Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer
File: OTVm9EF4bZWNinkRjo71b8hy5cU.cer (raw, json)
Hash identifier: wRCLF+jKocfw3AFt3RI3QzHl7re/2gKaY7DVtV9Z0qg=
Subject key identifier: 39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02BC62
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 10 Jun 2026 13:20:59 +0000
Certificate not after: Fri 30 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 56186
IP: 43.245.240.0/22
IP: 103.13.8.0/22
IP: 202.3.80.0/20
IP: 202.92.216.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 20 Jun 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179298 (0x2bc62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 10 13:20:59 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=A91673ED, serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:85:f6:8f:1c:cd:19:eb:58:33:7f:3e:5e:57:
bc:5b:60:51:12:31:6f:47:e7:93:ca:74:ca:95:3d:
44:8b:4f:4a:c6:9a:2f:a5:d7:e3:70:fc:77:51:1f:
61:0a:a2:71:e2:ad:87:58:40:e4:f3:db:62:58:70:
8a:be:37:71:a3:13:3a:c8:b4:c0:1a:ec:75:a4:04:
91:16:a8:03:29:9e:68:11:08:b9:98:3a:89:0e:87:
de:90:ca:ce:70:f1:b2:0f:b0:dc:f4:28:48:10:73:
d5:1d:a5:7b:2b:a4:ce:c1:44:d0:d1:28:e6:9f:54:
f4:c2:ff:0e:ae:94:27:8d:ee:4b:39:9e:8b:cc:da:
62:f8:5a:44:a3:18:6f:3f:3c:07:f6:42:c7:2c:70:
35:4b:30:43:ee:09:ff:23:79:90:b3:ef:29:fd:8f:
57:29:0f:f2:ac:19:04:ca:7b:17:9e:36:08:41:b8:
47:1b:eb:16:48:c4:7e:bc:b4:25:57:0b:29:2c:ce:
0a:5d:f0:55:c1:a1:b7:6c:70:f9:7c:23:78:c4:b1:
f3:1e:73:18:31:5e:eb:09:97:69:13:84:5a:d8:e5:
1b:6c:e5:5b:02:fe:76:ab:87:1a:a3:7a:69:65:ac:
c9:45:60:99:e4:6d:d5:29:a2:a8:78:8c:67:bf:c9:
b9:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56186
sbgp-ipAddrBlock: critical
IPv4:
43.245.240.0/22
103.13.8.0/22
202.3.80.0/20
202.92.216.0/21
Signature Algorithm: sha256WithRSAEncryption
83:fc:b7:df:db:be:bc:a7:22:fe:4a:7c:21:d5:31:67:7e:be:
76:5e:f9:7f:c4:91:c6:7a:89:e7:78:63:ae:f5:a6:56:45:f2:
19:67:1a:a2:d7:7e:81:7d:ce:3d:71:fa:6e:04:ae:06:bd:ab:
51:1b:7b:33:6e:cf:70:f3:05:d0:6e:3a:3e:22:33:dc:1e:75:
58:f2:2e:b7:94:64:32:83:c3:77:b7:38:20:44:7e:e4:bf:8d:
56:b7:27:6f:11:36:e4:13:25:35:0b:7d:7b:b6:f3:e6:2c:55:
32:de:45:1c:21:bf:25:10:2b:b0:b5:33:a1:ec:6e:c0:ec:05:
58:c3:db:ab:ba:df:60:23:9c:e7:e0:5d:81:cd:99:50:6e:ff:
02:73:b8:2b:aa:b5:46:bb:81:87:18:bc:53:0e:6f:7f:66:05:
90:0b:ed:87:9a:96:be:c7:cd:83:d2:8d:9b:bf:35:7f:15:2c:
cb:6d:cc:39:d2:ea:86:37:a5:83:b9:52:78:bb:12:a6:66:c1:
cb:7a:10:ea:e1:87:e3:04:be:6c:aa:b8:31:ba:68:05:c5:c9:
35:34:35:18:01:1b:8b:70:b9:95:b9:3d:12:36:6d:1e:af:cd:
b3:9c:4a:02:52:0d:15:9b:73:47:1b:fb:cb:a3:ee:29:ca:72:
9b:f6:de:1c
-----BEGIN CERTIFICATE-----
MIIGLDCCBRSgAwIBAgIDArxiMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDYxMDEzMjA1OVoXDTI3MDczMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNjczRUQxMTAvBgNVBAUTKDM5MzU2NkY0NDE3ODZEOTU4RDhBNzkx
MThFOEVGNTZGQzg3MkU1QzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDkhfaPHM0Z61gzfz5eV7xbYFESMW9H55PKdMqVPUSLT0rGmi+l1+Nw/HdRH2EK
onHirYdYQOTz22JYcIq+N3GjEzrItMAa7HWkBJEWqAMpnmgRCLmYOokOh96Qys5w
8bIPsNz0KEgQc9UdpXsrpM7BRNDRKOafVPTC/w6ulCeN7ks5novM2mL4WkSjGG8/
PAf2QscscDVLMEPuCf8jeZCz7yn9j1cpD/KsGQTKexeeNghBuEcb6xZIxH68tCVX
Cykszgpd8FXBobdscPl8I3jEsfMecxgxXusJl2kThFrY5Rts5VsC/narhxqjemll
rMlFYJnkbdUpoqh4jGe/ybmhAgMBAAGjggMhMIIDHTAdBgNVHQ4EFgQUOTVm9EF4
bZWNinkRjo71b8hy5cUwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTY3M0VELzREOEZBMjBFN0Q0OTExRUJBMTY1NzM3QkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE2NzNFRC80RDhGQTIwRTdENDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVG
NGJaV05pbmtSam83MWI4aHk1Y1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDANt6MDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQCK/XwAwQCZw0I
AwQEygNQAwQDylzYMA0GCSqGSIb3DQEBCwUAA4IBAQCD/Lff2768pyL+Snwh1TFn
fr52Xvl/xJHGeonneGOu9aZWRfIZZxqi136Bfc49cfpuBK4GvatRG3szbs9w8wXQ
bjo+IjPcHnVY8i63lGQyg8N3tzggRH7kv41WtydvETbkEyU1C317tvPmLFUy3kUc
Ib8lECuwtTOh7G7A7AVYw9urut9gI5zn4F2BzZlQbv8Cc7grqrVGu4GHGLxTDm9/
ZgWQC+2Hmpa+x82D0o2bvzV/FSzLbcw50uqGN6WDuVJ4uxKmZsHLehDq4YfjBL5s
qrgxumgFxck1NDUYARuLcLmVuT0SNm0er82znEoCUg0Vm3NHG/vLo+4pynKb9t4c
-----END CERTIFICATE-----
Generated at Sat Jun 13 05:49:28 2026 by rpki-client