Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mJMZ9Wp64kII0TYk3WnY5AkbfCQ.cer
File: mJMZ9Wp64kII0TYk3WnY5AkbfCQ.cer (raw, json)
Hash identifier: nndj+mRz4TyNe4x83BCxhz5y12n8MRkDHojsmHAXqFU=
Subject key identifier: 98:93:19:F5:6A:7A:E2:42:08:D1:36:24:DD:69:D8:E4:09:1B:7C:24
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E035
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9136429/E80FFB488A3211ECB08D900AC4F9AE02/mJMZ9Wp64kII0TYk3WnY5AkbfCQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9136429/E80FFB488A3211ECB08D900AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 22 Feb 2024 14:30:02 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 149498
IP: 103.181.68.0/23
IP: 2400:58e0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122933 (0x1e035)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 22 14:30:02 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A9136429/serialNumber=989319F56A7AE24208D13624DD69D8E4091B7C24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:8d:3d:aa:33:33:e9:5a:c5:bf:6a:4c:83:4f:
e5:08:9b:c5:92:20:8f:10:9d:94:c3:3b:23:f4:28:
91:ce:62:39:0f:d5:32:af:16:4d:a8:41:c2:df:28:
57:2a:bc:ba:fc:4f:09:a7:5a:05:81:be:b7:4c:86:
42:ef:50:b4:9d:4a:88:db:17:2d:01:f7:98:6b:9b:
88:74:7b:ac:4a:0b:86:90:89:46:7a:45:a7:23:31:
f1:29:00:02:e9:25:4f:34:d8:4c:9c:bd:e2:96:d3:
2d:03:5f:da:71:e2:b6:4b:cd:fa:7b:24:ab:f3:87:
80:17:b8:d7:13:54:a8:9f:7b:d3:57:29:9d:2c:7d:
9f:d6:b5:ee:bf:26:ef:81:d9:d8:93:45:98:38:a5:
f4:0a:bd:d2:9b:eb:3b:dc:d5:99:10:0f:63:53:99:
a0:f7:90:e5:80:8f:99:a4:d9:49:95:3b:ce:db:25:
a3:4d:a6:9d:41:a4:d3:25:b8:d5:1f:62:7d:69:db:
dc:cf:ef:cc:fd:fe:e7:09:31:49:9c:a9:e7:c6:7d:
ab:99:f8:dc:71:65:e4:2f:99:da:a7:3f:ab:20:a3:
e3:e5:7b:da:d9:88:9d:0f:3f:33:b9:f0:b0:2b:fd:
52:27:e1:78:45:de:2e:21:ab:6a:4b:d2:bb:7a:fc:
b3:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:93:19:F5:6A:7A:E2:42:08:D1:36:24:DD:69:D8:E4:09:1B:7C:24
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9136429/E80FFB488A3211ECB08D900AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9136429/E80FFB488A3211ECB08D900AC4F9AE02/mJMZ9Wp64kII0TYk3WnY5AkbfCQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149498
sbgp-ipAddrBlock: critical
IPv4:
103.181.68.0/23
IPv6:
2400:58e0::/32
Signature Algorithm: sha256WithRSAEncryption
d6:07:0b:4e:00:87:f0:7d:cb:3c:77:1c:5f:87:d3:ec:ee:f9:
b1:e0:b2:8b:50:58:51:e8:b5:63:ac:3b:5e:ee:8d:3c:99:b3:
b1:4a:7f:e8:a5:cd:0f:76:bd:67:cb:59:ce:7a:6d:84:43:6b:
8a:ba:ba:07:21:4c:ef:63:f5:1f:df:25:d9:56:76:52:b5:46:
e9:0f:46:28:d7:b5:d8:83:46:a8:29:e9:f1:5b:68:ca:b3:f6:
35:15:53:c4:0f:97:42:e5:8d:d7:0d:e8:b0:e8:91:76:5e:60:
2d:ed:e0:c8:6a:0c:bb:c3:e0:2d:99:fa:c8:70:77:83:d8:e9:
e0:24:c9:cf:02:80:39:bd:8a:87:c6:b9:33:65:25:23:bf:d7:
c7:f1:74:f4:90:70:44:8e:2b:c9:99:bb:9e:92:7f:ef:67:21:
46:06:d6:7f:c4:7d:51:a6:43:97:35:20:d7:35:2b:88:3c:d8:
4b:b4:1a:b9:e5:15:d0:9a:93:57:33:d5:66:3b:97:2e:81:c0:
0e:1f:83:02:8c:4a:86:e6:f4:e8:a1:2b:77:fc:df:93:9a:af:
e2:42:33:4d:be:71:08:d7:26:f9:d5:dc:92:28:54:fd:37:4a:
cf:8b:c4:6a:d3:60:f3:fc:c9:03:fc:2d:fd:88:0d:1e:24:24:
a0:ce:80:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:03:57 2024 by rpki-client on console-fra.rpki-client.org