$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/0Q2IZYK930iwQYUcOMC2MhFfXCE.cer File: 0Q2IZYK930iwQYUcOMC2MhFfXCE.cer (raw, json) Hash identifier: u44Mr3R2MSw/IyWJOHDarj6uKTO/NQ/FtMLNE4RXACs= Subject key identifier: D1:0D:88:65:82:BD:DF:48:B0:41:85:1C:38:C0:B6:32:11:5F:5C:21 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 6762 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/0Q2IZYK930iwQYUcOMC2MhFfXCE.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Wed 15 Apr 2026 01:40:37 +0000 Certificate not after: Thu 15 Apr 2027 01:30:02 +0000 Subordinate resources: IP: 2403:7800::/32 IP: 2406:bb00::/29 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26466 (0x6762) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Apr 15 01:40:37 2026 GMT Not After : Apr 15 01:30:02 2027 GMT Subject: CN=D10D886582BDDF48B041851C38C0B632115F5C21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:58:ee:ce:fc:55:94:dc:c7:7a:0e:9b:a0:71: 6d:34:d8:d8:a9:d2:42:6e:da:f6:68:d7:9c:76:29: 8f:d4:1e:11:f5:dd:73:e4:76:1a:5f:1f:4c:b5:e9: 61:70:11:33:14:b3:fa:03:a9:85:2a:b2:3d:8e:79: f6:52:42:74:09:11:6b:58:56:41:61:31:6f:71:a3: 30:a5:88:9e:99:c1:17:d4:d2:35:ca:b9:dc:a8:d1: 1d:af:fa:2d:8a:05:79:ce:d1:59:4a:2f:dc:e0:6d: ca:1b:68:13:81:1c:d4:0d:ab:2f:0b:e3:20:9e:5d: 22:fa:3c:1a:2b:40:4e:78:ac:bb:6f:81:b4:a9:d7: 29:84:62:f9:b9:bd:ef:56:41:11:ea:ce:d6:80:2f: 65:85:9e:23:bc:f5:18:7a:81:0b:43:8c:fa:47:50: 84:9a:c4:41:16:44:78:ae:38:2f:1b:0c:56:0c:aa: f3:d5:11:54:05:bc:e8:6e:de:c3:13:ef:c1:73:2f: cd:be:76:08:0c:bb:46:41:94:9b:94:fb:e8:cb:b5: 43:12:ca:69:2c:41:1d:2f:3a:a7:ad:47:80:b0:3e: fe:4b:e6:59:bd:ea:35:6a:ed:9c:01:ab:e9:b5:5f: 96:8d:ae:be:52:fd:7d:f8:19:61:43:4f:15:17:1c: b9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:0D:88:65:82:BD:DF:48:B0:41:85:1C:38:C0:B6:32:11:5F:5C:21 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/0Q2IZYK930iwQYUcOMC2MhFfXCE.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:7800::/32 2406:bb00::/29 Signature Algorithm: sha256WithRSAEncryption 2a:e5:5c:31:41:d6:80:5d:a3:4c:4e:b5:72:88:8d:c8:c1:75: f0:a6:90:c4:a3:19:15:33:0d:43:0b:f3:9b:9a:ae:2d:b1:b8: fe:6d:32:3d:72:42:f5:8b:bd:37:f2:7f:e1:fb:23:0f:00:46: 6b:f7:53:42:ac:24:fc:4e:dc:30:28:14:f8:1f:af:e0:61:cf: 9d:b8:3e:03:40:d1:86:42:a5:dd:af:52:e6:31:25:d3:41:21: fa:af:95:74:e4:80:46:89:4c:ad:72:b7:5e:29:e6:fd:71:55: 09:3e:ac:a7:a2:ab:d9:fb:80:87:ad:9c:1b:d5:8e:6a:c9:c5: 17:ea:09:34:b3:09:6a:81:f7:bc:3d:00:77:02:c2:11:24:4a: cb:36:05:85:b7:8c:69:03:cf:df:f3:84:4a:0c:b0:f4:99:34: 6a:78:9a:29:f5:68:f4:7c:f6:19:ac:4c:b2:20:ed:c2:b1:c3: 09:71:39:52:85:2c:29:03:6a:00:1a:07:87:ca:72:e2:77:67: 87:c3:5b:0a:2f:e7:d7:dc:82:7a:19:08:c0:b7:c9:8f:a3:f3: ad:65:5a:9d:5c:0f:45:ce:10:b9:93:ba:9d:88:ae:85:b2:e2: f8:e2:a7:59:77:a7:a3:0d:cf:32:a3:f1:11:d6:31:c3:b4:21: f0:c4:3e:97 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICZ2IwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI2MDQxNTAxNDAzN1oXDTI3MDQxNTAxMzAwMlowMzEx MC8GA1UEAxMoRDEwRDg4NjU4MkJEREY0OEIwNDE4NTFDMzhDMEI2MzIxMTVGNUMy MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK1Y7s78VZTcx3oOm6Bx bTTY2KnSQm7a9mjXnHYpj9QeEfXdc+R2Gl8fTLXpYXARMxSz+gOphSqyPY559lJC dAkRa1hWQWExb3GjMKWInpnBF9TSNcq53KjRHa/6LYoFec7RWUov3OBtyhtoE4Ec 1A2rLwvjIJ5dIvo8GitATnisu2+BtKnXKYRi+bm971ZBEerO1oAvZYWeI7z1GHqB C0OM+kdQhJrEQRZEeK44LxsMVgyq89URVAW86G7ewxPvwXMvzb52CAy7RkGUm5T7 6Mu1QxLKaSxBHS86p61HgLA+/kvmWb3qNWrtnAGr6bVflo2uvlL9ffgZYUNPFRcc uZcCAwEAAaOCApMwggKPMB0GA1UdDgQWBBTRDYhlgr3fSLBBhRw4wLYyEV9cITAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAyMjgvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMjI4LzBR MklaWUs5MzBpd1FZVWNPTUMyTWhGZlhDRS5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwJwYIKwYBBQUHAQcBAf8EGDAWMBQEAgACMA4DBQAkA3gAAwUDJAa7ADAN BgkqhkiG9w0BAQsFAAOCAQEAKuVcMUHWgF2jTE61coiNyMF18KaQxKMZFTMNQwvz m5quLbG4/m0yPXJC9Yu9N/J/4fsjDwBGa/dTQqwk/E7cMCgU+B+v4GHPnbg+A0DR hkKl3a9S5jEl00Eh+q+VdOSARolMrXK3Xinm/XFVCT6sp6Kr2fuAh62cG9WOasnF F+oJNLMJaoH3vD0AdwLCESRKyzYFhbeMaQPP3/OESgyw9Jk0aniaKfVo9Hz2GaxM siDtwrHDCXE5UoUsKQNqABoHh8py4ndnh8NbCi/n19yCehkIwLfJj6PzrWVanVwP Rc4QuZO6nYiuhbLi+OKnWXenow3PMqPxEdYxw7Qh8MQ+lw== -----END CERTIFICATE-----Generated at Fri Apr 17 03:03:37 2026 by rpki-client