Certificate

$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-hwMVM9L_QxwRpYeani2dyFJ_I.cer
File:                     e-hwMVM9L_QxwRpYeani2dyFJ_I.cer (raw, json)
Hash identifier:          TPZ7eqti1ix6VMf/vBDOU8PBInak4111TEaoicE6SMU=
Subject key identifier:   7B:E8:70:31:53:3D:2F:F4:31:C1:1A:58:79:A9:E2:D9:DC:85:27:F2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer:       /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial:       02C1C9
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/e-hwMVM9L_QxwRpYeani2dyFJ_I.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate not before:   Wed 01 Jul 2026 14:24:25 +0000
Certificate not after:    Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources:    IP: 202.36.34.0/24
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 14 Jul 2026 21:20:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 180681 (0x2c1c9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
        Validity
            Not Before: Jul  1 14:24:25 2026 GMT
            Not After : Aug 31 00:00:00 2027 GMT
        Subject: CN=A91C35C9, serialNumber=7BE87031533D2FF431C11A5879A9E2D9DC8527F2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:81:65:3e:0c:c7:e0:59:1a:e0:fe:4b:39:55:
                    b6:16:23:65:90:3f:9e:98:5a:83:39:d6:a3:64:ad:
                    90:ba:ff:d2:ce:f5:fd:e7:7c:55:d6:90:b0:de:41:
                    4a:ca:44:4d:2b:16:9a:4c:f1:83:6b:07:1d:a4:f3:
                    bb:e8:bb:03:0f:58:da:96:37:c8:64:6f:7d:55:0f:
                    2f:d6:7e:88:b1:19:cb:b3:60:2d:ed:df:29:76:9b:
                    0b:e8:f1:0e:fe:06:55:34:4e:bc:9d:e9:24:d2:6e:
                    79:e6:64:c4:e5:55:e1:8d:74:9b:ee:70:3e:87:34:
                    21:3f:fb:a2:df:24:92:52:98:4b:ed:2a:f1:32:f2:
                    6f:e9:c4:f7:76:3e:d1:10:3e:a5:a0:3a:49:a2:20:
                    b2:a8:95:5a:62:f6:dc:d1:e6:1e:21:eb:a9:56:a3:
                    e3:61:22:0b:ce:c8:0c:03:33:db:78:2a:72:3a:c2:
                    80:dc:b8:ca:a3:5c:85:f7:c8:c5:d4:87:2b:dc:7a:
                    9d:e8:01:b2:2e:ac:74:78:ac:10:3d:9f:e4:1b:b6:
                    a9:76:fb:71:60:11:c6:0e:67:2c:47:ed:b5:d2:ff:
                    d9:77:0c:8a:87:58:b5:72:7f:16:0c:18:c2:7a:f5:
                    c5:9e:b3:bb:13:4d:a6:dc:dd:22:0d:60:71:da:0f:
                    f4:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:E8:70:31:53:3D:2F:F4:31:C1:1A:58:79:A9:E2:D9:DC:85:27:F2
            X509v3 Authority Key Identifier:
                keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/e-hwMVM9L_QxwRpYeani2dyFJ_I.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  202.36.34.0/24

    Signature Algorithm: sha256WithRSAEncryption
         39:e9:6a:8f:e2:77:2f:fe:87:9c:1d:64:07:52:b6:a9:d4:35:
         a8:59:92:61:91:43:73:a8:20:98:2f:a0:a5:f1:e6:32:a2:4c:
         f6:c3:fc:8c:17:0b:53:3e:71:20:a0:99:bf:3f:68:95:fe:d6:
         b9:5e:be:9e:8a:67:59:3a:5d:ff:69:de:83:a4:48:9a:e4:57:
         1a:04:38:c8:cb:e3:86:db:2a:c9:8c:ba:c0:ef:3d:b5:8a:e2:
         f6:f0:dd:07:df:ab:36:bc:38:b3:0c:b1:c7:87:1d:ac:79:f9:
         a0:0d:eb:be:4e:c6:84:3e:1b:c1:60:33:69:c3:04:59:2d:53:
         34:96:4d:67:56:02:0b:f1:db:34:fc:86:7f:3e:c1:97:73:cc:
         12:53:43:3d:e1:db:08:25:44:e3:ea:b0:75:6b:01:92:41:7a:
         fb:84:12:00:18:76:4f:ec:8a:21:10:89:16:68:b4:c9:d8:28:
         74:47:ad:0a:82:66:47:16:89:78:45:e1:e5:bb:76:18:2f:8b:
         2e:4c:2f:45:0a:46:f3:7d:57:39:86:af:91:df:c3:20:1f:09:
         76:22:3e:08:fa:28:95:c5:92:c0:73:13:10:ba:5d:23:8c:10:
         02:79:ca:49:91:b4:b8:20:52:4c:be:5d:18:cd:18:1f:2a:20:
         77:8c:ed:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 23:11:04 2026 by rpki-client