Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FeHN3a7M6rtlZl4wrPRF-XKWY-E.cer
File: FeHN3a7M6rtlZl4wrPRF-XKWY-E.cer (raw, json)
Hash identifier: MXEgrZ8tv/mgzQupQB780XtFaHPqiWz0oR11IOFFc2s=
Subject key identifier: 15:E1:CD:DD:AE:CC:EA:BB:65:66:5E:30:AC:F4:45:F9:72:96:63:E1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023EE3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913EDDF/54785796376411EEA5AA7A58C4F9AE02/FeHN3a7M6rtlZl4wrPRF-XKWY-E.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913EDDF/54785796376411EEA5AA7A58C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 14 Apr 2025 14:21:12 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 132025
IP: 103.148.228.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 20:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147171 (0x23ee3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 14 14:21:12 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A913EDDF, serialNumber=15E1CDDDAECCEABB65665E30ACF445F9729663E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:40:54:24:ec:17:ec:13:c2:2d:7c:b8:dc:9d:
b1:c9:f7:af:74:6a:df:66:ab:a5:db:0d:35:f9:9a:
e6:96:17:f9:4a:c5:e6:7f:25:bb:c4:99:94:28:01:
3e:94:8b:82:0a:92:8e:d8:d8:01:52:7d:43:93:b9:
ea:2d:25:ee:9f:91:a7:64:f5:a7:95:3e:e4:9a:76:
4c:dc:f3:c2:9f:30:2b:87:d1:e0:d9:45:d9:b0:e1:
17:f4:61:ea:14:5e:d4:bc:36:3a:81:68:74:14:e7:
2d:bb:93:94:47:af:35:94:48:1f:b0:95:69:8f:13:
cd:0f:c8:cd:68:1c:2b:f2:67:06:7c:c8:6f:ac:aa:
49:3a:70:fe:d4:fc:48:43:e5:8d:49:7e:fa:93:31:
f2:74:80:44:a2:cd:82:df:44:cf:cf:46:bd:2a:b8:
e7:34:36:b6:1b:d9:ac:b4:54:d7:1b:71:5a:63:51:
ee:87:c6:f6:fb:8c:70:4d:d0:32:41:c8:92:9a:87:
9b:a8:85:78:99:5c:aa:95:8d:f5:1b:76:9d:e9:59:
89:c1:20:0c:3d:de:b3:54:3a:e6:0f:ee:31:a9:bb:
bf:9d:06:58:31:58:d2:12:74:74:52:47:0a:48:ac:
bf:43:81:20:88:7c:9a:2f:e0:69:ab:dc:df:36:b8:
7c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:E1:CD:DD:AE:CC:EA:BB:65:66:5E:30:AC:F4:45:F9:72:96:63:E1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913EDDF/54785796376411EEA5AA7A58C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913EDDF/54785796376411EEA5AA7A58C4F9AE02/FeHN3a7M6rtlZl4wrPRF-XKWY-E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132025
sbgp-ipAddrBlock: critical
IPv4:
103.148.228.0/23
Signature Algorithm: sha256WithRSAEncryption
65:7c:c0:bc:ee:d7:18:bb:28:05:f2:8e:49:11:0f:41:ad:df:
78:4b:ac:40:70:73:0c:2a:8c:35:40:d5:32:d3:5a:fd:76:88:
83:77:fb:b3:32:f3:e9:91:de:a6:07:59:8d:9e:2e:7f:ad:7d:
34:94:ee:b5:e9:62:11:c8:63:de:81:ad:4a:ba:f5:da:65:d7:
fb:8f:fb:a7:36:e0:8b:ef:ed:98:eb:d1:93:88:13:a3:be:f8:
e1:03:d6:65:52:6b:05:ba:22:ae:35:0e:73:0c:23:1d:69:22:
00:19:ca:38:b0:8d:33:e1:48:da:df:53:08:4e:58:6b:a6:ad:
33:c7:30:5c:ab:5d:fe:68:1a:be:86:87:d6:77:8d:42:e4:64:
f4:2e:db:ad:00:19:c1:99:40:91:4a:9b:87:ef:43:56:e6:c1:
ad:08:e7:33:f4:fd:dc:84:9a:7d:75:33:67:25:38:9d:0f:2a:
56:96:93:ce:0e:a2:45:b9:42:14:ae:26:41:e3:fa:fc:46:8b:
cd:d7:bd:96:8e:24:3a:76:3a:6b:c3:ea:d0:24:49:3f:80:c4:
56:ab:d1:98:24:9f:bb:3c:eb:9a:c0:07:61:ca:d6:68:7c:f3:
43:eb:bd:69:db:dc:37:f6:86:ed:ab:cd:1a:18:dc:53:21:be:
31:fd:f3:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 22:51:19 2025 by rpki-client