Certificate

$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NwOTvGRg5S0PXgIdVS9YF0M-suc.cer
File:                     NwOTvGRg5S0PXgIdVS9YF0M-suc.cer (raw, json)
Hash identifier:          unBODWOyMeZwVS0skqYSsd02KJDFinIhqNqJpi76fmk=
Subject key identifier:   37:03:93:BC:64:60:E5:2D:0F:5E:02:1D:55:2F:58:17:43:3E:B2:E7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer:       /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial:       02BF13
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A918D5CF/98D0B4F87B1A11E88F3D0C14C4F9AE02/NwOTvGRg5S0PXgIdVS9YF0M-suc.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A918D5CF/98D0B4F87B1A11E88F3D0C14C4F9AE02/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate not before:   Tue 23 Jun 2026 13:42:55 +0000
Certificate not after:    Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources:    AS: 137928
                          IP: 103.115.98.0/24
                          IP: 2001:df5:2300::/48
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 13 Jul 2026 05:13:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 179987 (0x2bf13)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
        Validity
            Not Before: Jun 23 13:42:55 2026 GMT
            Not After : Aug 31 00:00:00 2027 GMT
        Subject: CN=A918D5CF, serialNumber=370393BC6460E52D0F5E021D552F5817433EB2E7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:1e:95:67:2d:9b:cd:f9:c0:2d:88:2b:35:67:
                    53:19:60:c4:bd:36:56:a5:f1:b3:d7:82:47:ba:4f:
                    36:fb:b7:c3:63:9b:35:c2:58:9b:af:c9:42:ae:bd:
                    7a:4c:85:f2:59:a9:db:4b:b1:9e:58:fa:b3:6f:2f:
                    67:77:e2:54:6e:33:c1:36:b1:23:76:e4:5b:32:2a:
                    96:b3:11:13:e7:a7:60:fc:47:42:17:23:da:f5:5f:
                    57:d9:a2:41:c1:ab:41:6b:29:9a:e8:d5:27:ac:c4:
                    a4:8f:7b:6a:b3:79:bc:45:e3:61:96:64:5a:00:14:
                    52:06:cf:26:7c:56:4e:87:16:26:8b:11:c7:88:d7:
                    4f:9d:44:55:b8:02:02:88:84:d2:34:ca:69:6a:b6:
                    42:08:99:27:42:bb:a2:6f:28:41:f1:ef:84:72:9f:
                    ee:73:01:74:9a:84:2e:6f:18:f2:82:86:02:16:d0:
                    c0:58:83:45:dc:7f:1f:b8:36:ab:a2:37:0d:24:bd:
                    71:54:6e:1d:65:fb:76:fa:fd:df:ec:29:26:2d:5e:
                    c2:73:e9:8d:21:89:03:65:c4:d1:69:00:7e:f1:21:
                    9b:00:7b:4b:5a:16:56:95:19:5a:dd:5b:5c:ec:0f:
                    56:b1:15:6f:f3:00:ae:90:4a:3b:85:df:79:0e:03:
                    e3:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:03:93:BC:64:60:E5:2D:0F:5E:02:1D:55:2F:58:17:43:3E:B2:E7
            X509v3 Authority Key Identifier:
                keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918D5CF/98D0B4F87B1A11E88F3D0C14C4F9AE02/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918D5CF/98D0B4F87B1A11E88F3D0C14C4F9AE02/NwOTvGRg5S0PXgIdVS9YF0M-suc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  137928

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.115.98.0/24
                IPv6:
                  2001:df5:2300::/48

