
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/s8ehmAT3KOj_XkW-yNpYIQWj2p0.cer
File: s8ehmAT3KOj_XkW-yNpYIQWj2p0.cer (raw, json)
Hash identifier: LIwRpkRma92SQK4nByRCptWW5GmgMjJpCoUsN7H0Jeo=
Subject key identifier: B3:C7:A1:98:04:F7:28:E8:FF:5E:45:BE:C8:DA:58:21:05:A3:DA:9D
Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F
Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F
Certificate serial: 6B49
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/s8ehmAT3KOj_XkW-yNpYIQWj2p0.mft
caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/
Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
Certificate not before: Mon 15 Jun 2026 01:37:42 +0000
Certificate not after: Tue 15 Jun 2027 01:30:02 +0000
Subordinate resources: IP: 2001:380::/32
IP: 2400:4000::/22
IP: 2402:af40::/32
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 14 Jul 2026 09:53:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27465 (0x6b49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F
Validity
Not Before: Jun 15 01:37:42 2026 GMT
Not After : Jun 15 01:30:02 2027 GMT
Subject: CN=B3C7A19804F728E8FF5E45BEC8DA582105A3DA9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e6:35:89:19:e0:ad:c0:50:32:0f:b3:e1:21:
cf:cb:2c:b4:5b:ad:32:fc:8a:90:8d:5c:58:42:89:
29:27:b8:72:10:ed:49:ff:1d:83:d2:fd:46:08:cb:
96:d3:77:aa:c9:0e:5b:ab:51:db:31:b8:bc:36:e6:
bf:a5:25:c2:eb:5b:92:89:a7:2a:b3:0a:51:e8:99:
25:2d:3a:3e:6c:f1:22:ae:e8:42:16:16:4e:eb:e6:
71:b9:e8:e5:30:c1:30:0c:db:b4:d1:fc:7d:c8:b3:
90:2c:ae:18:7a:96:ce:22:d6:c5:3d:ba:5f:fe:ae:
4f:a1:6f:78:98:f6:68:a2:42:b9:0e:7d:3c:5a:5f:
e6:20:eb:cd:c8:1a:48:20:56:90:07:2b:86:77:31:
0d:c8:84:45:ff:4b:c2:80:5d:82:1d:1b:dd:ec:3d:
b1:e7:9b:10:d1:a4:83:ea:cf:bb:88:ad:02:43:bd:
d6:1e:73:11:33:6b:66:89:6a:3f:b3:4a:98:b6:11:
5d:f6:0c:03:e1:11:97:7a:6e:2d:78:71:f0:79:1a:
aa:a1:fc:43:7f:47:12:a2:d3:0d:2a:60:fd:a1:ea:
b2:17:c5:df:65:a7:8b:d9:1b:45:28:d7:c7:4d:c5:
22:5a:c1:bc:4b:93:58:f2:a3:13:74:1b:1b:f1:f3:
89:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:C7:A1:98:04:F7:28:E8:FF:5E:45:BE:C8:DA:58:21:05:A3:DA:9D
X509v3 Authority Key Identifier:
keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/
RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/s8ehmAT3KOj_XkW-yNpYIQWj2p0.mft
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:380::/32
2400:4000::/22
2402:af40::/32
Signature Algorithm: sha256WithRSAEncryption
80:c9:4c:52:06:44:b5:18:51:65:35:c6:c3:f3:c0:09:eb:70:
b4:5e:67:df:8d:0d:be:4e:0c:c8:1a:ed:90:12:5d:57:69:90:
ff:16:ab:32:03:ce:e3:9a:7e:7d:5d:3f:35:10:45:5d:f8:ae:
