Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhsJQZH-NHU3GcHUgfIIhagIwWs.cer
File: OhsJQZH-NHU3GcHUgfIIhagIwWs.cer (raw, json)
Hash identifier: EoDscoYOi8ypyCzhnue+AnGvYmhksNrszgNwDT7DbIY=
Subject key identifier: 3A:1B:09:41:91:FE:34:75:37:19:C1:D4:81:F2:08:85:A8:08:C1:6B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 029C06
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918C425/DFBAEE14DBE411F0A8B5BF64366F56BC/OhsJQZH-NHU3GcHUgfIIhagIwWs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918C425/DFBAEE14DBE411F0A8B5BF64366F56BC/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 03:55:30 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 132617
IP: 103.245.23.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 14:59:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171014 (0x29c06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 03:55:30 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A918C425, serialNumber=3A1B094191FE34753719C1D481F20885A808C16B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f6:91:76:06:8a:85:a4:5b:44:f6:9b:54:39:
f0:4a:16:a1:8c:19:3f:93:57:99:e7:b3:57:fe:13:
1c:24:92:35:08:7d:fc:ab:af:33:20:86:af:c8:be:
a0:30:92:de:cb:bc:71:e7:6c:c4:6a:d4:26:91:e0:
c1:9c:55:38:5f:2f:e4:35:b3:cc:aa:6c:40:46:f6:
55:5e:71:93:64:f2:67:75:a6:72:e2:e8:52:ac:f0:
30:09:4d:fd:66:7d:3c:f5:57:f1:a0:76:07:e9:a1:
7d:5b:bc:09:fc:24:46:3d:d1:a1:76:70:50:a6:5c:
fd:d7:90:4d:2a:f4:97:4f:47:e8:f5:69:60:e2:b5:
f8:7d:d5:19:f5:6d:ab:f3:19:b5:91:67:b8:32:4c:
ef:32:43:ac:45:a0:9b:0c:33:7c:95:16:8c:9e:14:
a5:77:31:c7:12:ae:6a:5b:db:b7:92:f6:a0:e2:f8:
77:93:5c:c4:86:83:76:c4:91:3c:64:42:d4:12:36:
86:fb:af:39:56:9f:10:a9:29:21:3c:04:23:23:20:
7f:be:e3:b6:d0:e2:2c:3b:f0:0f:d9:4f:c6:d1:20:
82:a4:90:2b:bb:2d:b7:c4:92:a1:4e:31:0a:81:7a:
cb:4b:cc:e2:ed:4b:ca:da:8c:c0:62:c2:fd:2f:b9:
b6:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:1B:09:41:91:FE:34:75:37:19:C1:D4:81:F2:08:85:A8:08:C1:6B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918C425/DFBAEE14DBE411F0A8B5BF64366F56BC/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918C425/DFBAEE14DBE411F0A8B5BF64366F56BC/OhsJQZH-NHU3GcHUgfIIhagIwWs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132617
sbgp-ipAddrBlock: critical
IPv4:
103.245.23.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:cf:c2:46:1e:0c:7e:73:ed:fd:f1:ba:66:db:9d:1d:db:6d:
30:14:bc:e4:f8:df:15:71:66:be:23:26:fb:d8:44:59:b6:f1:
70:31:1f:c7:d6:2f:50:43:c5:cb:bd:6f:83:ef:8c:6a:2c:26:
22:23:75:40:d7:2b:9c:2d:5b:31:ab:c2:90:43:25:29:4e:91:
df:69:74:64:6e:19:e9:7a:a5:b3:f3:5b:f8:6c:89:2a:1a:cc:
a7:87:6e:65:b5:e2:90:a3:b7:3c:6a:18:f3:7b:a4:53:7b:1a:
ad:e4:29:8a:f1:b8:f4:e4:1f:c7:b7:14:d0:25:da:5d:c8:db:
77:96:b3:f9:19:9c:64:bd:9a:8d:f9:9e:7d:32:19:82:10:73:
e3:b4:27:67:42:0a:0a:c7:7a:8d:92:fc:60:48:4a:fe:50:0f:
0e:2a:db:aa:2b:b4:d8:3d:94:97:fc:be:4c:d3:55:1a:49:68:
9e:b5:b9:20:35:9f:8d:23:4e:b6:a3:a0:47:0c:96:95:37:43:
be:db:fa:8d:64:3f:5e:8f:4a:96:9b:22:9e:8b:a2:97:a4:cf:
61:3d:4b:98:c9:f0:5a:fd:71:a0:28:d7:3a:74:3b:51:da:0e:
c5:d8:4c:7f:9b:9f:b9:58:57:e3:14:d1:3d:bf:79:38:2c:11:
41:1f:30:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:26:27 2026 by rpki-client