Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer
File: kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer (raw, json)
Hash identifier: MdwZ5CJVkA3GfL2FSaENfUEAKfa00/VPYb/Mq3REnDE=
Subject key identifier: 91:26:EF:E5:0D:5E:3B:53:1F:EE:E4:54:9A:B3:0B:FE:7A:54:55:07
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022BE8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 28 Jan 2025 16:23:33 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 150406
IP: 103.35.176.0/23
IP: 2001:df1:80c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142312 (0x22be8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 28 16:23:33 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A917F4D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:de:c9:b8:c8:b0:ec:25:6c:88:9a:a9:1c:57:
23:1f:56:55:a7:fd:d0:62:4e:27:88:32:6c:1e:3b:
aa:6e:ad:90:95:e5:09:3f:0b:c7:9c:61:a0:2b:ac:
56:8d:05:ee:10:d8:69:ce:b2:a2:08:7e:0c:9f:c2:
3c:b1:e0:18:39:5e:a4:ce:ca:ff:5d:5e:dc:c5:e8:
6a:77:d2:b1:15:44:9d:4c:94:66:e8:24:19:96:b4:
ba:8e:35:8c:fb:c8:62:52:ec:84:19:ef:c9:0f:bd:
c4:70:55:42:7c:4f:9c:ae:36:ca:56:75:78:08:83:
6c:f3:32:a2:bd:54:1a:01:09:90:14:b0:ad:84:0e:
f5:18:0a:47:b9:3a:74:30:1c:94:af:4e:34:2b:4e:
ef:93:a7:b6:da:8a:05:52:7b:ec:e7:ab:7e:67:b2:
14:84:2a:6f:87:d1:ac:f5:44:d1:03:d1:6f:8d:2f:
74:0c:d0:ac:e7:d4:13:d2:8c:20:b6:10:fc:8f:20:
0c:46:96:61:87:99:56:b8:62:6c:14:55:06:1b:57:
34:e7:83:18:fe:d7:06:56:45:fa:41:81:07:0a:10:
ab:64:c9:02:04:63:64:3b:6f:fe:45:13:2f:ea:39:
1f:65:4d:73:c6:06:8d:11:74:6d:99:e6:5e:de:56:
d3:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:26:EF:E5:0D:5E:3B:53:1F:EE:E4:54:9A:B3:0B:FE:7A:54:55:07
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150406
sbgp-ipAddrBlock: critical
IPv4:
103.35.176.0/23
IPv6:
2001:df1:80c0::/48
Signature Algorithm: sha256WithRSAEncryption
4b:03:3c:d9:f6:33:9e:d7:8b:55:54:9c:c7:97:ec:a0:5e:36:
d5:46:f1:1d:02:d4:2a:10:4f:69:c3:ce:50:0b:bf:b1:1a:42:
f9:22:94:fd:ff:4a:66:fc:0f:b2:84:9f:95:7a:ed:9d:5c:3c:
8c:49:c3:94:a4:41:a7:81:6e:e6:dd:78:c1:34:25:a2:f6:79:
6b:18:fc:b8:71:8a:12:27:4c:54:06:34:70:df:90:13:0d:8d:
ab:73:c9:04:49:02:91:4f:f9:e7:e2:59:bb:df:c6:b2:da:16:
9e:dd:67:57:c3:a7:62:b5:67:57:28:e8:98:8c:b9:1e:98:20:
c2:3c:9f:63:a4:77:3c:7c:44:a5:1f:14:b2:32:c3:fa:db:60:
c7:f1:fa:27:1d:41:b5:6f:33:d5:11:33:ab:26:a4:66:b6:4d:
f3:fb:29:a4:aa:a9:76:dd:c4:98:63:0e:00:fe:2e:71:52:ec:
7c:19:1f:c9:19:7a:be:79:90:99:93:f3:d6:fb:bc:7a:9d:f1:
f2:16:fc:13:9e:be:74:55:42:64:cb:7b:61:17:e0:23:5b:d1:
78:e8:6a:5a:00:c1:7e:73:57:37:43:00:ba:e8:e2:bb:cb:ae:
06:53:75:48:93:1a:4c:3c:f8:c3:c2:74:dc:74:42:0f:4d:0e:
b9:5b:a3:12
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:00 2025 by rpki-client