Certificate

$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer
File:                     poP2ckwCoT8tOc8vIVAL4AOA3eM.cer (raw, json)
Hash identifier:          1b9wsCq7nYI/65dY3Jbabw183j+S1EodCrb4peWb+qQ=
Subject key identifier:   A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer:       /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial:       02BDB9
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate not before:   Tue 16 Jun 2026 14:05:25 +0000
Certificate not after:    Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources:    AS: 38077
                          IP: 103.112.36.0/22
                          IP: 180.189.160.0/20
                          IP: 2405:1f00::/32
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 18 Jul 2026 01:20:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 179641 (0x2bdb9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
        Validity
            Not Before: Jun 16 14:05:25 2026 GMT
            Not After : Aug 31 00:00:00 2027 GMT
        Subject: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:64:1f:b4:54:01:b3:b2:8e:d9:fe:c6:51:37:
                    af:ad:55:9f:6d:df:8e:84:f5:e8:0e:c6:e7:92:38:
                    ed:06:00:ef:33:f2:f8:5f:24:98:c0:36:65:be:1f:
                    b8:48:16:c6:3a:55:6b:99:b5:4f:33:0f:8f:41:1f:
                    85:6f:84:e1:ca:a4:46:ec:23:4a:7c:cb:b1:f8:aa:
                    4c:06:ba:43:d6:1b:5e:82:d6:23:bc:81:85:a4:7d:
                    fd:a7:91:ca:62:94:00:b5:de:7f:be:7f:98:26:da:
                    38:23:d4:11:71:bb:3c:48:3f:a5:95:bb:ff:56:b8:
                    68:6c:ec:22:ed:81:16:5a:ed:63:49:45:32:46:cc:
                    b7:20:44:a6:b2:01:d8:38:df:92:11:39:55:79:ee:
                    2e:bb:35:ba:1d:79:fe:26:6a:0e:75:c7:cb:8c:ac:
                    1f:db:52:65:ad:a7:4a:19:80:5c:f0:43:0a:f6:a2:
                    f2:54:2d:75:8c:ac:90:27:00:ab:53:33:da:40:d7:
                    fc:9d:1d:ee:f2:56:20:b5:8c:23:4f:cf:23:b6:59:
                    ec:47:8d:f9:4d:63:0d:68:03:fa:e2:0e:22:31:59:
                    52:eb:c7:18:e0:9a:b6:45:25:be:1e:48:bd:50:3b:
                    08:f8:67:47:3e:15:16:5b:ad:41:6c:ca:8a:19:c1:
                    25:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3
            X509v3 Authority Key Identifier:
                keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  38077

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.112.36.0/22
                  180.189.160.0/20
                IPv6:
                  2405:1f00::/32

    Signature Algorithm: sha256WithRSAEncryption
         b5:68:3f:4d:16:24:42:63:c6:b5:b3:58:a8:2d:32:74:40:29:
         f1:1a:78:84:1b:bb:18:c3:b4:d6:0b:7e:c6:e4:48:9e:1f:ac:
         84:f6:8f:b3:72:9b:72:c3:be:48:68:a1:47:25:47:24:9e:f3:
         65:2c:3f:51:97:e8:62:80:38:bd:d9:f4:72:a3:40:a2:26:ff:
         b5:89:e3:57:b2:a6:03:83:f6:18:dc:73:d9:b5:a5:cc:87:ef:
         fe:60:52:48:48:2e:69:6b:ba:89:f3:ad:6a:47:19:cd:fb:6c:
         fa:41:af:8e:32:c6:6b:5b:98:41:2d:3e:2c:57:3d:ff:4a:8b:
         00:95:1d:ef:9f:32:a9:64:74:15:47:da:09:79:00:4f:f5:97:
         7a:4f:e0:05:f7:a3:f8:cd:7d:40:79:eb:61:e6:0d:e3:49:d2:
         8a:50:dc:a7:c4:3a:f8:8f:09:14:54:5f:b0:82:f0:27:50:c5:
         0c:d7:ac:ba:e8:ba:9b:6c:17:0b:0a:e3:0a:c6:c1:30:8e:2e:
         b2:eb:01:df:53:10:c2:51:03:ec:3e:ce:23:7a:05:a3:04:41:
         24:8e:ab:7b:f6:8f:e5:ba:88:7c:fe:47:4e:3e:11:98:62:07:
         92:ce:13:aa:d0:c6:b3:7a:b3:31:4c:60:b6:3c:20:29:72:7c:
         3f:53:0a:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 11 03:18:07 2026 by rpki-client