Certificate

$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FjMp9XBd6bwiNaxX11T5gHjH9Ss.cer
File:                     FjMp9XBd6bwiNaxX11T5gHjH9Ss.cer (raw, json)
Hash identifier:          LnnH9nVYFgZ7XPcxy1cY7JQ9lyePZsa8uhmHJwK2OKI=
Subject key identifier:   16:33:29:F5:70:5D:E9:BC:22:35:AC:57:D7:54:F9:80:78:C7:F5:2B
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer:       /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial:       7E33
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A918BB4D/C07E1CD0652211EB80F6E94BC4F9AE02/FjMp9XBd6bwiNaxX11T5gHjH9Ss.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A918BB4D/C07E1CD0652211EB80F6E94BC4F9AE02/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate not before:   Sun 05 Jul 2026 13:40:14 +0000
Certificate not after:    Thu 30 Sep 2027 00:00:00 +0000
Subordinate resources:    AS: 4899
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 19:50:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 32307 (0x7e33)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
        Validity
            Not Before: Jul  5 13:40:14 2026 GMT
            Not After : Sep 30 00:00:00 2027 GMT
        Subject: CN=A918BB4D, serialNumber=163329F5705DE9BC2235AC57D754F98078C7F52B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:b0:5c:b1:2b:aa:97:9d:d4:1e:44:99:ce:6c:
                    89:4c:e5:ff:4c:f8:53:11:63:43:28:5b:98:37:e0:
                    6e:c0:c8:aa:57:6f:19:0c:de:d2:b1:65:9e:1e:1f:
                    f7:a0:da:59:e0:65:28:1a:6c:c6:9f:f6:0e:3b:ba:
                    a4:cd:f5:23:04:fe:2f:37:fd:0c:81:bb:64:e5:fe:
                    4f:58:0b:72:51:c3:c1:49:ea:77:ba:3d:c9:b7:4a:
                    7d:e8:3a:04:25:c0:89:bb:f7:25:c1:30:43:cd:ed:
                    96:60:13:95:3b:28:36:c2:2e:34:bf:41:bf:74:b0:
                    59:6e:55:0b:58:5d:de:9f:0f:a4:41:07:61:1f:d6:
                    8f:e8:14:67:bb:aa:ca:b6:dd:74:85:b2:b1:36:61:
                    6a:8d:86:64:e5:b9:4a:95:bf:2b:bc:29:0d:ff:7f:
                    27:27:52:1a:41:d7:c8:4a:9e:5e:0a:d8:38:40:55:
                    5c:c4:1b:fa:7f:0b:e6:12:01:dc:a2:79:03:b8:cc:
                    59:31:22:6e:ba:02:74:7d:27:0d:3d:60:41:3a:9b:
                    37:72:01:d6:d6:af:63:a0:c1:fa:ee:25:65:9d:28:
                    55:8c:67:c6:61:5f:f5:34:0c:b0:73:1c:47:07:68:
                    28:7e:0e:ea:1f:30:4c:00:e8:4e:64:ed:6a:bd:16:
                    c2:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:33:29:F5:70:5D:E9:BC:22:35:AC:57:D7:54:F9:80:78:C7:F5:2B
            X509v3 Authority Key Identifier:
                keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/C07E1CD0652211EB80F6E94BC4F9AE02/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/C07E1CD0652211EB80F6E94BC4F9AE02/FjMp9XBd6bwiNaxX11T5gHjH9Ss.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  4899

    Signature Algorithm: sha256WithRSAEncryption
         71:31:5d:d6:ce:3c:0c:2f:de:66:bb:73:74:69:42:5d:10:b7:
         ae:d6:93:67:4a:32:45:79:c9:b6:a2:73:ee:84:07:a7:fc:0b:
         aa:6d:55:2a:23:33:96:3c:a5:c1:5d:2d:35:a7:b6:bf:42:a3:
         d4:2c:1c:18:8d:84:fc:d3:dc:12:c7:38:66:aa:34:13:5b:62:
         d5:c6:59:b4:fa:91:41:bf:4c:f9:8a:2a:db:48:2a:6a:ac:eb:
         c3:64:e8:66:ee:db:d5:ae:35:7c:68:f3:3f:57:66:2f:2c:c2:
         97:92:d2:0b:fb:84:10:4f:6d:af:c7:f6:aa:70:4d:86:35:e5:
         bf:77:68:3b:e6:77:df:e8:07:2e:14:0c:c6:cd:6c:21:55:2e:
         16:ec:19:93:09:ca:17:84:59:d4:7f:83:61:2c:e9:fa:fd:c2:
         6c:9a:66:f4:cb:63:14:e0:cb:3f:a5:11:39:31:98:9c:e2:6b:
         74:eb:a4:1c:99:6e:09:e4:40:29:e0:ef:87:79:24:dd:be:d7:
         ab:f2:e7:62:1f:08:41:33:d6:10:cf:8c:d0:4a:32:6f:5a:28:
         09:db:6d:83:1a:78:1a:24:bb:54:8d:14:c0:6b:82:08:e9:94:
         af:f6:c8:88:01:ee:86:96:26:35:ce:ad:bd:d1:22:bb:5b:6a:
         83:76:ce:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:20:14 2026 by rpki-client