$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/s8ehmAT3KOj_XkW-yNpYIQWj2p0.cer File: s8ehmAT3KOj_XkW-yNpYIQWj2p0.cer (raw, json) Hash identifier: r8YcAOdENuBuYS0VDHdQ0BQa0tyR9rJTWfxTynHFZWw= Subject key identifier: B3:C7:A1:98:04:F7:28:E8:FF:5E:45:BE:C8:DA:58:21:05:A3:DA:9D Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 6204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/s8ehmAT3KOj_XkW-yNpYIQWj2p0.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Sun 15 Feb 2026 01:31:42 +0000 Certificate not after: Mon 15 Feb 2027 01:30:02 +0000 Subordinate resources: IP: 2001:380::/32 IP: 2400:4000::/22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Feb 2026 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25092 (0x6204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Feb 15 01:31:42 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=B3C7A19804F728E8FF5E45BEC8DA582105A3DA9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e6:35:89:19:e0:ad:c0:50:32:0f:b3:e1:21: cf:cb:2c:b4:5b:ad:32:fc:8a:90:8d:5c:58:42:89: 29:27:b8:72:10:ed:49:ff:1d:83:d2:fd:46:08:cb: 96:d3:77:aa:c9:0e:5b:ab:51:db:31:b8:bc:36:e6: bf:a5:25:c2:eb:5b:92:89:a7:2a:b3:0a:51:e8:99: 25:2d:3a:3e:6c:f1:22:ae:e8:42:16:16:4e:eb:e6: 71:b9:e8:e5:30:c1:30:0c:db:b4:d1:fc:7d:c8:b3: 90:2c:ae:18:7a:96:ce:22:d6:c5:3d:ba:5f:fe:ae: 4f:a1:6f:78:98:f6:68:a2:42:b9:0e:7d:3c:5a:5f: e6:20:eb:cd:c8:1a:48:20:56:90:07:2b:86:77:31: 0d:c8:84:45:ff:4b:c2:80:5d:82:1d:1b:dd:ec:3d: b1:e7:9b:10:d1:a4:83:ea:cf:bb:88:ad:02:43:bd: d6:1e:73:11:33:6b:66:89:6a:3f:b3:4a:98:b6:11: 5d:f6:0c:03:e1:11:97:7a:6e:2d:78:71:f0:79:1a: aa:a1:fc:43:7f:47:12:a2:d3:0d:2a:60:fd:a1:ea: b2:17:c5:df:65:a7:8b:d9:1b:45:28:d7:c7:4d:c5: 22:5a:c1:bc:4b:93:58:f2:a3:13:74:1b:1b:f1:f3: 89:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:C7:A1:98:04:F7:28:E8:FF:5E:45:BE:C8:DA:58:21:05:A3:DA:9D X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/s8ehmAT3KOj_XkW-yNpYIQWj2p0.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:380::/32 2400:4000::/22 Signature Algorithm: sha256WithRSAEncryption 0e:0e:42:5e:56:8b:71:db:ac:6a:3a:fa:14:41:d8:6c:46:92: bd:4b:a4:ca:85:14:2d:3e:0d:8b:c6:d2:ea:4f:f5:23:1f:f0: 83:74:1a:cf:9f:7a:60:29:03:c0:b9:50:ab:55:46:c8:2c:1e: 39:01:a5:ad:87:ca:54:0e:c2:7b:fe:ac:18:cb:1c:aa:d7:8a: 69:14:4c:63:64:e1:9f:d3:82:81:27:a5:ce:e0:af:8f:8e:e9: 80:8d:c3:5b:f9:09:93:ac:dc:9c:7e:14:90:46:0d:84:bc:e8: 93:46:20:87:30:da:b9:58:d3:39:e0:c2:10:41:9f:40:59:7c: 73:53:19:09:88:7f:56:35:ab:3b:b1:36:aa:a8:16:e3:bd:42: 2a:7d:16:6b:d0:77:0e:e1:4b:76:dc:20:75:43:0f:98:18:bb: 72:ac:5e:3e:7b:da:77:ca:47:3a:8e:02:0f:f2:eb:ec:78:a9: d0:8d:1b:a6:a5:d9:8a:d9:c1:39:3b:7d:09:1b:8d:f3:fd:3c: 5d:f0:9a:cb:31:7d:94:9f:a8:4d:4d:3d:be:b7:4a:cc:58:ff: c7:0c:78:db:1b:4c:1b:21:73:b6:ec:20:1b:df:a1:76:c6:05: 47:a0:cb:2d:fe:f6:00:9d:c9:1b:ea:0e:1e:8b:ca:48:63:a1: d5:68:27:aa -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICYgQwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI2MDIxNTAxMzE0MloXDTI3MDIxNTAxMzAwMlowMzEx MC8GA1UEAxMoQjNDN0ExOTgwNEY3MjhFOEZGNUU0NUJFQzhEQTU4MjEwNUEzREE5 RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMLmNYkZ4K3AUDIPs+Eh z8sstFutMvyKkI1cWEKJKSe4chDtSf8dg9L9RgjLltN3qskOW6tR2zG4vDbmv6Ul wutbkomnKrMKUeiZJS06PmzxIq7oQhYWTuvmcbno5TDBMAzbtNH8fcizkCyuGHqW ziLWxT26X/6uT6FveJj2aKJCuQ59PFpf5iDrzcgaSCBWkAcrhncxDciERf9LwoBd gh0b3ew9seebENGkg+rPu4itAkO91h5zETNrZolqP7NKmLYRXfYMA+ERl3puLXhx 8HkaqqH8Q39HEqLTDSpg/aHqshfF32Wni9kbRSjXx03FIlrBvEuTWPKjE3QbG/Hz iVkCAwEAAaOCApIwggKOMB0GA1UdDgQWBBSzx6GYBPco6P9eRb7I2lghBaPanTAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAwNzMvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMDczL3M4 ZWhtQVQzS09qX1hrVy15TnBZSVFXajJwMC5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwJgYIKwYBBQUHAQcBAf8EFzAVMBMEAgACMA0DBQAgAQOAAwQCJABAMA0G CSqGSIb3DQEBCwUAA4IBAQAODkJeVotx26xqOvoUQdhsRpK9S6TKhRQtPg2LxtLq T/UjH/CDdBrPn3pgKQPAuVCrVUbILB45AaWth8pUDsJ7/qwYyxyq14ppFExjZOGf 04KBJ6XO4K+PjumAjcNb+QmTrNycfhSQRg2EvOiTRiCHMNq5WNM54MIQQZ9AWXxz UxkJiH9WNas7sTaqqBbjvUIqfRZr0HcO4Ut23CB1Qw+YGLtyrF4+e9p3ykc6jgIP 8uvseKnQjRumpdmK2cE5O30JG43z/Txd8JrLMX2Un6hNTT2+t0rMWP/HDHjbG0wb IXO27CAb36F2xgVHoMst/vYAnckb6g4ei8pIY6HVaCeq -----END CERTIFICATE-----Generated at Sat Feb 21 12:31:13 2026 by rpki-client