$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/4oKHAq-VJLLD1X4biwxkliVmlJw.cer File: 4oKHAq-VJLLD1X4biwxkliVmlJw.cer (raw, json) Hash identifier: UhqOeVb1OkzU8h8+aTV67PT7pWakGzrlrTcD7T50/+Y= Subject key identifier: E2:82:87:02:AF:95:24:B2:C3:D5:7E:1B:8B:0C:64:96:25:66:94:9C Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 5899 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30376/4oKHAq-VJLLD1X4biwxkliVmlJw.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30376/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Mon 15 Sep 2025 01:34:47 +0000 Certificate not after: Tue 15 Sep 2026 01:30:02 +0000 Subordinate resources: IP: 2407:58c0::/32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Oct 2025 14:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22681 (0x5899) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Sep 15 01:34:47 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=E2828702AF9524B2C3D57E1B8B0C64962566949C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:76:f9:3f:55:c9:c1:51:e3:78:cc:6b:2a:f6: 53:0a:24:1c:59:3f:17:10:18:32:ea:2b:24:8a:fd: 6b:ae:2c:ce:fb:8d:dc:74:1c:4d:6c:e3:39:72:0c: ed:09:04:37:88:5c:92:0c:94:8e:73:aa:0f:2f:2d: 3a:3a:1f:eb:62:32:99:f4:a8:85:ca:bf:6a:80:01: 04:2c:80:1c:76:e6:71:7a:2f:4f:0b:17:4a:7c:fa: 04:f2:9a:9f:74:c1:63:15:4c:51:9c:25:13:cd:9c: b4:8a:27:cf:4f:24:6d:18:cc:d3:1a:20:2e:92:43: 3f:f9:4a:3f:e7:d2:a9:75:14:9c:d2:d0:62:8f:23: 4e:ee:5d:df:29:d6:f8:18:b1:99:55:3f:f4:20:e2: 17:28:63:03:b2:d0:02:8f:b8:cb:18:0b:69:50:16: 3c:17:44:45:3b:c5:d8:80:c3:8c:ae:8e:cb:c5:86: 3f:94:59:5a:8b:cf:b9:bc:69:8b:23:77:39:98:72: 90:fd:28:de:be:cb:b8:68:5e:bd:54:7b:8d:69:98: 77:eb:14:6d:ca:86:40:97:bc:4e:3d:6f:bb:e8:1f: 0c:ca:45:30:88:5c:c3:d0:ee:f9:c7:f6:7d:c2:10: d2:90:14:97:ff:00:fa:af:bb:dd:62:fc:a7:41:a5: 84:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:82:87:02:AF:95:24:B2:C3:D5:7E:1B:8B:0C:64:96:25:66:94:9C X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30376/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30376/4oKHAq-VJLLD1X4biwxkliVmlJw.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:58c0::/32 Signature Algorithm: sha256WithRSAEncryption 66:7a:5a:23:3a:22:35:35:bc:0e:e3:c3:c0:57:fa:b6:05:2d: b6:c3:1a:6e:e8:ec:4a:54:0e:02:d2:5f:6e:9b:ae:72:9e:e5: 19:ca:ed:7f:97:86:e5:5d:a2:7a:62:b3:68:7d:3a:a2:a9:a7: 53:00:ab:a3:6b:e7:30:18:52:79:bf:66:24:5b:e7:e7:a5:6a: d9:e1:3a:d9:23:c0:92:9c:3d:32:ca:13:ee:a0:85:e6:93:ff: d0:b8:45:aa:66:b3:e0:58:57:86:66:c0:f8:2f:be:c5:a4:96: 06:e5:c3:b2:0b:3d:77:1d:a4:31:eb:f3:07:61:1a:f7:71:ea: 78:61:d8:64:ff:62:96:fa:2c:75:a8:66:af:34:56:2e:6c:8d: 18:b2:a0:82:f3:09:10:81:ed:b0:bf:45:8b:c1:d4:bc:b9:57: 3b:b1:57:2b:51:36:1c:92:15:fa:e6:1a:20:26:72:28:ec:c5: 1a:16:19:5c:ec:1a:bd:16:17:19:e9:05:50:b6:65:ca:52:67: f0:ca:98:5a:89:ea:f5:f2:40:bc:dd:5f:47:d1:44:9e:68:e8: 82:1b:d5:c4:23:e5:00:83:e0:1c:4f:50:41:9d:fe:81:10:d2: ad:de:0c:d2:62:e8:5c:c9:db:a1:92:21:97:37:64:82:eb:2c: 78:a0:4f:67 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICWJkwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MDkxNTAxMzQ0N1oXDTI2MDkxNTAxMzAwMlowMzEx MC8GA1UEAxMoRTI4Mjg3MDJBRjk1MjRCMkMzRDU3RTFCOEIwQzY0OTYyNTY2OTQ5 QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALR2+T9VycFR43jMayr2 UwokHFk/FxAYMuorJIr9a64szvuN3HQcTWzjOXIM7QkEN4hckgyUjnOqDy8tOjof 62IymfSohcq/aoABBCyAHHbmcXovTwsXSnz6BPKan3TBYxVMUZwlE82ctIonz08k bRjM0xogLpJDP/lKP+fSqXUUnNLQYo8jTu5d3ynW+BixmVU/9CDiFyhjA7LQAo+4 yxgLaVAWPBdERTvF2IDDjK6Oy8WGP5RZWovPubxpiyN3OZhykP0o3r7LuGhevVR7 jWmYd+sUbcqGQJe8Tj1vu+gfDMpFMIhcw9Du+cf2fcIQ0pAUl/8A+q+73WL8p0Gl hNcCAwEAAaOCAowwggKIMB0GA1UdDgQWBBTigocCr5UkssPVfhuLDGSWJWaUnDAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAzNzYvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMzc2LzRv S0hBcS1WSkxMRDFYNGJpd3hrbGlWbWxKdy5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB1jAMA0GCSqGSIb3 DQEBCwUAA4IBAQBmelojOiI1NbwO48PAV/q2BS22wxpu6OxKVA4C0l9um65ynuUZ yu1/l4blXaJ6YrNofTqiqadTAKuja+cwGFJ5v2YkW+fnpWrZ4TrZI8CSnD0yyhPu oIXmk//QuEWqZrPgWFeGZsD4L77FpJYG5cOyCz13HaQx6/MHYRr3cep4Ydhk/2KW +ix1qGavNFYubI0YsqCC8wkQge2wv0WLwdS8uVc7sVcrUTYckhX65hogJnIo7MUa Fhlc7Bq9FhcZ6QVQtmXKUmfwyphaier18kC83V9H0USeaOiCG9XEI+UAg+AcT1BB nf6BENKt3gzSYuhcyduhkiGXN2SC6yx4oE9n -----END CERTIFICATE-----Generated at Wed Oct 8 15:41:22 2025 by rpki-client