Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fLDlglEBxmVEPyz6sZ6E0ad5dZc.cer
File: fLDlglEBxmVEPyz6sZ6E0ad5dZc.cer (raw, json)
Hash identifier: X546gglLz68DgI9aCBfQ7My/MpyFkjzthmj9RP4FDdM=
Subject key identifier: 7C:B0:E5:82:51:01:C6:65:44:3F:2C:FA:B1:9E:84:D1:A7:79:75:97
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023BE7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Apr 2025 23:21:55 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 103.136.124.0/22
IP: 2404:92c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 20:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146407 (0x23be7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 1 23:21:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A9187E80, serialNumber=7CB0E5825101C665443F2CFAB19E84D1A7797597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:32:bc:ca:12:30:56:8d:e6:5a:bd:37:ff:01:
8d:21:08:3d:53:ed:ca:b2:9c:9d:94:80:f9:3f:3e:
c9:b7:58:0b:5d:f5:11:cc:bf:b6:91:b8:d6:4d:df:
77:eb:f3:74:cf:aa:ed:60:08:4d:e3:23:d7:4d:f8:
b9:1f:ed:35:b7:74:f8:d8:b3:24:7a:38:31:42:1e:
bc:b8:56:4a:0d:7a:46:99:b3:59:2e:7d:ae:f0:24:
5f:38:a6:3d:a3:bb:33:8b:10:8b:63:c2:24:f6:29:
2f:d0:c9:6a:1f:fb:64:24:8f:11:f2:b0:74:82:f2:
db:71:7c:f7:57:0a:f9:d7:6a:29:4c:a9:04:72:22:
a1:d4:78:4b:76:d5:b8:62:d0:1c:01:81:22:e9:7d:
e2:38:94:9d:02:e0:f2:ac:b2:14:d9:3f:6f:6a:0d:
95:39:69:8e:95:9d:b9:32:33:ce:f5:8e:30:fd:f4:
40:ed:22:f3:92:77:3c:f5:07:84:16:8f:2d:71:50:
68:f7:ad:67:76:2e:67:1c:2a:12:2e:7d:09:d4:12:
db:c9:75:bd:6f:a1:10:1b:8d:96:82:ae:a3:20:34:
42:14:f4:cc:e5:86:5a:2b:e3:84:37:12:cb:4c:8e:
13:d1:bd:59:cc:67:df:ed:66:71:42:40:0d:74:03:
69:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:B0:E5:82:51:01:C6:65:44:3F:2C:FA:B1:9E:84:D1:A7:79:75:97
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.124.0/22
IPv6:
2404:92c0::/32
Signature Algorithm: sha256WithRSAEncryption
39:dc:cc:6d:80:2b:30:30:ad:6d:67:cd:7a:32:27:90:83:ae:
db:2c:12:70:c2:99:cc:00:e7:7c:f2:6f:88:2c:46:45:b2:67:
4c:db:b5:f1:0f:f4:bd:06:32:93:ad:62:11:30:a9:54:27:71:
f9:1e:f4:c6:36:e1:01:98:9a:b5:16:0f:93:03:5c:f3:18:9e:
7d:47:ea:c8:76:e6:39:fc:67:e9:57:ae:c7:93:dd:d7:3a:19:
b9:52:53:3f:b7:fc:bb:24:9f:f5:38:32:2d:ca:ef:56:ce:85:
41:4e:e3:16:73:9c:87:f9:59:0e:26:81:51:65:5a:51:7b:da:
26:2b:1c:90:6b:f4:bd:03:72:13:86:ba:08:02:79:b1:91:10:
1b:03:87:ef:4c:b3:50:05:6d:71:e1:b7:de:4a:31:92:a9:89:
6e:07:1e:6b:20:50:23:a3:4d:68:e1:ed:28:ad:0b:96:d4:87:
9b:57:ec:1b:0e:24:32:6d:a3:e3:09:6d:56:07:ff:df:22:db:
17:e7:47:20:e3:32:db:66:5c:23:c5:21:00:4f:72:03:70:53:
31:9f:c9:58:8a:22:f3:4a:5e:92:3c:98:26:5b:8a:05:38:44:
72:aa:9f:ec:02:71:f3:ac:17:4f:d9:99:d7:71:76:64:94:ef:
e7:f8:9e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 22:37:38 2025 by rpki-client