Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqU9J74bthSVPDedOeC7xfHBJKc.cer
File: mqU9J74bthSVPDedOeC7xfHBJKc.cer (raw, json)
Hash identifier: vtfZqh7Ol7tgsiO0FOf3DxiPcCrxINVHDZ4hRUcwnMQ=
Subject key identifier: 9A:A5:3D:27:BE:1B:B6:14:95:3C:37:9D:39:E0:BB:C5:F1:C1:24:A7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0229C3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 16 Jan 2025 16:44:57 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 135673
IP: 2407:d380::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141763 (0x229c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 16 16:44:57 2025 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91814CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:e0:eb:d2:a6:e6:7f:92:b7:6e:d7:3a:ca:87:
c3:a4:be:c2:ef:8d:dd:82:5f:ff:3e:9b:ae:27:7f:
aa:85:81:1a:60:ff:9d:3f:89:b6:b4:80:0a:ca:b7:
bf:8b:39:ec:aa:ba:2e:78:13:2f:c0:1a:4e:32:0d:
a3:15:30:cd:f3:76:c2:9a:38:23:88:42:7c:5c:53:
cc:90:27:7a:59:db:8e:cb:8e:8d:7e:8e:b0:16:3b:
b9:9d:98:c8:f0:0e:36:62:97:27:82:7d:66:b7:8c:
f5:58:01:76:5f:cf:34:a3:c4:75:1a:5e:45:87:2a:
59:12:7d:04:49:18:e4:e8:57:4c:d5:6f:da:5c:e3:
80:75:b7:09:75:14:cd:41:5e:a9:5b:f9:24:cd:13:
60:d4:da:04:1f:ef:29:1a:36:15:85:4d:85:6a:1c:
ad:1a:cc:f1:b2:53:8d:3d:32:09:c5:b1:be:26:15:
7c:43:d5:c9:0b:4e:bf:b6:7e:d4:af:d7:5f:07:8e:
2c:1a:5c:2b:9e:31:23:99:51:09:be:d3:a6:20:da:
ae:67:91:da:4a:3d:0a:1d:57:5b:e2:d1:14:b8:95:
87:f2:b3:dc:f5:8d:db:39:cb:d5:bc:4b:ec:ff:0b:
28:49:04:46:70:0c:fe:26:04:d5:14:cd:9f:bc:2d:
8b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:A5:3D:27:BE:1B:B6:14:95:3C:37:9D:39:E0:BB:C5:F1:C1:24:A7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135673
sbgp-ipAddrBlock: critical
IPv6:
2407:d380::/32
Signature Algorithm: sha256WithRSAEncryption
be:68:b9:84:20:95:67:80:83:e5:09:ca:10:88:ac:36:4e:f1:
fb:30:d4:a4:c4:db:bd:00:ce:1a:a5:8c:bf:78:d3:b0:9b:a9:
7b:8e:51:e8:51:9a:3e:0b:c9:f7:c3:e2:47:a8:c3:af:1f:b1:
af:fb:17:57:14:02:65:02:4f:ef:60:11:56:b0:9d:49:d8:23:
a9:93:8a:19:2f:39:c3:44:ab:f2:5a:19:80:07:b8:3c:a8:a5:
bf:66:13:e8:a9:07:b7:0a:f0:d3:8a:43:73:6c:44:0f:60:36:
56:49:84:4a:81:ce:15:a2:14:e4:03:d4:79:3c:ea:9c:8a:da:
89:42:2e:08:56:39:92:3e:8e:f0:7d:51:e8:5f:b1:12:0f:10:
86:b5:e5:75:b3:35:f3:6c:10:1d:16:08:c4:c2:21:7e:4a:f4:
f4:95:c0:09:b0:30:77:13:99:a7:f9:da:7d:84:56:f6:ba:b9:
37:92:4f:96:66:6f:8d:0d:68:aa:11:f8:35:dc:be:bb:de:6d:
4a:8a:f9:0b:05:5a:c3:ff:24:3c:a4:ff:dc:dd:93:f8:c9:d1:
cb:0c:69:4e:16:bb:23:77:26:a5:af:8f:e2:7b:de:64:94:bf:
8a:fe:a3:a4:b4:f8:55:33:93:a4:6e:72:c0:74:43:4c:74:c2:
3a:a0:1b:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:40 2025 by rpki-client