Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YYrgnnRxNtZvEWWnuP6i_3OGffY.cer
File: YYrgnnRxNtZvEWWnuP6i_3OGffY.cer (raw, json)
Hash identifier: h3fUYHRusa5hxuc+0jIbhRcn3hrz3eiYgxNjgsHKbDQ=
Subject key identifier: 61:8A:E0:9E:74:71:36:D6:6F:11:65:A7:B8:FE:A2:FF:73:86:7D:F6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023DBB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B4460/0D46883C148711F0A79EAB26C4F9AE02/YYrgnnRxNtZvEWWnuP6i_3OGffY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B4460/0D46883C148711F0A79EAB26C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 08 Apr 2025 14:37:57 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 136942
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 20:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146875 (0x23dbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 8 14:37:57 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91B4460, serialNumber=618AE09E747136D66F1165A7B8FEA2FF73867DF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:2e:1b:23:49:12:96:e3:53:e3:8d:34:ec:26:
f7:c0:b3:98:d4:19:8a:f2:c3:4e:30:65:18:63:66:
a6:51:22:6e:8d:0d:8e:a3:da:51:71:a1:14:17:8e:
b9:cb:83:d0:68:00:36:95:29:f1:9b:89:14:7a:5c:
70:a0:84:e3:83:17:4e:41:1a:f5:5b:9a:6f:7d:dd:
f9:ca:2b:70:5c:83:6c:fd:82:cb:7a:ef:9e:55:83:
7a:cc:df:91:46:98:6f:e0:04:6e:0f:f0:c7:9e:ae:
98:2f:00:ee:e0:af:32:26:e8:54:13:38:16:93:ff:
71:6b:67:fa:41:5f:d5:ae:19:20:42:9f:22:9c:3a:
bc:82:0f:7b:93:07:b1:0d:ec:dc:69:c7:b7:c5:a3:
0f:a4:e5:4c:37:c6:3d:8d:ed:b1:b4:cf:e1:19:ab:
28:f8:ad:a3:9c:4c:2f:00:80:43:0d:96:64:f4:a3:
75:c8:71:98:74:01:bf:df:df:8d:57:da:49:d5:48:
b4:fc:98:72:94:57:61:63:0e:e3:d4:6a:fc:77:b9:
cc:c4:3e:84:c4:5e:18:cf:e2:0f:02:d5:7b:81:ec:
f7:32:8c:5c:87:b5:73:c8:f8:47:5f:0b:e6:ae:55:
31:a8:11:4b:32:a3:35:4b:ec:70:a9:a0:55:1c:11:
8f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:8A:E0:9E:74:71:36:D6:6F:11:65:A7:B8:FE:A2:FF:73:86:7D:F6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B4460/0D46883C148711F0A79EAB26C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B4460/0D46883C148711F0A79EAB26C4F9AE02/YYrgnnRxNtZvEWWnuP6i_3OGffY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136942
Signature Algorithm: sha256WithRSAEncryption
4b:91:87:bc:61:1b:e8:69:33:58:52:66:22:72:51:18:1c:a6:
51:dc:4d:c7:31:dc:4b:1b:ae:ed:dc:41:c6:ba:d2:47:f6:d1:
63:eb:23:c7:55:44:39:97:d7:fa:74:ef:39:38:b7:01:43:25:
d5:27:be:f8:41:9a:4e:eb:08:91:97:50:04:88:bb:45:23:cd:
e1:d0:4a:a3:6c:4a:82:d5:53:c0:b7:5a:af:c3:77:29:37:c3:
8c:ca:20:d8:98:a8:c0:01:49:a3:a1:a9:4c:1d:67:62:0b:71:
0a:1f:11:2f:55:4f:7e:44:de:60:ec:9d:d5:03:a6:30:87:1e:
46:3e:11:60:f6:db:72:03:86:1b:dd:db:aa:a4:1c:37:25:f3:
0e:df:7f:d7:a1:26:62:72:da:fb:01:25:fc:d6:19:98:e9:ca:
54:bd:a3:9d:9f:fa:dc:e4:39:a8:5d:3d:9c:03:d1:92:e0:7b:
37:ed:5c:87:4f:35:b8:f6:e6:a3:41:a8:09:02:6e:db:e2:30:
4d:65:f3:94:09:63:87:bf:2b:c9:06:d8:ad:0f:47:ef:67:a9:
27:f0:e7:46:7a:90:01:95:cb:f4:b4:c1:c2:fa:b4:43:5b:da:
00:f8:4f:75:ac:c4:1e:a7:e0:08:0b:6e:77:53:7f:f2:ee:9b:
6d:27:10:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 23:01:39 2025 by rpki-client