Certificate

$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer
File:                     sb1NsCH1THJj88NTX4g2hJui5g4.cer (raw, json)
Hash identifier:          R/5JJ1eiw846Qb/lLkhIIiS8Tnb/tpWR4SToKcWal2A=
Subject key identifier:   B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer:       /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial:       02C3E7
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate not before:   Wed 08 Jul 2026 14:48:25 +0000
Certificate not after:    Thu 30 Sep 2027 00:00:00 +0000
Subordinate resources:    AS: 137930
                          IP: 103.151.210.0/24
                          IP: 2001:df5:a900::/48
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Jul 2026 02:50:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 181223 (0x2c3e7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
        Validity
            Not Before: Jul  8 14:48:25 2026 GMT
            Not After : Sep 30 00:00:00 2027 GMT
        Subject: CN=A91E520F, serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:37:e5:f2:38:14:bd:a5:79:b3:bb:a2:e1:93:
                    d3:a5:c4:b3:c6:c0:40:b9:5a:1c:3d:65:2f:04:8b:
                    af:ef:28:bb:53:20:7f:98:c6:d6:67:53:c8:68:fa:
                    60:4a:16:24:de:7d:a6:8e:95:c1:b3:63:68:fe:de:
                    7c:e0:86:1a:df:8d:4c:38:76:0b:bc:d2:e1:86:97:
                    9c:41:6c:bd:71:74:bc:b6:c6:87:cf:08:1b:cf:f5:
                    1d:e5:17:5a:3b:02:86:20:7e:63:17:a4:4e:b0:0d:
                    26:53:1b:82:bd:8c:58:0a:62:c2:67:ce:d8:08:98:
                    17:2f:f5:59:2e:59:2d:af:34:6c:72:55:68:c1:f6:
                    96:76:c3:47:a3:21:f1:16:94:f9:ef:29:8e:58:b9:
                    84:24:aa:b6:a1:3a:7e:33:78:20:d7:60:7d:17:5b:
                    6b:2b:47:3f:43:59:9b:51:44:96:f3:18:6d:73:ea:
                    f0:23:3c:34:a1:18:db:51:dd:a4:be:95:5f:57:25:
                    65:26:76:06:ac:1e:d5:cc:b3:d5:0f:94:cf:44:96:
                    9f:56:5b:fd:54:27:ac:33:a3:cb:9b:b9:26:cd:b5:
                    4c:9a:ad:4d:85:32:bd:37:10:75:5f:73:29:85:f4:
                    d6:3c:ed:95:93:b1:ed:d0:21:db:cf:37:69:07:30:
                    d4:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E
            X509v3 Authority Key Identifier:
                keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  137930

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.151.210.0/24
                IPv6:
                  2001:df5:a900::/48

    Signature Algorithm: sha256WithRSAEncryption
         16:b2:b6:2f:73:7d:d5:7e:15:f1:b2:35:a9:27:4d:84:f7:36:
         1b:d3:77:11:64:5a:c9:48:64:f6:04:1c:7d:52:26:09:b7:eb:
         a9:96:40:6b:46:51:ba:7b:f3:89:b2:fa:ae:14:07:65:80:13:
         a2:1c:7e:9b:0b:32:fb:83:81:ea:8c:42:6c:91:76:16:6a:15:
         c3:1c:45:e5:82:b3:60:26:88:67:e7:94:17:ec:66:a3:9d:2d:
         67:30:00:04:6b:71:47:85:05:49:78:e4:ec:ac:5d:83:96:e4:
         20:a5:76:36:78:1e:9a:4b:b3:a6:c9:5d:26:9e:0d:22:b4:a1:
         f1:12:06:7e:3e:44:fd:6e:eb:67:63:6f:be:c3:06:32:68:f4:
         09:c0:04:89:56:78:a8:a9:9f:26:34:37:70:d7:ce:28:31:b4:
         9c:a7:37:5c:1f:de:80:2d:4d:6f:48:2b:54:ed:ed:1f:23:99:
         da:87:a8:d1:78:37:e3:60:39:eb:b3:94:1b:38:94:a5:26:9a:
         a5:ea:6a:3a:90:40:81:87:4a:6e:8e:03:90:77:7d:0c:2d:0a:
         03:78:da:16:d1:7a:b6:71:6b:b5:23:0c:f4:1b:d8:11:33:50:
         a0:cc:c9:2a:a1:ae:7c:38:8f:c5:51:5f:42:31:6b:eb:5e:b8:
         71:e5:fa:62
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAsPnMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDcwODE0NDgyNVoXDTI3MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRTUyMEYxMTAvBgNVBAUTKEIxQkQ0REIwMjFGNTRDNzI2M0YzQzM1
MzVGODgzNjg0OUJBMkU2MEUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDLN+XyOBS9pXmzu6Lhk9OlxLPGwEC5Whw9ZS8Ei6/vKLtTIH+YxtZnU8ho+mBK
FiTefaaOlcGzY2j+3nzghhrfjUw4dgu80uGGl5xBbL1xdLy2xofPCBvP9R3lF1o7
AoYgfmMXpE6wDSZTG4K9jFgKYsJnztgImBcv9VkuWS2vNGxyVWjB9pZ2w0ejIfEW
lPnvKY5YuYQkqrahOn4zeCDXYH0XW2srRz9DWZtRRJbzGG1z6vAjPDShGNtR3aS+
lV9XJWUmdgasHtXMs9UPlM9Elp9WW/1UJ6wzo8ubuSbNtUyarU2FMr03EHVfcymF
9NY87ZWTse3QIdvPN2kHMNTvAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUsb1NsCH1
THJj88NTX4g2hJui5g4wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUU1MjBGLzQxQ0NCQzZFQTgxOTExRUZCOUJERUQ3MUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFNTIwRi80MUNDQkM2RUE4MTkxMUVGQjlCREVENzFDNEY5QUUwMi9zYjFOc0NI
MVRISmo4OE5UWDRnMmhKdWk1ZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhrKMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAZ5fSMA8EAgAC
MAkDBwAgAQ31qQAwDQYJKoZIhvcNAQELBQADggEBABayti9zfdV+FfGyNaknTYT3
NhvTdxFkWslIZPYEHH1SJgm366mWQGtGUbp784my+q4UB2WAE6IcfpsLMvuDgeqM
QmyRdhZqFcMcReWCs2AmiGfnlBfsZqOdLWcwAARrcUeFBUl45OysXYOW5CCldjZ4
HppLs6bJXSaeDSK0ofESBn4+RP1u62djb77DBjJo9AnABIlWeKipnyY0N3DXzigx
tJynN1wf3oAtTW9IK1Tt7R8jmdqHqNF4N+NgOeuzlBs4lKUmmqXqajqQQIGHSm6O
A5B3fQwtCgN42hbRerZxa7UjDPQb2BEzUKDMySqhrnw4j8VRX0Ixa+teuHHl+mI=
-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:44 2026 by rpki-client