Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer
File: OhpAdHHRvxyhUl8h997PWmoqZNg.cer (raw, json)
Hash identifier: /NRTFaWXwjMUjvwzgkBX9msZnBfsgi3RP3xpDnxAmKY=
Subject key identifier: 3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 029B55
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 03:52:25 +0000
Certificate not after: Tue 02 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 38611
IP: 103.12.200.0/22
IP: 103.253.64.0/22
IP: 113.11.184.0/22
IP: 180.92.208.0/22
IP: 203.17.148.0/22
IP: 203.33.236.0/24
IP: 203.34.12.0/23
IP: 203.55.188.0/24
IP: 203.57.15.0/24
IP: 203.80.168.0/24
IP: 203.193.192.0/19
IP: 2400:5b80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 14:59:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170837 (0x29b55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 03:52:25 2026 GMT
Not After : Mar 2 00:00:00 2027 GMT
Subject: CN=A91B7B23, serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:22:0f:9d:4c:b5:27:55:35:6a:e5:5e:57:18:
e2:b7:2a:ab:92:24:e7:e9:35:aa:f7:7b:48:b8:f4:
a8:78:0e:41:62:c8:5d:41:98:21:f4:f9:b4:68:a7:
5a:df:b5:4f:65:ee:b9:31:93:27:89:bc:d7:54:d3:
3f:ea:45:72:71:a8:f4:bd:1a:35:a9:37:88:31:7e:
85:7d:3f:08:e8:da:91:86:42:1b:56:58:95:a7:24:
d9:e6:01:eb:cf:f6:b3:a3:ce:9f:c7:84:16:56:02:
2d:fe:06:b2:17:c2:c8:df:de:bc:d9:a0:30:b5:ad:
5b:a5:8b:41:2f:a8:61:f7:eb:19:ec:e4:2f:52:43:
06:bf:52:76:8f:c1:4e:85:e7:cd:78:4e:ad:02:b4:
59:55:e9:2e:6c:cd:15:40:83:68:6f:36:0d:80:c2:
bd:15:66:41:a4:8f:0e:0d:01:c7:b0:48:e8:54:15:
b6:13:3d:d8:84:39:93:87:d7:a1:c5:c9:50:a1:3b:
40:45:d1:d5:e4:d2:99:a6:13:d0:a4:3c:9c:68:ef:
0f:82:e3:e5:f8:87:53:e8:b7:99:54:6d:a7:ae:c9:
18:15:db:09:9e:f4:d6:51:59:99:c4:a9:7a:18:cb:
83:37:50:ee:fa:26:11:8f:ec:8e:19:4c:20:cb:bb:
08:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38611
sbgp-ipAddrBlock: critical
IPv4:
103.12.200.0/22
103.253.64.0/22
113.11.184.0/22
180.92.208.0/22
203.17.148.0/22
203.33.236.0/24
203.34.12.0/23
203.55.188.0/24
203.57.15.0/24
203.80.168.0/24
203.193.192.0/19
IPv6:
2400:5b80::/32
Signature Algorithm: sha256WithRSAEncryption
b9:02:0e:53:28:46:5d:ca:0b:27:20:21:71:ab:0c:5f:73:61:
e2:c7:dd:15:a1:46:a4:4a:e6:bc:62:66:71:28:cc:30:bf:f1:
3f:1a:85:1e:01:62:6b:66:44:5f:6b:1c:72:cb:69:25:00:8d:
01:a4:b7:11:17:cb:5f:3b:ba:9c:84:f2:6c:b9:a7:27:35:c0:
c9:a0:f5:c9:da:49:b2:d9:5e:3d:8a:56:f9:30:b9:17:3c:0f:
89:d6:b7:03:61:06:7f:1b:d4:d9:f3:cc:ff:5f:05:ab:6f:df:
8a:be:86:f2:39:84:94:95:29:74:a0:c0:c1:9d:6d:a0:72:c5:
f2:5c:85:5c:41:73:37:d2:a0:87:3a:ca:90:04:22:41:f2:07:
63:02:ec:ab:92:9f:9c:12:b8:82:9c:df:7d:aa:dd:76:c1:b9:
03:72:e8:86:87:c1:a7:af:c7:cb:05:3d:82:97:52:f6:9f:78:
e0:de:3a:e6:91:5e:5c:25:ea:1b:ab:bd:d3:af:8f:a9:0d:cb:
ce:40:66:81:e2:c5:2e:6e:d8:67:91:0c:b4:b0:6b:b7:b3:b9:
da:31:12:bf:70:70:0e:93:72:7e:ff:be:3d:b9:7a:c9:55:8a:
84:01:7e:eb:91:7d:2e:1f:71:5c:68:70:a5:2a:a6:1d:5f:90:
be:b1:78:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:31:42 2026 by rpki-client