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 139744
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 00:13:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117724 (0x1cbdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 20 20:54:19 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91D318A/serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:33:9e:9f:d0:e9:7c:5a:51:ae:b1:fa:fd:8b:
c6:75:31:db:ad:db:02:11:e8:ae:54:68:5a:81:4c:
74:d2:b7:93:34:49:0e:57:a1:20:77:9a:2d:f1:85:
42:7d:35:ff:a4:1a:7a:b3:3f:fb:d8:ad:cd:5f:e9:
85:d2:5a:ee:f7:0c:88:16:36:e7:73:9e:02:c0:32:
06:a4:3c:55:e8:ae:60:15:e8:ef:51:39:73:59:0f:
9c:79:30:db:cd:22:d6:1f:17:9b:b4:ad:37:8a:3e:
b3:bc:b0:7f:d4:59:7b:c2:91:91:9b:43:f7:b7:79:
72:d1:8d:f5:6c:ab:7c:b5:d9:20:e8:9d:ef:d5:64:
ef:6e:39:87:6a:9f:bf:82:02:c0:77:4c:7e:70:b1:
d7:26:25:12:03:1a:9e:5f:7f:a3:11:80:dd:89:78:
c1:19:fe:17:eb:43:b4:af:70:10:65:5f:c7:f5:40:
e8:65:64:d7:7a:3b:53:5f:9e:a6:a4:64:7d:fb:f7:
aa:8d:02:3f:12:c2:e4:da:51:26:ad:02:e7:6e:50:
7f:c8:ba:36:8b:82:be:c0:93:1b:98:98:cb:be:fc:
37:49:7c:86:c6:b9:34:f4:8e:f6:8b:d7:e8:a1:2b:
c5:a8:e1:ae:91:29:24:1b:d5:fc:ab:1b:63:e6:f5:
0a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139744
Signature Algorithm: sha256WithRSAEncryption
10:3f:bb:ee:05:3a:4c:4a:f9:98:cd:2f:e0:60:86:7b:92:03:
9e:a4:a3:13:d2:62:c4:2d:2e:d3:48:21:c5:64:60:99:c8:06:
92:4d:a1:77:99:4b:a0:9a:b3:6b:f0:43:7a:28:d8:bf:2a:1b:
ff:09:cc:db:ff:ca:99:18:09:b8:fb:15:bc:f6:e2:8e:c8:50:
a4:e2:db:43:ca:61:52:2a:62:c9:68:d2:c6:7d:24:d7:bd:d0:
4f:1c:f1:60:ed:3b:ed:5c:f8:0a:19:bc:54:48:e9:3b:f5:45:
66:47:f8:3e:f0:2b:cd:53:e3:8e:8c:28:c7:5c:8e:02:f6:91:
27:7c:7d:27:75:a3:2e:89:01:d0:09:4d:5f:6a:c1:b9:2a:a7:
dc:30:a9:0a:77:4b:da:0b:e8:ad:c7:ad:bc:60:da:d8:58:c6:
65:a4:fa:7b:2b:08:18:ee:f4:2d:3c:68:f1:03:7a:a1:cf:16:
18:e4:e5:2d:71:05:2c:6b:e3:89:55:0e:f1:80:a4:e7:db:40:
b5:4f:9f:88:a2:b3:5e:75:1a:64:bf:0d:42:d9:b4:c1:be:bb:
1a:96:5d:ee:e6:98:ed:78:90:24:32:db:f2:49:81:79:a2:5f:
fd:c3:96:57:6e:ed:87:86:70:26:e0:f9:26:28:76:d7:0f:f9:
28:34:ec:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 00:53:14 2024 by rpki-client on console-ams.rpki-client.org