Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vnZO_vU9hpxE9gcJlhE-ChgYQRs.cer
File: vnZO_vU9hpxE9gcJlhE-ChgYQRs.cer (raw, json)
Hash identifier: FfzgwWLmG43F3r6C8qHB7n4Utjr+pZtqhXuma7a1/Qw=
Subject key identifier: BE:76:4E:FE:F5:3D:86:9C:44:F6:07:09:96:11:3E:0A:18:18:41:1B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025400
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9113C02/4C406FB6405611E7AF041A35C4F9AE02/vnZO_vU9hpxE9gcJlhE-ChgYQRs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9113C02/4C406FB6405611E7AF041A35C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 07 Jul 2025 08:51:37 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 133605
IP: 2401:2cc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 30 Jul 2025 00:40:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152576 (0x25400)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 7 08:51:37 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A9113C02, serialNumber=BE764EFEF53D869C44F6070996113E0A1818411B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:81:72:b4:30:bf:8d:0e:c5:a6:8b:1a:43:9f:
a5:34:bb:c7:c2:5b:1a:d9:10:b2:93:32:4c:64:bd:
6a:8f:23:54:30:55:37:23:dd:f7:77:01:51:54:db:
db:2b:4b:6b:e6:7f:26:ba:3f:1b:c3:9d:d6:ac:85:
81:ff:5c:b6:b2:6b:3c:90:57:ed:eb:85:aa:47:e0:
d4:98:58:43:7e:bc:95:cd:9c:ed:77:c1:e9:1a:5e:
2a:2b:da:03:6c:39:97:6b:0c:57:25:22:01:61:68:
f1:93:d0:f2:6f:a6:f7:c0:2d:d8:63:f1:75:87:d4:
ef:43:ff:c8:00:04:34:ac:c4:1f:d7:a6:4e:6b:73:
ee:7a:32:b4:f0:3e:02:ef:29:fe:69:c9:09:77:8b:
f1:47:74:d0:04:a9:eb:26:72:92:10:f7:c1:e4:c0:
cf:b1:00:d9:d0:71:66:3a:5b:cb:2e:0d:aa:b0:3f:
5e:29:c6:ca:56:e4:dd:52:e2:55:a8:39:ca:48:e0:
51:fe:a1:2f:f8:f5:54:0f:4b:e7:be:84:bb:c3:f6:
a1:c9:59:ba:ba:57:3f:3f:63:eb:1d:00:2b:e8:04:
60:37:22:08:89:56:e6:b5:3e:fe:f6:0e:9a:fa:67:
6e:c7:12:ba:25:e1:6a:b7:cc:08:2b:ae:bd:34:03:
2d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:76:4E:FE:F5:3D:86:9C:44:F6:07:09:96:11:3E:0A:18:18:41:1B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9113C02/4C406FB6405611E7AF041A35C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9113C02/4C406FB6405611E7AF041A35C4F9AE02/vnZO_vU9hpxE9gcJlhE-ChgYQRs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133605
sbgp-ipAddrBlock: critical
IPv6:
2401:2cc0::/32
Signature Algorithm: sha256WithRSAEncryption
b9:f8:c4:63:60:6a:bc:a9:71:d6:46:47:f5:b7:c6:8f:46:91:
d1:2d:68:1f:c5:7f:66:e7:f6:f2:96:1a:ca:2b:57:78:9b:ff:
9b:9e:38:3b:58:6a:96:5e:3b:2b:dd:54:7b:db:37:35:99:b2:
b9:67:73:40:48:16:8b:69:d6:3d:93:ef:48:c3:a7:f5:bf:a4:
50:cd:48:ff:45:91:60:67:4a:b6:21:61:2c:71:29:31:2f:b5:
21:1c:dc:6a:c1:01:fc:ee:03:24:a4:4f:17:01:fc:2a:6c:ac:
20:38:23:fc:81:81:d4:30:5c:2e:f5:0a:93:0e:67:68:33:27:
34:8b:6b:4e:3d:3b:e9:9e:0a:76:88:a6:76:29:62:b7:41:86:
1e:7e:b5:f4:7c:ce:44:2c:9f:55:4a:6e:e0:95:7a:09:a4:55:
d9:c0:8e:70:c6:b6:50:95:07:8a:f5:a3:0e:72:9f:be:c7:9e:
87:03:a5:9a:05:4f:b2:e2:36:7d:ab:29:02:6e:40:e5:fe:7f:
8e:7c:ec:78:e3:4d:6c:c1:94:37:3e:c1:40:44:90:9b:0c:67:
95:e6:85:c2:9a:c9:b1:7f:2e:1b:fb:e7:37:b8:5e:90:38:51:
23:af:28:57:b9:54:d8:64:10:a3:bc:50:2b:12:d4:bd:4d:7d:
63:2d:18:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:32:10 2025 by rpki-client