Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yvg06LwFd8t93bA-7UaRLns0ccw.cer
File: yvg06LwFd8t93bA-7UaRLns0ccw.cer (raw, json)
Hash identifier: ynxgHt1oCj0rYrlBV6NtWvjOpdNpXHpCAR3nodCju40=
Subject key identifier: CA:F8:34:E8:BC:05:77:CB:7D:DD:B0:3E:ED:46:91:2E:7B:34:71:CC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02280E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9158D5B/84B2FBD445B711EFA6DFD032C4F9AE02/yvg06LwFd8t93bA-7UaRLns0ccw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9158D5B/84B2FBD445B711EFA6DFD032C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 08 Jan 2025 15:11:25 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 152315
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141326 (0x2280e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 8 15:11:25 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A9158D5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a9:7d:9f:87:21:23:c4:2d:b7:75:1e:21:30:
9b:52:d1:77:5f:e9:38:8b:97:1e:4f:ea:cb:ce:3c:
ff:91:bc:8f:d3:e6:29:1d:60:9f:7d:75:32:45:f7:
f9:08:4d:32:92:f6:80:98:59:62:2f:0f:1c:56:de:
5b:b9:b9:d8:e1:76:b6:cd:84:55:b9:ec:83:bc:7e:
9f:a3:41:7b:7f:1a:58:f9:b1:92:94:75:e0:2f:52:
ef:7d:ed:49:d0:50:87:dd:cc:a5:c5:e2:65:30:6c:
55:dd:e7:5e:1e:5c:32:e2:41:67:cc:fb:a2:03:5d:
b0:78:37:65:67:b4:60:50:5d:3f:aa:f1:03:da:cd:
af:56:b2:1b:61:20:5b:ba:58:19:f0:e8:39:5b:05:
d4:e5:e1:1e:81:16:8c:ec:f9:c0:b3:ea:02:7e:d9:
5b:05:2a:c7:f9:d5:60:ed:c1:f2:fa:b0:75:e9:e8:
75:cf:7a:df:b6:bd:c6:0e:65:5f:48:1f:dc:12:00:
2b:3e:67:d0:82:47:f4:04:f9:d9:36:1d:65:d9:da:
66:f6:0b:36:fb:46:00:4e:87:c4:b5:0c:db:bb:1b:
e1:2e:a3:28:92:9d:db:f7:11:23:19:c8:5a:3f:58:
d5:28:5f:81:58:af:b0:bd:83:8a:b2:7e:84:3e:d2:
52:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:F8:34:E8:BC:05:77:CB:7D:DD:B0:3E:ED:46:91:2E:7B:34:71:CC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9158D5B/84B2FBD445B711EFA6DFD032C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9158D5B/84B2FBD445B711EFA6DFD032C4F9AE02/yvg06LwFd8t93bA-7UaRLns0ccw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152315
Signature Algorithm: sha256WithRSAEncryption
8a:4d:b0:89:53:c0:c9:9d:82:57:b5:77:96:d1:d1:79:01:a9:
3f:8d:11:ce:07:a0:d8:d8:bf:82:0e:ed:a6:db:16:42:7f:d4:
a8:ae:29:1d:16:c5:4e:f1:88:50:43:76:17:0b:2e:68:46:d0:
1a:46:9c:4f:2a:d1:ae:e0:fc:75:f3:86:99:da:d8:97:ce:06:
0d:37:d4:5a:19:f1:a0:65:ad:8f:04:7f:40:17:c1:f3:87:29:
d4:f9:ca:1a:58:ee:81:6b:e4:f5:16:c6:9c:8d:31:b8:66:8a:
be:f1:74:6c:eb:cc:a7:b8:a5:fa:b1:c7:67:66:d5:f0:c7:02:
c5:be:06:dd:ad:fc:31:c2:82:53:00:44:f3:41:63:51:ec:fd:
a8:fb:98:3f:76:be:bd:b3:f2:62:dc:e4:c7:b2:47:e5:8a:ae:
45:23:b3:32:db:fd:15:2a:d0:5f:f5:39:fa:fd:ef:d1:59:a9:
ea:92:2f:fc:f7:96:4b:8e:52:9c:b8:1d:a5:3b:37:90:33:87:
3e:1d:db:74:ba:a5:4c:1c:75:84:50:bf:81:19:18:bc:21:0b:
1a:af:76:54:27:a5:78:f1:af:a9:d5:33:23:17:39:c2:4e:d8:
99:d6:19:df:b6:34:23:f7:93:24:3b:c7:37:24:de:0f:68:d2:
dc:61:a2:a5
-----BEGIN CERTIFICATE-----
MIIF+TCCBOGgAwIBAgIDAigOMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDEwODE1MTEyNVoXDTI2MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNThENUIxMTAvBgNVBAUTKENBRjgzNEU4QkMwNTc3Q0I3REREQjAz
RUVENDY5MTJFN0IzNDcxQ0MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCjqX2fhyEjxC23dR4hMJtS0Xdf6TiLlx5P6svOPP+RvI/T5ikdYJ99dTJF9/kI
TTKS9oCYWWIvDxxW3lu5udjhdrbNhFW57IO8fp+jQXt/Glj5sZKUdeAvUu997UnQ
UIfdzKXF4mUwbFXd514eXDLiQWfM+6IDXbB4N2VntGBQXT+q8QPaza9WshthIFu6
WBnw6DlbBdTl4R6BFozs+cCz6gJ+2VsFKsf51WDtwfL6sHXp6HXPet+2vcYOZV9I
H9wSACs+Z9CCR/QE+dk2HWXZ2mb2Czb7RgBOh8S1DNu7G+EuoyiSndv3ESMZyFo/
WNUoX4FYr7C9g4qyfoQ+0lKnAgMBAAGjggLuMIIC6jAdBgNVHQ4EFgQUyvg06LwF
d8t93bA+7UaRLns0ccwwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTU4RDVCLzg0QjJGQkQ0NDVCNzExRUZBNkRGRDAzMkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1OEQ1Qi84NEIyRkJENDQ1QjcxMUVGQTZERkQwMzJDNEY5QUUwMi95dmcwNkx3
RmQ4dDkzYkEtN1VhUkxuczBjY3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlL7MA0GCSqGSIb3DQEBCwUAA4IBAQCKTbCJU8DJnYJXtXeW0dF5Aak/
jRHOB6DY2L+CDu2m2xZCf9SorikdFsVO8YhQQ3YXCy5oRtAaRpxPKtGu4Px184aZ
2tiXzgYNN9RaGfGgZa2PBH9AF8HzhynU+coaWO6Ba+T1FsacjTG4Zoq+8XRs68yn
uKX6scdnZtXwxwLFvgbdrfwxwoJTAETzQWNR7P2o+5g/dr69s/Ji3OTHskfliq5F
I7My2/0VKtBf9Tn6/e/RWanqki/895ZLjlKcuB2lOzeQM4c+Hdt0uqVMHHWEUL+B
GRi8IQsar3ZUJ6V48a+p1TMjFznCTtiZ1hnftjQj95MkO8c3JN4PaNLcYaKl
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:09 2025 by rpki-client