$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/NYkhQ8STubLMHnkTP1Ixxy4VJoU.cer File: NYkhQ8STubLMHnkTP1Ixxy4VJoU.cer (raw, json) Hash identifier: 5Io+ZhD6eGNHBDuzxNkROZNW84qAmrnVEYlBG9AninA= Subject key identifier: 35:89:21:43:C4:93:B9:B2:CC:1E:79:13:3F:52:31:C7:2E:15:26:85 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 6223 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Sun 15 Feb 2026 01:32:41 +0000 Certificate not after: Mon 15 Feb 2027 01:30:02 +0000 Subordinate resources: IP: 202.250.16.0/20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Mar 2026 19:26:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25123 (0x6223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Feb 15 01:32:41 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=35892143C493B9B2CC1E79133F5231C72E152685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:75:9c:c6:fe:72:f8:84:85:e6:20:b8:98:06: 97:c3:e3:cf:94:8e:9b:39:42:0d:5c:75:be:7c:42: 2e:2d:77:42:23:30:3a:7a:61:3e:53:03:31:eb:d0: d8:dc:23:d9:ad:fd:b3:46:b6:65:98:34:a1:16:15: 17:d9:3f:70:9f:53:65:79:11:11:a2:8d:9a:a3:98: 75:d6:16:b1:34:10:ed:52:ea:da:10:2b:59:48:fb: 85:be:4c:34:c0:0b:54:2f:dd:d9:87:30:c5:65:45: f0:77:e3:b8:30:13:54:4f:5d:be:f3:3b:12:3b:6a: 48:dd:8a:28:3d:e4:21:b1:b0:85:ee:e4:8a:16:bc: 0a:53:09:bd:18:d0:36:40:bf:d8:6a:7d:e4:fa:d4: 0e:87:69:71:aa:7d:c3:65:e8:ee:ab:dd:6a:13:f6: 8e:9d:0a:02:e7:d7:77:71:6e:a3:6c:90:9d:be:66: c9:26:d0:16:ac:05:18:7d:89:11:d0:d7:17:3f:94: da:98:fb:54:c1:af:e9:48:23:43:ce:71:20:f3:54: fa:84:26:c4:e9:cf:12:2e:cf:95:e3:38:25:8a:d2: 92:c0:1b:ec:c1:3d:ac:87:69:1b:3b:36:70:22:b6: 86:d5:1a:bf:08:f5:9a:6f:cd:8e:75:25:64:d2:cf: 08:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:89:21:43:C4:93:B9:B2:CC:1E:79:13:3F:52:31:C7:2E:15:26:85 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.250.16.0/20 Signature Algorithm: sha256WithRSAEncryption 4a:5f:7f:96:f7:e7:37:21:42:0f:a4:a8:83:db:e5:a5:9c:b5: 36:6d:5b:e1:83:09:53:90:a7:ec:fa:da:f7:41:5c:87:57:4c: a9:a1:7c:c8:e8:26:be:2b:29:cb:db:ce:4b:93:55:44:ac:30: 5c:2c:d5:50:08:63:a8:0c:64:1a:2a:a2:fd:c7:9a:df:e4:09: 0b:d4:af:2b:58:10:96:f9:32:f1:d1:78:e2:22:f6:5b:3d:d8: 02:78:e4:59:6d:50:24:71:96:27:f7:8b:16:a0:d7:d3:de:4e: 5e:92:2b:8d:1c:83:14:07:0a:2f:88:a9:b0:8d:55:a3:f8:7f: bf:cb:f5:6d:97:c7:6f:69:ee:01:74:47:2a:87:a7:39:9b:1b: 5e:32:46:fa:d7:1b:41:8d:14:3f:2f:b1:58:1f:0a:24:02:af: 94:77:6c:f7:e9:c4:6e:4b:0a:24:9d:df:e2:4b:b7:e5:e2:98: 0c:4a:97:96:68:b7:cb:30:80:21:95:fe:a1:21:f0:64:6a:43: 78:7d:4b:ec:df:80:bd:09:03:94:86:b6:d1:71:6e:32:9c:3c: 4f:91:be:c6:8d:16:0e:f1:2f:c0:f3:62:31:82:9e:34:be:ce: c8:1b:58:ee:b7:24:69:10:a0:1f:8a:79:86:1c:02:9f:78:cf: 99:56:8e:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICYiMwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI2MDIxNTAxMzI0MVoXDTI3MDIxNTAxMzAwMlowMzEx MC8GA1UEAxMoMzU4OTIxNDNDNDkzQjlCMkNDMUU3OTEzM0Y1MjMxQzcyRTE1MjY4 NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALV1nMb+cviEheYguJgG l8Pjz5SOmzlCDVx1vnxCLi13QiMwOnphPlMDMevQ2Nwj2a39s0a2ZZg0oRYVF9k/ cJ9TZXkREaKNmqOYddYWsTQQ7VLq2hArWUj7hb5MNMALVC/d2YcwxWVF8HfjuDAT VE9dvvM7EjtqSN2KKD3kIbGwhe7kiha8ClMJvRjQNkC/2Gp95PrUDodpcap9w2Xo 7qvdahP2jp0KAufXd3Fuo2yQnb5mySbQFqwFGH2JEdDXFz+U2pj7VMGv6UgjQ85x IPNU+oQmxOnPEi7PleM4JYrSksAb7ME9rIdpGzs2cCK2htUavwj1mm/NjnUlZNLP CPsCAwEAAaOCAokwggKFMB0GA1UdDgQWBBQ1iSFDxJO5ssweeRM/UjHHLhUmhTAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAQYIKwYBBQUHAQsEgfQw gfEwQwYIKwYBBQUHMAWGN3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMjE1NC8wYgYIKwYBBQUHMAqGVnJzeW5jOi8vcnBr aS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMjE1NC9OWWto UThTVHViTE1IbmtUUDFJeHh5NFZKb1UubWZ0MEYGCCsGAQUFBzANhjpodHRwczov L3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJkcC9hcC9ub3RpZmljYXRpb24u eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEyvoQMA0GCSqGSIb3DQEB CwUAA4IBAQBKX3+W9+c3IUIPpKiD2+WlnLU2bVvhgwlTkKfs+tr3QVyHV0ypoXzI 6Ca+KynL285Lk1VErDBcLNVQCGOoDGQaKqL9x5rf5AkL1K8rWBCW+TLx0XjiIvZb PdgCeORZbVAkcZYn94sWoNfT3k5ekiuNHIMUBwoviKmwjVWj+H+/y/Vtl8dvae4B dEcqh6c5mxteMkb61xtBjRQ/L7FYHwokAq+Ud2z36cRuSwoknd/iS7fl4pgMSpeW aLfLMIAhlf6hIfBkakN4fUvs34C9CQOUhrbRcW4ynDxPkb7GjRYO8S/A82Ixgp40 vs7IG1jutyRpEKAfinmGHAKfeM+ZVo5G -----END CERTIFICATE-----Generated at Sun Feb 22 23:27:17 2026 by rpki-client