This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/KQWj7o-cNhq9lxsMqXJt-Dz6a_g.cer File: KQWj7o-cNhq9lxsMqXJt-Dz6a_g.cer (raw, json) Hash identifier: tluS0KX9d5qQ/4rdbjB4a4m+tbNpek7oHQhqB7CZRNw= Subject key identifier: 29:05:A3:EE:8F:9C:36:1A:BD:97:1B:0C:A9:72:6D:F8:3C:FA:6B:F8 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 5E6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30016/KQWj7o-cNhq9lxsMqXJt-Dz6a_g.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30016/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Mon 15 Dec 2025 01:34:28 +0000 Certificate not after: Tue 15 Dec 2026 01:30:02 +0000 Subordinate resources: IP: 2001:240::/32 IP: 2001:300::/32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 08:42:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24175 (0x5e6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Dec 15 01:34:28 2025 GMT Not After : Dec 15 01:30:02 2026 GMT Subject: CN=2905A3EE8F9C361ABD971B0CA9726DF83CFA6BF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:af:77:a9:da:3a:c4:f9:6e:b7:22:96:4e:90: 4d:98:c1:a0:94:8a:12:f7:0f:72:dd:d1:d9:79:ce: a9:63:ee:7a:11:2b:10:98:a9:2b:b0:ab:32:04:cd: 93:92:d0:fc:cd:66:21:40:e6:4e:5b:97:9e:0f:eb: 00:5a:89:4e:a5:1e:7d:cc:48:ea:8a:15:19:d8:21: 48:79:6d:10:19:2d:6a:54:1b:b9:73:42:95:23:f5: a8:f0:58:b5:b9:be:24:2b:e1:d4:6c:9c:3f:29:db: 78:f9:63:dc:46:6d:ad:8f:ec:a8:9b:c2:7d:2a:4a: 40:b5:ba:70:5f:47:8f:17:15:c9:68:cb:dc:87:4e: a1:f6:b7:04:8f:68:5e:b5:40:08:60:bb:e9:13:3d: d2:d4:1b:c5:2d:aa:16:56:dd:bb:ec:83:1c:9f:3f: 07:ba:61:4b:af:05:00:71:62:bb:d0:28:af:98:5f: 32:55:8f:86:97:0c:3a:d1:2b:0d:bf:e8:79:93:5e: ca:71:92:1f:e5:31:d4:60:b0:03:52:9f:69:ca:92: 03:6d:85:66:dd:18:5c:d8:34:ac:ac:3e:ae:1e:1f: 58:67:ea:71:b9:c2:99:0e:73:b5:c6:56:e4:b2:88: 9e:cf:c6:59:af:a5:c7:e8:fb:df:78:de:d0:63:68: 8f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:05:A3:EE:8F:9C:36:1A:BD:97:1B:0C:A9:72:6D:F8:3C:FA:6B:F8 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30016/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30016/KQWj7o-cNhq9lxsMqXJt-Dz6a_g.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:240::/32 2001:300::/32 Signature Algorithm: sha256WithRSAEncryption 98:df:7e:5c:0d:f7:97:e1:4b:3c:53:13:3c:69:5b:30:ec:46: d0:03:a2:cd:a2:8f:65:7e:05:f0:5f:18:a7:db:4f:50:54:8e: 55:fe:e5:6a:0c:9b:05:ed:a6:94:05:aa:3b:b3:6d:5f:b7:5a: ea:3f:4c:67:9c:78:6b:11:df:8c:85:21:27:b5:76:c7:5b:9c: b7:e5:0a:3e:b7:b4:b1:76:df:94:d7:19:56:67:54:1b:b7:85: f9:28:ef:02:6c:e0:5e:f9:96:ee:4a:44:03:a7:f1:2f:9e:0e: bd:e4:54:b0:14:63:b2:89:62:14:64:cd:d5:c2:5c:c9:69:38: ea:3f:0d:c5:59:f4:29:ce:c9:b2:e7:19:75:39:38:4f:c0:51: 30:a1:cc:25:53:95:8d:82:16:8d:47:fb:e5:66:b6:a1:2b:62: d7:77:e3:d0:11:7e:26:27:f9:59:c8:5c:94:6f:1f:8b:30:00: 2a:68:08:70:42:90:4b:ac:ee:ee:0f:90:14:96:8b:b0:8c:c9: 11:d6:ac:bc:73:ee:a4:68:a9:21:58:a8:fb:bd:ed:3d:28:c4: 3e:fa:d1:fd:45:f4:82:0b:cb:ae:34:9f:c5:b6:49:93:57:c3: e1:f8:fa:10:34:9e:e9:d0:0b:c5:35:a6:a0:ca:84:7c:0c:f4: b1:ec:33:ec -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICXm8wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MTIxNTAxMzQyOFoXDTI2MTIxNTAxMzAwMlowMzEx MC8GA1UEAxMoMjkwNUEzRUU4RjlDMzYxQUJEOTcxQjBDQTk3MjZERjgzQ0ZBNkJG ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMevd6naOsT5brcilk6Q TZjBoJSKEvcPct3R2XnOqWPuehErEJipK7CrMgTNk5LQ/M1mIUDmTluXng/rAFqJ TqUefcxI6ooVGdghSHltEBktalQbuXNClSP1qPBYtbm+JCvh1GycPynbePlj3EZt rY/sqJvCfSpKQLW6cF9HjxcVyWjL3IdOofa3BI9oXrVACGC76RM90tQbxS2qFlbd u+yDHJ8/B7phS68FAHFiu9Aor5hfMlWPhpcMOtErDb/oeZNeynGSH+Ux1GCwA1Kf acqSA22FZt0YXNg0rKw+rh4fWGfqcbnCmQ5ztcZW5LKIns/GWa+lx+j733je0GNo j+MCAwEAAaOCApMwggKPMB0GA1UdDgQWBBQpBaPuj5w2Gr2XGwypcm34PPpr+DAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAwMTYvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMDE2L0tR V2o3by1jTmhxOWx4c01xWEp0LUR6NmFfZy5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwJwYIKwYBBQUHAQcBAf8EGDAWMBQEAgACMA4DBQAgAQJAAwUAIAEDADAN BgkqhkiG9w0BAQsFAAOCAQEAmN9+XA33l+FLPFMTPGlbMOxG0AOizaKPZX4F8F8Y p9tPUFSOVf7lagybBe2mlAWqO7NtX7da6j9MZ5x4axHfjIUhJ7V2x1uct+UKPre0 sXbflNcZVmdUG7eF+SjvAmzgXvmW7kpEA6fxL54OveRUsBRjsoliFGTN1cJcyWk4 6j8NxVn0Kc7JsucZdTk4T8BRMKHMJVOVjYIWjUf75Wa2oSti13fj0BF+Jif5Wchc lG8fizAAKmgIcEKQS6zu7g+QFJaLsIzJEdasvHPupGipIVio+73tPSjEPvrR/UX0 ggvLrjSfxbZJk1fD4fj6EDSe6dALxTWmoMqEfAz0sewz7A== -----END CERTIFICATE-----Generated at Tue Dec 16 10:42:58 2025 by rpki-client