
Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VWyosJdH0HtvaiekBVKNOfpbgkw.cer
File: VWyosJdH0HtvaiekBVKNOfpbgkw.cer (raw, json)
Hash identifier: UfJZOOA7G4S8WwOaf/GGNZogVWrZ90BNp5TT1PaDSt8=
Subject key identifier: 55:6C:A8:B0:97:47:D0:7B:6F:6A:27:A4:05:52:8D:39:FA:5B:82:4C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024738
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/VWyosJdH0HtvaiekBVKNOfpbgkw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 19 May 2025 12:51:47 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: AS: 140878
IP: 103.152.214.0/23
IP: 2001:df4:1d80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 19 Jun 2025 14:56:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149304 (0x24738)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 19 12:51:47 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A912A4D7, serialNumber=556CA8B09747D07B6F6A27A405528D39FA5B824C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3a:1a:08:71:81:aa:61:2c:45:12:f1:fb:cb:
9b:37:46:0c:92:50:ab:2a:9f:7a:51:b5:b0:78:b9:
d5:94:e1:ef:22:56:3c:aa:44:68:3f:3f:b0:ff:89:
dd:ba:4e:32:bb:ce:57:2c:01:93:d2:18:ba:2a:37:
21:a6:6d:81:8b:b9:26:a6:7c:ab:e2:7b:95:90:09:
d8:8b:bd:2a:29:d7:cf:00:aa:d5:4d:0d:bc:45:1a:
fe:68:56:de:18:bf:fc:c9:7d:09:b3:8c:e8:96:76:
bc:54:bf:97:0d:c3:73:38:7a:91:c9:1c:06:19:ca:
68:53:7a:10:1c:da:0b:59:6f:cb:3a:4b:e7:c3:0b:
03:c5:4b:b3:a5:95:42:cd:4a:31:8c:19:91:b9:34:
c3:a4:ee:30:fe:3a:51:74:61:6b:58:5c:c6:3a:0b:
17:ed:ac:04:b1:c7:21:c5:e7:99:89:7e:30:e8:34:
b3:1d:b5:c6:76:ae:c5:82:d0:df:0c:65:2e:cb:80:
9e:df:eb:61:13:b5:c1:f7:09:c9:d5:ef:8b:88:37:
b2:04:59:52:b9:52:9c:d6:54:db:9a:66:76:9b:7b:
95:17:a6:e1:fd:a4:e2:ec:79:56:65:42:f9:fe:3b:
52:56:76:24:1a:6b:75:99:5f:44:40:ea:fc:c6:58:
7a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:6C:A8:B0:97:47:D0:7B:6F:6A:27:A4:05:52:8D:39:FA:5B:82:4C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/VWyosJdH0HtvaiekBVKNOfpbgkw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140878
sbgp-ipAddrBlock: critical
IPv4:
103.152.214.0/23
IPv6:
2001:df4:1d80::/48
Signature Algorithm: sha256WithRSAEncryption
69:2f:a9:cf:67:53:63:83:8c:b0:bc:bc:91:6d:cc:b5:c0:5a:
0c:4c:6d:78:c9:a8:50:a1:8c:fb:26:c7:6a:58:8e:fa:56:eb:
de:7f:4c:f2:28:92:19:02:d6:c9:59:5d:50:c6:92:de:07:29:
58:00:c8:0b:53:a2:34:51:8d:76:45:bc:7e:09:e5:24:43:f5:
c2:bb:8b:f5:31:57:56:38:51:b0:ed:d1:96:de:35:84:a6:e2:
41:53:94:f0:1c:b7:01:d0:6e:72:24:af:12:dc:40:97:d9:e4:
f5:66:3f:09:80:a8:55:4f:7f:c8:61:3c:bb:e2:d1:2c:e6:03:
cd:38:6a:03:99:86:ab:da:a0:c6:f2:3d:2d:95:70:b7:b6:78:
29:01:f7:0f:83:c6:aa:33:26:03:12:74:f2:19:a5:b1:01:b4:
8c:ae:c1:98:07:66:da:2e:de:34:06:5c:21:cb:e0:b6:91:c8:
00:3a:97:f3:61:d7:48:db:7c:c6:64:e1:6e:e7:a6:59:4b:24:
b0:17:b6:99:20:af:2c:51:1b:3c:2b:8a:0c:e1:09:11:71:c0:
9f:c6:69:80:45:de:49:e8:d7:d4:71:b5:63:58:3c:ff:9c:d5:
17:e9:78:dc:59:f0:91:ac:48:b7:33:51:dc:3a:38:ec:91:1b:
41:14:37:92
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 12 16:38:16 2025 by rpki-client