Certificate

$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/d-xIaS0EJwKXjc0LaOlAuNdyPlI.cer
File:                     d-xIaS0EJwKXjc0LaOlAuNdyPlI.cer (raw, json)
Hash identifier:          kXfJxyTdx30AqUoGXXbAO579islAyFyjidk0NmOk7P0=
Subject key identifier:   77:EC:48:69:2D:04:27:02:97:8D:CD:0B:68:E9:40:B8:D7:72:3E:52
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer:       /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial:       7D77
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate not before:   Tue 23 Jun 2026 12:22:16 +0000
Certificate not after:    Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources:    IP: 157.10.54.0/23
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 19:50:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 32119 (0x7d77)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
        Validity
            Not Before: Jun 23 12:22:16 2026 GMT
            Not After : Aug 31 00:00:00 2027 GMT
        Subject: CN=A9112320, serialNumber=77EC48692D042702978DCD0B68E940B8D7723E52
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:5e:16:38:58:5b:fb:f4:30:33:94:4f:bc:03:
                    56:fb:81:ad:50:ea:49:6e:86:ee:2d:b4:a7:bc:2d:
                    05:72:41:0f:69:97:92:97:64:0d:2e:32:24:a8:89:
                    1f:36:d2:22:8c:1b:fc:de:f5:4d:38:be:a2:09:d0:
                    00:31:db:ee:0c:6f:d8:86:ee:9b:b1:e9:3f:a2:00:
                    13:51:96:ba:83:38:5c:5a:4d:0e:4f:d3:bf:de:f0:
                    3b:24:cb:c9:96:87:8e:95:d8:4d:0c:a9:62:86:fa:
                    87:c8:1a:c2:90:f1:a5:2a:77:4a:d1:7f:79:35:e4:
                    10:6d:11:81:61:d0:6d:d2:9b:77:0d:fc:7e:15:c2:
                    5e:ef:19:c6:81:76:09:5e:e9:de:ff:4d:f6:7f:75:
                    d4:13:d3:c2:5f:61:d7:68:3f:3b:fa:cb:46:96:31:
                    ae:2d:48:9d:c3:87:25:54:ce:5c:49:c7:c3:ce:31:
                    20:4d:0b:e4:89:e2:3e:64:61:6a:4c:9e:f0:fc:a1:
                    fd:25:ba:45:f5:93:a5:67:65:e6:d7:83:0f:b7:37:
                    48:d8:a6:a0:5e:8e:85:f2:94:4e:ab:02:0f:46:4c:
                    ef:f8:d0:ec:39:dd:af:2b:28:9f:aa:cc:61:04:60:
                    53:e5:91:b9:e1:1e:e3:71:33:fc:f3:4d:f0:8f:10:
                    c2:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:EC:48:69:2D:04:27:02:97:8D:CD:0B:68:E9:40:B8:D7:72:3E:52
            X509v3 Authority Key Identifier:
                keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  157.10.54.0/23

    Signature Algorithm: sha256WithRSAEncryption
         4d:85:53:08:4a:7d:7e:5c:37:72:75:ac:23:30:ef:d2:57:c5:
         c6:a1:76:2f:6d:f0:17:b9:6b:78:c5:7e:fc:6b:18:2f:02:9f:
         d8:53:a7:15:71:95:08:6d:09:c9:5a:f5:01:d8:ad:24:14:25:
         30:fd:86:b1:b5:15:e8:65:a5:5d:0a:d2:ce:82:50:96:6e:f1:
         75:17:cc:ce:b2:b0:cb:0a:f9:f3:24:0e:3a:83:1f:1e:0a:23:
         fd:6b:0d:83:33:7f:6e:70:cf:4f:5d:45:24:a5:0f:8c:de:10:
         f0:90:39:33:b4:4f:09:79:a6:54:cb:ff:8e:a2:10:9c:69:f7:
         a5:a5:a9:ad:2f:46:e7:af:e4:b5:c4:a0:10:48:0c:51:2d:e9:
         48:a3:0c:af:9c:1b:c5:14:3f:f0:99:ba:10:39:e8:ce:44:24:
         eb:2c:69:17:d5:f9:03:d2:29:f2:d8:a4:0e:fa:b5:db:bf:18:
         c1:96:b4:2e:90:1a:c0:9d:70:59:6c:e5:be:33:c7:6f:08:4d:
         bc:3d:31:dd:e4:3e:d6:3f:40:60:ae:11:22:7c:70:04:16:06:
         df:13:62:bf:e4:b4:d0:1c:f0:ad:24:e1:d6:8e:fb:3d:ec:d3:
         0d:3d:50:85:59:fb:71:1f:0b:47:bb:20:41:12:d2:7a:f4:e2:
         96:aa:21:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:18:00 2026 by rpki-client