Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gv1CZeY9DL91I27ZaGrk8AFV_34.cer
File: Gv1CZeY9DL91I27ZaGrk8AFV_34.cer (raw, json)
Hash identifier: QVS6ArjQhX8XUAqv0Zv8GXS3vtpxtECKXtDJdRvTMUs=
Subject key identifier: 1A:FD:42:65:E6:3D:0C:BF:75:23:6E:D9:68:6A:E4:F0:01:55:FF:7E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0232A6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/Gv1CZeY9DL91I27ZaGrk8AFV_34.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 21 Feb 2025 19:38:18 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 136230
AS: 149781
AS: 150151
AS: 150794
IP: 103.84.96.0/24
IP: 103.101.172.0/24
IP: 103.101.174.0/23
IP: 2001:df0:d00::/47
IP: 2400:e720::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 20:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144038 (0x232a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 21 19:38:18 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91CBA26, serialNumber=1AFD4265E63D0CBF75236ED9686AE4F00155FF7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:40:de:74:a9:27:c4:34:7b:41:0f:c4:f5:7e:
2d:50:95:60:a1:a1:b0:cf:cf:61:3b:c0:7b:87:a3:
3d:ed:8d:7d:46:26:0a:a5:41:5e:2c:e7:1c:99:58:
61:8b:df:54:cb:e0:39:b4:71:e6:d1:80:f4:69:dc:
eb:4f:12:c7:b4:7e:c1:bc:54:4c:16:3a:95:11:24:
46:54:5d:64:c7:a4:02:3b:97:0e:4f:a5:71:be:7f:
52:8d:33:7e:49:8c:e3:c3:2c:2e:ab:44:a3:1e:e0:
18:ca:b8:0c:df:10:c4:5a:01:11:e7:24:e1:bc:96:
7c:d9:01:a4:4c:3b:5b:fc:45:a0:0e:4f:83:c6:ee:
70:7d:5c:2f:9a:81:be:07:dc:f6:8b:5f:2e:83:4b:
ea:02:6d:ae:80:55:b7:e3:2a:e7:52:e2:1c:77:76:
95:2b:97:38:95:7c:77:24:9f:93:25:47:9c:4b:90:
a0:fd:47:59:2a:6c:3c:7d:9c:d1:bb:31:f0:0e:3e:
66:8e:ba:74:81:a5:d3:1c:8f:7f:60:32:7c:32:3f:
5f:c1:f8:41:a5:c1:7d:11:56:e6:c1:d1:e5:66:ab:
60:b1:bc:0c:d2:9f:42:0e:cd:a8:3f:a7:a3:bc:a7:
50:fc:e9:d3:a9:d1:6d:b5:ca:0a:0e:1e:6a:f3:37:
04:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:FD:42:65:E6:3D:0C:BF:75:23:6E:D9:68:6A:E4:F0:01:55:FF:7E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/Gv1CZeY9DL91I27ZaGrk8AFV_34.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136230
149781
150151
150794
sbgp-ipAddrBlock: critical
IPv4:
103.84.96.0/24
103.101.172.0/24
103.101.174.0/23
IPv6:
2001:df0:d00::/47
2400:e720::/32
Signature Algorithm: sha256WithRSAEncryption
8e:6a:dd:52:5f:9b:6c:6f:54:07:06:1d:4a:a7:e9:9d:23:14:
cb:5d:1f:0b:0b:f8:03:b6:67:b8:a8:13:fc:ac:92:66:b1:10:
d6:74:9d:1d:6b:5e:a2:a1:cb:51:b7:4d:90:81:ae:b6:0d:75:
12:04:40:27:b4:03:c2:a5:ba:f4:3a:b6:35:74:77:06:be:f3:
ff:bd:8f:14:31:5a:75:89:13:8c:f9:6c:1b:a6:d0:fb:31:a2:
9c:c2:5b:28:25:18:70:6a:34:6d:74:59:99:17:f6:ce:7a:c5:
52:1c:d7:28:d4:9c:3c:2d:53:84:0a:81:35:9a:d3:77:05:03:
2f:4d:fb:80:eb:0f:8b:0d:dc:bf:a6:b4:e8:17:65:1e:3c:c5:
72:1c:8b:17:fb:fe:54:1c:74:21:cd:af:b7:37:3e:d5:b1:81:
4f:38:98:fd:ee:9c:d7:e7:91:75:1a:d8:bb:ed:15:59:35:69:
cf:f7:0e:c6:6e:13:89:31:fa:4c:95:b3:2c:ce:0a:29:63:fc:
f6:0a:db:07:f9:51:5b:f6:9a:48:6b:8a:95:98:39:e7:e4:1c:
a9:47:d9:f5:13:bb:9b:8b:d8:0b:15:35:04:e1:36:e8:41:c3:
76:05:56:7e:9f:1a:26:a8:82:44:c3:f5:1b:c2:b9:fe:47:0c:
36:2a:86:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 22:50:24 2025 by rpki-client