$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1188/gYjAHIr0x4hvwZdQd5r1jl4TM-Q.mft File: gYjAHIr0x4hvwZdQd5r1jl4TM-Q.mft (raw, json) Hash identifier: UNuD1uoVlFfdFuP+m5z5WWiFrodkrIBHrFqxQXS86mk= Subject key identifier: 61:2A:64:F0:80:3B:03:E0:70:91:24:14:DF:39:5E:FC:42:59:A6:5B Authority key identifier: 81:88:C0:1C:8A:F4:C7:88:6F:C1:97:50:77:9A:F5:8E:5E:13:33:E4 Certificate issuer: /CN=8188C01C8AF4C7886FC19750779AF58E5E1333E4 Certificate serial: 25 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/gYjAHIr0x4hvwZdQd5r1jl4TM-Q.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1188/gYjAHIr0x4hvwZdQd5r1jl4TM-Q.mft Manifest number: 03EF Signing time: Sat 05 Apr 2025 13:22:14 +0000 Manifest this update: Sat 05 Apr 2025 13:22:14 +0000 Manifest next update: Sun 20 Apr 2025 13:22:14 +0000 Files and hashes: 1: gYjAHIr0x4hvwZdQd5r1jl4TM-Q.crl (hash: TCPDrE4PIftZFNxXi1CfFvr7l/FLENHDshaUNU6eOEQ=) 2: haiMo8pDhtLVaM43CVl4ppNazLQ.roa (hash: FZire+5G5U8slgvR8LYoPQcUCx0Jqo2OSD1Td2prTKI=) Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1188/gYjAHIr0x4hvwZdQd5r1jl4TM-Q.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1188/gYjAHIr0x4hvwZdQd5r1jl4TM-Q.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/gYjAHIr0x4hvwZdQd5r1jl4TM-Q.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8188C01C8AF4C7886FC19750779AF58E5E1333E4 Validity Not Before: Mar 15 01:30:34 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=612A64F0803B03E070912414DF395EFC4259A65B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:35:f4:06:a9:ef:ee:94:30:d8:d2:ff:11:15: e4:c3:71:d5:df:e8:fe:bf:7e:0e:04:dc:57:21:23: db:84:dc:5f:51:42:9f:fe:7a:f9:78:7b:09:4f:2a: 9c:83:43:5c:ae:aa:76:e1:0a:09:26:bf:dc:15:a6: c0:38:00:01:39:fa:9b:31:75:08:24:a0:48:79:12: fd:65:59:5d:ae:2e:f0:d9:36:b4:20:22:cc:c8:5b: 85:2e:85:bc:b2:b4:56:be:f8:b4:ab:7b:b9:39:75: a8:cd:4d:41:b8:b1:59:82:99:bd:fa:bc:b9:56:74: f8:c2:81:7c:b3:d8:53:76:3e:c4:90:f5:6d:be:8e: 2e:aa:7c:96:00:f8:ef:d7:ee:95:38:6d:b4:29:36: 40:0d:bc:81:34:0f:85:b0:3b:31:b5:1c:f1:2d:1f: 82:47:b6:f8:c1:a8:c6:cd:45:76:fb:64:88:fe:c9: 0c:c4:6a:0f:d4:69:b8:cc:5a:05:ce:f2:8d:81:04: df:ba:d5:02:f1:5b:bc:56:16:c2:04:3a:a1:44:c8: 21:fa:ed:4e:6c:02:8f:0f:d3:79:76:27:52:0e:e0: f1:4d:c6:3b:0d:a0:43:26:90:5a:d6:ac:b7:99:89: a1:9f:30:ef:84:fb:90:9a:13:98:3d:c7:53:9b:da: ee:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:2A:64:F0:80:3B:03:E0:70:91:24:14:DF:39:5E:FC:42:59:A6:5B X509v3 Authority Key Identifier: keyid:81:88:C0:1C:8A:F4:C7:88:6F:C1:97:50:77:9A:F5:8E:5E:13:33:E4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1188/gYjAHIr0x4hvwZdQd5r1jl4TM-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/gYjAHIr0x4hvwZdQd5r1jl4TM-Q.