
Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer
File: jNZeQOKuy7xVttozRr8czjg1wnc.cer (raw, json)
Hash identifier: ELvCGODEgYYGhhkAReSvfhB1DrVpUVt2YPTrsfbTZtI=
Subject key identifier: 8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02BED0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 22 Jun 2026 13:55:50 +0000
Certificate not after: Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources: AS: 151360
IP: 103.208.88.0/23
IP: 2401:220::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 25 Jul 2026 00:40:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179920 (0x2bed0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 22 13:55:50 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=A919A6EB, serialNumber=8CD65E40E2AECBBC55B6DA3346BF1CCE3835C277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3b:29:f0:de:b5:22:db:ba:35:0f:e7:78:f5:
14:f7:84:09:8e:e4:61:d7:b5:15:45:5e:f1:6b:0e:
e7:91:84:19:41:19:19:43:a1:1e:54:81:7c:34:8e:
a4:a4:03:06:fe:e8:41:8e:5b:b5:e3:5b:12:0c:8a:
8e:88:d3:86:a4:1e:4d:24:d4:9b:0d:f4:92:a6:b2:
35:82:ac:6b:37:c6:48:09:a3:86:53:36:13:04:fc:
fe:a7:fb:f1:f2:50:83:cd:3e:54:d7:35:0d:54:9f:
b6:5b:d0:3e:0f:07:a9:88:0c:d9:13:a8:52:a8:d2:
78:be:5c:af:12:8d:42:c5:60:ae:09:7b:9b:48:27:
4b:22:09:cf:fb:5a:63:a7:b9:b3:1d:5e:c7:8a:bc:
2e:98:75:0e:34:d7:46:8b:17:06:e6:f4:a5:de:f2:
bd:35:2e:9f:3e:2b:a9:c9:3d:45:f6:8e:69:12:aa:
e0:75:30:d9:4e:aa:a4:60:af:42:a8:56:aa:a2:cc:
a9:31:c0:e8:f2:ea:31:2f:5c:c6:97:07:d8:48:49:
65:26:64:d8:3a:bb:8e:ab:08:26:53:45:d3:f7:d2:
07:fc:ef:f4:22:40:27:0f:ee:71:cd:d6:70:58:38:
39:2d:80:48:a0:70:d3:72:62:f2:31:a0:36:14:fa:
2f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151360
sbgp-ipAddrBlock: critical
IPv4:
103.208.88.0/23
IPv6:
2401:220::/32
Signature Algorithm: sha256WithRSAEncryption
70:8d:cb:ff:35:9e:2a:23:19:fa:bd:bd:40:50:b9:fb:a8:81:
66:b9:74:8f:17:aa:fc:5d:cc:9e:b3:4f:bb:1a:41:8a:2e:f4:
b6:4d:b5:14:f4:b9:79:a3:53:cd:01:4e:d7:ee:04:76:67:5a:
37:6f:6a:9a:87:35:e8:1b:05:98:5f:7c:11:91:f6:75:7e:2b:
b3:0d:99:1f:ac:5c:31:2f:ad:ee:3f:fc:b0:be:d4:dc:be:2d:
a1:66:79:8e:93:3e:c7:db:90:64:5f:6f:33:26:66:68:e5:d5:
60:ba:a5:20:a1:a9:ac:21:77:ec:3b:fb:eb:8a:65:81:93:fd:
ee:1f:ab:d2:80:e0:da:ef:47:88:b7:3d:3e:1e:c3:53:07:aa:
62:8d:a1:1a:c1:fd:f5:58:2c:87:8c:71:0b:60:40:69:11:aa:
34:19:ef:d7:21:74:27:29:5a:dd:77:63:c6:ac:62:27:ae:2f:
4f:5c:a2:f7:9c:6f:75:9d:fb:f7:ca:01:0c:d8:98:44:42:69:
73:69:b6:50:11:c6:41:7f:39:bc:f8:f2:12:d0:c8:c3:bc:71:
7b:40:10:1a:7f:a5:6e:b9:6b:c4:70:70:60:ee:e9:5b:53:ec:
49:6d:ab:58:5c:26:c6:7d:90:dd:14:e6:84:29:a8:55:5f:84:
aa:4a:dc:27
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAr7QMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDYyMjEzNTU1MFoXDTI3MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOUE2RUIxMTAvBgNVBAUTKDhDRDY1RTQwRTJBRUNCQkM1NUI2REEz
MzQ2QkYxQ0NFMzgzNUMyNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDGOynw3rUi27o1D+d49RT3hAmO5GHXtRVFXvFrDueRhBlBGRlDoR5UgXw0jqSk
Awb+6EGOW7XjWxIMio6I04akHk0k1JsN9JKmsjWCrGs3xkgJo4ZTNhME/P6n+/Hy
UIPNPlTXNQ1Un7Zb0D4PB6mIDNkTqFKo0ni+XK8SjULFYK4Je5tIJ0siCc/7WmOn
ubMdXseKvC6YdQ4010aLFwbm9KXe8r01Lp8+K6nJPUX2jmkSquB1MNlOqqRgr0Ko
VqqizKkxwOjy6jEvXMaXB9hISWUmZNg6u46rCCZTRdP30gf87/QiQCcP7nHN1nBY
ODktgEigcNNyYvIxoDYU+i8lAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUjNZeQOKu
y7xVttozRr8czjg1wncwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTlBNkVCL0RENEMxQjJBMEE1QTExRUVCRTgyNDM0NEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE5QTZFQi9ERDRDMUIyQTBBNUExMUVFQkU4MjQzNDRDNEY5QUUwMi9qTlplUU9L
dXk3eFZ0dG96UnI4Y3pqZzF3bmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAk9AMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ9BYMA0EAgAC
MAcDBQAkAQIgMA0GCSqGSIb3DQEBCwUAA4IBAQBwjcv/NZ4qIxn6vb1AULn7qIFm
uXSPF6r8Xcyes0+7GkGKLvS2TbUU9Ll5o1PNAU7X7gR2Z1o3b2qahzXoGwWYX3wR
kfZ1fiuzDZkfrFwxL63uP/ywvtTcvi2hZnmOkz7H25BkX28zJmZo5dVguqUgoams
IXfsO/vrimWBk/3uH6vSgODa70eItz0+HsNTB6pijaEawf31WCyHjHELYEBpEao0
Ge/XIXQnKVrdd2PGrGInri9PXKL3nG91nfv3ygEM2JhEQmlzabZQEcZBfzm8+PIS
0MjDvHF7QBAaf6VuuWvEcHBg7ulbU+xJbatYXCbGfZDdFOaEKahVX4SqStwn
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:52 2026 by rpki-client