Manifest

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.mft
File:                     37zT-LypGRXEUzosCmnD01suaI0.mft (raw, json)
Hash identifier:          a6uKzgbiSx+K8ko4/0ZyPiyU14uJZ9j4HeSrq4ynEJw=
Subject key identifier:   7B:E2:E2:1D:1C:EE:66:37:B7:53:20:27:D1:07:36:DC:92:95:8D:D2
Authority key identifier: DF:BC:D3:F8:BC:A9:19:15:C4:53:3A:2C:0A:69:C3:D3:5B:2E:68:8D
Certificate issuer:       /CN=DFBCD3F8BCA91915C4533A2C0A69C3D35B2E688D
Certificate serial:       3B
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.mft
Manifest number:          066F
Signing time:             Wed 23 Jul 2025 00:36:34 +0000
Manifest this update:     Wed 23 Jul 2025 00:36:34 +0000
Manifest next update:     Thu 07 Aug 2025 00:36:34 +0000
Files and hashes:         1: 1mAJcusObcRGfR8FE7EVGSKfw4M.roa (hash: D+m1Uv1mGix3Tzl3bUXtl+eGlqAAyjX3WIsBQdVA8vg=)
                          2: 37zT-LypGRXEUzosCmnD01suaI0.crl (hash: x9ZbRwezrxxnC140xhKaKKgwavXsLzAmW5Lsc+PSSAM=)
                          3: FSNx6P3I2UBEOrcRbmZHQIAWwbM.roa (hash: BJMtbIA8xRvg862kXwWzbJIuUlZmryDIAZwPxXnZKCw=)
                          4: T4S-y1n1GGbqr3JZSSXkZEzSEO0.roa (hash: 9Klr1muHkuKyCvafZDxlYVVW28odYC9GEqmaD2G9OvQ=)
                          5: UB2Whd7IS8IWR4uM1S811KLdjaM.roa (hash: +MDFMYR9snmO01M5pJnpGp9sy61sN6pxdeUVZVLL4g8=)
                          6: UJEjl2pkQOWD4hUXE3DnLMpQr6s.roa (hash: Sx/FFgEvMgSJpjEuZomT7X1PfPllXkoShKjh0SekPbs=)
                          7: VJYgHShK24VeQcVp-kIznm0ZUEs.roa (hash: 5co3ADEFEEmhNr8Ev5FSK6VrSEPhVDGnVINhOXREeX4=)
                          8: Wx4lf8FRgXgeKMIZ4dsafnHNMgk.roa (hash: ndT8gK4dvmrExK8ZR53fq9gOHXe4Q2vQLkbHjE4z6LI=)
                          9: h00a7vBkuwk_8EAb3Ornv3uxXi8.roa (hash: Q3Hefu0tC1zDy635eKkTyBmG6OE0b81QRRceX/NKuaU=)
                          10: hehhgt7l4nmetHYS_anp3CbHiyg.roa (hash: BBDSkVC8BPCIbBaZEwzXnJ2FWLQIHqSxEYAcXaTt4C4=)
                          11: rAETEqliFhJ7gdsxF5rv293hfT4.roa (hash: e872fgxI6ZIg3GA1lS7iuseCksG5QOP8NKdvb04B/Rk=)
                          12: sC37k6EIozJhy18zD1oew8MT8Dg.roa (hash: aoUTi31k+ol/v/xgFXew45Y9SKwynq5R/0PdDIwjKKg=)
Validation:               OK
Signature path:           rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.crl
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.mft
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 30 Jul 2025 01:39:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 59 (0x3b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=DFBCD3F8BCA91915C4533A2C0A69C3D35B2E688D
        Validity
            Not Before: Jul 15 01:41:49 2025 GMT
