Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer
File: 2nNptJciuhObe2DznIi0m9uzXz0.cer (raw, json)
Hash identifier: T9kqfD6n4xCEsibxzVSRM66JP+0JIrqnkawLtRpnIEc=
Subject key identifier: DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023BE0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Apr 2025 22:23:41 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 24459
AS: 132832
AS: 139580
IP: 43.239.96.0/22
IP: 103.6.212.0/23
IP: 103.16.180.0/23
IP: 103.248.176.0 -- 103.248.178.255
IP: 202.37.129.0/24
IP: 2403:4f00::/32
IP: 2406:fd00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 20:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146400 (0x23be0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 1 22:23:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A917E623, serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:2a:30:ff:df:f0:27:6f:8b:96:c0:1d:0d:12:
c0:c8:3f:1e:5b:e8:91:8f:8a:f0:c8:fb:9a:58:61:
a6:ca:58:8b:cc:da:4d:9b:30:0c:4f:6b:c6:8c:48:
34:f3:50:b5:72:2c:d3:49:20:4c:9e:da:81:11:42:
c4:f3:1a:be:b7:30:d7:be:85:96:a2:7f:fd:53:11:
2f:d2:18:5e:d0:8e:4f:bf:55:e1:07:71:b5:54:38:
0b:dd:e4:93:41:48:17:c0:78:6b:ab:c4:6b:6d:39:
fd:c8:df:4c:4b:da:fe:24:a9:5a:de:ff:12:67:28:
c2:81:40:0d:03:39:c3:bd:37:09:ad:cd:f8:62:11:
a3:1d:2e:af:9c:38:76:c1:8f:39:40:1d:e7:9e:63:
ba:20:c0:e8:54:a2:da:6a:62:d4:e5:54:80:61:82:
e0:78:07:73:18:7e:b3:38:57:1d:8d:91:cb:95:d2:
36:b6:b5:2e:1c:f5:c1:eb:bc:ed:63:1c:79:bf:fe:
c1:e2:da:39:ad:0d:2d:5f:34:ee:71:67:c4:f8:6b:
2b:de:de:33:05:e8:c5:8d:0f:2d:f7:5f:d1:fc:f5:
0c:70:cd:ee:c7:46:b0:ce:ac:74:c0:04:65:c0:14:
f0:45:4a:56:44:d8:1b:60:d0:4a:59:46:74:9b:16:
0a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24459
132832
139580
sbgp-ipAddrBlock: critical
IPv4:
43.239.96.0/22
103.6.212.0/23
103.16.180.0/23
103.248.176.0-103.248.178.255
202.37.129.0/24
IPv6:
2403:4f00::/32
2406:fd00::/32
Signature Algorithm: sha256WithRSAEncryption
43:52:e1:0a:46:77:69:e5:01:94:2c:34:ba:77:a6:70:9b:62:
2d:28:bc:fc:e9:f3:7b:65:36:55:64:27:9f:49:37:82:84:cb:
42:ef:00:1a:ca:a9:17:1d:52:7d:71:cf:f1:05:80:48:5b:4b:
fe:2f:31:cd:f8:c4:78:41:f5:cd:66:f0:ff:0f:1c:56:fd:d0:
18:07:94:e1:35:86:9a:48:6c:57:7d:0a:6b:f2:6d:d9:b4:4a:
26:a0:41:67:55:7f:d4:76:d2:13:f0:e4:82:ca:d7:c0:13:8b:
ab:ba:2c:33:5f:85:a0:c3:13:cd:53:43:04:19:12:39:13:16:
c3:2e:c2:9a:9a:d0:02:d3:d5:07:fc:ce:bb:d6:45:6a:68:2a:
1f:f7:8a:6a:4f:e0:ae:19:3d:e8:bb:c8:68:0f:c8:a6:8f:54:
7f:e5:90:4b:15:5b:23:06:8c:e0:00:0e:c1:c9:09:f4:8a:f9:
76:90:1a:a6:f9:d8:5c:3b:d1:01:ae:63:c0:9d:50:c0:64:32:
65:41:3b:02:53:be:97:e8:4f:22:a5:f8:38:7b:79:98:2d:8f:
80:bb:fd:6e:36:83:74:dc:47:8a:10:0f:41:cf:03:58:69:4c:
c6:47:67:c0:28:65:b8:f5:e5:c4:aa:99:c4:b7:e7:fa:5a:a0:
8e:c6:d3:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 22:58:56 2025 by rpki-client