Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCQU--P_Iyqsxi5z3cN-J1KC7Uo.cer
File: VCQU--P_Iyqsxi5z3cN-J1KC7Uo.cer (raw, json)
Hash identifier: ok6UbhAOdqt6Doqq58Hwoft1+lYMaEF/fRZV+3t7vKw=
Subject key identifier: 54:24:14:FB:E3:FF:23:2A:AC:C6:2E:73:DD:C3:7E:27:52:82:ED:4A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026F2D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917295C/1F2074C8968211EBA399115BC4F9AE02/VCQU--P_Iyqsxi5z3cN-J1KC7Uo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917295C/1F2074C8968211EBA399115BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 25 Oct 2025 14:30:22 +0000
Certificate not after: Wed 30 Dec 2026 00:00:00 +0000
Subordinate resources: IP: 103.143.158.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 10 Nov 2025 09:20:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159533 (0x26f2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 25 14:30:22 2025 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=A917295C, serialNumber=542414FBE3FF232AACC62E73DDC37E275282ED4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:13:9d:51:51:b5:16:30:8c:e3:5b:a8:44:06:
ed:92:8c:d8:53:c5:1a:d7:6a:59:e6:aa:dd:0b:f3:
09:4b:e9:7e:fd:c7:b4:26:9c:0a:08:e1:2c:a6:d8:
44:1f:e3:65:ab:f8:dd:f3:f8:2f:db:7e:09:ea:a2:
a6:60:ea:36:0d:8c:04:78:4d:d7:fd:8e:07:73:6c:
7c:5b:0a:60:06:a8:be:4b:5a:2c:7e:77:03:79:dc:
58:77:20:46:36:fa:50:ae:39:dc:85:7f:14:fc:90:
ef:c7:df:3d:f9:c0:f8:c5:bb:c4:ed:d2:ba:5b:6b:
63:36:f2:3e:ac:e7:be:b8:99:0a:24:0d:74:58:46:
fe:a0:99:26:68:39:ca:5c:67:50:86:9e:f6:72:c4:
fb:2d:23:e0:f8:2d:d7:20:d7:17:e3:38:5f:56:5b:
d1:cf:8d:25:2d:95:a1:2a:05:b7:5a:52:88:c6:7d:
15:b1:ff:71:4a:64:68:12:a6:ed:01:45:ab:16:01:
1d:7f:41:9b:be:59:79:69:1e:cf:fa:9b:5e:a8:4a:
9d:be:43:93:2c:e2:12:a2:28:59:64:25:93:35:03:
69:dc:2e:08:31:e5:e8:b0:27:fb:2b:90:0c:1b:a7:
90:cd:ad:ac:3f:3d:cd:dd:bd:2d:53:b8:cf:bc:e7:
e1:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:24:14:FB:E3:FF:23:2A:AC:C6:2E:73:DD:C3:7E:27:52:82:ED:4A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917295C/1F2074C8968211EBA399115BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917295C/1F2074C8968211EBA399115BC4F9AE02/VCQU--P_Iyqsxi5z3cN-J1KC7Uo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.143.158.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:bb:12:b4:5b:b1:17:1f:6b:fa:eb:b2:9e:e6:ce:d8:a0:83:
f5:3f:ab:b6:ac:f3:47:79:76:e6:ad:f4:f4:e2:35:5f:34:5b:
c9:aa:11:62:a5:16:12:ec:a9:68:d3:a2:e6:4b:e2:c3:8d:79:
6f:ec:93:b4:37:24:a0:12:ed:f1:91:a7:21:69:2a:8a:73:16:
9d:56:e8:c1:06:20:e8:0d:c5:89:79:a4:49:7d:57:cf:22:2e:
48:3e:06:69:bf:ed:37:87:69:b8:98:5c:8e:3b:4e:54:fb:c3:
89:3e:cc:7d:e6:70:bd:5a:79:f2:9c:a1:f3:a9:49:91:07:40:
ca:92:84:64:f0:7d:a9:45:da:19:b3:d5:e4:77:3f:aa:15:18:
c9:36:d9:46:2c:b4:7b:dd:fe:d2:b2:e6:19:ed:85:c7:6c:88:
b2:34:fd:43:d0:3a:81:27:b0:ef:6c:ea:90:0c:43:be:47:fd:
41:3c:59:29:dc:94:49:a6:37:b4:75:fd:d4:ed:41:fb:b5:41:
55:27:6d:37:fc:7a:e0:ef:13:17:57:52:86:e4:b9:6a:dc:b7:
5d:28:b3:ac:07:9f:cc:39:4c:36:54:aa:05:db:29:b2:a0:4c:
d1:11:d7:da:42:b2:f8:63:05:fb:aa:ae:67:e3:15:e6:ac:4b:
08:8c:8c:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 3 11:17:27 2025 by rpki-client