Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M-fyZhXT9AcyxTv4c-J8nFLhLc0.cer
File: M-fyZhXT9AcyxTv4c-J8nFLhLc0.cer (raw, json)
Hash identifier: 8lVV8xPa8Bt9/yS42q6aXfC20nhyiH23d8s+c34xMw0=
Subject key identifier: 33:E7:F2:66:15:D3:F4:07:32:C5:3B:F8:73:E2:7C:9C:52:E1:2D:CD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0241DE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C5413/DF99A1E87BE811EB9A092342C4F9AE02/M-fyZhXT9AcyxTv4c-J8nFLhLc0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C5413/DF99A1E87BE811EB9A092342C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 28 Apr 2025 22:51:22 +0000
Certificate not after: Thu 28 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 137480
IP: 2402:8440::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 11 May 2025 18:51:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147934 (0x241de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 28 22:51:22 2025 GMT
Not After : Aug 28 00:00:00 2025 GMT
Subject: CN=A91C5413, serialNumber=33E7F26615D3F40732C53BF873E27C9C52E12DCD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:16:54:a9:9e:8b:9f:f3:3d:14:0e:61:eb:34:
33:ac:15:80:a4:70:c0:3d:ac:26:0b:a7:3e:35:01:
c1:b7:09:6b:53:17:ce:4a:81:73:63:06:e1:3e:a5:
cb:37:57:3c:77:2c:d8:7c:2a:3a:a2:9f:11:62:8c:
32:65:64:2c:99:33:b5:ec:7e:97:96:90:0e:8f:8b:
c8:15:1c:8e:ac:50:c6:9f:dd:3d:47:d6:b6:76:50:
b5:c6:e0:a2:9a:9f:80:89:9f:32:a6:49:92:ee:1b:
76:5f:2c:bc:26:ce:b9:f3:c9:fd:23:7d:36:25:44:
fe:42:cb:c2:16:aa:5b:46:ca:11:6b:90:b4:f2:c7:
6d:e6:26:c8:56:f2:a1:b0:e6:33:c8:b4:c1:66:95:
43:33:fb:bb:37:75:0e:54:eb:91:b8:08:1f:3f:d1:
52:2f:49:8b:07:4d:65:3b:70:30:5e:2c:7e:f1:15:
36:a6:81:9c:27:e8:5a:47:29:20:bd:f1:c7:3c:8e:
f4:d8:0d:ed:12:89:ae:70:e5:75:44:4a:3d:0d:8d:
45:d2:8b:7f:88:ad:13:b0:68:8a:ad:de:05:1b:ea:
91:b5:9e:33:88:ee:05:c3:89:1d:0e:ba:4d:d1:7d:
63:5c:6e:78:6b:3d:ee:78:a9:7a:3d:e4:df:71:ca:
d7:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:E7:F2:66:15:D3:F4:07:32:C5:3B:F8:73:E2:7C:9C:52:E1:2D:CD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C5413/DF99A1E87BE811EB9A092342C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C5413/DF99A1E87BE811EB9A092342C4F9AE02/M-fyZhXT9AcyxTv4c-J8nFLhLc0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137480
sbgp-ipAddrBlock: critical
IPv6:
2402:8440::/32
Signature Algorithm: sha256WithRSAEncryption
47:63:30:4e:c1:cd:bb:a0:a3:0a:50:7c:99:17:f9:48:7a:bd:
d5:23:03:9b:4c:f6:6c:0e:20:84:81:4f:e5:0d:01:3f:fa:41:
13:95:13:20:9e:12:ad:b2:21:57:28:55:ed:d0:a8:c3:2b:75:
de:0f:31:1e:3b:40:e8:4e:cb:d9:2a:d0:1a:3a:b2:85:35:3c:
29:08:94:1e:a1:32:10:c7:02:85:44:e8:c4:17:e4:95:68:93:
67:23:0e:c3:fe:16:31:6c:b7:dd:aa:08:69:5a:28:a0:ed:9d:
8d:71:09:b5:80:19:86:7b:24:dd:ef:d9:59:15:42:c0:76:f6:
9d:bc:8c:b1:d5:99:03:21:11:75:73:4b:35:8f:46:fa:44:bf:
7b:3d:38:43:1e:6f:16:9a:8c:50:4b:d6:b2:01:74:c4:f3:a7:
7b:a5:59:45:20:bd:2d:15:78:38:59:18:3d:07:08:8a:28:71:
cc:08:a1:10:a0:c9:9b:af:a3:dc:b1:4b:e7:b7:e6:a5:44:df:
99:d5:e9:7c:c3:66:2e:dc:14:2e:6e:03:43:a1:e0:6c:e8:98:
a4:c1:e0:80:7d:46:73:81:6f:8a:21:fa:79:58:b8:4f:8c:07:
b1:79:c3:52:66:32:9a:b1:54:4a:70:e4:2a:ef:b3:0c:31:63:
f6:4d:1a:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 21:43:57 2025 by rpki-client