This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.cer File: XFfdxZJIJx5x4TJYd5krlzjgQ9Q.cer (raw, json) Hash identifier: icmhPo1HGUBwYw40EZ5K/0xdc8a/qQMPQPVMm9FypXI= Subject key identifier: 5C:57:DD:C5:92:48:27:1E:71:E1:32:58:77:99:2B:97:38:E0:43:D4 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 5CC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Sat 15 Nov 2025 01:37:00 +0000 Certificate not after: Sun 15 Nov 2026 01:30:02 +0000 Subordinate resources: IP: 103.167.44.0/23 IP: 133.32.104.0 -- 133.32.109.255 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 29 Nov 2025 17:03:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23752 (0x5cc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Nov 15 01:37:00 2025 GMT Not After : Nov 15 01:30:02 2026 GMT Subject: CN=5C57DDC59248271E71E1325877992B9738E043D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:5d:e2:bd:49:06:d7:ec:3b:5b:3a:55:e8:2f: e8:6a:81:a1:80:d1:34:43:e1:e2:43:c4:e7:15:f1: a6:9e:ec:5d:29:cc:fe:d4:6f:2d:95:e3:21:e0:c5: d0:09:83:06:4a:4e:59:d5:07:70:1b:d1:d7:ff:f4: 5f:25:6d:ad:f2:f2:a8:e1:80:19:c6:7c:8f:df:92: 66:d2:43:b9:44:bf:e5:ac:4f:49:81:94:93:8b:cb: 9a:1b:54:ca:a7:5b:c1:fc:78:36:9f:e5:0f:14:74: d9:0c:c1:b7:13:ea:25:d0:36:c2:2d:aa:6a:b0:b4: eb:d2:96:90:59:96:22:b4:36:1c:c3:a3:2c:85:f9: db:19:3f:54:74:c0:7a:12:69:72:ab:eb:72:5d:2b: c3:a3:cf:4e:38:45:ea:16:d2:fe:13:2c:e8:27:14: 53:e7:6a:43:5f:c9:df:7d:4a:4e:d0:57:49:bd:e2: 25:c5:ca:73:11:65:81:63:ff:05:22:a7:09:f4:f8: 73:eb:58:b7:5d:8d:b9:d4:47:9f:5a:b7:6b:79:5e: 60:34:64:97:f4:ac:67:d4:2f:80:f1:c5:ec:69:c1: 31:26:6a:54:c8:ed:4f:af:d9:43:71:49:19:98:b0: 31:eb:28:e5:ab:33:15:0a:49:bb:d1:9c:63:be:fb: 90:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:57:DD:C5:92:48:27:1E:71:E1:32:58:77:99:2B:97:38:E0:43:D4 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.44.0/23 133.32.104.0-133.32.109.255 Signature Algorithm: sha256WithRSAEncryption a3:35:e0:d1:11:fe:a4:cb:82:93:11:2b:cb:cd:44:5a:a5:c7: 4d:fd:ff:72:b5:32:09:ed:c6:9a:e5:4b:d6:c7:1d:45:35:6d: 13:85:66:43:a2:47:4f:b2:e7:8c:39:4b:84:b5:09:28:26:96: 2e:ac:8c:fd:57:6e:fa:5f:9c:f2:ca:74:9f:03:53:58:62:dd: 47:39:e0:d2:c3:69:e2:85:d8:0c:b1:ed:f0:8d:88:03:ba:63: be:f2:2d:80:7f:34:6b:20:24:f9:02:2d:b5:5c:30:fb:79:5b: d2:fb:d2:90:98:66:70:9a:c2:2a:f1:d7:2f:71:3a:a1:98:0c: 0f:81:b5:b4:7a:65:90:db:f7:fa:3a:e9:c4:c7:da:76:3f:aa: a5:3e:01:05:f7:a1:44:05:54:fc:ec:bb:53:d9:cd:d9:1a:b9: b8:5c:65:8e:6c:77:74:08:56:34:13:a6:fe:58:5b:66:f8:74: fb:f8:ad:bb:13:cb:5f:e2:67:82:a3:88:3f:d1:3d:e7:f1:70: d2:c2:45:69:dd:6f:9f:85:56:06:1b:46:69:87:d8:a6:49:9d: 56:0e:dd:4b:27:a3:34:86:6b:ca:10:fe:16:c7:6d:b0:40:93: 47:f0:36:a5:72:18:9d:86:d9:59:d7:81:d9:81:87:5d:ac:5d: 35:86:91:42 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICXMgwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MTExNTAxMzcwMFoXDTI2MTExNTAxMzAwMlowMzEx MC8GA1UEAxMoNUM1N0REQzU5MjQ4MjcxRTcxRTEzMjU4Nzc5OTJCOTczOEUwNDNE NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOld4r1JBtfsO1s6Vegv 6GqBoYDRNEPh4kPE5xXxpp7sXSnM/tRvLZXjIeDF0AmDBkpOWdUHcBvR1//0XyVt rfLyqOGAGcZ8j9+SZtJDuUS/5axPSYGUk4vLmhtUyqdbwfx4Np/lDxR02QzBtxPq JdA2wi2qarC069KWkFmWIrQ2HMOjLIX52xk/VHTAehJpcqvrcl0rw6PPTjhF6hbS /hMs6CcUU+dqQ1/J331KTtBXSb3iJcXKcxFlgWP/BSKnCfT4c+tYt12NudRHn1q3 a3leYDRkl/SsZ9QvgPHF7GnBMSZqVMjtT6/ZQ3FJGZiwMeso5aszFQpJu9GcY777 kP0CAwEAAaOCApkwggKVMB0GA1UdDgQWBBRcV93FkkgnHnHhMlh3mSuXOOBD1DAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMjAxNTMvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzIwMTUzL1hG ZmR4WkpJSng1eDRUSllkNWtybHpqZ1E5US5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwLQYIKwYBBQUHAQcBAf8EHjAcMBoEAgABMBQDBAFnpywwDAMEA4UgaAME AYUgbDANBgkqhkiG9w0BAQsFAAOCAQEAozXg0RH+pMuCkxEry81EWqXHTf3/crUy Ce3GmuVL1scdRTVtE4VmQ6JHT7LnjDlLhLUJKCaWLqyM/Vdu+l+c8sp0nwNTWGLd Rzng0sNp4oXYDLHt8I2IA7pjvvItgH80ayAk+QIttVww+3lb0vvSkJhmcJrCKvHX L3E6oZgMD4G1tHplkNv3+jrpxMfadj+qpT4BBfehRAVU/Oy7U9nN2Rq5uFxljmx3 dAhWNBOm/lhbZvh0+/ituxPLX+JngqOIP9E95/Fw0sJFad1vn4VWBhtGaYfYpkmd Vg7dSyejNIZryhD+FsdtsECTR/A2pXIYnYbZWdeB2YGHXaxdNYaRQg== -----END CERTIFICATE-----Generated at Sat Nov 22 21:06:18 2025 by rpki-client