Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer
File: ER6YG60wGDD3weWQzBqotIImDtg.cer (raw, json)
Hash identifier: 1uV+i2K1fegriNM/leOeLnbEvuJGoUpH6LxA6pEouIU=
Subject key identifier: 11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024290
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 30 Apr 2025 05:01:09 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 55795
IP: 101.128.4.0/22
IP: 103.9.16.0/22
IP: 202.52.46.0/24
IP: 2401:5b00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 11 May 2025 18:51:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148112 (0x24290)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 30 05:01:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A91F0FE2, serialNumber=111E981BAD301830F7C1E590CC1AA8B482260ED8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f3:95:cc:bc:d4:1c:22:4e:6f:96:38:8b:5e:
c6:a8:f7:25:fa:76:84:f1:31:d5:fd:12:e4:b3:62:
b4:a6:5c:72:ab:18:ab:72:b2:c1:ec:a6:15:22:04:
26:e9:cb:03:85:cc:07:53:83:76:6e:e1:90:49:31:
c6:8b:0e:7f:a2:70:b4:f9:96:bb:13:6f:04:e5:b7:
52:80:64:e8:13:57:20:39:70:61:8f:58:83:2e:9f:
c2:f8:56:d8:b9:29:40:07:37:ad:c1:75:f0:cc:9d:
01:cc:ff:22:20:a8:e4:96:e6:63:05:47:62:6c:f5:
82:05:bd:eb:b9:d3:1e:5d:1f:f8:33:47:14:d5:04:
d6:d9:0a:22:21:a0:14:e6:8e:b3:07:98:b7:5d:b8:
67:7f:23:00:8d:e6:de:63:7f:82:b1:33:6b:e5:42:
30:be:d8:32:32:da:32:0a:c9:99:13:7b:e3:88:e2:
25:c3:63:cb:cb:80:40:90:4d:4e:cc:93:1e:1f:cd:
04:43:29:a4:29:62:d5:bf:f0:6a:d7:0b:3b:b3:e4:
63:e3:1c:1b:9d:ea:9f:31:f7:ec:da:0f:b0:c5:f7:
0f:98:be:f6:ba:7b:16:92:78:cf:0d:8a:eb:d9:fe:
cd:27:54:06:40:0e:84:e6:80:10:7e:1d:b8:ac:6e:
6e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55795
sbgp-ipAddrBlock: critical
IPv4:
101.128.4.0/22
103.9.16.0/22
202.52.46.0/24
IPv6:
2401:5b00::/32
Signature Algorithm: sha256WithRSAEncryption
c0:72:a3:e0:64:13:1b:7c:77:98:e5:69:e6:0e:57:10:13:7f:
aa:77:68:4f:df:8a:2e:db:1d:75:d1:c1:a5:e4:89:1a:a7:c7:
fc:1a:cc:ff:20:d3:5c:e6:83:c4:2a:f6:ac:cf:e3:c8:9f:83:
2e:74:d3:fd:9e:df:b7:a0:e9:0a:c2:c7:e0:6f:03:eb:fc:f7:
a3:3d:cf:4c:2e:78:b7:00:c0:b3:ab:b1:3b:f6:03:21:2d:56:
c5:84:da:b9:99:8b:42:6c:c1:b7:2f:f2:54:98:b8:84:e7:b2:
b5:57:17:7c:bc:39:f6:67:11:7d:3d:66:d8:07:f5:a7:df:33:
d8:e8:e8:eb:f4:2e:06:63:74:f7:96:35:43:01:26:a5:07:fa:
65:cc:af:88:da:90:be:ba:e7:4a:91:be:b8:e8:90:a8:08:89:
4a:3d:02:a4:55:66:0b:7b:6a:eb:3f:db:b5:43:71:01:35:55:
a1:bf:93:c9:d3:93:f7:08:e4:ff:be:01:0b:46:fb:e9:a6:d4:
92:e0:fa:c0:73:36:cf:9c:4d:6f:d6:1a:05:6a:82:cf:57:6f:
13:fe:56:6a:0f:11:b5:c6:61:ce:1b:5e:22:e4:1e:c4:01:21:
a6:b4:ee:39:85:0b:d1:10:97:c9:70:84:b2:58:20:8f:ab:78:
48:e0:f3:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 21:42:01 2025 by rpki-client