Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer
File: xvdY7N3EybD3LwZcNa1UaXQycRs.cer (raw, json)
Hash identifier: adjH2Jb8o2Z/oDdDHa7wkdAzMY2BkhuZkDL0NoWoAx4=
Subject key identifier: C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023577
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 05 Mar 2025 01:21:47 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 142046
AS: 151188
IP: 103.224.92.0/24
IP: 103.244.163.0/24
IP: 2001:ded:c000::/48
IP: 2001:df2:45c0::/47
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 20 Mar 2025 05:35:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144759 (0x23577)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 5 01:21:47 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91E8DF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:f3:58:9a:1e:d7:27:81:88:4b:65:c3:49:b6:
db:29:3c:5e:87:7c:2a:61:eb:32:24:2b:72:94:fd:
cb:91:cd:67:62:24:40:86:7a:48:80:17:4f:43:89:
c5:44:cc:3d:9d:5e:57:ec:a6:84:d7:bf:d1:46:4e:
3c:8b:69:2a:ee:79:2f:0b:2b:9a:40:40:89:e2:19:
98:bc:ae:d0:ca:d3:ec:9e:bc:b7:4d:8e:12:40:d1:
e2:ff:16:31:d3:01:1c:81:bf:ea:f0:aa:2d:75:94:
f0:67:06:93:ee:6c:26:73:2f:74:e0:61:f2:1f:3c:
17:9f:9e:62:de:d9:a3:bd:92:26:e5:9c:f5:69:9b:
12:f4:be:43:56:42:5e:6c:c9:a3:ee:69:b2:c8:17:
ce:42:11:fc:91:68:bd:3f:47:c2:89:fb:e3:7d:4c:
02:78:da:5a:0d:ed:12:a2:ca:f6:07:fb:9b:b2:bf:
ec:b5:3b:be:b0:7d:a3:89:81:df:50:c2:4d:67:c8:
bf:26:1e:7d:ff:bf:00:7a:97:71:4b:56:e2:b0:70:
9b:7d:85:5f:bb:be:13:b5:e2:3d:91:51:13:4b:8a:
f1:ac:fb:82:e6:fc:36:ae:d5:6f:80:84:35:4e:1a:
96:34:c4:e9:27:0d:c6:16:df:16:0f:01:a7:43:fd:
9f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142046
151188
sbgp-ipAddrBlock: critical
IPv4:
103.224.92.0/24
103.244.163.0/24
IPv6:
2001:ded:c000::/48
2001:df2:45c0::/47
Signature Algorithm: sha256WithRSAEncryption
9b:76:18:cf:75:72:bc:3d:cf:88:b3:2c:b8:42:00:c1:f5:fa:
71:a3:23:f3:03:85:79:15:60:cf:bc:1a:ce:13:7e:7d:5e:71:
a0:12:f6:60:bb:3b:ee:97:5e:15:23:3c:be:59:b6:8a:5e:96:
1b:f8:24:15:83:d5:da:86:bb:e1:6d:31:87:0e:0f:6f:5f:0c:
cd:0e:0a:02:88:6e:23:60:11:ec:8c:0e:24:0f:b4:e4:35:ba:
47:b4:ea:4e:59:cf:a0:02:05:45:57:d5:43:fd:ed:bf:9d:be:
0b:18:ab:43:72:5a:81:ea:09:db:6c:a5:52:81:64:1d:32:6b:
24:d1:2d:fb:20:46:e9:f8:73:de:01:f3:f1:dd:a5:ad:74:f9:
9d:f9:99:39:af:0b:72:a3:90:d9:cb:ec:22:67:4e:5a:f9:79:
01:7a:f6:18:86:3a:9e:48:20:5d:09:43:1f:2b:a4:95:ed:2c:
0c:90:18:4e:d5:a0:49:ef:52:b2:ec:62:0f:1e:2b:25:be:fc:
8b:32:67:b6:cf:c4:0c:a8:91:a7:df:2a:59:c2:c7:df:5b:af:
96:e6:7d:9f:1a:1a:57:4a:54:68:5d:cd:c1:aa:ff:28:9e:bd:
b2:11:6a:e4:40:81:d2:1d:70:39:18:ab:13:7f:e7:22:6e:5a:
ff:ea:97:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 10:00:53 2025 by rpki-client