
Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer
File: sb1NsCH1THJj88NTX4g2hJui5g4.cer (raw, json)
Hash identifier: R/5JJ1eiw846Qb/lLkhIIiS8Tnb/tpWR4SToKcWal2A=
Subject key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02C3E7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 08 Jul 2026 14:48:25 +0000
Certificate not after: Thu 30 Sep 2027 00:00:00 +0000
Subordinate resources: AS: 137930
IP: 103.151.210.0/24
IP: 2001:df5:a900::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 25 Jul 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181223 (0x2c3e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 8 14:48:25 2026 GMT
Not After : Sep 30 00:00:00 2027 GMT
Subject: CN=A91E520F, serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:37:e5:f2:38:14:bd:a5:79:b3:bb:a2:e1:93:
d3:a5:c4:b3:c6:c0:40:b9:5a:1c:3d:65:2f:04:8b:
af:ef:28:bb:53:20:7f:98:c6:d6:67:53:c8:68:fa:
60:4a:16:24:de:7d:a6:8e:95:c1:b3:63:68:fe:de:
7c:e0:86:1a:df:8d:4c:38:76:0b:bc:d2:e1:86:97:
9c:41:6c:bd:71:74:bc:b6:c6:87:cf:08:1b:cf:f5:
1d:e5:17:5a:3b:02:86:20:7e:63:17:a4:4e:b0:0d:
26:53:1b:82:bd:8c:58:0a:62:c2:67:ce:d8:08:98:
17:2f:f5:59:2e:59:2d:af:34:6c:72:55:68:c1:f6:
96:76:c3:47:a3:21:f1:16:94:f9:ef:29:8e:58:b9:
84:24:aa:b6:a1:3a:7e:33:78:20:d7:60:7d:17:5b:
6b:2b:47:3f:43:59:9b:51:44:96:f3:18:6d:73:ea:
f0:23:3c:34:a1:18:db:51:dd:a4:be:95:5f:57:25:
65:26:76:06:ac:1e:d5:cc:b3:d5:0f:94:cf:44:96:
9f:56:5b:fd:54:27:ac:33:a3:cb:9b:b9:26:cd:b5:
4c:9a:ad:4d:85:32:bd:37:10:75:5f:73:29:85:f4:
d6:3c:ed:95:93:b1:ed:d0:21:db:cf:37:69:07:30:
d4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137930
sbgp-ipAddrBlock: critical
IPv4:
103.151.210.0/24
IPv6:
2001:df5:a900::/48
Signature Algorithm: sha256WithRSAEncryption
16:b2:b6:2f:73:7d:d5:7e:15:f1:b2:35:a9:27:4d:84:f7:36:
1b:d3:77:11:64:5a:c9:48:64:f6:04:1c:7d:52:26:09:b7:eb:
a9:96:40:6b:46:51:ba:7b:f3:89:b2:fa:ae:14:07:65:80:13:
a2:1c:7e:9b:0b:32:fb:83:81:ea:8c:42:6c:91:76:16:6a:15:
c3:1c:45:e5:82:b3:60:26:88:67:e7:94:17:ec:66:a3:9d:2d:
67:30:00:04:6b:71:47:85:05:49:78:e4:ec:ac:5d:83:96:e4:
20:a5:76:36:78:1e:9a:4b:b3:a6:c9:5d:26:9e:0d:22:b4:a1:
f1:12:06:7e:3e:44:fd:6e:eb:67:63:6f:be:c3:06:32:68:f4:
09:c0:04:89:56:78:a8:a9:9f:26:34:37:70:d7:ce:28:31:b4:
9c:a7:37:5c:1f:de:80:2d:4d:6f:48:2b:54:ed:ed:1f:23:99:
da:87:a8:d1:78:37:e3:60:39:eb:b3:94:1b:38:94:a5:26:9a:
a5:ea:6a:3a:90:40:81:87:4a:6e:8e:03:90:77:7d:0c:2d:0a:
03:78:da:16:d1:7a:b6:71:6b:b5:23:0c:f4:1b:d8:11:33:50:
a0:cc:c9:2a:a1:ae:7c:38:8f:c5:51:5f:42:31:6b:eb:5e:b8:
71:e5:fa:62
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:44 2026 by rpki-client