Certificate

$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer
File:                     QSE7L18kKfwyjsP06V1YhkAv62k.cer (raw, json)
Hash identifier:          WPhiUf6dTPAClS8srnPEdnSMUCSqfLK2rL7J+Hu2Pus=
Subject key identifier:   41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer:       /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial:       7EE4
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate not before:   Fri 17 Jul 2026 13:50:41 +0000
Certificate not after:    Thu 30 Sep 2027 00:00:00 +0000
Subordinate resources:    IP: 155.144.0.0/16
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 19:50:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 32484 (0x7ee4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
        Validity
            Not Before: Jul 17 13:50:41 2026 GMT
            Not After : Sep 30 00:00:00 2027 GMT
        Subject: CN=A91757CB, serialNumber=41213B2F5F2429FC328EC3F4E95D5886402FEB69
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:5e:82:c8:af:63:f1:97:9e:7a:64:0a:63:f8:
                    54:2f:4b:d4:ef:c7:24:51:88:26:cc:49:bd:f8:74:
                    44:7b:05:b4:ab:a3:26:a5:5d:9e:6b:59:b2:f8:cb:
                    b4:23:5d:0e:50:33:26:19:01:da:4c:51:20:25:3d:
                    e8:bf:53:4a:bf:6a:b9:a9:68:47:ed:b4:53:67:39:
                    aa:89:16:0c:33:44:6b:a8:07:db:cd:3a:92:56:33:
                    c6:4b:fa:05:7e:4e:f9:a9:43:e5:de:b8:b7:3d:c8:
                    e5:4d:13:94:34:dc:30:61:68:85:c8:6f:0d:e7:46:
                    17:91:54:9a:34:53:11:de:e6:15:f2:a9:d2:8d:e3:
                    c0:e5:68:b0:d2:76:dc:7e:01:b7:9e:6b:fd:e0:dc:
                    3c:11:e3:22:c8:60:c5:4c:5b:84:8a:ab:74:08:e2:
                    80:79:81:48:48:c1:2c:0f:f1:9f:eb:df:d0:4f:8c:
                    c5:34:fa:aa:55:56:f0:8e:f7:6e:1c:df:0c:e8:d4:
                    fc:d8:9f:e4:5f:2b:95:76:b1:4b:2b:e2:4f:bb:b9:
                    db:47:5e:ef:e3:fa:a6:6f:b6:bb:ad:f7:f7:18:12:
                    c4:74:51:c2:24:3f:c3:51:b7:ff:08:26:19:21:17:
                    36:b2:99:bd:76:62:47:35:8b:da:11:6f:2c:c2:9f:
                    fe:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69
            X509v3 Authority Key Identifier:
                keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  155.144.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         aa:6c:5a:4a:e7:20:ee:da:0b:72:9a:dd:2a:3d:13:48:64:6c:
         09:ba:50:83:11:83:15:02:90:fb:03:fd:38:db:2e:56:e3:84:
         81:c3:d9:92:49:6c:14:82:57:bd:2c:a3:5a:05:a6:30:ff:cb:
         f8:57:1e:9f:8b:de:57:1f:02:ad:bc:26:64:8a:33:73:df:de:
         c4:be:14:31:30:ac:0a:25:b6:65:fe:5f:73:a7:01:58:31:90:
         4f:61:76:a2:11:0c:9c:20:4b:9c:34:ff:08:b1:13:3f:8f:67:
         c0:6f:7b:48:bf:2a:7f:a9:ab:e9:89:90:61:0e:95:20:60:39:
         de:f6:bc:f0:be:9b:f1:9e:cd:6c:20:b5:cc:c9:50:0e:04:0b:
         2b:b8:e0:56:24:20:f1:09:d2:62:c5:27:fb:cd:26:af:da:4e:
         0a:06:50:7a:f9:56:9c:90:4a:98:0b:06:e3:8f:7c:f3:5a:92:
         99:3d:ed:d4:f7:2e:2e:b9:7f:66:8e:1a:f5:da:3f:55:98:eb:
         d1:e5:aa:e2:a7:08:12:b3:1f:f6:78:f7:9b:a4:dd:59:dd:7f:
         68:93:fe:58:b5:37:cb:4e:c8:d5:07:6a:2d:51:7b:da:3e:11:
         6d:e3:49:f7:b1:8b:fc:e7:0b:0e:12:11:d9:4c:62:a3:2f:19:
         23:13:37:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:18:41 2026 by rpki-client