Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VzWraqwyeVRCT5_oyoUzQpnde8I.cer
File: VzWraqwyeVRCT5_oyoUzQpnde8I.cer (raw, json)
Hash identifier: uLh86KKDO/SUE2C/jw1cQQA0xxiQCKdclHIbI9CvxeU=
Subject key identifier: 57:35:AB:6A:AC:32:79:54:42:4F:9F:E8:CA:85:33:42:99:DD:7B:C2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026FD2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CE392/6D6A2A286CD811E9B99FE329C4F9AE02/VzWraqwyeVRCT5_oyoUzQpnde8I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CE392/6D6A2A286CD811E9B99FE329C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 28 Oct 2025 17:27:49 +0000
Certificate not after: Wed 30 Dec 2026 00:00:00 +0000
Subordinate resources: AS: 134702
IP: 103.77.188.0/22
IP: 2407:9d80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 10 Nov 2025 09:20:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159698 (0x26fd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 28 17:27:49 2025 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=A91CE392, serialNumber=5735AB6AAC327954424F9FE8CA85334299DD7BC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b9:fb:7c:e2:93:cf:4e:46:ec:5e:2d:be:47:
79:0c:0b:77:c4:bf:27:ea:fe:e8:8c:68:b3:f0:f9:
f1:c3:c8:42:ef:04:fe:6b:ba:88:27:f8:f0:a7:94:
5f:cf:80:78:ed:a9:d3:64:89:9c:8e:2d:15:4a:bd:
fc:bd:48:37:fc:ca:61:ae:f2:4a:02:38:57:a9:c5:
28:95:43:c5:64:4d:f2:d0:aa:1c:e0:a1:11:c5:21:
99:18:4e:81:2c:3b:3a:a2:5a:70:b6:eb:4b:0e:f8:
05:06:83:2f:65:9b:cd:df:20:6c:46:16:7d:27:87:
bc:d7:39:78:f4:83:e9:64:56:35:8d:26:e5:74:dc:
a1:43:bc:9c:4c:d2:40:b2:66:4b:2c:00:55:62:7a:
88:e0:77:19:8b:f4:8e:10:05:dc:e4:b1:71:a7:be:
76:be:e8:ce:cb:8b:cd:ba:e6:58:ed:34:4f:ff:cc:
bd:18:8a:c4:21:32:ad:c8:a6:f4:c7:af:ea:e2:de:
92:3d:7e:2a:a3:ed:15:87:eb:e1:b8:1e:06:19:c2:
6b:5e:72:0d:15:4a:05:bd:10:1e:de:a1:64:1a:24:
51:da:e3:8a:12:f2:0e:fe:d7:68:8d:3b:78:d3:a5:
9a:29:14:7a:3c:40:6d:51:45:53:45:fa:75:29:d8:
fe:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:35:AB:6A:AC:32:79:54:42:4F:9F:E8:CA:85:33:42:99:DD:7B:C2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CE392/6D6A2A286CD811E9B99FE329C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CE392/6D6A2A286CD811E9B99FE329C4F9AE02/VzWraqwyeVRCT5_oyoUzQpnde8I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134702
sbgp-ipAddrBlock: critical
IPv4:
103.77.188.0/22
IPv6:
2407:9d80::/32
Signature Algorithm: sha256WithRSAEncryption
6e:f2:cd:a9:b0:5e:26:7d:e3:cc:f7:e8:84:2b:f2:c9:28:0c:
29:f2:17:5a:8c:4e:18:2c:7e:b0:12:73:41:0b:13:15:dc:6f:
ba:5c:5d:ac:85:f7:74:c8:50:c9:14:37:22:32:ec:50:6b:84:
c0:49:9e:20:43:82:ca:e0:e9:68:5b:6d:53:29:45:9a:5a:51:
2d:a8:5e:36:31:23:65:44:15:5c:0a:32:c2:70:c6:a4:62:44:
4f:f5:4c:2f:21:e0:e8:57:dc:99:2a:37:2f:8a:23:cb:67:e6:
2e:60:ea:f8:2c:35:c1:33:f7:cb:d8:77:26:ff:e7:dc:ed:c5:
29:04:2b:ff:5c:a9:e4:70:77:a0:d0:22:54:5c:ba:a1:0a:47:
1b:70:d1:5b:37:5a:be:be:48:f5:e1:e6:cc:07:fe:ca:65:f4:
0f:6b:00:a4:f3:a0:d0:a0:56:8c:fc:2c:d3:7d:c4:bd:36:ad:
9f:f1:08:d7:13:5d:f8:5e:4c:57:64:e9:7b:95:e6:ae:1c:6d:
c3:04:5b:fd:44:f2:82:af:03:5d:2b:db:d6:61:2c:42:eb:a8:
f1:f9:67:e1:58:7e:f2:1c:e3:68:14:c4:cd:6d:1d:f0:35:eb:
1f:f2:a2:c8:bf:59:7c:0e:04:22:18:ea:b0:cc:64:94:00:b9:
e5:6d:27:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 3 11:17:57 2025 by rpki-client