Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yUW3dyzMJ0E4ZaksuJLf0nyqn3c.cer
File: yUW3dyzMJ0E4ZaksuJLf0nyqn3c.cer (raw, json)
Hash identifier: dKMhoo6hpUIfmgxYNuq0deM5Rtt2gaJgINOV3tSDs5A=
Subject key identifier: C9:45:B7:77:2C:CC:27:41:38:65:A9:2C:B8:92:DF:D2:7C:AA:9F:77
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020299
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CB06F/12F30212E73811EC88F11641C4F9AE02/yUW3dyzMJ0E4ZaksuJLf0nyqn3c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CB06F/12F30212E73811EC88F11641C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 26 Jul 2024 20:41:00 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 149860
IP: 103.189.66.0/23
IP: 2001:df0:ccc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131737 (0x20299)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jul 26 20:41:00 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91CB06F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ec:25:9d:47:4c:45:9c:65:f9:d9:84:ca:40:
a6:a3:42:3d:9b:48:82:e5:96:e5:12:48:b8:77:b1:
6c:e0:fe:55:68:44:bb:b4:29:7f:44:9b:6e:e9:38:
54:89:93:62:ae:12:f8:b5:97:bc:8f:d1:69:a1:77:
70:ad:7c:33:36:73:f6:de:e2:f9:72:59:3c:2d:ba:
63:71:f9:cc:e2:50:3d:ad:e1:c8:f3:30:90:44:47:
26:5a:23:aa:86:ca:7f:4c:9f:ac:b4:03:3d:d8:39:
15:1d:bc:66:90:31:98:7d:8b:fb:ac:ef:9f:3c:51:
8c:c8:2d:50:21:58:aa:17:11:7d:b2:4b:b0:94:55:
77:71:b2:a1:23:c2:ac:1c:f9:c9:35:89:b6:dc:1d:
a3:ad:e9:78:d2:3f:84:59:b4:19:41:aa:fd:29:5c:
7f:f6:a1:73:12:7e:6e:75:7b:29:37:d5:68:ad:6a:
76:bd:91:9d:43:81:21:48:99:bb:e0:8a:39:40:47:
56:69:38:07:67:50:97:0f:4a:46:b8:ec:12:70:93:
6a:4c:f6:b8:be:07:bd:6e:4f:c7:5f:b8:56:35:ac:
4e:3a:d3:7b:2d:4a:d3:c7:62:9c:03:c9:e3:4e:17:
a9:b6:6c:e8:34:26:19:d7:97:1d:6c:71:c6:5c:4b:
4f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:45:B7:77:2C:CC:27:41:38:65:A9:2C:B8:92:DF:D2:7C:AA:9F:77
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CB06F/12F30212E73811EC88F11641C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CB06F/12F30212E73811EC88F11641C4F9AE02/yUW3dyzMJ0E4ZaksuJLf0nyqn3c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149860
sbgp-ipAddrBlock: critical
IPv4:
103.189.66.0/23
IPv6:
2001:df0:ccc0::/48
Signature Algorithm: sha256WithRSAEncryption
d0:0d:36:70:33:ff:d6:21:9b:06:d3:35:57:5b:23:67:c1:17:
06:b0:ca:ec:de:58:43:89:62:9f:ff:da:ab:5f:c3:d1:2d:08:
d9:7f:31:d3:9b:6f:44:02:04:6c:5c:b0:26:b9:b9:26:76:3a:
91:7d:4e:28:33:84:66:be:52:89:34:bc:35:f9:e7:a6:fe:c2:
e4:e8:92:41:b4:6a:04:de:2c:57:22:d8:05:bf:d7:b8:19:a1:
a7:fa:90:1e:30:fd:0b:c4:d2:3c:15:70:d4:41:3d:f4:57:66:
ec:18:5b:09:8b:3c:aa:ff:d6:4f:ac:f9:47:15:4e:67:8e:b6:
65:0f:41:94:6e:9e:98:89:ad:54:e1:99:8a:a5:bd:dc:0c:0a:
1f:6b:0b:31:8a:76:26:cb:7e:5b:79:b2:b6:58:c4:47:9b:d3:
0a:68:41:ab:3a:b1:eb:e6:23:95:0b:db:81:f3:56:06:96:a8:
37:46:fc:26:54:8c:a9:97:3e:1e:8b:82:09:58:55:e0:33:6a:
1b:62:f7:5a:a7:86:37:a4:21:95:72:7a:66:76:8a:7a:78:b1:
f3:c0:52:35:f1:9f:70:cb:ab:9e:73:33:c5:e9:8d:b7:db:c3:
38:19:04:74:94:03:e0:2e:a4:56:38:15:29:54:f4:12:5c:b3:
55:69:8d:b2
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:35 2025 by rpki-client