Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5QiUrfUBOM9ubHjVOCRA6rFAYQ.cer
File: j5QiUrfUBOM9ubHjVOCRA6rFAYQ.cer (raw, json)
Hash identifier: UnJWr73jUSwPbogP8jpgkiw+3sze39DSuRrGpBUHDgI=
Subject key identifier: 8F:94:22:52:B7:D4:04:E3:3D:B9:B1:E3:54:E0:91:03:AA:C5:01:84
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022CDC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918127C/E697112A06AD11EB9821057FC4F9AE02/j5QiUrfUBOM9ubHjVOCRA6rFAYQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918127C/E697112A06AD11EB9821057FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 Jan 2025 21:03:09 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 2406:8600::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142556 (0x22cdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 30 21:03:09 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A918127C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e4:8e:4a:e2:e1:c6:ad:ff:cb:60:e4:be:c5:
e8:0d:b8:24:15:dc:bb:26:2c:94:09:c2:ce:95:cd:
17:3d:a3:63:45:36:52:96:75:53:b7:1b:db:9a:5c:
c3:06:ad:f5:c8:7a:b9:6f:41:b5:f8:da:3a:b3:66:
22:ca:6f:44:37:f2:ec:4e:cd:ca:88:01:6a:a9:cd:
69:27:c0:61:68:39:30:93:67:ba:c7:00:fe:b4:d8:
16:8d:6d:11:59:97:3e:0a:d6:07:00:46:e8:85:d4:
e8:c6:17:23:43:27:bd:97:f9:52:4b:8e:f7:c4:c8:
61:da:5b:62:96:a5:ba:b9:ca:6c:e4:30:79:65:51:
cf:8e:a3:0b:b8:f3:ba:0c:b0:b3:8d:99:c7:ad:e8:
2b:c5:ce:67:40:ca:62:12:41:f8:bf:cb:eb:38:0d:
6f:86:3a:09:81:5c:a3:b9:55:83:4b:fe:65:a0:ab:
d8:9a:5c:fc:f1:29:2c:d3:76:8b:ad:2e:9b:7c:ad:
48:86:f1:e4:8a:fb:08:6b:b3:85:33:f6:94:c0:82:
da:82:d2:7f:c1:ce:51:df:9c:b8:5c:26:77:09:36:
ee:92:14:f8:f0:98:ab:eb:41:d0:c7:0b:46:9c:a3:
09:64:dd:c9:ac:03:54:0d:1d:16:8d:d6:31:b7:f4:
2f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:94:22:52:B7:D4:04:E3:3D:B9:B1:E3:54:E0:91:03:AA:C5:01:84
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918127C/E697112A06AD11EB9821057FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918127C/E697112A06AD11EB9821057FC4F9AE02/j5QiUrfUBOM9ubHjVOCRA6rFAYQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:8600::/32
Signature Algorithm: sha256WithRSAEncryption
49:30:e2:3b:00:af:01:f3:b9:2e:bc:4c:1c:4f:94:d6:3e:0e:
c7:db:35:a2:c5:ab:25:82:be:99:61:56:b2:72:b6:4a:ab:f8:
c7:bb:dd:71:37:d2:ac:d8:79:1f:46:85:df:81:56:b6:22:dd:
70:0f:3e:90:53:e1:44:c5:45:af:38:4f:ad:78:09:4f:a2:9d:
50:4c:3e:89:e7:38:ee:9f:8b:0c:cf:8a:de:ec:30:f6:b0:e5:
48:58:ee:2b:62:e3:91:90:4c:28:39:54:6f:5a:c8:fa:8a:0d:
0a:8f:1e:98:ec:4d:43:34:d5:0a:46:c2:d4:77:da:2e:a1:e7:
c6:b7:54:81:d2:3b:77:bf:a2:e1:8b:99:31:95:6e:25:27:2d:
7b:d6:40:3a:c4:5a:cd:62:cf:06:87:bc:ae:d0:2c:f2:1e:13:
0f:ec:81:e7:8e:c1:40:c5:2d:59:45:9d:5b:58:99:42:cf:0d:
54:8c:9f:b0:08:5c:f0:2a:8d:94:66:d2:d6:2e:a7:55:97:bf:
6f:03:13:60:1e:a4:35:69:2c:d1:dc:49:0e:fe:6f:d7:26:00:
1e:d8:3b:4f:b0:7f:0b:7d:66:b1:a6:4a:ce:83:bf:74:9e:2b:
91:a8:0b:2f:2c:c0:50:13:10:db:cb:c8:c0:b9:9b:7b:1a:de:
bc:2f:6f:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:26:28 2025 by rpki-client