Certificate

$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer
File:                     5bRMaejecz32GWYFbn5BXsfHDSo.cer (raw, json)
Hash identifier:          bwBZ9BlRuq9O3jXF4RjHxnf682EE/AQpM0fzoDMRRuY=
Subject key identifier:   E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer:       /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial:       7E7E
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate not before:   Wed 08 Jul 2026 14:21:09 +0000
Certificate not after:    Thu 30 Sep 2027 00:00:00 +0000
Subordinate resources:    IP: 160.25.70.0/23
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 19:50:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 32382 (0x7e7e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
        Validity
            Not Before: Jul  8 14:21:09 2026 GMT
            Not After : Sep 30 00:00:00 2027 GMT
        Subject: CN=A91B4873, serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:70:53:c4:fa:40:85:25:af:31:d2:92:05:91:
                    65:65:d3:4b:45:da:8e:d7:36:b0:f4:e6:8a:b3:10:
                    ba:a4:2d:3b:76:0e:83:47:03:c2:af:5b:a6:97:00:
                    fc:ca:d3:83:31:c7:f0:b2:25:8d:5c:6a:57:12:4b:
                    59:51:c5:56:d4:22:e9:aa:0e:3d:c6:68:d7:01:0d:
                    50:71:2f:ac:d3:49:ec:96:12:c3:29:04:32:a5:5a:
                    da:ed:6d:a3:64:ea:16:bb:84:66:ae:05:20:25:1f:
                    1f:aa:f2:a0:82:65:29:f8:76:81:81:dc:8d:e3:4a:
                    29:48:37:00:79:4e:68:75:43:8a:99:2b:1b:05:28:
                    3e:de:7f:48:37:09:4b:88:a9:20:d0:11:1f:5f:03:
                    f0:e2:6f:da:fd:32:9e:57:7a:22:f9:ed:2b:da:50:
                    27:7b:26:98:35:c0:b7:e2:a5:f5:17:03:60:0f:b0:
                    7b:02:25:7b:fd:26:aa:60:4a:1a:de:f6:97:e0:b8:
                    91:7e:b2:7d:96:1b:bc:a8:3b:5c:81:82:16:e3:75:
                    11:63:1e:4f:4f:6f:02:45:27:a7:c7:fd:fc:e8:d0:
                    59:99:b8:cc:a2:f4:9f:8b:ec:e9:80:a5:f5:82:80:
                    1a:02:98:c5:58:43:48:cd:c0:1d:ad:b8:a2:7a:e0:
                    23:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A
            X509v3 Authority Key Identifier:
                keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  160.25.70.0/23

    Signature Algorithm: sha256WithRSAEncryption
         b2:3b:bc:e7:63:9c:70:9c:65:9b:ab:3d:ef:e6:c3:86:46:86:
         72:86:3b:0b:ab:9f:d2:b7:de:06:c7:1b:5a:95:95:4b:98:af:
         0d:d9:63:69:6e:57:28:dd:ca:05:dc:91:0f:36:2c:f5:5d:cb:
         52:0e:3a:f2:62:a5:c8:dc:82:79:7a:d4:c3:f1:b1:c7:81:7f:
         37:6b:c2:36:4d:d7:e7:c7:7e:9d:d3:48:6b:b5:49:1e:ee:55:
         18:4e:d8:80:42:41:94:95:26:1d:64:10:ed:08:44:f6:ee:08:
         3b:ac:b4:43:e7:4f:5f:bc:5d:51:37:bb:3d:ba:db:03:36:e6:
         5e:e9:24:d7:22:1c:29:d9:47:18:ee:3f:fc:64:b7:6a:41:37:
         14:1a:9b:58:54:32:bf:0d:5a:88:e9:67:db:14:51:e9:86:3e:
         a3:ac:02:24:87:63:8d:3f:4b:2b:77:fd:49:6d:d5:df:39:07:
         49:1b:3a:96:41:a5:66:a4:f5:6c:90:4d:7a:f3:07:e0:66:44:
         19:25:94:6d:89:cc:c2:70:8d:f6:c1:ff:f9:55:44:f1:66:39:
         f7:28:98:32:21:b1:db:c5:8d:4b:0f:68:d9:4a:90:8e:ac:aa:
         fe:5b:31:1c:a3:03:1a:bd:ef:8b:ea:13:58:a8:05:d3:65:e2:
         f6:49:80:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:18:06 2026 by rpki-client