    Signature Algorithm: sha256WithRSAEncryption
         28:34:86:06:a3:0f:ea:50:a6:1a:a9:5c:bd:66:5b:e0:9d:dc:
         ba:ce:13:57:ac:59:78:84:d4:37:bc:ea:80:c0:7f:60:de:81:
         84:13:c8:db:70:0b:80:2c:f2:8d:fc:20:07:df:3a:6a:31:6d:
         83:e6:07:3d:2a:7a:f4:a9:d4:26:a1:48:85:21:21:10:ca:b6:
         e1:70:61:32:9d:26:57:f7:53:dc:69:9b:46:1c:18:c2:24:0a:
         3c:b7:5c:c6:26:dd:b9:9c:4f:60:bd:02:ff:d5:f7:0e:1e:bd:
         52:7f:66:ed:46:86:4b:13:ea:bd:68:93:28:6c:14:7e:0a:ba:
         74:01:6d:e5:1d:03:91:a5:cd:24:d2:0e:f5:7a:e8:5e:6f:6a:
         07:11:22:4b:eb:c9:8c:d8:93:d3:3b:a0:56:e7:29:24:49:36:
         da:a7:92:83:89:e2:5d:8e:e7:1c:90:26:df:ed:73:95:b6:79:
         99:b3:34:7e:7e:ef:39:0a:bf:bf:6d:96:44:4f:d6:ea:dc:93:
         39:af:9b:6c:58:2e:39:77:d2:ac:5e:da:01:5a:9e:fb:b0:02:
         2d:d4:91:d2:47:0b:3e:57:c7:5d:cb:04:ad:a7:f8:03:3e:62:
         25:ec:a1:55:38:e7:0b:80:15:82:c3:36:d7:52:57:4b:b4:9b:
         7a:d8:cb:df
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAr8TMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDYyMzEzNDI1NVoXDTI3MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOEQ1Q0YxMTAvBgNVBAUTKDM3MDM5M0JDNjQ2MEU1MkQwRjVFMDIx
RDU1MkY1ODE3NDMzRUIyRTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCqHpVnLZvN+cAtiCs1Z1MZYMS9Nlal8bPXgke6Tzb7t8NjmzXCWJuvyUKuvXpM
hfJZqdtLsZ5Y+rNvL2d34lRuM8E2sSN25FsyKpazERPnp2D8R0IXI9r1X1fZokHB
q0FrKZro1SesxKSPe2qzebxF42GWZFoAFFIGzyZ8Vk6HFiaLEceI10+dRFW4AgKI
hNI0ymlqtkIImSdCu6JvKEHx74Ryn+5zAXSahC5vGPKChgIW0MBYg0Xcfx+4Nqui
Nw0kvXFUbh1l+3b6/d/sKSYtXsJz6Y0hiQNlxNFpAH7xIZsAe0taFlaVGVrdW1zs
D1axFW/zAK6QSjuF33kOA+NFAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUNwOTvGRg
5S0PXgIdVS9YF0M+sucwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThENUNGLzk4RDBCNEY4N0IxQTExRTg4RjNEMEMxNEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE4RDVDRi85OEQwQjRGODdCMUExMUU4OEYzRDBDMTRDNEY5QUUwMi9Od09UdkdS
ZzVTMFBYZ0lkVlM5WUYwTS1zdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhrIMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAZ3NiMA8EAgAC
MAkDBwAgAQ31IwAwDQYJKoZIhvcNAQELBQADggEBACg0hgajD+pQphqpXL1mW+Cd
3LrOE1esWXiE1De86oDAf2DegYQTyNtwC4As8o38IAffOmoxbYPmBz0qevSp1Cah
SIUhIRDKtuFwYTKdJlf3U9xpm0YcGMIkCjy3XMYm3bmcT2C9Av/V9w4evVJ/Zu1G
hksT6r1okyhsFH4KunQBbeUdA5GlzSTSDvV66F5vagcRIkvryYzYk9M7oFbnKSRJ
NtqnkoOJ4l2O5xyQJt/tc5W2eZmzNH5+7zkKv79tlkRP1urckzmvm2xYLjl30qxe
2gFanvuwAi3UkdJHCz5Xx13LBK2n+AM+YiXsoVU45wuAFYLDNtdSV0u0m3rYy98=
-----END CERTIFICATE-----
Generated at Mon Jul 6 06:33:28 2026 by rpki-client