$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/s8ehmAT3KOj_XkW-yNpYIQWj2p0.cer File: s8ehmAT3KOj_XkW-yNpYIQWj2p0.cer (raw, json) Hash identifier: mlX2c1eeMfUAoTB7gLYR7HBwzv7yDd4wf6MRPfNtJnM= Subject key identifier: B3:C7:A1:98:04:F7:28:E8:FF:5E:45:BE:C8:DA:58:21:05:A3:DA:9D Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 6951 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/s8ehmAT3KOj_XkW-yNpYIQWj2p0.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Fri 15 May 2026 01:38:59 +0000 Certificate not after: Sat 15 May 2027 01:30:02 +0000 Subordinate resources: IP: 2001:380::/32 IP: 2400:4000::/22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26961 (0x6951) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: May 15 01:38:59 2026 GMT Not After : May 15 01:30:02 2027 GMT Subject: CN=B3C7A19804F728E8FF5E45BEC8DA582105A3DA9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e6:35:89:19:e0:ad:c0:50:32:0f:b3:e1:21: cf:cb:2c:b4:5b:ad:32:fc:8a:90:8d:5c:58:42:89: 29:27:b8:72:10:ed:49:ff:1d:83:d2:fd:46:08:cb: 96:d3:77:aa:c9:0e:5b:ab:51:db:31:b8:bc:36:e6: bf:a5:25:c2:eb:5b:92:89:a7:2a:b3:0a:51:e8:99: 25:2d:3a:3e:6c:f1:22:ae:e8:42:16:16:4e:eb:e6: 71:b9:e8:e5:30:c1:30:0c:db:b4:d1:fc:7d:c8:b3: 90:2c:ae:18:7a:96:ce:22:d6:c5:3d:ba:5f:fe:ae: 4f:a1:6f:78:98:f6:68:a2:42:b9:0e:7d:3c:5a:5f: e6:20:eb:cd:c8:1a:48:20:56:90:07:2b:86:77:31: 0d:c8:84:45:ff:4b:c2:80:5d:82:1d:1b:dd:ec:3d: b1:e7:9b:10:d1:a4:83:ea:cf:bb:88:ad:02:43:bd: d6:1e:73:11:33:6b:66:89:6a:3f:b3:4a:98:b6:11: 5d:f6:0c:03:e1:11:97:7a:6e:2d:78:71:f0:79:1a: aa:a1:fc:43:7f:47:12:a2:d3:0d:2a:60:fd:a1:ea: b2:17:c5:df:65:a7:8b:d9:1b:45:28:d7:c7:4d:c5: 22:5a:c1:bc:4b:93:58:f2:a3:13:74:1b:1b:f1:f3: 89:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:C7:A1:98:04:F7:28:E8:FF:5E:45:BE:C8:DA:58:21:05:A3:DA:9D X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/s8ehmAT3KOj_XkW-yNpYIQWj2p0.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:380::/32 2400:4000::/22 Signature Algorithm: sha256WithRSAEncryption 83:f7:31:6f:05:2d:3c:0b:d0:fb:34:a9:22:68:f1:7d:f3:1b: ce:e0:fa:64:a3:38:cd:07:a9:1d:4c:f2:57:d8:17:a2:30:33: 52:1a:18:44:46:73:fe:58:52:51:42:96:76:72:72:4c:3f:0e: ce:52:54:a0:8d:2c:0e:61:71:7d:24:20:93:59:db:39:f2:2f: d7:9e:87:b1:20:d7:e9:7b:5b:85:cf:a2:ae:9a:1d:01:82:e6: 07:4f:a1:ba:3f:2a:ce:82:eb:7a:d3:12:55:38:e4:8c:f8:d7: 46:6f:ac:84:a7:be:9c:09:a8:f9:13:6f:02:ca:3e:9c:2a:84: 50:a4:a4:d6:64:0f:49:36:01:f6:37:22:54:39:8a:44:33:cf: 18:e3:da:51:e0:4e:fe:0c:e4:2f:ab:94:4b:90:a5:d3:ba:61: 22:8a:7d:fc:81:96:82:b6:5d:49:b5:c4:f8:44:4c:22:4e:6d: f2:eb:c9:9a:ab:58:fb:f9:8f:ed:5b:f3:92:41:88:52:96:72: ca:20:03:56:6f:20:28:3b:4a:fb:2c:ef:98:a3:a8:56:1e:67: 10:2c:cf:cf:f8:db:ec:73:4b:20:8a:57:58:c5:a0:32:f4:5f: ee:b3:44:05:70:40:78:9d:b5:ed:84:7f:e5:bf:99:6b:7f:f8: 8d:4e:68:ba -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICaVEwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI2MDUxNTAxMzg1OVoXDTI3MDUxNTAxMzAwMlowMzEx MC8GA1UEAxMoQjNDN0ExOTgwNEY3MjhFOEZGNUU0NUJFQzhEQTU4MjEwNUEzREE5 RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMLmNYkZ4K3AUDIPs+Eh z8sstFutMvyKkI1cWEKJKSe4chDtSf8dg9L9RgjLltN3qskOW6tR2zG4vDbmv6Ul wutbkomnKrMKUeiZJS06PmzxIq7oQhYWTuvmcbno5TDBMAzbtNH8fcizkCyuGHqW ziLWxT26X/6uT6FveJj2aKJCuQ59PFpf5iDrzcgaSCBWkAcrhncxDciERf9LwoBd gh0b3ew9seebENGkg+rPu4itAkO91h5zETNrZolqP7NKmLYRXfYMA+ERl3puLXhx 8HkaqqH8Q39HEqLTDSpg/aHqshfF32Wni9kbRSjXx03FIlrBvEuTWPKjE3QbG/Hz iVkCAwEAAaOCApIwggKOMB0GA1UdDgQWBBSzx6GYBPco6P9eRb7I2lghBaPanTAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAwNzMvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMDczL3M4 ZWhtQVQzS09qX1hrVy15TnBZSVFXajJwMC5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwJgYIKwYBBQUHAQcBAf8EFzAVMBMEAgACMA0DBQAgAQOAAwQCJABAMA0G CSqGSIb3DQEBCwUAA4IBAQCD9zFvBS08C9D7NKkiaPF98xvO4PpkozjNB6kdTPJX 2BeiMDNSGhhERnP+WFJRQpZ2cnJMPw7OUlSgjSwOYXF9JCCTWds58i/XnoexINfp e1uFz6Kumh0BguYHT6G6PyrOgut60xJVOOSM+NdGb6yEp76cCaj5E28Cyj6cKoRQ pKTWZA9JNgH2NyJUOYpEM88Y49pR4E7+DOQvq5RLkKXTumEiin38gZaCtl1JtcT4 REwiTm3y68maq1j7+Y/tW/OSQYhSlnLKIANWbyAoO0r7LO+Yo6hWHmcQLM/P+Nvs c0sgildYxaAy9F/us0QFcEB4nbXthH/lv5lrf/iNTmi6 -----END CERTIFICATE-----Generated at Sat May 23 04:27:24 2026 by rpki-client