Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fysutbj095VolfExLY3MQiOcmmI.cer
File: fysutbj095VolfExLY3MQiOcmmI.cer (raw, json)
Hash identifier: JCnxE1t4HbOCEeR7YKNAM5BCoF1Oym+pW7WM8WYNylw=
Subject key identifier: 7F:2B:2E:B5:B8:F4:F7:95:68:95:F1:31:2D:8D:CC:42:23:9C:9A:62
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023F92
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A0D57/9FD2C9D0A91811E98C3EC24FC4F9AE02/fysutbj095VolfExLY3MQiOcmmI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A0D57/9FD2C9D0A91811E98C3EC24FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 17 Apr 2025 17:04:41 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 59342
IP: 103.229.104.0/22
IP: 103.252.176.0/22
IP: 2400:bd40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 20:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147346 (0x23f92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 17 17:04:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A91A0D57, serialNumber=7F2B2EB5B8F4F7956895F1312D8DCC42239C9A62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:83:8b:b2:26:ee:a9:4e:9a:d4:e6:e0:99:b3:
20:bc:2d:82:23:f2:02:a4:fd:bf:5d:e0:74:a3:9e:
49:2f:a6:b5:a7:bc:e4:34:9d:b0:a5:27:54:d1:e3:
7b:72:2d:a8:21:8b:c4:e8:66:a5:d6:04:0e:4c:7c:
e1:b6:7f:62:ef:42:77:0f:10:87:9e:b1:75:66:f7:
9d:24:7e:a4:50:40:f2:4e:eb:fa:6c:1d:f7:bc:bb:
35:3b:10:1c:16:48:9f:90:9e:84:a5:cf:8b:f6:0e:
d5:b3:30:f8:23:0e:2b:bb:83:9d:2f:ef:be:f8:81:
54:3d:7f:aa:5d:29:86:d7:31:f2:6b:4b:02:02:12:
7f:04:73:3e:57:82:03:71:09:0e:43:48:6b:0a:81:
b0:9e:01:c4:95:03:5c:25:cd:30:2e:8c:fa:14:44:
96:b0:44:d7:a4:19:4b:af:f3:3d:05:98:f2:91:a2:
f3:80:79:ff:dd:25:2e:38:90:2a:5e:bd:ec:70:64:
cd:b0:b5:7e:d4:01:16:33:35:6b:42:13:f3:67:4f:
90:c1:53:ff:c2:02:45:55:65:bb:a7:3f:89:8c:3c:
cb:9a:bf:d3:e6:09:23:7f:32:fb:37:45:23:94:b0:
b4:55:d3:69:75:b2:e3:68:58:b4:19:b0:08:a0:3a:
49:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:2B:2E:B5:B8:F4:F7:95:68:95:F1:31:2D:8D:CC:42:23:9C:9A:62
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A0D57/9FD2C9D0A91811E98C3EC24FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A0D57/9FD2C9D0A91811E98C3EC24FC4F9AE02/fysutbj095VolfExLY3MQiOcmmI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59342
sbgp-ipAddrBlock: critical
IPv4:
103.229.104.0/22
103.252.176.0/22
IPv6:
2400:bd40::/32
Signature Algorithm: sha256WithRSAEncryption
c1:be:d7:f6:50:e0:23:70:17:18:de:0c:98:57:7b:c0:a3:5b:
07:9d:e7:2a:95:29:e2:e8:0e:2f:80:da:b2:b4:08:2d:59:66:
c4:b9:61:57:1f:8e:33:9c:13:8b:99:57:c7:0f:df:ac:f4:3a:
c2:53:d2:ba:a8:61:e2:1f:20:50:ec:bb:44:71:1f:1f:4c:9c:
bd:70:a8:e2:ae:ec:34:88:22:2f:c7:18:c6:66:1b:24:af:9f:
61:2a:00:3b:75:e7:af:b5:17:65:70:61:4c:02:d5:8c:15:61:
2c:03:c9:d9:2c:6d:ac:56:ee:f7:14:71:11:94:d8:03:d7:f1:
26:27:bd:4f:ff:32:3a:dd:42:a8:41:59:40:34:62:25:3a:f3:
c9:b0:5d:1f:e0:b1:cc:30:c2:5c:12:65:ab:0e:f8:03:51:bf:
20:da:47:ce:94:fc:23:c0:d8:b3:9a:92:01:f8:1d:4f:64:87:
ba:d3:c4:5e:02:8f:d2:92:52:21:56:eb:80:10:77:ab:27:28:
8d:26:63:bf:a3:11:74:e6:57:db:a6:8a:17:ee:bc:9e:fa:a9:
ad:c6:61:d2:90:01:fb:57:98:d6:df:b4:15:34:b9:5b:92:82:
f5:ed:0a:d0:ae:66:7b:fe:15:36:bf:41:06:66:2e:8b:b5:28:
20:86:b0:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 22:56:09 2025 by rpki-client