Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/967Vh1ESzPsgjnGCR7Hkm6r_uGU.cer
File: 967Vh1ESzPsgjnGCR7Hkm6r_uGU.cer (raw, json)
Hash identifier: M6pCLutrH1ErCAvKlRq1jadlOoQuuDLo3G68Oh1oTKU=
Subject key identifier: F7:AE:D5:87:51:12:CC:FB:20:8E:71:82:47:B1:E4:9B:AA:FF:B8:65
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023DED
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/967Vh1ESzPsgjnGCR7Hkm6r_uGU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 09 Apr 2025 03:07:34 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 132481
IP: 103.148.236.0/23
IP: 203.4.128.0/22
IP: 203.11.96.0/24
IP: 2001:df2:fc80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 20:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146925 (0x23ded)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 9 03:07:34 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A915D0AC, serialNumber=F7AED5875112CCFB208E718247B1E49BAAFFB865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:8e:63:8e:b1:a0:80:8e:60:a0:d5:49:7b:15:
75:81:04:a8:c9:63:01:96:ad:a1:92:f6:58:13:4c:
51:c3:b1:b8:2d:d9:16:34:3b:e5:44:c1:f5:e7:bc:
7f:11:c2:12:05:10:36:5e:73:ea:4e:2e:52:85:9e:
b7:6c:65:65:e6:03:9f:5c:ed:b6:a9:04:3f:82:a5:
83:68:e7:12:f8:8a:0e:7e:53:e9:ea:6c:ca:fc:bd:
4a:dc:8e:9a:be:87:25:94:59:fb:fc:07:aa:5d:eb:
71:a0:70:74:b9:09:ea:85:1a:4a:5e:9f:08:98:01:
80:44:07:7a:d7:43:06:cd:15:0f:3a:86:32:00:8b:
f6:5e:3e:28:3d:7b:3e:b1:43:51:4a:c6:a2:f4:90:
91:00:c6:ae:e1:90:d2:6d:36:0e:58:dd:c6:08:b5:
a7:9a:25:30:7c:42:74:12:bb:b2:03:ef:d8:c6:2c:
c1:fa:6e:a5:10:7a:76:7b:3e:3b:40:5d:1c:41:6b:
b4:62:ba:3f:10:06:6b:99:48:46:2c:cf:b8:9f:cc:
a6:7f:4e:bf:ef:d7:95:21:7d:84:2e:87:39:83:4f:
65:14:14:9d:d4:29:e5:0a:32:33:d5:a2:b9:98:e1:
da:fc:39:8d:95:6d:01:b8:5c:4d:18:70:8e:4f:57:
e6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:AE:D5:87:51:12:CC:FB:20:8E:71:82:47:B1:E4:9B:AA:FF:B8:65
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/967Vh1ESzPsgjnGCR7Hkm6r_uGU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132481
sbgp-ipAddrBlock: critical
IPv4:
103.148.236.0/23
203.4.128.0/22
203.11.96.0/24
IPv6:
2001:df2:fc80::/48
Signature Algorithm: sha256WithRSAEncryption
b5:f5:7e:b2:1d:60:f8:08:b8:3a:01:c6:a0:2e:9c:49:b6:c9:
46:cb:fa:75:24:55:01:d4:dc:be:8e:18:db:af:f9:41:3e:98:
48:32:f6:eb:bb:c2:c4:59:22:74:d4:7e:7f:91:da:2f:b8:71:
c0:b3:49:6a:02:0b:41:2d:f1:fc:51:3b:1c:3d:53:1c:8e:46:
f0:e6:64:ab:46:04:8f:ff:0d:32:b5:05:2b:4c:bb:71:45:e0:
4e:b7:a3:9b:4d:e7:24:89:74:8a:8b:09:05:22:1d:68:aa:1b:
28:d0:9e:83:05:6a:e4:5a:81:ce:12:38:d2:a7:a6:3d:2d:b0:
a5:61:f8:1f:25:da:a3:2b:a2:4d:53:3f:05:04:83:2a:aa:69:
7b:aa:37:a2:9b:08:a9:4a:7d:70:cb:ba:5a:a4:ba:66:b4:30:
52:f8:21:75:0c:1d:94:ed:fa:99:d0:dc:5d:0f:e8:7e:55:29:
2e:f4:67:99:b0:bc:57:9d:80:75:b0:cf:57:b4:26:93:b5:f5:
9a:a0:bf:25:1b:71:36:7a:23:6b:87:85:7c:c0:02:45:80:a4:
de:5a:fe:37:9c:8f:2d:27:47:96:51:fc:28:75:2d:f9:0a:32:
e7:b3:7f:ce:5b:d7:14:38:57:a3:95:b0:66:12:d3:54:2a:cf:
c3:02:d8:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 22:47:10 2025 by rpki-client