Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDqYZ_Ljs3MWK--muG6BvYyGiHc.cer
File: GDqYZ_Ljs3MWK--muG6BvYyGiHc.cer (raw, json)
Hash identifier: c6j6WRRk/VvnKDl8v1uVza1hHnvz30nto8b7fhKoBVU=
Subject key identifier: 18:3A:98:67:F2:E3:B3:73:16:2B:EF:A6:B8:6E:81:BD:8C:86:88:77
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023D6B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 07 Apr 2025 06:50:17 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 2407:ee00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 20:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146795 (0x23d6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 7 06:50:17 2025 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A912A5D4, serialNumber=183A9867F2E3B373162BEFA6B86E81BD8C868877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:45:c3:6b:b2:b5:b0:ec:58:99:1d:cc:6e:9c:
c5:76:88:a3:94:82:82:84:ef:e5:7d:52:71:70:1e:
54:28:58:94:c7:a1:a0:24:17:8e:9e:f2:7d:cb:78:
3a:55:5b:c8:d8:65:4e:99:ec:7c:c3:36:57:78:92:
3a:5d:27:11:7f:f6:0a:b1:95:68:58:f1:46:58:71:
58:18:38:8e:f3:f0:ea:81:68:25:17:e0:84:38:a4:
8f:fe:9a:13:2e:26:30:e9:3c:05:5a:9a:8e:97:fc:
06:85:10:a4:64:e9:13:d8:e9:37:ce:8b:99:41:9f:
92:d6:99:41:f6:53:0b:2e:9e:7a:e5:4a:cb:50:81:
66:67:0f:ff:d9:b4:ff:61:b1:47:b0:91:c6:12:d3:
86:71:c9:39:82:c1:87:86:ae:f3:63:fc:ef:9a:5f:
5c:d4:77:75:7c:a1:b0:4a:c2:11:2c:95:be:02:1a:
8e:17:44:e1:3a:df:6d:11:0c:8c:57:74:f9:c4:60:
f9:18:9e:06:0f:16:db:25:03:23:28:d6:98:1c:f6:
b1:9e:97:ff:ad:15:8f:57:cf:df:6a:20:23:9b:68:
b6:ca:c4:90:10:bb:2f:0b:94:09:f4:53:43:a7:a5:
87:87:c1:69:99:76:45:cd:79:fa:cf:70:5f:09:d2:
ee:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:3A:98:67:F2:E3:B3:73:16:2B:EF:A6:B8:6E:81:BD:8C:86:88:77
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:ee00::/32
Signature Algorithm: sha256WithRSAEncryption
5e:a6:4a:46:7f:90:3a:95:1d:3c:e6:71:81:46:de:c8:9d:31:
c3:c8:6a:7e:3d:e3:c4:1b:8d:f8:dc:9d:61:9e:11:9a:c9:06:
9f:6f:3a:b3:71:4e:28:6f:44:ba:71:23:51:32:93:82:e6:7f:
f7:f6:d1:63:c1:fc:b2:cb:21:db:c0:7b:29:86:21:73:34:89:
4b:76:f8:6c:19:5d:e9:1d:d2:ba:f6:9b:65:b2:a6:b3:6e:dd:
9c:c5:56:1a:f7:e2:5c:6f:17:88:bb:0d:cd:26:de:91:56:a3:
14:6f:55:e2:c1:75:1b:7d:37:68:9c:83:ba:da:a4:84:a9:cb:
16:61:18:44:7c:f9:57:e8:f8:0b:fc:ee:a7:d7:8e:5e:c7:7c:
65:3e:c7:4a:0c:e8:60:7c:f8:7e:f6:66:40:04:2f:16:c9:89:
32:b2:35:9d:80:ef:86:f1:c2:49:30:c6:fa:f5:11:e4:25:1c:
91:4e:4f:39:9b:bc:44:19:00:12:67:4d:7e:9f:94:da:be:50:
b1:65:41:96:4c:1d:2d:33:80:45:45:08:f5:a2:68:52:19:53:
0b:23:cf:1d:87:7b:9e:78:fb:83:28:70:ed:61:92:07:07:fc:
86:6a:c8:b0:5d:1a:c4:66:2e:1b:c9:a3:ad:6c:99:b0:f0:04:
b2:30:0f:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 22:51:30 2025 by rpki-client