Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer
File: ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer (raw, json)
Hash identifier: S9OHpf4Do4hdbbvnv/v8SgMEGk0XDv2YjIoEtBCyr6w=
Subject key identifier: A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A92B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 01 Apr 2026 15:13:57 +0000
Certificate not after: Sat 01 Aug 2026 00:00:00 +0000
Subordinate resources: AS: 138633
IP: 103.135.98.0/23
IP: 2404:79c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Apr 2026 14:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174379 (0x2a92b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 1 15:13:57 2026 GMT
Not After : Aug 1 00:00:00 2026 GMT
Subject: CN=A91F8AC4, serialNumber=A337633E35919940BD729D912F3663158C267C36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e2:7c:77:6a:78:9f:be:f1:d6:52:21:75:3d:
5a:4e:23:e7:e7:d1:63:c1:13:da:81:2b:61:77:3b:
d0:ab:dc:72:11:31:24:f1:c3:1b:cf:f8:be:5e:b1:
69:e1:ee:a9:b6:40:5c:33:c0:a3:89:a5:73:29:0a:
a2:06:f2:75:2d:f0:77:ca:c3:f5:73:c4:2a:af:04:
b3:62:67:e7:12:86:f9:ab:f3:79:a4:a8:28:43:22:
30:b7:6c:12:2e:48:67:54:a8:62:f9:3f:61:22:5f:
89:2a:3a:5f:2a:80:b7:d8:f3:9c:c0:d1:73:f5:ef:
89:60:b7:5f:6e:b2:fa:fe:85:61:0a:d5:c9:e8:9c:
d3:c8:1d:a1:ac:b9:1d:4a:71:cb:79:bb:f0:d6:af:
36:a3:2f:3a:27:61:e8:df:25:0c:7c:69:14:1f:b6:
87:99:f4:50:d4:ec:56:c6:f9:b4:4a:e0:83:84:00:
8a:a6:7f:f7:17:2e:7b:09:a2:54:fb:d7:64:9d:5e:
9c:0c:61:f2:6c:c5:6b:f7:dd:7e:66:52:5f:9d:ee:
98:43:00:86:f7:83:78:1e:2f:1c:0d:33:39:87:ea:
c7:c9:8e:c3:01:53:32:aa:71:4b:ed:bf:59:10:e0:
8a:50:c0:34:8f:f8:09:81:cb:15:fd:11:94:5a:bc:
78:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138633
sbgp-ipAddrBlock: critical
IPv4:
103.135.98.0/23
IPv6:
2404:79c0::/32
Signature Algorithm: sha256WithRSAEncryption
32:cc:78:5d:a4:3c:ac:2d:db:63:39:c9:bc:30:05:c8:c6:57:
4e:66:34:e3:3e:d7:a3:63:b7:33:9d:10:dc:e7:73:41:c7:4b:
65:a0:f6:18:79:84:67:21:ee:f0:9b:65:a0:8d:ec:9e:cf:ab:
76:99:1d:e3:e8:3e:ca:54:a6:42:0b:eb:ea:dd:a1:25:37:04:
24:0a:7f:f7:6f:46:bf:04:3b:5d:3b:82:15:13:61:58:45:c9:
30:fe:11:e2:c5:a8:06:d9:89:83:3f:de:ae:97:e5:a8:f1:da:
ce:46:44:96:e6:f5:5e:05:b8:0b:48:6e:a6:1c:aa:e3:34:82:
61:40:b6:89:04:b9:05:80:7c:9c:98:f1:dd:97:70:83:6b:83:
cd:12:bb:ce:59:6e:99:4e:e4:14:6b:76:58:46:d7:67:60:a0:
07:aa:60:9f:b4:46:68:82:aa:69:e5:8a:81:0d:89:0a:ff:67:
55:00:94:0b:4c:7b:d4:7b:9c:8d:db:3e:ed:65:66:b0:dc:3f:
5f:f6:13:72:66:c8:07:d3:c4:a7:07:48:d6:89:b5:27:5a:5d:
e3:65:36:ea:33:6c:c3:21:a5:4e:d3:2a:22:18:62:ec:0a:50:
77:ad:7c:7b:d2:c9:83:52:8a:cf:59:f9:67:7f:c1:9d:e3:23:
19:58:ca:7f
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAqkrMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDQwMTE1MTM1N1oXDTI2MDgwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRjhBQzQxMTAvBgNVBAUTKEEzMzc2MzNFMzU5MTk5NDBCRDcyOUQ5
MTJGMzY2MzE1OEMyNjdDMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC74nx3anifvvHWUiF1PVpOI+fn0WPBE9qBK2F3O9Cr3HIRMSTxwxvP+L5esWnh
7qm2QFwzwKOJpXMpCqIG8nUt8HfKw/VzxCqvBLNiZ+cShvmr83mkqChDIjC3bBIu
SGdUqGL5P2EiX4kqOl8qgLfY85zA0XP174lgt19usvr+hWEK1cnonNPIHaGsuR1K
cct5u/DWrzajLzonYejfJQx8aRQftoeZ9FDU7FbG+bRK4IOEAIqmf/cXLnsJolT7
12SdXpwMYfJsxWv33X5mUl+d7phDAIb3g3geLxwNMzmH6sfJjsMBUzKqcUvtv1kQ
4IpQwDSP+AmByxX9EZRavHgRAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUozdjPjWR
mUC9cp2RLzZjFYwmfDYwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUY4QUM0L0M4RkUxNzRDNTc3NTExRUQ4MUYxM0I2RkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFGOEFDNC9DOEZFMTc0QzU3NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpX
Um1VQzljcDJSTHpaakZZd21mRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAh2JMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ4diMA0EAgAC
MAcDBQAkBHnAMA0GCSqGSIb3DQEBCwUAA4IBAQAyzHhdpDysLdtjOcm8MAXIxldO
ZjTjPtejY7cznRDc53NBx0tloPYYeYRnIe7wm2Wgjeyez6t2mR3j6D7KVKZCC+vq
3aElNwQkCn/3b0a/BDtdO4IVE2FYRckw/hHixagG2YmDP96ul+Wo8drORkSW5vVe
BbgLSG6mHKrjNIJhQLaJBLkFgHycmPHdl3CDa4PNErvOWW6ZTuQUa3ZYRtdnYKAH
qmCftEZogqpp5YqBDYkK/2dVAJQLTHvUe5yN2z7tZWaw3D9f9hNyZsgH08SnB0jW
ibUnWl3jZTbqM2zDIaVO0yoiGGLsClB3rXx70smDUorPWflnf8Gd4yMZWMp/
-----END CERTIFICATE-----
Generated at Sun Apr 5 18:31:23 2026 by rpki-client