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1188/gYjAHIr0x4hvwZdQd5r1jl4TM-Q.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:ab:13:32:da:b7:77:13:27:af:36:d5:63:89:89:5c:d3:51: 5e:f4:b5:bd:19:68:37:b0:63:3c:0a:6d:cd:37:98:4f:76:ad: 87:5b:cb:cc:c8:29:fe:eb:01:5d:a0:13:f5:1e:52:89:c7:66: 20:c8:4f:3a:42:d1:1c:48:fc:50:c7:5a:1c:e2:cb:b6:94:a6: a7:c1:0d:cc:0b:d3:c4:9c:c8:bc:f8:3c:63:32:cf:db:0b:6f: fb:fa:17:00:f5:f9:0b:da:3d:f8:d0:c0:0a:86:99:b6:ae:ff: 20:88:64:25:d3:84:94:9e:bb:31:b0:2c:e5:d6:d5:fe:4f:06: a9:8f:2f:92:30:4b:b0:51:fd:de:7c:b1:d4:90:6c:52:a2:bc: 45:79:ac:e0:10:78:3e:24:54:d0:fa:d1:71:8e:0f:75:c5:f4: 7f:ef:f5:3a:95:da:37:ce:d2:f8:aa:9e:70:15:06:cd:fb:7e: c2:c3:9a:9f:30:fa:90:a2:3c:d7:bb:00:b9:02:ce:84:05:7e: 2f:06:a5:b7:10:15:02:57:5a:c9:a7:33:07:12:69:7e:f0:86: 7f:11:b0:6b:40:0f:ba:f7:e8:06:b7:a0:16:f8:42:c9:37:1d: 50:c8:95:70:b4:3a:86:71:59:0d:f0:b7:d6:cd:cf:d8:03:29: 4b:86:6d:e1 -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIBJTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4MTg4 QzAxQzhBRjRDNzg4NkZDMTk3NTA3NzlBRjU4RTVFMTMzM0U0MB4XDTI1MDMxNTAx MzAzNFoXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoNjEyQTY0RjA4MDNCMDNF MDcwOTEyNDE0REYzOTVFRkM0MjU5QTY1QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMI19Aap7+6UMNjS/xEV5MNx1d/o/r9+DgTcVyEj24TcX1FCn/56 +Xh7CU8qnINDXK6qduEKCSa/3BWmwDgAATn6mzF1CCSgSHkS/WVZXa4u8Nk2tCAi zMhbhS6FvLK0Vr74tKt7uTl1qM1NQbixWYKZvfq8uVZ0+MKBfLPYU3Y+xJD1bb6O Lqp8lgD479fulThttCk2QA28gTQPhbA7MbUc8S0fgke2+MGoxs1FdvtkiP7JDMRq D9RpuMxaBc7yjYEE37rVAvFbvFYWwgQ6oUTIIfrtTmwCjw/TeXYnUg7g8U3GOw2g QyaQWtast5mJoZ8w74T7kJoTmD3HU5va7p0CAwEAAaOCAj8wggI7MB0GA1UdDgQW BBRhKmTwgDsD4HCRJBTfOV78QlmmWzAfBgNVHSMEGDAWgBSBiMAcivTHiG/Bl1B3 mvWOXhMz5DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTE4OC9nWWpBSElyMHg0aHZ3WmRRZDVyMWpsNFRNLVEuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9nWWpBSElyMHg0aHZ3WmRRZDVyMWps NFRNLVEuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTE4OC9nWWpBSElyMHg0aHZ3WmRRZDVyMWpsNFRNLVEubWZ0 MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAw IQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsF AAOCAQEAdqsTMtq3dxMnrzbVY4mJXNNRXvS1vRloN7BjPAptzTeYT3ath1vLzMgp /usBXaAT9R5SicdmIMhPOkLRHEj8UMdaHOLLtpSmp8ENzAvTxJzIvPg8YzLP2wtv +/oXAPX5C9o9+NDACoaZtq7/IIhkJdOElJ67MbAs5dbV/k8GqY8vkjBLsFH93nyx 1JBsUqK8RXms4BB4PiRU0PrRcY4PdcX0f+/1OpXaN87S+KqecBUGzft+wsOanzD6 kKI817sAuQLOhAV+LwaltxAVAldayaczBxJpfvCGfxGwa0APuvfoBregFvhCyTcd UMiVcLQ6hnFZDfC31s3P2AMpS4Zt4Q== -----END CERTIFICATE-----Generated at Sat Apr 5 17:28:06 2025 by rpki-client