Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mcEG6H_h1kEa7HH4A5RiLIgaqtk.cer
File: mcEG6H_h1kEa7HH4A5RiLIgaqtk.cer (raw, json)
Hash identifier: wYo7tDbbQrbFnGFyAxehRYoID/gTHOpxA8E/ylofuEE=
Subject key identifier: 99:C1:06:E8:7F:E1:D6:41:1A:EC:71:F8:03:94:62:2C:88:1A:AA:D9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020070
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 16 Jul 2024 01:10:44 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 149813
IP: 2401:a560::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Sep 2024 20:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131184 (0x20070)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 16 01:10:44 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A914B1DB/serialNumber=99C106E87FE1D6411AEC71F80394622C881AAAD9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:85:a0:41:71:90:c6:53:c1:16:39:57:84:bf:
61:ff:fc:6f:d3:a7:d6:7a:63:3c:64:44:04:a5:eb:
76:c9:62:c5:ec:40:74:35:37:28:99:8e:98:df:67:
96:47:f7:0e:09:67:29:5d:70:93:c9:f3:ee:32:44:
9f:89:f1:9c:39:74:56:e2:93:3c:fa:2a:fd:79:bb:
71:fb:ab:92:72:85:ee:57:75:1a:fe:f1:25:8c:83:
4c:cb:18:18:cf:a0:f2:e9:40:cd:a2:a0:60:5e:0c:
0f:68:bd:63:c1:10:c9:be:0d:8a:48:a6:7f:ee:2e:
f7:cd:97:54:e7:8a:8c:6d:53:38:32:5a:31:84:d2:
76:1c:d9:92:54:8f:a7:22:b5:5c:98:00:69:48:0d:
ec:64:00:6c:41:de:df:de:cf:07:b2:fc:46:8f:8f:
1a:4f:f7:18:3a:38:b3:a0:48:c7:5a:41:7d:5f:84:
1f:d2:db:d4:16:59:f5:65:46:e7:93:64:dc:ab:8b:
f6:87:aa:35:77:d9:5b:11:34:d5:db:9b:28:9f:de:
1e:3f:9b:cb:b9:d3:e6:73:10:fb:3a:7f:92:75:ff:
66:13:66:dc:58:85:d1:4e:0e:8b:cb:21:75:50:71:
18:02:5b:dd:2d:b5:1b:49:23:49:30:c0:21:09:a9:
e3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:C1:06:E8:7F:E1:D6:41:1A:EC:71:F8:03:94:62:2C:88:1A:AA:D9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149813
sbgp-ipAddrBlock: critical
IPv6:
2401:a560::/32
Signature Algorithm: sha256WithRSAEncryption
9e:0d:35:af:14:16:1f:27:3c:10:58:26:82:0f:1f:f8:c9:96:
40:e7:fd:ff:ef:e3:a4:0a:7c:6e:97:35:8b:b9:8d:9b:17:6f:
8e:42:72:38:71:88:02:05:81:c7:3b:9f:b2:30:cb:24:fd:41:
a6:10:63:a4:10:7c:10:65:73:a3:79:df:3a:4f:33:4d:c0:f5:
9b:35:0c:3b:7a:de:d0:26:07:09:7a:74:1d:13:76:65:45:1b:
2f:f8:ee:5a:91:82:62:5a:bc:7c:bd:c9:62:ab:cf:62:9b:9d:
b8:a2:cb:af:71:f0:a7:80:37:46:75:de:21:7a:d7:11:40:97:
09:c3:31:32:7b:02:08:9a:1f:dd:19:86:46:c0:c5:c7:65:c0:
f6:aa:78:38:a5:fd:f7:3d:84:c9:1e:2b:c2:e8:da:80:4d:9c:
bf:49:52:79:eb:34:17:87:ff:cb:73:98:d0:7f:6c:41:b3:46:
cb:49:e6:36:7a:1c:d9:65:da:38:be:13:dd:06:76:c1:fc:23:
6f:0e:f7:d8:07:eb:0e:83:c9:10:b8:29:ce:79:e0:52:b8:96:
97:5a:90:16:5b:60:62:e9:0c:82:a6:b8:8f:4a:78:10:7f:83:
39:b5:aa:7c:10:5a:21:7d:e2:84:55:88:50:ba:5b:a9:1f:84:
9b:ab:a5:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 22:12:57 2024 by rpki-client on console-fra.rpki-client.org