
Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NwOTvGRg5S0PXgIdVS9YF0M-suc.cer
File: NwOTvGRg5S0PXgIdVS9YF0M-suc.cer (raw, json)
Hash identifier: unBODWOyMeZwVS0skqYSsd02KJDFinIhqNqJpi76fmk=
Subject key identifier: 37:03:93:BC:64:60:E5:2D:0F:5E:02:1D:55:2F:58:17:43:3E:B2:E7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02BF13
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918D5CF/98D0B4F87B1A11E88F3D0C14C4F9AE02/NwOTvGRg5S0PXgIdVS9YF0M-suc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918D5CF/98D0B4F87B1A11E88F3D0C14C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 23 Jun 2026 13:42:55 +0000
Certificate not after: Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources: AS: 137928
IP: 103.115.98.0/24
IP: 2001:df5:2300::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Jul 2026 05:13:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179987 (0x2bf13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 23 13:42:55 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=A918D5CF, serialNumber=370393BC6460E52D0F5E021D552F5817433EB2E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1e:95:67:2d:9b:cd:f9:c0:2d:88:2b:35:67:
53:19:60:c4:bd:36:56:a5:f1:b3:d7:82:47:ba:4f:
36:fb:b7:c3:63:9b:35:c2:58:9b:af:c9:42:ae:bd:
7a:4c:85:f2:59:a9:db:4b:b1:9e:58:fa:b3:6f:2f:
67:77:e2:54:6e:33:c1:36:b1:23:76:e4:5b:32:2a:
96:b3:11:13:e7:a7:60:fc:47:42:17:23:da:f5:5f:
57:d9:a2:41:c1:ab:41:6b:29:9a:e8:d5:27:ac:c4:
a4:8f:7b:6a:b3:79:bc:45:e3:61:96:64:5a:00:14:
52:06:cf:26:7c:56:4e:87:16:26:8b:11:c7:88:d7:
4f:9d:44:55:b8:02:02:88:84:d2:34:ca:69:6a:b6:
42:08:99:27:42:bb:a2:6f:28:41:f1:ef:84:72:9f:
ee:73:01:74:9a:84:2e:6f:18:f2:82:86:02:16:d0:
c0:58:83:45:dc:7f:1f:b8:36:ab:a2:37:0d:24:bd:
71:54:6e:1d:65:fb:76:fa:fd:df:ec:29:26:2d:5e:
c2:73:e9:8d:21:89:03:65:c4:d1:69:00:7e:f1:21:
9b:00:7b:4b:5a:16:56:95:19:5a:dd:5b:5c:ec:0f:
56:b1:15:6f:f3:00:ae:90:4a:3b:85:df:79:0e:03:
e3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:03:93:BC:64:60:E5:2D:0F:5E:02:1D:55:2F:58:17:43:3E:B2:E7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918D5CF/98D0B4F87B1A11E88F3D0C14C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918D5CF/98D0B4F87B1A11E88F3D0C14C4F9AE02/NwOTvGRg5S0PXgIdVS9YF0M-suc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137928
sbgp-ipAddrBlock: critical
IPv4:
103.115.98.0/24
IPv6:
2001:df5:2300::/48
Signature Algorithm: sha256WithRSAEncryption
28:34:86:06:a3:0f:ea:50:a6:1a:a9:5c:bd:66:5b:e0:9d:dc:
ba:ce:13:57:ac:59:78:84:d4:37:bc:ea:80:c0:7f:60:de:81:
84:13:c8:db:70:0b:80:2c:f2:8d:fc:20:07:df:3a:6a:31:6d:
83:e6:07:3d:2a:7a:f4:a9:d4:26:a1:48:85:21:21:10:ca:b6:
e1:70:61:32:9d:26:57:f7:53:dc:69:9b:46:1c:18:c2:24:0a:
3c:b7:5c:c6:26:dd:b9:9c:4f:60:bd:02:ff:d5:f7:0e:1e:bd:
52:7f:66:ed:46:86:4b:13:ea:bd:68:93:28:6c:14:7e:0a:ba:
74:01:6d:e5:1d:03:91:a5:cd:24:d2:0e:f5:7a:e8:5e:6f:6a:
07:11:22:4b:eb:c9:8c:d8:93:d3:3b:a0:56:e7:29:24:49:36:
da:a7:92:83:89:e2:5d:8e:e7:1c:90:26:df:ed:73:95:b6:79:
99:b3:34:7e:7e:ef:39:0a:bf:bf:6d:96:44:4f:d6:ea:dc:93:
39:af:9b:6c:58:2e:39:77:d2:ac:5e:da:01:5a:9e:fb:b0:02:
2d:d4:91:d2:47:0b:3e:57:c7:5d:cb:04:ad:a7:f8:03:3e:62:
25:ec:a1:55:38:e7:0b:80:15:82:c3:36:d7:52:57:4b:b4:9b:
7a:d8:cb:df
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAr8TMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDYyMzEzNDI1NVoXDTI3MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOEQ1Q0YxMTAvBgNVBAUTKDM3MDM5M0JDNjQ2MEU1MkQwRjVFMDIx
RDU1MkY1ODE3NDMzRUIyRTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCqHpVnLZvN+cAtiCs1Z1MZYMS9Nlal8bPXgke6Tzb7t8NjmzXCWJuvyUKuvXpM
hfJZqdtLsZ5Y+rNvL2d34lRuM8E2sSN25FsyKpazERPnp2D8R0IXI9r1X1fZokHB
q0FrKZro1SesxKSPe2qzebxF42GWZFoAFFIGzyZ8Vk6HFiaLEceI10+dRFW4AgKI
hNI0ymlqtkIImSdCu6JvKEHx74Ryn+5zAXSahC5vGPKChgIW0MBYg0Xcfx+4Nqui
Nw0kvXFUbh1l+3b6/d/sKSYtXsJz6Y0hiQNlxNFpAH7xIZsAe0taFlaVGVrdW1zs
D1axFW/zAK6QSjuF33kOA+NFAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUNwOTvGRg
5S0PXgIdVS9YF0M+sucwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThENUNGLzk4RDBCNEY4N0IxQTExRTg4RjNEMEMxNEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE4RDVDRi85OEQwQjRGODdCMUExMUU4OEYzRDBDMTRDNEY5QUUwMi9Od09UdkdS
ZzVTMFBYZ0lkVlM5WUYwTS1zdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhrIMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAZ3NiMA8EAgAC
MAkDBwAgAQ31IwAwDQYJKoZIhvcNAQELBQADggEBACg0hgajD+pQphqpXL1mW+Cd
3LrOE1esWXiE1De86oDAf2DegYQTyNtwC4As8o38IAffOmoxbYPmBz0qevSp1Cah
SIUhIRDKtuFwYTKdJlf3U9xpm0YcGMIkCjy3XMYm3bmcT2C9Av/V9w4evVJ/Zu1G
hksT6r1okyhsFH4KunQBbeUdA5GlzSTSDvV66F5vagcRIkvryYzYk9M7oFbnKSRJ
NtqnkoOJ4l2O5xyQJt/tc5W2eZmzNH5+7zkKv79tlkRP1urckzmvm2xYLjl30qxe
2gFanvuwAi3UkdJHCz5Xx13LBK2n+AM+YiXsoVU45wuAFYLDNtdSV0u0m3rYy98=
-----END CERTIFICATE-----
Generated at Mon Jul 6 06:33:28 2026 by rpki-client