This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/r_YfRFtvjpIcfXZ7O2dr9mmBb2w.cer File: r_YfRFtvjpIcfXZ7O2dr9mmBb2w.cer (raw, json) Hash identifier: Skfw3xI2Vlv07NUFEPAJGgS6A5sy2/wT4KRglcS1ys4= Subject key identifier: AF:F6:1F:44:5B:6F:8E:92:1C:7D:76:7B:3B:67:6B:F6:69:81:6F:6C Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 5C9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30319/r_YfRFtvjpIcfXZ7O2dr9mmBb2w.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30319/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Sat 15 Nov 2025 01:35:50 +0000 Certificate not after: Sun 15 Nov 2026 01:30:02 +0000 Subordinate resources: IP: 2400:53e0::/32 IP: 2401:2680::/32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 29 Nov 2025 17:03:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23707 (0x5c9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Nov 15 01:35:50 2025 GMT Not After : Nov 15 01:30:02 2026 GMT Subject: CN=AFF61F445B6F8E921C7D767B3B676BF669816F6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:95:44:3b:d2:54:7f:7d:09:00:1f:f5:c5:10: 2c:ad:22:28:51:e3:b0:c6:96:81:39:f3:0d:72:94: 40:92:0b:92:76:d8:fb:3e:21:f5:95:b0:25:5b:55: e9:2a:b1:61:df:e1:01:e3:83:3e:9f:b7:57:2a:c3: bb:de:5f:12:3a:c1:0c:d8:ef:80:42:50:11:b8:82: b0:f4:13:85:49:e5:82:42:08:2c:2c:6d:86:20:b6: 43:19:a7:04:6f:46:d1:c4:f7:d2:c9:c5:7f:fc:25: 65:b2:c7:49:e2:bf:85:46:6a:03:5a:0f:e1:7f:49: 44:d7:3d:e3:4c:2d:33:49:14:b5:e9:ad:32:74:da: eb:e4:bc:ea:f8:0b:f5:6b:79:f0:d0:21:d6:71:02: d9:8a:b3:eb:17:ce:ee:1f:71:e1:04:43:f5:5f:f1: c0:eb:27:16:97:6d:4d:5a:84:2d:40:20:39:05:2e: d2:2b:87:1c:6c:74:f1:e2:f8:7f:36:4a:c0:d4:d4: af:9a:1c:f6:11:fc:d1:73:80:be:ad:3e:ab:85:1e: 4a:bf:fb:06:38:9f:e4:bd:c5:1b:23:31:09:19:44: eb:ec:70:e6:f7:5c:a5:07:de:f9:61:19:24:ec:52: b7:a9:ca:10:1e:e2:d9:94:e1:36:5b:8f:3b:e0:a1: 29:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:F6:1F:44:5B:6F:8E:92:1C:7D:76:7B:3B:67:6B:F6:69:81:6F:6C X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30319/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30319/r_YfRFtvjpIcfXZ7O2dr9mmBb2w.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:53e0::/32 2401:2680::/32 Signature Algorithm: sha256WithRSAEncryption 4b:b7:a9:7b:d5:34:58:e9:76:33:a5:66:a8:25:be:24:10:3c: fd:09:43:5f:fe:eb:fe:1a:cd:88:03:1e:95:09:56:fd:db:4b: 1a:6b:02:26:5b:cf:70:dc:61:22:7b:1a:d0:39:33:0e:96:75: ef:f2:c1:ae:82:ec:d0:2c:1f:5b:5c:f6:f4:3a:ed:f7:bb:89: 63:65:e2:25:46:36:ce:69:d9:29:b3:bc:5c:c0:cf:a1:01:64: dc:61:a2:bb:66:14:e0:74:a1:a7:77:c4:0c:3b:34:ca:0a:e5: c5:6d:84:d3:68:53:81:1b:93:24:79:85:f9:ad:bc:cf:65:2a: e5:50:11:f7:e2:8f:23:15:25:58:df:8c:1d:07:e8:35:c3:c8: e5:1b:00:4e:3f:06:e3:a2:cc:f7:3f:5c:30:e1:94:84:d1:5f: 47:1b:e6:ab:e3:c6:75:e5:15:da:11:74:7f:81:6d:d8:4a:29: f5:f2:9f:bf:0a:dc:4c:9d:a4:e7:ff:7d:26:24:51:31:4b:cc: ae:9c:07:41:f8:10:79:67:d9:b4:e4:ad:3b:ea:86:73:8c:39: e9:2a:5e:f4:d2:13:86:28:ed:20:26:35:f3:34:81:d0:9f:3d: 4a:35:54:8e:06:62:e3:f6:f9:b4:4b:43:30:21:e5:a0:ca:d3: 2d:51:2d:3b -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICXJswDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MTExNTAxMzU1MFoXDTI2MTExNTAxMzAwMlowMzEx MC8GA1UEAxMoQUZGNjFGNDQ1QjZGOEU5MjFDN0Q3NjdCM0I2NzZCRjY2OTgxNkY2 QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK6VRDvSVH99CQAf9cUQ LK0iKFHjsMaWgTnzDXKUQJILknbY+z4h9ZWwJVtV6SqxYd/hAeODPp+3VyrDu95f EjrBDNjvgEJQEbiCsPQThUnlgkIILCxthiC2QxmnBG9G0cT30snFf/wlZbLHSeK/ hUZqA1oP4X9JRNc940wtM0kUtemtMnTa6+S86vgL9Wt58NAh1nEC2Yqz6xfO7h9x 4QRD9V/xwOsnFpdtTVqELUAgOQUu0iuHHGx08eL4fzZKwNTUr5oc9hH80XOAvq0+ q4UeSr/7Bjif5L3FGyMxCRlE6+xw5vdcpQfe+WEZJOxSt6nKEB7i2ZThNluPO+Ch KfsCAwEAAaOCApMwggKPMB0GA1UdDgQWBBSv9h9EW2+Okhx9dns7Z2v2aYFvbDAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAzMTkvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMzE5L3Jf WWZSRnR2anBJY2ZYWjdPMmRyOW1tQmIydy5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwJwYIKwYBBQUHAQcBAf8EGDAWMBQEAgACMA4DBQAkAFPgAwUAJAEmgDAN BgkqhkiG9w0BAQsFAAOCAQEAS7epe9U0WOl2M6VmqCW+JBA8/QlDX/7r/hrNiAMe lQlW/dtLGmsCJlvPcNxhInsa0DkzDpZ17/LBroLs0CwfW1z29Drt97uJY2XiJUY2 zmnZKbO8XMDPoQFk3GGiu2YU4HShp3fEDDs0ygrlxW2E02hTgRuTJHmF+a28z2Uq 5VAR9+KPIxUlWN+MHQfoNcPI5RsATj8G46LM9z9cMOGUhNFfRxvmq+PGdeUV2hF0 f4Ft2Eop9fKfvwrcTJ2k5/99JiRRMUvMrpwHQfgQeWfZtOStO+qGc4w56Spe9NIT hijtICY18zSB0J89SjVUjgZi4/b5tEtDMCHloMrTLVEtOw== -----END CERTIFICATE-----Generated at Sat Nov 22 21:05:04 2025 by rpki-client