Certificate

$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1g_8H2jVv3igoGfR7zuJHUTEZo.cer
File:                     v1g_8H2jVv3igoGfR7zuJHUTEZo.cer (raw, json)
Hash identifier:          hnT8Zvv0/AcV0yJjVk6pvynvH51d3l7VnK/JpHxZvhM=
Subject key identifier:   BF:58:3F:F0:7D:A3:56:FD:E2:82:81:9F:47:BC:EE:24:75:13:11:9A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer:       /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial:       02BE27
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/v1g_8H2jVv3igoGfR7zuJHUTEZo.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate not before:   Thu 18 Jun 2026 12:32:00 +0000
Certificate not after:    Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources:    AS: 10076
                          IP: 202.5.192.0/20
                          IP: 2404:ec80::/32
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 25 Jul 2026 02:50:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 179751 (0x2be27)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
        Validity
            Not Before: Jun 18 12:32:00 2026 GMT
            Not After : Aug 31 00:00:00 2027 GMT
        Subject: CN=A912142C, serialNumber=BF583FF07DA356FDE282819F47BCEE247513119A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e4:fe:b5:73:95:75:52:dc:cf:ac:bb:db:01:fc:
                    ca:00:86:e9:54:b1:c5:47:0f:b5:34:ad:67:0b:c0:
                    ea:fa:86:61:a3:60:94:30:12:8c:d1:63:3b:87:0a:
                    6d:67:bf:08:ed:91:ed:4b:77:83:15:82:7b:9a:6b:
                    92:03:1a:c6:c2:9d:73:4a:88:6e:2a:ce:a2:9c:64:
                    7c:f1:32:60:2f:fd:cd:a4:bf:8a:9d:7e:9e:ea:30:
                    fe:d1:95:3b:ea:83:47:81:3c:e9:01:f2:18:22:10:
                    1a:a9:cd:aa:2d:90:ce:ee:8e:77:dc:97:0d:a6:80:
                    04:20:46:ac:0e:4f:53:e0:d9:82:ff:c2:fd:21:ff:
                    5d:b3:5d:76:61:0f:d8:66:98:87:23:01:a7:44:a4:
                    15:ca:cd:26:a9:e5:03:91:88:29:25:da:3f:b4:6b:
                    fa:6e:0a:a4:f5:f0:5f:1b:51:2f:4d:49:b1:43:76:
                    1f:cb:c8:27:ba:ef:ef:a7:b8:0c:77:db:16:0c:ce:
                    4a:74:b8:18:06:d2:a9:e5:86:1c:b8:b8:ac:30:1d:
                    77:1e:33:0e:a9:3c:fa:27:2c:be:99:7d:51:18:97:
                    6a:57:0f:cd:f2:fd:3d:82:a6:a5:10:fe:87:71:87:
                    5d:bf:41:dd:82:78:12:74:df:21:fa:c5:bf:63:40:
                    a7:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BF:58:3F:F0:7D:A3:56:FD:E2:82:81:9F:47:BC:EE:24:75:13:11:9A
            X509v3 Authority Key Identifier:
                keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/v1g_8H2jVv3igoGfR7zuJHUTEZo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  10076

            sbgp-ipAddrBlock: critical
                IPv4:
                  202.5.192.0/20
                IPv6:
                  2404:ec80::/32

    Signature Algorithm: sha256WithRSAEncryption
         06:16:40:3f:54:79:c5:6e:46:33:88:b6:e4:ea:c2:5b:0c:03:
         34:77:18:56:c4:22:c6:0a:05:75:e9:1e:1d:ec:12:49:65:63:
         c1:5e:82:19:70:db:df:8f:f5:b2:ad:54:fe:98:74:ba:cd:d1:
         27:67:af:e6:97:0b:bb:32:dd:21:17:8d:ce:1d:92:63:55:39:
         2b:5d:51:ec:2c:8d:14:67:7a:b8:e3:6b:a3:c3:f6:e0:a3:ec:
         24:4b:f6:ba:04:25:c8:f4:5e:d4:71:2a:5f:88:fe:47:cc:b7:
         90:0e:28:d9:42:cf:dd:9b:ed:c1:1a:cc:b6:99:40:ca:0b:69:
         b9:a7:25:4c:8e:85:14:27:cb:87:13:85:91:50:f5:ff:54:e1:
         97:79:f5:2e:28:c2:08:99:3b:e4:5b:41:2a:b0:2d:5d:9b:42:
         1f:39:9a:b5:a3:8d:52:27:24:27:98:4a:32:b9:a3:5e:7a:42:
         f3:42:ff:1b:9b:b8:34:d0:02:ff:bb:fa:e5:25:fe:56:41:49:
         1f:2c:25:4e:4f:a7:de:c3:37:91:a7:6e:1b:28:35:2b:ed:38:
         4f:ee:a5:dd:53:43:ef:50:91:32:61:52:3b:df:2c:24:2d:5a:
         24:af:ca:f7:32:f8:7d:f8:31:e5:3d:3c:6f:b6:30:ac:9b:8b:
         50:9f:db:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:19:15 2026 by rpki-client