Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mtNJ9FSFO7GJKv72BIwYclgFd2E.cer
File: mtNJ9FSFO7GJKv72BIwYclgFd2E.cer (raw, json)
Hash identifier: e6pIte6eMEfe0a6/Rn5YqV3ukHNqMtJ0EA5vhiTyAyE=
Subject key identifier: 9A:D3:49:F4:54:85:3B:B1:89:2A:FE:F6:04:8C:18:72:58:05:77:61
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F4E6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9169591/DED83568892C11EE9477816DC4F9AE02/mtNJ9FSFO7GJKv72BIwYclgFd2E.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9169591/DED83568892C11EE9477816DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 May 2024 17:36:26 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 151325
IP: 103.254.91.0/24
IP: 2001:df2:6b40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128230 (0x1f4e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: May 30 17:36:26 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A9169591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f7:4b:77:dd:9b:6d:0b:53:0b:3a:d1:52:5d:
a1:cb:eb:43:ad:af:8e:a6:67:e3:93:fa:53:3d:ef:
f1:f5:60:6d:e6:0a:c3:34:c9:82:17:49:4a:33:f0:
a1:36:61:c2:20:14:99:7f:a5:22:f2:eb:ec:a5:c1:
de:00:d0:8b:b0:9d:7e:0f:a1:e6:25:85:1b:ee:1e:
a4:d6:e9:28:bf:a1:56:af:c7:c5:e3:f6:e6:a6:ac:
0e:e2:67:cf:e3:2c:a4:62:21:24:df:f6:f8:9e:ee:
1a:f3:fa:3a:df:ed:0a:11:12:17:2b:9d:ca:4b:31:
3e:78:b3:56:68:a6:72:cc:72:9d:6a:5b:02:e4:e3:
12:f3:a1:18:5b:ab:ba:31:c9:c4:df:a9:99:6f:32:
c3:e0:f4:69:41:ec:8c:f5:3e:5e:f8:89:3b:9d:48:
34:fe:4f:8e:3e:97:3c:be:df:2c:0b:01:af:84:86:
1d:9d:82:17:4b:b8:79:0a:89:d6:1d:d1:3e:32:8c:
0a:f5:a6:a8:ae:f4:3f:2f:57:34:7f:60:01:f2:12:
b7:ff:7f:6d:be:5f:3a:a6:7d:3e:8a:64:cd:1b:bc:
dd:b5:9f:37:f2:d8:f7:b3:12:d3:45:53:19:b0:80:
73:85:5f:fb:15:be:84:d1:b9:06:81:8f:37:04:b0:
43:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:D3:49:F4:54:85:3B:B1:89:2A:FE:F6:04:8C:18:72:58:05:77:61
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9169591/DED83568892C11EE9477816DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9169591/DED83568892C11EE9477816DC4F9AE02/mtNJ9FSFO7GJKv72BIwYclgFd2E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151325
sbgp-ipAddrBlock: critical
IPv4:
103.254.91.0/24
IPv6:
2001:df2:6b40::/48
Signature Algorithm: sha256WithRSAEncryption
b2:5a:4f:78:e3:f8:e1:b0:08:06:18:3f:a9:e0:08:08:21:06:
91:14:87:3d:ce:83:0c:bf:47:fa:f4:ff:3d:0e:68:97:e4:97:
3d:2f:09:e1:e9:63:73:8b:74:ba:10:5c:98:e2:d6:07:b4:28:
5a:83:1b:6d:c1:06:fb:99:a5:e7:30:57:2e:fa:79:ad:2e:99:
91:08:22:eb:eb:8e:e8:7c:96:fa:46:6b:3e:7b:42:3b:29:c9:
ea:6a:ca:0e:db:1f:c2:52:67:5c:ab:75:c5:fc:a6:70:81:ca:
dc:22:1f:7f:59:14:76:49:a6:dc:49:6d:39:e1:3f:c2:dc:21:
8a:ca:a2:51:d8:73:06:9f:a7:b7:d1:14:c6:63:c7:05:1a:d3:
06:2f:80:0f:7b:f6:30:55:94:37:e5:b0:70:64:72:41:9f:12:
d7:fa:7a:2a:f1:25:44:a5:a1:3c:8b:53:49:71:3c:e2:5b:e8:
74:79:db:24:04:87:6a:7a:b1:91:62:b9:58:fb:2e:25:48:be:
74:23:56:c9:1e:ff:f5:d9:94:90:8b:b8:28:3e:d0:38:f4:16:
91:60:f5:ca:6d:72:d2:5f:36:83:6c:1b:9d:52:fd:82:0a:48:
f1:26:ca:25:50:8c:b5:6e:02:61:db:30:7a:16:5d:44:49:db:
f9:ea:da:a4
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:21 2025 by rpki-client