
Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/yMD7hwR0w-hMq4NZfEaoYsR_iII.cer
File: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (raw, json)
Hash identifier: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=
Subject key identifier: C8:C0:FB:87:04:74:C3:E8:4C:AB:83:59:7C:46:A8:62:C4:7F:88:82
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 4BB5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yMD7hwR0w-hMq4NZfEaoYsR_iII.mft
caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/
Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
Certificate not before: Tue 16 Jun 2026 02:11:25 +0000
Certificate not after: Fri 30 Jul 2027 00:00:00 +0000
Subordinate resources: IP: 154.8.48.0/20
IP: 154.33.0.0 -- 154.34.255.255
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 07 Jul 2026 15:25:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19381 (0x4bb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Validity
Not Before: Jun 16 02:11:25 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=A91A73810000, serialNumber=C8C0FB870474C3E84CAB83597C46A862C47F8882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bf:c5:dd:78:66:9d:4f:89:58:f8:4a:3b:0d:
e4:d7:18:ae:d7:30:be:76:45:3e:e4:a7:24:27:55:
65:31:67:03:3f:d0:64:92:e4:e6:f5:85:15:ea:62:
47:b4:9b:85:6a:99:d6:e8:75:b7:83:4b:3f:e1:da:
7d:54:3f:3e:a5:1f:0d:8d:92:e7:a8:3f:e6:e5:74:
8f:7c:4b:2c:d9:62:dd:b0:f8:d0:5a:75:e2:b5:4a:
a5:df:23:56:39:7b:e8:c1:77:3a:dc:69:d2:ca:ac:
f1:23:02:56:1c:88:53:60:2c:33:77:e2:e9:c1:55:
50:bb:35:a3:28:04:ff:d0:2c:50:60:87:3e:19:22:
ed:bc:5a:51:dd:2a:ab:8c:c6:6f:1f:8a:86:5f:55:
1d:18:a6:de:20:7f:f0:78:9e:22:99:b2:c1:c0:04:
6f:be:c4:99:52:1d:8d:17:1b:16:3b:52:a1:62:c5:
3a:a5:96:6d:26:5c:75:1b:b9:61:6a:7b:52:d6:1b:
d2:51:52:b1:cd:97:a7:1e:6f:be:83:f1:d0:29:42:
60:96:38:69:12:59:8e:2e:29:c6:96:f3:47:ff:37:
95:56:3c:03:22:15:d9:5d:22:1b:3e:09:df:7e:57:
6c:d6:8a:0c:ba:f8:ac:2c:15:48:8c:b9:55:ee:de:
43:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:C0:FB:87:04:74:C3:E8:4C:AB:83:59:7C:46:A8:62:C4:7F:88:82
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/
RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yMD7hwR0w-hMq4NZfEaoYsR_iII.mft
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.8.48.0/20
154.33.0.0-154.34.255.255
Signature Algorithm: sha256WithRSAEncryption
6b:5e:29:e6:92:a0:df:d0:00:15:65:13:d3:49:cf:e9:cf:85:
ea:f0:f8:e7:d1:ed:42:ee:9c:f8:d0:9e:6e:6f:d2:80:86:ff:
2c:96:9f:83:4d:4a:33:ad:2b:63:a5:ff:be:a8:a5:5f:e1:13:
5a:27:e6:1a:fb:f0:3a:ee:eb:49:55:62:7b:39:8f:ad:78:91:
82:6a:b7:4f:29:5f:68:60:cc:48:9c:11:d1:78:b9:19:ae:78:
78:a3:9b:20:53:aa:50:d0:a1:ee:1c:b5:9d:e3:ba:f7:04:84:
aa:7f:79:82:f5:ce:5c:24:d0:69:e5:14:ee:eb:78:0a:ae:3f:
4d:95:d8:6b:d8:0f:37:ec:e0:e4:d9:ee:69:88:36:44:8e:3d:
13:eb:93:c1:d7:12:a8:a6:38:54:46:63:58:0e:bd:e5:51:98:
f9:5a:12:38:57:9e:d3:63:f2:15:ce:06:01:10:df:2b:a9:f7:
62:e2:11:07:59:39:be:cf:21:90:f1:81:c9:78:8d:e8:73:80:
9f:66:fe:16:86:cd:cc:13:8b:8d:fa:e2:b6:0f:ff:50:9d:f2:
a0:2b:e8:78:18:dd:f5:0c:aa:91:d3:ef:f2:8a:99:de:2b:a3:
5e:b0:4b:8c:8f:5e:1d:be:6b:f9:1d:5d:fd:3f:10:00:b2:1a:
07:7e:54:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 00:16:34 2026 by rpki-client