Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer
File: U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer (raw, json)
Hash identifier: Fkd2nfAwa6DPzepEBHfkAmIEtPF9iVuJ1PLm5AoLaRM=
Subject key identifier: 53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023F5C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 16 Apr 2025 17:54:51 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 135102
IP: 2401:9ce0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 20:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147292 (0x23f5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 16 17:54:51 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A91CA735, serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4c:25:5a:b3:b9:16:5c:9e:3e:53:6d:75:80:
96:66:5f:ad:90:60:c7:af:0e:bd:c8:2f:d6:95:1a:
1c:63:fe:2b:7a:f2:a1:b3:c1:b9:0f:9d:01:67:66:
e0:47:40:80:46:9f:2f:7d:e2:0c:f4:05:9d:0e:e1:
aa:c6:19:03:28:b2:77:82:e5:fe:26:5a:3a:f3:2b:
ff:34:ce:bd:b3:e6:a2:f0:ce:46:30:2d:cc:e8:3b:
2d:d5:54:14:53:f3:74:e6:25:f2:df:ac:e5:fa:5f:
9c:87:61:25:86:50:dc:c8:5d:53:b5:65:48:50:19:
29:09:74:a6:cf:ec:ac:2c:6c:6e:ad:6a:f6:47:36:
46:a7:18:1f:91:f9:53:db:17:e0:ec:3f:d6:30:9e:
fa:07:88:c4:21:85:9d:dd:12:b7:7f:5a:39:06:3c:
bb:93:93:65:91:d9:7e:c4:ac:9a:3b:2c:a2:7e:63:
89:24:42:e2:e0:4c:57:b9:39:2a:50:c7:6a:0d:db:
75:7f:15:f7:62:cc:5a:21:ec:29:6c:55:21:a9:b6:
95:a5:3a:4a:d5:b4:79:02:0c:50:72:6f:14:bc:ad:
f1:a6:4d:7d:81:66:bb:a2:65:5c:0f:1d:22:73:47:
f7:f7:8f:c5:1a:b2:97:b5:24:87:52:38:a8:e8:60:
56:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135102
sbgp-ipAddrBlock: critical
IPv6:
2401:9ce0::/32
Signature Algorithm: sha256WithRSAEncryption
36:52:cb:56:2f:6e:5d:25:64:54:8b:65:72:cf:40:10:99:da:
9e:9b:88:e9:f9:80:66:6e:f0:ec:e4:61:db:fc:98:c1:91:f6:
d5:2d:16:e6:8a:31:af:f5:18:e8:72:de:02:cf:3b:0f:e9:87:
8f:63:bc:9e:8e:d4:07:3b:37:e5:f9:87:47:67:56:ce:b6:b3:
7c:14:6a:34:3d:c4:80:4a:0b:de:e4:21:d1:4a:2e:00:05:41:
4e:f3:3c:74:4b:9b:06:e7:89:8b:22:e3:e6:21:ad:d6:56:f0:
65:d5:c9:3b:d9:2b:a0:e5:d6:cf:89:a1:ae:91:88:a1:05:39:
e8:6b:b2:92:33:c9:92:ad:f9:b2:d2:75:8a:91:da:cd:7c:98:
d2:12:16:18:19:22:df:d7:5f:b6:33:e5:74:83:5f:83:54:c9:
f1:04:00:7b:fc:4a:0b:68:42:7f:97:6f:dd:98:79:a0:3b:2d:
8c:70:86:4f:78:9f:38:92:48:93:67:e4:92:ed:52:95:bf:25:
25:72:ab:16:e5:52:f9:9a:69:1c:e1:06:66:aa:50:3f:51:e1:
44:68:3a:c7:d1:85:12:75:03:33:f2:d6:a7:c8:76:84:9a:08:
e4:92:26:a1:76:4e:31:aa:cd:f0:e7:69:81:4f:e7:87:2d:a9:
fb:d2:2e:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 22:58:06 2025 by rpki-client