Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer
File: x5XlnAMMfJKfy-R0Gfxexp4frP0.cer (raw, json)
Hash identifier: 8ecvT0DnyxNU69wey74pVAw2cQPi1IWMaZ6buX87Ptk=
Subject key identifier: C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EFCA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 03 May 2024 18:06:31 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 103.7.96.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126922 (0x1efca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 3 18:06:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91A3FEB/serialNumber=C795E59C030C7C929FCBE47419FC5EC69E1FACFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:bc:fe:49:81:29:f0:5c:88:c9:fa:09:ea:53:
a7:1a:37:09:cb:4a:68:23:3f:83:e6:7b:35:79:e6:
9d:2d:16:95:48:4e:34:ba:b1:f5:7a:71:e2:51:e3:
7c:bb:d9:0e:ca:ca:87:ba:1a:8f:e6:0a:5a:72:fb:
84:e1:d0:1a:ad:5f:11:07:16:fd:a6:df:3d:40:2e:
f7:fa:1d:66:98:d7:29:4b:71:a2:f9:3b:2a:9d:11:
0b:f5:b4:81:74:e8:09:eb:a5:84:64:21:aa:f3:d7:
a3:9e:ab:be:fe:29:04:cd:e5:9b:e0:cd:1d:3e:ec:
ce:a8:e8:47:8f:9c:7e:d7:c9:63:aa:84:c5:0a:8e:
51:42:ff:95:d5:b8:ce:1c:aa:15:43:36:4e:20:5e:
b8:48:f1:c4:68:f0:09:e0:08:85:1c:29:64:ce:b1:
5d:eb:6f:88:c3:e8:21:17:6e:87:f6:32:1c:9b:a9:
78:43:04:55:e5:d2:ae:c5:7a:a3:f9:7c:e8:db:0e:
4f:ad:c8:14:36:ad:b8:b8:f9:f8:03:97:5b:64:35:
a1:59:81:39:bc:68:7b:9e:4c:48:60:cf:0c:5b:4b:
b2:7b:56:e7:d8:9e:b9:ce:ce:e3:f1:bc:08:bb:b7:
3b:52:4a:5c:3a:32:6f:f4:db:b8:80:d9:e4:98:32:
11:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.7.96.0/23
Signature Algorithm: sha256WithRSAEncryption
c1:0e:b4:26:e9:fe:a4:af:15:30:4c:67:65:0d:ed:c7:bc:8f:
8b:e0:89:b1:50:59:7b:44:03:a1:02:c2:ad:a7:f2:17:ee:22:
7d:e7:b2:75:ba:22:3f:4c:12:22:f8:b6:e6:e1:e2:7b:fa:6f:
f4:5a:a9:7d:f0:fc:43:7f:4e:98:06:30:1e:98:30:ce:bb:ea:
7b:1b:39:be:0e:0f:85:2f:41:93:c2:6d:4b:87:b4:02:2b:eb:
86:9c:bc:c6:a7:85:d5:19:40:22:a2:9f:ae:2d:00:8b:4a:7a:
04:63:79:ee:1b:fb:3b:d4:28:52:6a:4e:27:63:4e:ed:67:5d:
32:fa:c1:c6:fb:09:f2:f0:5d:4e:1c:b5:f6:6f:c5:82:50:f3:
e3:43:51:bf:a4:5a:69:d7:ad:3d:50:56:a7:5e:0b:2f:5d:9f:
86:14:8e:47:c5:88:8c:e6:de:f2:3a:58:f2:9b:4c:fe:3b:0f:
78:41:30:a7:dd:ee:45:ab:de:65:51:73:fb:10:c1:04:64:87:
28:0d:82:f7:18:dc:44:52:ff:f4:90:77:52:95:44:3e:b3:cb:
22:e5:42:3e:39:6d:b6:f4:17:10:c9:d8:aa:54:02:4b:37:ea:
5f:1b:3a:b0:59:5d:25:e4:bd:4b:a6:0e:4d:f3:b1:61:78:cc:
3b:24:5e:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:15:55 2024 by rpki-client on console-ams.rpki-client.org