Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTOnxXv02x5Tj5534LSGi4-QxYI.cer
File: VTOnxXv02x5Tj5534LSGi4-QxYI.cer (raw, json)
Hash identifier: pwLMC3xxZS0zkffpqjX6rrYZUruG4ba6knVUPwwccFk=
Subject key identifier: 55:33:A7:C5:7B:F4:DB:1E:53:8F:9E:77:E0:B4:86:8B:8F:90:C5:82
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026EB4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/VTOnxXv02x5Tj5534LSGi4-QxYI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 23 Oct 2025 07:50:26 +0000
Certificate not after: Wed 30 Dec 2026 00:00:00 +0000
Subordinate resources: IP: 45.125.16.0/22
IP: 103.242.132.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 31 Oct 2025 18:41:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159412 (0x26eb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 23 07:50:26 2025 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=A91276FA, serialNumber=5533A7C57BF4DB1E538F9E77E0B4868B8F90C582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:93:5d:3e:d4:2d:88:9b:96:21:eb:f7:b8:c7:
cd:4a:0b:f2:1a:6b:6f:18:ff:ea:c1:2a:39:39:df:
94:49:c0:b2:9e:a0:ee:37:45:ba:2a:95:d5:64:eb:
c6:0f:27:3b:d0:41:67:78:b7:65:fc:8f:5c:d0:66:
51:1f:47:38:67:17:43:84:79:a8:09:0b:c5:a2:57:
84:b3:1c:b9:ff:2e:9d:fd:ed:23:fa:95:0a:f5:5b:
e2:08:6c:19:ec:71:7b:05:4d:0d:57:0f:f8:93:60:
60:f6:d5:40:99:bf:3b:80:78:d9:f8:e3:8b:e3:3f:
6a:8b:dd:e3:9e:0d:1d:30:b0:14:4d:90:7c:3a:1f:
e8:66:06:92:bb:e3:c3:3a:a4:bf:3c:03:e4:b8:ea:
cb:12:85:7c:4e:da:49:d6:21:3b:f0:ab:3e:9f:ef:
f4:95:c6:cc:42:7d:54:a4:cf:d4:61:22:12:4d:ba:
ee:37:70:c6:3a:30:9e:0c:e5:e0:fd:c7:47:58:bc:
3f:91:35:06:fb:1c:05:8d:0b:68:35:44:c9:19:36:
72:15:06:28:d9:86:71:43:06:d9:7d:22:32:03:03:
ba:bd:c0:c5:3a:91:ad:29:01:c9:0c:f8:df:3d:c8:
e1:9e:a3:83:ab:5f:5d:21:2c:9f:7f:51:e6:8c:ff:
27:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:33:A7:C5:7B:F4:DB:1E:53:8F:9E:77:E0:B4:86:8B:8F:90:C5:82
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/VTOnxXv02x5Tj5534LSGi4-QxYI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.125.16.0/22
103.242.132.0/22
Signature Algorithm: sha256WithRSAEncryption
11:35:e4:43:ca:8a:84:a0:3e:32:36:06:74:67:96:5c:de:3a:
68:ec:f4:e8:af:7d:83:55:ec:4b:1d:b4:d7:ac:ea:ca:fe:82:
7c:c1:86:ab:3e:0a:8c:cb:b5:6e:1f:9b:ab:65:63:d6:2f:9c:
ae:c5:0b:55:3d:9f:d2:29:47:1c:b1:c1:ff:3d:2f:76:bf:18:
86:ff:db:fe:90:2b:1d:bf:2d:4a:3d:18:89:e2:61:2b:07:a1:
38:4b:42:62:28:15:f0:f8:59:22:bf:64:3d:e3:30:c0:94:39:
cf:73:82:7d:20:ce:fe:26:ef:a0:02:63:f5:80:e0:ba:ad:c0:
ae:6f:4e:ed:92:1b:96:53:e2:7d:ad:ee:e7:8a:66:35:79:8e:
3b:82:4f:7f:a3:aa:cb:a7:c9:49:43:55:2a:a3:49:67:55:28:
7b:d3:e1:8a:38:5d:08:5d:fd:20:45:01:97:03:8f:dd:f0:f2:
83:b9:34:d6:f6:7e:a3:dd:60:87:46:5b:81:05:ad:ff:0b:99:
6b:ac:02:b1:ea:06:95:05:2c:a5:32:ef:c0:ad:12:4b:29:1f:
1d:0e:8b:a7:e6:fa:43:1a:a3:4f:89:4d:83:79:f6:d2:e1:e4:
43:f0:fe:39:fd:d3:19:e3:57:94:0b:9b:aa:14:d1:a6:6f:b1:
18:76:94:d2
-----BEGIN CERTIFICATE-----
MIIGBDCCBOygAwIBAgIDAm60MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MTAyMzA3NTAyNloXDTI2MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjc2RkExMTAvBgNVBAUTKDU1MzNBN0M1N0JGNERCMUU1MzhGOUU3
N0UwQjQ4NjhCOEY5MEM1ODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC/k10+1C2Im5Yh6/e4x81KC/Iaa28Y/+rBKjk535RJwLKeoO43RboqldVk68YP
JzvQQWd4t2X8j1zQZlEfRzhnF0OEeagJC8WiV4SzHLn/Lp397SP6lQr1W+IIbBns
cXsFTQ1XD/iTYGD21UCZvzuAeNn444vjP2qL3eOeDR0wsBRNkHw6H+hmBpK748M6
pL88A+S46ssShXxO2knWITvwqz6f7/SVxsxCfVSkz9RhIhJNuu43cMY6MJ4M5eD9
x0dYvD+RNQb7HAWNC2g1RMkZNnIVBijZhnFDBtl9IjIDA7q9wMU6ka0pAckM+N89
yOGeo4OrX10hLJ9/UeaM/yclAgMBAAGjggL5MIIC9TAdBgNVHQ4EFgQUVTOnxXv0
2x5Tj5534LSGi4+QxYIwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTI3NkZBLzlDNTJBN0U4ODRDOTExRUZCNTREMEM0OUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyNzZGQS85QzUyQTdFODg0QzkxMUVGQjU0RDBDNDlDNEY5QUUwMi9WVE9ueFh2
MDJ4NVRqNTUzNExTR2k0LVF4WUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8EFjAU
MBIEAgABMAwDBAItfRADBAJn8oQwDQYJKoZIhvcNAQELBQADggEBABE15EPKioSg
PjI2BnRnllzeOmjs9OivfYNV7EsdtNes6sr+gnzBhqs+CozLtW4fm6tlY9YvnK7F
C1U9n9IpRxyxwf89L3a/GIb/2/6QKx2/LUo9GIniYSsHoThLQmIoFfD4WSK/ZD3j
MMCUOc9zgn0gzv4m76ACY/WA4LqtwK5vTu2SG5ZT4n2t7ueKZjV5jjuCT3+jqsun
yUlDVSqjSWdVKHvT4Yo4XQhd/SBFAZcDj93w8oO5NNb2fqPdYIdGW4EFrf8LmWus
ArHqBpUFLKUy78CtEkspHx0Oi6fm+kMao0+JTYN59tLh5EPw/jn90xnjV5QLm6oU
0aZvsRh2lNI=
-----END CERTIFICATE-----
Generated at Fri Oct 24 20:47:24 2025 by rpki-client