Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vyfu6NouLMefq6Da0ZyISCvRWdw.cer
File: Vyfu6NouLMefq6Da0ZyISCvRWdw.cer (raw, json)
Hash identifier: MDlglAPJWJnNX36103UU03qhLp3VqLKsAC7a4kNYzqw=
Subject key identifier: 57:27:EE:E8:DA:2E:2C:C7:9F:AB:A0:DA:D1:9C:88:48:2B:D1:59:DC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023BA4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9125C3D/F8029A46A5CC11ECB75EC52DC4F9AE02/Vyfu6NouLMefq6Da0ZyISCvRWdw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9125C3D/F8029A46A5CC11ECB75EC52DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Apr 2025 14:01:13 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 136964
IP: 103.183.142.0/23
IP: 2001:df0:8840::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 17:46:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146340 (0x23ba4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Apr 1 14:01:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A9125C3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7a:b6:a8:f4:4c:18:9d:3b:8b:64:95:4e:59:
73:f2:87:a7:02:8d:ef:4d:1f:ff:ce:64:72:7d:7e:
39:1e:75:ce:d8:d4:3b:06:d3:c7:04:17:95:61:40:
cf:95:50:42:16:f1:32:44:3b:a5:e6:52:44:df:4d:
7d:05:75:2f:12:ca:dc:49:f3:f8:fc:f9:75:1e:66:
dc:2d:a5:96:dc:0f:57:cd:2b:65:78:09:17:1d:16:
fa:91:34:00:5c:ac:e0:78:98:04:e3:7d:c5:2f:3a:
f8:e8:17:24:e9:32:27:9c:4f:d5:28:be:40:a4:cb:
63:5f:3b:51:5d:f0:e3:63:fc:ec:de:2e:c4:b3:ec:
10:17:64:12:c7:8d:78:2c:bd:a1:ee:41:14:ef:29:
eb:5f:f2:a2:ef:0c:52:04:53:63:84:4b:5c:a9:19:
a8:8e:6e:65:2d:dd:34:cd:9c:a5:6c:20:ea:6c:f3:
ea:5c:cd:35:60:2a:66:b5:5a:92:59:cb:46:1f:02:
d3:29:b3:55:06:dd:1a:c3:1e:ec:84:d7:c5:a4:63:
9c:5b:c3:22:7f:a1:f5:f5:9b:5a:4a:0e:e4:4d:41:
4b:0a:58:db:90:68:e8:c5:83:bf:4c:6f:13:ab:f2:
1c:f6:14:62:11:2d:46:f1:2e:5e:39:6a:92:79:8c:
6d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:27:EE:E8:DA:2E:2C:C7:9F:AB:A0:DA:D1:9C:88:48:2B:D1:59:DC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/F8029A46A5CC11ECB75EC52DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/F8029A46A5CC11ECB75EC52DC4F9AE02/Vyfu6NouLMefq6Da0ZyISCvRWdw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136964
sbgp-ipAddrBlock: critical
IPv4:
103.183.142.0/23
IPv6:
2001:df0:8840::/48
Signature Algorithm: sha256WithRSAEncryption
71:3b:96:f3:59:dc:db:c4:0c:cd:ac:62:00:19:f4:52:c8:de:
50:4a:38:4d:a7:e0:30:22:74:e8:8b:b5:c4:6f:33:64:22:c3:
3e:4e:cf:89:90:9e:84:43:0a:6a:98:71:37:49:f5:12:fe:19:
7a:fd:79:9b:ea:30:00:c9:e1:77:7d:3b:eb:9e:f0:ba:55:ca:
77:a0:8f:3a:00:d4:57:9f:62:76:40:42:8e:20:d0:c5:83:b7:
25:24:06:f7:0b:65:e8:c6:26:38:16:0b:7e:e1:24:42:7c:1c:
98:61:ec:00:78:5f:1e:11:8b:85:68:ec:44:a0:51:f8:14:a1:
04:01:8a:9c:21:37:f6:45:e2:2b:bf:c9:39:0d:62:39:c3:94:
2f:e8:d4:42:f2:81:42:f4:86:e4:90:ce:46:47:2b:bc:17:36:
22:20:9d:4c:22:db:31:28:cc:51:d0:75:79:74:3a:cf:5a:fb:
7a:45:b6:42:c1:10:ae:7c:e1:85:57:2f:dd:24:e2:c4:ea:e8:
f5:f2:ea:3c:c4:21:9d:c0:b0:ae:8f:c3:9f:4f:6c:f1:79:a2:
d0:27:4c:1b:76:9e:35:fd:5a:f2:99:56:6b:27:1b:36:c3:e1:
c9:8d:8e:78:b3:97:27:07:04:c5:89:77:b5:f1:42:b8:ad:b0:
36:be:57:be
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAjukMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDQwMTE0MDExM1oXDTI2MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjVDM0QxMTAvBgNVBAUTKDU3MjdFRUU4REEyRTJDQzc5RkFCQTBE
QUQxOUM4ODQ4MkJEMTU5REMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDTerao9EwYnTuLZJVOWXPyh6cCje9NH//OZHJ9fjkedc7Y1DsG08cEF5VhQM+V
UEIW8TJEO6XmUkTfTX0FdS8SytxJ8/j8+XUeZtwtpZbcD1fNK2V4CRcdFvqRNABc
rOB4mATjfcUvOvjoFyTpMiecT9UovkCky2NfO1Fd8ONj/OzeLsSz7BAXZBLHjXgs
vaHuQRTvKetf8qLvDFIEU2OES1ypGaiObmUt3TTNnKVsIOps8+pczTVgKma1WpJZ
y0YfAtMps1UG3RrDHuyE18WkY5xbwyJ/ofX1m1pKDuRNQUsKWNuQaOjFg79MbxOr
8hz2FGIRLUbxLl45apJ5jG2NAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUVyfu6Nou
LMefq6Da0ZyISCvRWdwwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTI1QzNEL0Y4MDI5QTQ2QTVDQzExRUNCNzVFQzUyREM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyNUMzRC9GODAyOUE0NkE1Q0MxMUVDQjc1RUM1MkRDNEY5QUUwMi9WeWZ1Nk5v
dUxNZWZxNkRhMFp5SVNDdlJXZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhcEMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ7eOMA8EAgAC
MAkDBwAgAQ3wiEAwDQYJKoZIhvcNAQELBQADggEBAHE7lvNZ3NvEDM2sYgAZ9FLI
3lBKOE2n4DAidOiLtcRvM2Qiwz5Oz4mQnoRDCmqYcTdJ9RL+GXr9eZvqMADJ4Xd9
O+ue8LpVynegjzoA1FefYnZAQo4g0MWDtyUkBvcLZejGJjgWC37hJEJ8HJhh7AB4
Xx4Ri4Vo7ESgUfgUoQQBipwhN/ZF4iu/yTkNYjnDlC/o1ELygUL0huSQzkZHK7wX
NiIgnUwi2zEozFHQdXl0Os9a+3pFtkLBEK584YVXL90k4sTq6PXy6jzEIZ3AsK6P
w59PbPF5otAnTBt2njX9WvKZVmsnGzbD4cmNjnizlycHBMWJd7XxQritsDa+V74=
-----END CERTIFICATE-----
Generated at Fri Apr 4 19:42:02 2025 by rpki-client