Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l0tKVlSG4EjQwXaY1yJ2cM88mac.cer
File: l0tKVlSG4EjQwXaY1yJ2cM88mac.cer (raw, json)
Hash identifier: gjGWB3hlrY+MBnFX5eb2CPCaQqjMn2UCxIY183hd1iI=
Subject key identifier: 97:4B:4A:56:54:86:E0:48:D0:C1:76:98:D7:22:76:70:CF:3C:99:A7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021991
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916069A/36D5D62C9BF011EF81C90267C4F9AE02/l0tKVlSG4EjQwXaY1yJ2cM88mac.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916069A/36D5D62C9BF011EF81C90267C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Nov 2024 03:35:53 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 153396
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137617 (0x21991)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 6 03:35:53 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A916069A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:05:97:5f:e6:3b:03:4c:32:fe:f1:02:06:05:
a2:2d:fb:3a:64:51:28:6b:5f:6a:79:75:93:63:93:
a1:9f:93:be:81:2b:9e:31:47:c0:47:17:3e:8e:9b:
ba:82:e1:eb:52:64:36:0a:a4:82:52:3b:e6:54:95:
f5:22:1b:4c:31:a4:66:f6:ca:0b:ba:50:9c:81:e8:
9b:1d:88:b3:40:d5:d3:74:28:0d:7a:34:14:b6:b3:
13:33:be:f6:b0:86:9a:55:f0:b9:24:57:5d:f1:88:
c0:f8:d2:a1:87:f3:fe:3c:58:6e:bf:57:30:a6:f7:
68:d3:35:eb:f5:c7:48:90:34:12:cf:1b:ed:bc:02:
eb:e5:d5:d6:74:3b:4e:3d:5c:17:d3:f5:19:ed:d9:
dd:80:e1:fc:aa:63:2e:34:d9:45:05:3d:c0:b6:c0:
21:3c:76:2c:cb:97:3a:e6:9f:83:e9:32:7f:92:0f:
dc:ef:a2:fd:fc:04:ba:87:6c:8e:3f:df:92:73:6a:
90:61:a9:ab:27:a1:80:25:86:fa:d5:4d:ef:6d:28:
54:65:b4:eb:bc:0f:1d:07:c4:fd:10:0b:5b:18:87:
70:89:98:40:86:81:5d:c8:16:e3:5c:4a:58:12:a5:
aa:89:dc:5a:4c:f3:eb:a8:78:6a:36:7c:aa:e6:17:
0a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:4B:4A:56:54:86:E0:48:D0:C1:76:98:D7:22:76:70:CF:3C:99:A7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916069A/36D5D62C9BF011EF81C90267C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916069A/36D5D62C9BF011EF81C90267C4F9AE02/l0tKVlSG4EjQwXaY1yJ2cM88mac.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153396
Signature Algorithm: sha256WithRSAEncryption
7f:20:fc:de:3c:2e:a7:59:8d:aa:5e:51:73:f2:15:5e:c0:33:
31:f9:3e:91:34:82:94:e4:54:98:1f:68:3a:56:65:7e:7d:d7:
36:a5:47:dd:b3:e5:78:10:e6:2f:25:20:32:bf:2e:99:52:24:
7f:5b:1b:7c:31:ae:f2:1d:02:42:6d:bf:19:49:18:7c:5b:7f:
04:ca:88:ef:ee:73:5d:87:e4:bb:86:b1:db:e8:a9:9b:b5:1e:
b7:3b:a3:58:a0:06:77:62:b5:d8:8e:ca:2c:e4:19:7f:e1:eb:
14:41:dc:38:10:cf:8a:91:0d:72:5b:da:d9:c2:fd:76:6f:18:
62:76:23:d1:2c:de:fe:1a:b9:0f:00:e9:cb:95:9d:e5:19:76:
1e:89:f9:49:0f:74:63:18:82:23:9b:d0:fd:ce:8c:1d:de:21:
57:5b:50:84:8e:30:96:33:cd:f8:40:e2:5e:d7:d7:f2:45:cd:
46:fe:f5:ea:f2:de:e2:df:09:03:f0:1b:5d:6f:31:91:8b:51:
bb:54:38:20:6f:ff:51:d0:ac:40:12:53:3b:72:11:fb:93:92:
37:d4:61:90:f9:b0:4e:7a:81:60:bb:c3:99:fc:6d:a3:4e:f6:
69:f6:a8:a7:1f:c9:65:d7:0c:fd:90:d6:f6:7c:a1:a5:ac:9f:
af:8c:f9:05
-----BEGIN CERTIFICATE-----
MIIF+TCCBOGgAwIBAgIDAhmRMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTEwNjAzMzU1M1oXDTI2MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNjA2OUExMTAvBgNVBAUTKDk3NEI0QTU2NTQ4NkUwNDhEMEMxNzY5
OEQ3MjI3NjcwQ0YzQzk5QTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCsBZdf5jsDTDL+8QIGBaIt+zpkUShrX2p5dZNjk6Gfk76BK54xR8BHFz6Om7qC
4etSZDYKpIJSO+ZUlfUiG0wxpGb2ygu6UJyB6JsdiLNA1dN0KA16NBS2sxMzvvaw
hppV8LkkV13xiMD40qGH8/48WG6/VzCm92jTNev1x0iQNBLPG+28Auvl1dZ0O049
XBfT9Rnt2d2A4fyqYy402UUFPcC2wCE8dizLlzrmn4PpMn+SD9zvov38BLqHbI4/
35JzapBhqasnoYAlhvrVTe9tKFRltOu8Dx0HxP0QC1sYh3CJmECGgV3IFuNcSlgS
paqJ3FpM8+uoeGo2fKrmFwrVAgMBAAGjggLuMIIC6jAdBgNVHQ4EFgQUl0tKVlSG
4EjQwXaY1yJ2cM88macwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTYwNjlBLzM2RDVENjJDOUJGMDExRUY4MUM5MDI2N0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE2MDY5QS8zNkQ1RDYyQzlCRjAxMUVGODFDOTAyNjdDNEY5QUUwMi9sMHRLVmxT
RzRFalF3WGFZMXlKMmNNODhtYWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlc0MA0GCSqGSIb3DQEBCwUAA4IBAQB/IPzePC6nWY2qXlFz8hVewDMx
+T6RNIKU5FSYH2g6VmV+fdc2pUfds+V4EOYvJSAyvy6ZUiR/Wxt8Ma7yHQJCbb8Z
SRh8W38Eyojv7nNdh+S7hrHb6KmbtR63O6NYoAZ3YrXYjsos5Bl/4esUQdw4EM+K
kQ1yW9rZwv12bxhidiPRLN7+GrkPAOnLlZ3lGXYeiflJD3RjGIIjm9D9zowd3iFX
W1CEjjCWM834QOJe19fyRc1G/vXq8t7i3wkD8BtdbzGRi1G7VDggb/9R0KxAElM7
chH7k5I31GGQ+bBOeoFgu8OZ/G2jTvZp9qinH8ll1wz9kNb2fKGlrJ+vjPkF
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:26:52 2025 by rpki-client