Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M2KsWO2xic8leDwn2Qp9L6Mpd8U.cer
File: M2KsWO2xic8leDwn2Qp9L6Mpd8U.cer (raw, json)
Hash identifier: yOfQRTPzPldBwPlcWcMPB1BA8Vbo3DcIhKm01Qdl7U8=
Subject key identifier: 33:62:AC:58:ED:B1:89:CF:25:78:3C:27:D9:0A:7D:2F:A3:29:77:C5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023ECE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 14 Apr 2025 00:26:17 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 149872
IP: 203.4.164.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 20:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147150 (0x23ece)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 14 00:26:17 2025 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A919D3F9, serialNumber=3362AC58EDB189CF25783C27D90A7D2FA32977C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b0:6e:90:4a:1f:3e:20:ff:ec:f4:f7:3e:1a:
fa:9b:b7:57:3e:7b:a1:54:62:02:b9:9e:17:ab:25:
81:f3:de:eb:3c:31:40:ca:35:09:e0:b6:67:74:f0:
89:3a:f1:dc:b0:28:c9:cf:bd:b8:2c:91:82:ae:cb:
fe:d5:6a:18:37:16:a7:11:a5:1d:dc:50:18:d4:a0:
6e:1b:23:86:90:41:f2:6f:f4:ea:53:e9:7b:2e:70:
b8:8a:14:ed:46:be:ca:85:a0:21:0c:02:d4:9e:40:
9c:d5:74:d2:c4:1c:46:e3:c4:f6:3c:33:d0:ec:14:
4e:d8:d2:77:0d:c3:8a:3c:a6:42:b6:82:91:24:5e:
75:b9:4c:e9:02:20:25:e9:a7:fc:81:0c:f9:51:9a:
fd:2a:64:47:4b:85:4b:c8:c1:46:9f:d4:0c:a0:f2:
08:0d:6e:80:df:cd:a9:5b:05:93:33:e1:b5:4c:c1:
49:5d:9f:e2:d9:ba:34:7c:6b:af:9a:79:30:4f:bc:
75:f4:83:6a:40:d8:fd:2e:9e:08:10:40:ff:c6:85:
5c:b2:d3:46:f7:b9:34:f2:25:0f:ca:38:25:4d:39:
45:8e:21:2b:d1:9f:a2:60:2b:30:87:e4:d9:aa:31:
aa:33:9e:de:09:7a:42:b6:2e:8f:bb:67:78:02:1d:
18:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:62:AC:58:ED:B1:89:CF:25:78:3C:27:D9:0A:7D:2F:A3:29:77:C5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149872
sbgp-ipAddrBlock: critical
IPv4:
203.4.164.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:cb:4b:3e:1a:96:da:d3:3f:9f:30:f6:91:c2:4f:bd:59:73:
1b:82:89:92:c1:c4:21:a8:9d:9e:56:c5:99:f9:21:4c:4a:5e:
46:c2:02:8c:ac:81:c0:dc:28:6f:11:48:fc:a1:c8:54:e0:0a:
58:5d:8d:cd:02:b4:04:4a:1b:e0:d4:13:9a:39:d4:8f:f7:81:
9b:60:4b:e0:02:c0:86:58:52:39:f9:26:42:1d:06:91:0d:d4:
ef:b1:3d:1d:d9:f2:59:9e:9a:0c:35:49:6e:1e:0f:bc:e9:6e:
f8:77:83:7f:21:80:7f:bf:dd:89:85:23:45:a1:85:9c:14:7a:
59:ad:08:6c:9e:07:cc:4b:5c:4b:da:b6:e9:c3:e9:34:6a:03:
e3:ec:b9:8b:f1:cf:24:dc:cb:cf:ed:be:d4:a6:ce:a7:08:fc:
e1:1a:ba:7a:73:66:20:04:bc:b8:42:c7:e6:04:0b:32:ce:c1:
e2:f7:eb:33:da:8a:e9:85:4b:4f:8e:32:2b:f8:e4:1b:0f:e2:
4b:c8:8a:1c:74:43:ed:10:b3:cf:8d:09:07:e6:54:a9:66:2d:
ef:99:19:2c:38:72:ce:70:14:43:75:39:13:6a:71:e8:6d:f5:
af:25:de:57:0d:0a:6c:2a:3b:d6:d0:16:b2:9a:d4:f7:87:85:
e0:97:7f:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 22:53:33 2025 by rpki-client