Certificate

$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nnabVGgi7tWnPT9dAt-atImAA6k.cer
File:                     nnabVGgi7tWnPT9dAt-atImAA6k.cer (raw, json)
Hash identifier:          Vbb/7snAevPnALEt7jQjPESFhy2r2+Jn8dlXbhb0eHE=
Subject key identifier:   9E:76:9B:54:68:22:EE:D5:A7:3D:3F:5D:02:DF:9A:B4:89:80:03:A9
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer:       /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial:       7E72
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A914B1DB/2D87DFD6431011EF868B2B81C4F9AE02/nnabVGgi7tWnPT9dAt-atImAA6k.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A914B1DB/2D87DFD6431011EF868B2B81C4F9AE02/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate not before:   Wed 08 Jul 2026 13:06:04 +0000
Certificate not after:    Thu 30 Sep 2027 00:00:00 +0000
Subordinate resources:    IP: 160.22.88.0/23
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 19:50:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 32370 (0x7e72)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
        Validity
            Not Before: Jul  8 13:06:04 2026 GMT
            Not After : Sep 30 00:00:00 2027 GMT
        Subject: CN=A914B1DB, serialNumber=9E769B546822EED5A73D3F5D02DF9AB4898003A9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:75:36:97:6f:09:60:2a:de:a4:27:57:97:01:
                    55:f8:bf:e9:b5:90:f4:93:8d:c3:d5:c2:34:aa:32:
                    ba:69:98:a3:5f:c7:cd:c7:ac:98:91:d3:82:90:3e:
                    cf:f5:1e:d8:42:6d:43:1b:e4:7f:dc:ac:98:a2:02:
                    71:7a:d0:75:07:09:98:d8:03:b1:db:a8:8d:88:94:
                    8e:07:21:8e:a0:47:7f:3d:1a:a1:b7:2a:1f:1a:61:
                    36:94:61:6c:75:9c:16:67:7c:43:5e:60:4a:c2:f0:
                    ab:be:06:b6:5a:c2:77:2e:37:60:e5:13:2e:6d:77:
                    1f:c0:cc:80:ab:f6:1b:a1:05:20:55:f4:f7:83:2f:
                    f0:37:88:11:99:d6:e6:dd:1c:3b:63:4c:7a:b5:2d:
                    98:6d:0c:39:66:6f:c5:a9:9e:0d:07:fb:c6:12:f0:
                    01:5d:8c:1e:8c:55:3b:37:12:e6:a3:5b:ad:84:0d:
                    fe:50:25:74:5e:3b:dd:bb:67:9b:81:e5:9d:77:47:
                    2e:44:d1:1a:ba:8b:4c:e4:81:a4:4f:13:cd:a2:00:
                    96:96:86:3d:9f:10:b6:af:99:85:6e:6a:d1:1b:f5:
                    3e:84:06:9f:37:25:78:60:dd:fc:b4:6f:e7:ec:d5:
                    ee:ce:67:57:5d:2e:3e:0a:c3:b6:57:90:03:6d:3f:
                    31:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9E:76:9B:54:68:22:EE:D5:A7:3D:3F:5D:02:DF:9A:B4:89:80:03:A9
            X509v3 Authority Key Identifier:
                keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914B1DB/2D87DFD6431011EF868B2B81C4F9AE02/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914B1DB/2D87DFD6431011EF868B2B81C4F9AE02/nnabVGgi7tWnPT9dAt-atImAA6k.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  160.22.88.0/23

    Signature Algorithm: sha256WithRSAEncryption
         4b:12:2e:b2:23:f6:ae:12:27:95:6b:c7:f9:9f:c4:45:62:05:
         97:72:3e:30:35:b5:ea:fb:40:24:79:ac:c7:cd:f3:2c:8e:bb:
         e7:28:fe:b1:c0:7f:a9:e4:7e:04:6b:16:16:81:1c:43:1e:66:
         1b:4e:e5:e0:d1:5d:30:23:da:67:e7:45:7a:cc:e7:2f:19:28:
         99:43:5c:8c:45:6b:28:3f:60:44:1c:44:78:30:a5:b6:ee:72:
         0d:d6:63:29:62:25:ba:68:36:83:b6:ea:6d:5b:01:b0:21:4f:
         d6:9c:fb:f3:ec:da:55:c0:c7:dc:22:cc:fd:df:aa:3a:92:ee:
         a3:14:87:c8:82:ff:cc:ab:d6:36:e2:aa:0a:df:ab:90:7d:ed:
         f3:bf:7e:7c:79:a9:79:8a:07:80:2f:a9:6a:07:47:a1:a9:50:
         ea:36:15:e2:3b:35:95:b7:cb:d4:a4:dd:c7:3e:8b:86:ef:9b:
         d0:5e:5e:62:52:c3:6a:a8:3a:69:ad:26:8b:4e:8a:93:a6:46:
         3e:d8:58:b0:2b:2f:8f:0d:3d:20:ed:39:41:cb:87:ec:54:84:
         cf:62:96:52:b8:73:8d:17:d8:83:20:bc:80:08:85:36:57:4a:
         ff:43:d2:79:7f:86:b3:fd:a5:3e:c7:8c:0d:a2:fe:ad:1c:66:
         70:15:54:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:17:18 2026 by rpki-client