$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.cer File: XFfdxZJIJx5x4TJYd5krlzjgQ9Q.cer (raw, json) Hash identifier: 2cpVYvXZgQoid9lWwDfLej3BM4ARmpwzl9uPVfaCCjg= Subject key identifier: 5C:57:DD:C5:92:48:27:1E:71:E1:32:58:77:99:2B:97:38:E0:43:D4 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 6A28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Fri 15 May 2026 01:45:26 +0000 Certificate not after: Sat 15 May 2027 01:30:02 +0000 Subordinate resources: IP: 103.167.44.0/23 IP: 133.32.104.0 -- 133.32.109.255 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27176 (0x6a28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: May 15 01:45:26 2026 GMT Not After : May 15 01:30:02 2027 GMT Subject: CN=5C57DDC59248271E71E1325877992B9738E043D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:5d:e2:bd:49:06:d7:ec:3b:5b:3a:55:e8:2f: e8:6a:81:a1:80:d1:34:43:e1:e2:43:c4:e7:15:f1: a6:9e:ec:5d:29:cc:fe:d4:6f:2d:95:e3:21:e0:c5: d0:09:83:06:4a:4e:59:d5:07:70:1b:d1:d7:ff:f4: 5f:25:6d:ad:f2:f2:a8:e1:80:19:c6:7c:8f:df:92: 66:d2:43:b9:44:bf:e5:ac:4f:49:81:94:93:8b:cb: 9a:1b:54:ca:a7:5b:c1:fc:78:36:9f:e5:0f:14:74: d9:0c:c1:b7:13:ea:25:d0:36:c2:2d:aa:6a:b0:b4: eb:d2:96:90:59:96:22:b4:36:1c:c3:a3:2c:85:f9: db:19:3f:54:74:c0:7a:12:69:72:ab:eb:72:5d:2b: c3:a3:cf:4e:38:45:ea:16:d2:fe:13:2c:e8:27:14: 53:e7:6a:43:5f:c9:df:7d:4a:4e:d0:57:49:bd:e2: 25:c5:ca:73:11:65:81:63:ff:05:22:a7:09:f4:f8: 73:eb:58:b7:5d:8d:b9:d4:47:9f:5a:b7:6b:79:5e: 60:34:64:97:f4:ac:67:d4:2f:80:f1:c5:ec:69:c1: 31:26:6a:54:c8:ed:4f:af:d9:43:71:49:19:98:b0: 31:eb:28:e5:ab:33:15:0a:49:bb:d1:9c:63:be:fb: 90:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:57:DD:C5:92:48:27:1E:71:E1:32:58:77:99:2B:97:38:E0:43:D4 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.44.0/23 133.32.104.0-133.32.109.255 Signature Algorithm: sha256WithRSAEncryption 43:1e:ad:7b:62:4f:d3:95:96:1a:e0:38:85:6f:9c:ca:b8:c6: 18:e6:d0:3d:9e:5b:23:bf:f1:f7:6b:3f:d0:75:d4:97:86:2f: 1d:d9:05:0a:14:47:65:bf:31:e1:1b:48:1e:b3:c4:e1:dc:ba: 27:0e:54:6c:00:7a:a2:a3:1e:9d:8c:18:73:36:d2:34:40:57: dc:f7:df:ef:c5:c7:5b:4f:0c:f6:a7:84:59:28:54:6f:71:c5: f2:88:35:f6:4e:f9:6d:0c:ce:65:0b:78:70:7b:65:98:17:58: d8:5d:ca:eb:c2:0a:81:3e:8c:77:b5:7a:51:27:46:26:ab:55: f0:10:39:d2:f1:45:63:ac:07:b5:be:92:e1:ea:07:00:1e:62: 3d:1b:28:c9:4c:7b:4d:96:bc:b8:7f:b3:26:d5:8b:fd:69:5c: 4f:1e:51:c6:ed:5d:52:69:cb:a3:73:ec:9a:e6:59:d9:ed:26: 4f:f1:f9:77:61:4f:77:1c:2c:20:c3:f7:1a:07:94:f8:75:73: 72:26:2d:2b:90:3a:93:eb:fb:26:12:c7:9c:bb:37:08:f3:71: bc:7d:67:3a:ed:b1:e8:94:f3:41:13:bd:47:c8:5b:3b:a4:6b: 65:a6:8f:00:a5:a1:c3:3e:2e:22:ff:50:d8:64:14:01:98:94: b4:d8:1e:a3 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICaigwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI2MDUxNTAxNDUyNloXDTI3MDUxNTAxMzAwMlowMzEx MC8GA1UEAxMoNUM1N0REQzU5MjQ4MjcxRTcxRTEzMjU4Nzc5OTJCOTczOEUwNDNE NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOld4r1JBtfsO1s6Vegv 6GqBoYDRNEPh4kPE5xXxpp7sXSnM/tRvLZXjIeDF0AmDBkpOWdUHcBvR1//0XyVt rfLyqOGAGcZ8j9+SZtJDuUS/5axPSYGUk4vLmhtUyqdbwfx4Np/lDxR02QzBtxPq JdA2wi2qarC069KWkFmWIrQ2HMOjLIX52xk/VHTAehJpcqvrcl0rw6PPTjhF6hbS /hMs6CcUU+dqQ1/J331KTtBXSb3iJcXKcxFlgWP/BSKnCfT4c+tYt12NudRHn1q3 a3leYDRkl/SsZ9QvgPHF7GnBMSZqVMjtT6/ZQ3FJGZiwMeso5aszFQpJu9GcY777 kP0CAwEAAaOCApkwggKVMB0GA1UdDgQWBBRcV93FkkgnHnHhMlh3mSuXOOBD1DAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMjAxNTMvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzIwMTUzL1hG ZmR4WkpJSng1eDRUSllkNWtybHpqZ1E5US5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwLQYIKwYBBQUHAQcBAf8EHjAcMBoEAgABMBQDBAFnpywwDAMEA4UgaAME AYUgbDANBgkqhkiG9w0BAQsFAAOCAQEAQx6te2JP05WWGuA4hW+cyrjGGObQPZ5b I7/x92s/0HXUl4YvHdkFChRHZb8x4RtIHrPE4dy6Jw5UbAB6oqMenYwYczbSNEBX 3Pff78XHW08M9qeEWShUb3HF8og19k75bQzOZQt4cHtlmBdY2F3K68IKgT6Md7V6 USdGJqtV8BA50vFFY6wHtb6S4eoHAB5iPRsoyUx7TZa8uH+zJtWL/WlcTx5Rxu1d UmnLo3PsmuZZ2e0mT/H5d2FPdxwsIMP3GgeU+HVzciYtK5A6k+v7JhLHnLs3CPNx vH1nOu2x6JTzQRO9R8hbO6RrZaaPAKWhwz4uIv9Q2GQUAZiUtNgeow== -----END CERTIFICATE-----Generated at Sat May 23 04:27:28 2026 by rpki-client