b2:e0:3f:d4:70:74:4a:bc:e1:8b:55:05:8b:15:fe:0e:81:b3:
d8:89:2c:9e:8a:4a:a6:fa:68:96:46:2b:aa:49:70:9c:22:db:
d6:6b:a4:df:f9:3a:06:e1:d3:5f:3a:a5:20:de:95:30:39:3f:
9a:a1:de:fa:1c:a3:9f:a7:39:87:53:47:a4:4b:0f:fa:ed:14:
37:ae:66:fc:52:7d:73:6e:70:fd:7e:0f:1a:61:be:0a:48:27:
57:1c:0b:44:ee:c5:8e:66:23:83:84:b0:67:ce:58:94:a5:07:
81:b6:0b:d0:52:4c:a1:4e:be:9d:64:8e:5c:7c:24:80:9b:ba:
08:83:54:c9:4f:7b:fc:0a:c0:d6:68:a2:14:81:8e:53:2b:33:
9d:8b:08:d8:f2:34:0f:1d:f0:ff:01:13:ca:09:c0:ed:2c:2d:
88:9e:25:90:60:45:05:f0:33:44:8a:d0:70:f4:eb:e1:05:6b:
f6:33:e5:51:f1:5f:c2:ea:06:67:ed:d1:fb:4c:da:29:85:e3:
10:69:83:f1
-----BEGIN CERTIFICATE-----
MIIFlDCCBHygAwIBAgICa0kwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx
QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC
NTIwREFBQzdEQThGMB4XDTI2MDYxNTAxMzc0MloXDTI3MDYxNTAxMzAwMlowMzEx
MC8GA1UEAxMoQjNDN0ExOTgwNEY3MjhFOEZGNUU0NUJFQzhEQTU4MjEwNUEzREE5
RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMLmNYkZ4K3AUDIPs+Eh
z8sstFutMvyKkI1cWEKJKSe4chDtSf8dg9L9RgjLltN3qskOW6tR2zG4vDbmv6Ul
wutbkomnKrMKUeiZJS06PmzxIq7oQhYWTuvmcbno5TDBMAzbtNH8fcizkCyuGHqW
ziLWxT26X/6uT6FveJj2aKJCuQ59PFpf5iDrzcgaSCBWkAcrhncxDciERf9LwoBd
gh0b3ew9seebENGkg+rPu4itAkO91h5zETNrZolqP7NKmLYRXfYMA+ERl3puLXhx
8HkaqqH8Q39HEqLTDSpg/aHqshfF32Wni9kbRSjXx03FIlrBvEuTWPKjE3QbG/Hz
iVkCAwEAAaOCApkwggKVMB0GA1UdDgQWBBSzx6GYBPco6P9eRb7I2lghBaPanTAf
BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0
b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa
dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j
Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0
NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G
A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw
gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q
cC9hcC9BOTFBNzM4MTAwMDAvMzAwNzMvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw
a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMDczL3M4
ZWhtQVQzS09qX1hrVy15TnBZSVFXajJwMC5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz
Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv
bi54bWwwLQYIKwYBBQUHAQcBAf8EHjAcMBoEAgACMBQDBQAgAQOAAwQCJABAAwUA
JAKvQDANBgkqhkiG9w0BAQsFAAOCAQEAgMlMUgZEtRhRZTXGw/PACetwtF5n340N
vk4MyBrtkBJdV2mQ/xarMgPO45p+fV0/NRBFXfiusuA/1HB0Srzhi1UFixX+DoGz
2IksnopKpvpolkYrqklwnCLb1muk3/k6BuHTXzqlIN6VMDk/mqHe+hyjn6c5h1NH
pEsP+u0UN65m/FJ9c25w/X4PGmG+CkgnVxwLRO7FjmYjg4SwZ85YlKUHgbYL0FJM
oU6+nWSOXHwkgJu6CINUyU97/ArA1miiFIGOUysznYsI2PI0Dx3w/wETygnA7Swt
iJ4lkGBFBfAzRIrQcPTr4QVr9jPlUfFfwuoGZ+3R+0zaKYXjEGmD8Q==
-----END CERTIFICATE-----
Generated at Tue Jul 7 11:47:45 2026 by rpki-client