            Not After : Jul 15 01:30:01 2026 GMT
        Subject: CN=7BE2E21D1CEE6637B7532027D10736DC92958DD2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:88:d8:f6:56:01:c7:a9:1a:57:d7:a4:c8:f1:
                    d8:d4:ee:ab:ce:4d:48:cb:e6:16:f1:7b:c2:8d:ac:
                    1d:2c:3c:53:f8:d4:12:ef:78:8f:f8:6f:a9:51:5e:
                    f7:39:58:46:3d:5f:f5:c0:2d:69:f7:04:30:1a:86:
                    d2:09:60:89:16:8c:15:6c:48:47:6a:96:18:70:02:
                    e5:9d:07:17:ee:40:fe:1d:38:fb:b9:7c:a4:60:7c:
                    90:61:a8:b8:4c:af:b2:b8:9d:05:1d:11:51:a0:de:
                    9f:fa:d7:5a:1a:30:b5:01:a1:37:0e:cc:bf:21:76:
                    0f:e4:7e:18:02:4d:04:ec:f1:e6:a4:70:e4:ae:da:
                    92:56:bc:c8:2c:da:de:1d:cf:91:f3:06:9d:03:dc:
                    a6:7e:6e:da:c2:7c:90:a8:51:ac:a4:64:83:24:ee:
                    5f:57:bf:c7:87:eb:75:8c:d1:92:39:f1:0a:0a:f4:
                    6d:e1:82:e4:83:06:fb:a1:6c:43:e7:cf:46:10:f0:
                    02:96:dc:99:14:3e:f5:23:43:92:5f:46:80:ac:19:
                    6e:88:1f:61:ea:c6:68:c4:af:1f:e7:98:b4:49:10:
                    93:7d:19:fe:4a:f3:f4:16:51:a1:31:f9:55:3f:e4:
                    c7:ad:04:09:8b:02:c5:c4:39:54:21:af:10:15:90:
                    15:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:E2:E2:1D:1C:EE:66:37:B7:53:20:27:D1:07:36:DC:92:95:8D:D2
            X509v3 Authority Key Identifier:
                keyid:DF:BC:D3:F8:BC:A9:19:15:C4:53:3A:2C:0A:69:C3:D3:5B:2E:68:8D

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.mft
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         26:a9:e1:cc:2f:bd:dd:c7:0a:65:8f:3c:d0:bf:30:96:c7:62:
         c3:23:f9:1d:5f:af:7a:24:85:cf:6e:83:b7:61:36:a9:98:4f:
         f4:ec:e5:80:89:7f:9e:68:cb:a4:18:51:ad:94:7c:97:97:21:
         21:80:cb:9b:98:b2:fe:66:d8:be:61:e0:2d:94:8d:e0:64:96:
         56:7b:a3:60:f9:50:30:c4:a1:c9:ac:7e:c7:35:b1:9d:cc:bb:
         a0:a1:ce:aa:c7:27:57:ec:e0:8b:26:59:ab:e9:9b:b7:ff:b7:
         8d:2a:f6:1a:f4:97:fa:33:53:0a:8c:0a:a3:e0:43:41:05:8b:
         4d:5f:0c:04:e6:7c:10:90:e8:06:22:51:42:a6:b3:f3:00:73:
         80:01:e4:7b:74:af:8d:5e:06:76:34:e5:ae:13:4d:7d:19:42:
         e1:d4:6c:8a:43:60:af:4f:de:56:89:28:86:96:d6:d9:21:48:
         ee:87:55:10:cf:2c:3b:b4:a1:9c:47:04:4f:b5:99:ed:b4:40:
         8d:0b:01:c6:5f:c4:05:f2:60:90:c0:68:e2:03:79:0d:ac:8d:
         5f:17:fd:ba:30:c5:94:c3:44:43:6a:a5:c3:0c:84:2e:a6:0d:
         15:a7:a8:93:10:6d:73:63:2f:89:97:d7:80:fd:14:93:04:a9:
         ef:37:04:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:48:51 2025 by rpki-client