Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wxmve7T5gWEa0Awy-KNX3mNT3DY.cer
File: wxmve7T5gWEa0Awy-KNX3mNT3DY.cer (raw, json)
Hash identifier: VO+6mzWvRkR0GC1blk1AQ7N9ne1cG9j793sm72+/MEc=
Subject key identifier: C3:19:AF:7B:B4:F9:81:61:1A:D0:0C:32:F8:A3:57:DE:63:53:DC:36
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022A9E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C1DB8/16CBC054A11E11E89E636710C4F9AE02/wxmve7T5gWEa0Awy-KNX3mNT3DY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C1DB8/16CBC054A11E11E89E636710C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 21 Jan 2025 18:56:07 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 10204
AS: 139075
IP: 103.229.32.0/22
IP: 203.115.192.0/18
IP: 2001:c18::/32
IP: 2001:dea:c000::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 18 Mar 2025 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141982 (0x22a9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 21 18:56:07 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91C1DB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ae:e8:ea:b8:7b:1a:72:26:34:5f:7f:94:1b:
29:96:32:14:0e:02:fc:c9:57:38:8a:d9:c2:c3:f9:
f9:95:71:ee:87:5c:1a:ca:00:31:e2:06:21:22:81:
30:fa:12:94:f0:e6:ca:15:d6:4b:43:fa:6c:16:4b:
2b:3f:35:46:19:f7:76:2d:c1:0c:b6:28:97:11:cf:
ba:ce:07:e2:be:5f:d7:f5:be:44:02:6f:dd:41:9e:
71:fa:d8:e3:fb:c0:66:cb:13:56:4c:2a:6b:2c:bd:
27:fe:f2:9f:32:ca:ab:e4:c9:8c:b1:96:93:52:ff:
70:27:48:64:6b:17:22:70:54:ef:64:f5:ec:c5:22:
08:c1:09:53:2e:82:5e:5d:5a:7a:99:c3:a8:0a:94:
a7:ad:36:80:6b:9b:93:3c:fe:9e:96:5b:0f:43:13:
ce:c7:63:0e:b9:6f:da:2c:d8:b9:cd:3d:93:fd:ee:
30:5a:73:29:52:80:3a:92:ed:30:20:ed:61:f3:11:
25:35:00:31:6e:5a:3c:5f:6d:58:d6:2f:a6:98:12:
46:42:76:09:8d:89:8f:e5:34:f7:80:f9:c7:ac:9e:
f7:6b:a2:99:19:c0:c7:50:80:1a:e9:c2:48:0b:2d:
2f:41:e8:c4:21:60:1b:28:46:9e:12:7e:d4:1d:04:
59:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:19:AF:7B:B4:F9:81:61:1A:D0:0C:32:F8:A3:57:DE:63:53:DC:36
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/16CBC054A11E11E89E636710C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/16CBC054A11E11E89E636710C4F9AE02/wxmve7T5gWEa0Awy-KNX3mNT3DY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
10204
139075
sbgp-ipAddrBlock: critical
IPv4:
103.229.32.0/22
203.115.192.0/18
IPv6:
2001:c18::/32
2001:dea:c000::/48
Signature Algorithm: sha256WithRSAEncryption
d5:c8:22:61:5e:7e:75:c4:70:ea:7d:5b:0d:55:6e:bd:2e:5d:
9e:64:c2:5e:96:29:e5:0e:4c:63:9f:09:1d:1a:01:5b:e1:4e:
8f:fd:22:48:76:9c:5b:74:af:11:62:3b:30:c7:b7:21:a4:07:
d1:7a:e9:76:14:06:f9:53:45:bf:29:1e:0d:3f:45:12:d8:ab:
85:79:72:35:d8:ae:ec:e9:a8:c4:8b:f1:a9:29:01:e3:62:04:
9d:69:e5:06:5b:7c:84:75:29:6a:69:35:95:4d:04:3f:52:83:
9f:55:0b:54:e9:a5:e3:6c:95:2a:13:45:33:c5:14:54:64:e1:
47:f4:b2:28:f2:42:c9:e3:07:88:fc:05:69:bf:5c:8a:38:da:
3f:63:c8:e8:80:38:e4:71:cd:d2:23:f8:02:a5:6c:e6:df:7e:
fa:df:ce:7e:04:6e:c2:43:9f:bf:da:6f:94:e7:86:cd:69:1e:
5b:b6:87:d7:f9:c0:7f:b3:aa:04:5a:72:a3:27:60:6c:70:32:
a0:33:30:32:f2:57:02:83:84:88:bc:5e:a6:74:44:c5:95:d7:
12:40:2b:4c:6c:9d:11:4c:9e:18:c1:ee:ba:40:63:90:c1:4e:
9e:d5:57:92:75:39:a4:7a:17:59:08:e6:6a:07:52:4d:a6:d7:
65:5b:3d:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:04:30 2025 by rpki-client