Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mPTtHqVu_jfKE0-HapZfKsb6N0g.cer
File: mPTtHqVu_jfKE0-HapZfKsb6N0g.cer (raw, json)
Hash identifier: z3T0RJhI1i9EACoWoGNJNEU0CcT3SzzXKD5mnIPDL9g=
Subject key identifier: 98:F4:ED:1E:A5:6E:FE:37:CA:13:4F:87:6A:96:5F:2A:C6:FA:37:48
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02014F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/mPTtHqVu_jfKE0-HapZfKsb6N0g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 19 Jul 2024 05:57:53 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 103.226.244.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131407 (0x2014f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 19 05:57:53 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A9190EF5/serialNumber=98F4ED1EA56EFE37CA134F876A965F2AC6FA3748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e0:3e:dc:b9:a7:e8:4e:38:c2:7b:7c:f7:35:
06:cb:e3:00:c5:ed:2e:60:63:f5:dd:41:e0:a1:c3:
54:4b:be:3d:3b:d8:48:a9:9d:de:50:83:06:94:60:
05:92:2c:ef:79:37:a1:8c:45:c4:43:14:fd:ca:88:
65:bb:48:61:28:ba:28:70:ab:00:1f:60:68:30:49:
65:ec:cd:5d:25:c6:b1:1f:b2:4c:4f:36:09:c5:3a:
69:b7:1f:ee:42:f4:d1:e4:fa:3e:8f:4f:a2:c4:97:
6f:87:4f:56:47:08:6c:f6:e4:d1:86:ce:d5:03:19:
51:d8:26:b1:31:f4:0e:15:a5:e5:5a:c8:ad:32:f4:
62:54:ca:21:bb:07:66:f1:7b:f6:36:45:2e:ec:3b:
89:b4:a9:9f:1f:da:b3:87:0e:80:dc:d4:c2:b9:24:
24:cb:ae:12:59:f8:c4:ae:e1:db:09:3c:a2:15:22:
db:be:95:09:af:7f:d9:64:ae:aa:42:6e:d4:7c:11:
ed:1f:b7:d5:c8:ae:10:3c:cf:74:44:6e:0e:4b:a8:
07:e1:ed:3e:ef:9d:52:45:59:e3:83:27:80:f2:83:
62:9e:99:22:25:24:dc:d3:28:c3:8e:6e:ef:df:3c:
23:66:91:98:2e:78:e8:95:d5:e4:d0:2e:0f:ad:ac:
53:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:F4:ED:1E:A5:6E:FE:37:CA:13:4F:87:6A:96:5F:2A:C6:FA:37:48
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/mPTtHqVu_jfKE0-HapZfKsb6N0g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.226.244.0/23
Signature Algorithm: sha256WithRSAEncryption
98:27:3d:0a:40:16:0b:cc:40:5a:ab:03:de:da:21:bb:37:e1:
56:67:ae:b2:3e:d4:73:5b:08:cb:c1:57:2c:7d:b4:58:56:de:
6b:7b:71:7d:f6:ec:e8:87:a5:06:5e:5a:b0:9e:9f:8c:7c:ae:
16:14:e7:db:23:b0:bd:3e:b3:a2:d4:a6:66:63:60:57:89:74:
6f:f4:15:ec:f2:46:9f:b2:ed:36:fa:8c:9f:9d:43:b9:33:c0:
cd:6f:b4:11:25:d9:84:9f:f9:ac:df:55:a2:76:bd:31:60:5a:
aa:1e:31:ca:23:c0:0b:b7:a9:6c:6b:c9:43:5c:aa:1c:07:1b:
ca:64:dd:8e:4f:53:99:d2:32:42:d1:b2:23:8d:d6:95:d3:ea:
80:ce:9d:a7:c0:c7:f0:bb:83:11:39:d9:33:8c:f1:f5:45:89:
86:c4:e8:8b:6e:1f:fc:0e:cb:90:76:95:ad:95:19:ba:25:00:
76:25:26:d0:bb:5c:3e:36:00:fb:dc:77:4d:c1:12:70:00:b4:
6d:f4:16:a5:ee:b7:1b:3c:27:13:b4:32:c4:8b:e5:9d:ca:74:
d8:31:2a:ab:c0:ea:b0:ce:c2:f4:ff:f7:29:2a:91:6f:73:3e:
09:cd:10:63:e1:17:a8:21:5a:e1:f7:eb:4a:4d:c9:e0:ef:36:
b2:00:8d:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:03:57 2024 by rpki-client on console-fra.rpki-client.org