Certificate

$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhjedbJYi2Yzpr-IzTiPMcQ6ycA.cer
File:                     EhjedbJYi2Yzpr-IzTiPMcQ6ycA.cer (raw, json)
Hash identifier:          683Kr1Z7b+gtWnhFkYt37azFGoDq27D9o350Thcq+uE=
Subject key identifier:   12:18:DE:75:B2:58:8B:66:33:A6:BF:88:CD:38:8F:31:C4:3A:C9:C0
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer:       /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial:       7E06
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A913C07A/F142614ABE6711EEB33C6D6EC4F9AE02/EhjedbJYi2Yzpr-IzTiPMcQ6ycA.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A913C07A/F142614ABE6711EEB33C6D6EC4F9AE02/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate not before:   Thu 02 Jul 2026 12:59:45 +0000
Certificate not after:    Sun 01 Nov 2026 00:00:00 +0000
Subordinate resources:    IP: 157.15.52.0/23
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 19:50:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 32262 (0x7e06)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
        Validity
            Not Before: Jul  2 12:59:45 2026 GMT
            Not After : Nov  1 00:00:00 2026 GMT
        Subject: CN=A913C07A, serialNumber=1218DE75B2588B6633A6BF88CD388F31C43AC9C0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:ce:5a:44:69:0a:0e:35:dc:bc:56:50:ed:1d:
                    5a:23:46:06:d0:37:7e:7f:d9:12:e9:d8:0d:72:cb:
                    4f:4e:04:ee:ae:2c:2b:f7:56:ce:5b:4b:a4:51:28:
                    c2:00:74:9a:58:36:d0:ad:df:94:52:48:77:1d:c1:
                    b6:38:1d:bc:db:90:b0:c8:c9:1a:7d:c3:09:c8:2e:
                    73:42:ec:a7:08:58:c1:c1:71:31:03:9d:b8:89:ab:
                    4c:be:25:aa:03:2e:65:e0:a3:5f:07:77:03:a0:2d:
                    31:16:33:2c:cb:85:13:68:a3:f8:a3:87:95:cf:8c:
                    0f:d2:14:40:fa:a3:3b:16:95:a8:f8:7c:ce:84:f4:
                    53:20:6e:6f:f1:a7:5a:cc:2b:df:30:70:9d:2e:9c:
                    94:01:bf:10:b3:e0:21:d0:da:fe:ce:26:be:45:48:
                    59:21:1e:a3:11:ab:c9:e5:ca:4a:90:55:9c:8f:de:
                    49:e7:b9:35:2d:fc:ee:e4:dc:da:7b:06:95:c9:29:
                    b5:ae:eb:a3:4c:ca:82:d0:8a:49:bd:0a:ec:b4:e5:
                    96:a8:b9:40:b7:47:b7:8b:d7:cc:c3:3b:93:57:08:
                    a5:ca:83:1a:bc:11:05:ba:bf:1f:23:ad:ca:c8:58:
                    fe:d5:f7:4a:b1:a5:09:42:dd:2b:cf:8b:dd:3b:60:
                    10:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                12:18:DE:75:B2:58:8B:66:33:A6:BF:88:CD:38:8F:31:C4:3A:C9:C0
            X509v3 Authority Key Identifier:
                keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913C07A/F142614ABE6711EEB33C6D6EC4F9AE02/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913C07A/F142614ABE6711EEB33C6D6EC4F9AE02/EhjedbJYi2Yzpr-IzTiPMcQ6ycA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  157.15.52.0/23

    Signature Algorithm: sha256WithRSAEncryption
         18:fd:29:7a:02:2d:3e:1c:6c:5b:bd:38:c9:9f:98:a3:a3:06:
         8d:27:ad:b8:40:ea:8c:c0:7c:e8:7c:87:05:dd:f4:59:84:14:
         7a:44:9a:35:7d:d1:9e:d3:86:e5:c1:a6:3d:ea:b0:ea:03:d3:
         19:d6:19:8a:6b:7c:e3:07:fc:6a:4e:14:aa:6e:5c:f7:0a:20:
         df:b4:27:f0:94:9a:b7:b6:35:3c:8f:61:f8:dc:1c:ac:51:04:
         f4:d9:7f:ad:58:b1:e8:3c:88:6a:59:49:d4:e5:60:b5:84:82:
         39:d4:26:7a:f1:72:f0:2b:1a:39:be:50:b3:41:78:9c:0f:7e:
         be:f7:57:f3:f5:89:f6:90:96:52:8d:e2:50:0b:63:91:3c:63:
         5c:49:ea:88:d5:8f:eb:a0:68:75:fd:01:5e:b5:b2:80:d2:8c:
         e7:a6:e9:9c:e1:0f:ec:5b:a1:42:91:5a:c4:b5:e7:42:58:6e:
         c3:92:51:02:09:9e:09:e3:c8:52:cd:d5:1d:8c:b3:cd:4a:6d:
         54:5d:c4:56:9f:c9:51:b4:1c:0d:dc:56:0a:45:c9:f6:6b:34:
         3c:b0:f4:13:b5:e6:fa:32:53:46:c8:dd:d2:7d:91:c4:f4:20:
         1d:df:17:b4:db:40:ed:a5:b4:e7:e0:06:56:9e:79:00:05:17:
         0e:f1:45:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:18:03 2026 by rpki-client