Certificate

$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/coqCQJLldBJUu5LVl3IzYaBL8pI.cer
File:                     coqCQJLldBJUu5LVl3IzYaBL8pI.cer (raw, json)
Hash identifier:          1fSrr7hJ8VpwG+iFeqJDOOD3L8CAxa4URd2iJI4hQWM=
Subject key identifier:   72:8A:82:40:92:E5:74:12:54:BB:92:D5:97:72:33:61:A0:4B:F2:92
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer:       /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial:       02C476
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/coqCQJLldBJUu5LVl3IzYaBL8pI.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate not before:   Fri 10 Jul 2026 14:46:23 +0000
Certificate not after:    Thu 30 Sep 2027 00:00:00 +0000
Subordinate resources:    AS: 132341
                          AS: 137967
                          AS: 138417
                          IP: 103.14.72.0/23
                          IP: 103.59.233.0/24
                          IP: 2407:e7c0::/32
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Jul 2026 07:47:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 181366 (0x2c476)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
        Validity
            Not Before: Jul 10 14:46:23 2026 GMT
            Not After : Sep 30 00:00:00 2027 GMT
        Subject: CN=A91F1B61, serialNumber=728A824092E5741254BB92D597723361A04BF292
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:68:d5:d8:a9:5d:df:5e:b3:2b:9c:3b:45:60:
                    a4:fe:53:1d:4c:86:fc:f3:da:9a:a7:62:ee:53:7b:
                    df:be:3a:4f:2b:74:ec:a6:c5:14:d4:ba:71:e2:4d:
                    d3:e7:f5:eb:de:55:15:21:59:ca:19:9d:20:03:52:
                    56:b2:11:f3:20:62:81:91:60:c6:3d:f5:ae:50:0b:
                    ec:8f:8f:fd:5b:9a:2c:5f:9f:4b:f2:4c:ad:7b:5c:
                    b3:64:aa:7d:47:37:e1:11:c1:de:f0:3b:dc:21:94:
                    bb:c2:05:f4:ad:0b:b8:10:1e:2c:c7:2f:41:a1:b9:
                    18:dd:82:0e:90:b2:df:c3:74:99:16:bc:83:eb:06:
                    d4:49:13:cf:eb:27:69:62:20:66:52:50:49:b7:4f:
                    8a:7c:fa:75:0b:38:95:cf:28:e8:1e:a0:05:56:26:
                    16:a7:5d:24:08:a0:15:ec:8c:2f:57:59:51:4e:11:
                    76:31:1a:e6:e1:c9:b2:3e:a3:df:01:85:4e:60:75:
                    bd:a3:0c:67:f1:8c:8d:e9:06:84:f8:0e:d5:99:b8:
                    4e:17:40:01:15:7d:19:4e:0c:4c:8d:eb:8c:47:35:
                    a5:0d:39:2f:b2:31:6c:cf:83:6b:74:0b:6f:86:51:
                    01:1b:99:08:73:d0:9d:05:ca:7a:8c:a4:ed:90:f4:
                    a8:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                72:8A:82:40:92:E5:74:12:54:BB:92:D5:97:72:33:61:A0:4B:F2:92
            X509v3 Authority Key Identifier:
                keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/coqCQJLldBJUu5LVl3IzYaBL8pI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  132341
                  137967
                  138417

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.14.72.0/23
                  103.59.233.0/24
                IPv6:
                  2407:e7c0::/32

    Signature Algorithm: sha256WithRSAEncryption
         85:93:0a:66:44:be:13:4a:16:5d:a3:83:ed:0a:92:e8:2f:d4:
         23:1c:dd:b6:9b:bb:82:3e:48:5c:1d:1c:1b:24:97:67:3e:fb:
         83:ce:41:50:a2:53:81:f5:2b:39:81:a1:3a:c1:70:64:ff:b2:
         67:b7:5c:1a:6a:e1:cf:fe:49:5e:27:1d:61:8d:d6:b3:fa:ce:
         48:ea:93:ed:94:a7:78:8f:d3:30:17:66:ce:1c:18:ee:9a:bb:
         35:53:43:db:c8:e5:c7:8e:8e:8f:ba:73:13:58:41:99:7f:60:
         86:af:e1:05:fa:53:ca:9f:b4:56:ff:12:d6:df:e0:fe:7e:fc:
         6d:ea:dc:35:6c:8e:36:4a:e8:7f:63:a5:16:44:6a:af:e5:c7:
         43:47:73:79:25:7b:8f:45:91:1a:c5:10:65:d7:5c:0c:05:2d:
         91:a1:0e:21:01:6e:06:82:bb:0c:3c:98:82:ed:05:0d:91:54:
         2e:88:ff:8c:e1:3d:c2:2a:3a:7f:a1:7e:ce:04:a6:c1:08:0a:
         12:12:0e:b1:f4:4b:9e:21:c2:59:6f:86:5c:4e:e2:5c:42:34:
         f9:80:c7:2c:12:1d:97:ae:45:09:71:8c:98:c7:79:a9:24:7a:
         94:f4:8e:02:1b:7a:08:f8:65:53:81:b1:b0:e0:7e:15:47:f0:
         0f:f0:70:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:27:02 2026 by rpki-client