$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.mft File: 37zT-LypGRXEUzosCmnD01suaI0.mft (raw, json) Hash identifier: CGBJ4OVB+l6PYNUuGfHkH/DzsW6mCUi1V0YDec1Vi0o= Subject key identifier: 7B:E2:E2:1D:1C:EE:66:37:B7:53:20:27:D1:07:36:DC:92:95:8D:D2 Authority key identifier: DF:BC:D3:F8:BC:A9:19:15:C4:53:3A:2C:0A:69:C3:D3:5B:2E:68:8D Certificate issuer: /CN=DFBCD3F8BCA91915C4533A2C0A69C3D35B2E688D Certificate serial: 34 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.mft Manifest number: 03E7 Signing time: Sat 05 Apr 2025 12:14:02 +0000 Manifest this update: Sat 05 Apr 2025 12:14:02 +0000 Manifest next update: Sun 20 Apr 2025 12:14:02 +0000 Files and hashes: 1: 1mAJcusObcRGfR8FE7EVGSKfw4M.roa (hash: D+m1Uv1mGix3Tzl3bUXtl+eGlqAAyjX3WIsBQdVA8vg=) 2: 37zT-LypGRXEUzosCmnD01suaI0.crl (hash: OoIxU7IgdS7+m+fa2RLbve4ms34yDzHDPBrfLa8T1gE=) 3: FSNx6P3I2UBEOrcRbmZHQIAWwbM.roa (hash: BJMtbIA8xRvg862kXwWzbJIuUlZmryDIAZwPxXnZKCw=) 4: T4S-y1n1GGbqr3JZSSXkZEzSEO0.roa (hash: 9Klr1muHkuKyCvafZDxlYVVW28odYC9GEqmaD2G9OvQ=) 5: UB2Whd7IS8IWR4uM1S811KLdjaM.roa (hash: +MDFMYR9snmO01M5pJnpGp9sy61sN6pxdeUVZVLL4g8=) 6: UJEjl2pkQOWD4hUXE3DnLMpQr6s.roa (hash: Sx/FFgEvMgSJpjEuZomT7X1PfPllXkoShKjh0SekPbs=) 7: VJYgHShK24VeQcVp-kIznm0ZUEs.roa (hash: 5co3ADEFEEmhNr8Ev5FSK6VrSEPhVDGnVINhOXREeX4=) 8: Wx4lf8FRgXgeKMIZ4dsafnHNMgk.roa (hash: ndT8gK4dvmrExK8ZR53fq9gOHXe4Q2vQLkbHjE4z6LI=) 9: h00a7vBkuwk_8EAb3Ornv3uxXi8.roa (hash: Q3Hefu0tC1zDy635eKkTyBmG6OE0b81QRRceX/NKuaU=) 10: hehhgt7l4nmetHYS_anp3CbHiyg.roa (hash: BBDSkVC8BPCIbBaZEwzXnJ2FWLQIHqSxEYAcXaTt4C4=) 11: rAETEqliFhJ7gdsxF5rv293hfT4.roa (hash: e872fgxI6ZIg3GA1lS7iuseCksG5QOP8NKdvb04B/Rk=) 12: sC37k6EIozJhy18zD1oew8MT8Dg.roa (hash: aoUTi31k+ol/v/xgFXew45Y9SKwynq5R/0PdDIwjKKg=) Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFBCD3F8BCA91915C4533A2C0A69C3D35B2E688D Validity Not Before: Mar 15 01:30:57 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=7BE2E21D1CEE6637B7532027D10736DC92958DD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:88:d8:f6:56:01:c7:a9:1a:57:d7:a4:c8:f1: d8:d4:ee:ab:ce:4d:48:cb:e6:16:f1:7b:c2:8d:ac: 1d:2c:3c:53:f8:d4:12:ef:78:8f:f8:6f:a9:51:5e: f7:39:58:46:3d:5f:f5:c0:2d:69:f7:04:30:1a:86: d2:09:60:89:16:8c:15:6c:48:47:6a:96:18:70:02: e5:9d:07:17:ee:40:fe:1d:38:fb:b9:7c:a4:60:7c: 90:61:a8:b8:4c:af:b2:b8:9d:05:1d:11:51:a0:de: 9f:fa:d7:5a:1a:30:b5:01:a1:37:0e:cc:bf:21:76: 0f:e4:7e:18:02:4d:04:ec:f1:e6:a4:70:e4:ae:da: 92:56:bc:c8:2c:da:de:1d:cf:91:f3:06:9d:03:dc: a6:7e:6e:da:c2:7c:90:a8:51:ac:a4:64:83:24:ee: 5f:57:bf:c7:87:eb:75:8c:d1:92:39:f1:0a:0a:f4: 6d:e1:82:e4:83:06:fb:a1:6c:43:e7:cf:46:10:f0: 02:96:dc:99:14:3e:f5:23:43:92:5f:46:80:ac:19: 6e:88:1f:61:ea:c6:68:c4:af:1f:e7:98:b4:49:10: 93:7d:19:fe:4a:f3:f4:16:51:a1:31:f9:55:3f:e4: c7:ad:04:09:8b:02:c5:c4:39:54:21:af:10:15:90: 15:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:E2:E2:1D:1C:EE:66:37:B7:53:20:27:D1:07:36:DC:92:95:8D:D2 X509v3 Authority Key Identifier: keyid:DF:BC:D3:F8:BC:A9:19:15:C4:53:3A:2C:0A:69:C3:D3:5B:2E:68:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:7c:13:4b:a8:e5:a0:5f:92:bb:b4:98:8c:a3:66:a3:b1:e6: ed:8e:3a:b0:c9:0d:5b:d9:dd:59:6e:75:47:3c:8f:af:38:66: 63:1f:83:c9:01:3d:98:33:9b:cc:7d:61:cf:3e:a1:49:ab:87: 87:15:88:28:a3:da:84:6f:cb:aa:08:70:e0:06:46:14:78:c5: 48:a5:3c:a0:93:7c:f0:ca:4e:67:bf:07:59:b7:08:00:7f:57: 5a:70:bb:9c:57:78:3e:80:b8:43:ed:0f:d7:71:44:2e:c7:be: 49:82:d4:03:df:a0:5b:b3:03:58:0c:aa:bd:28:69:fb:d2:33: 75:c0:e8:97:22:51:84:27:45:a2:d0:24:61:96:a2:15:67:bc: 6b:56:7c:78:de:30:c1:55:c1:ca:4f:e9:37:29:d6:23:f8:02: 30:32:0b:c1:cd:05:ce:13:fe:fe:9d:d2:ec:ee:f6:ff:7b:3c: 84:8d:3a:58:a4:d7:ec:d1:72:bc:89:30:52:f0:ce:14:33:39: ca:66:ce:80:b0:cf:5c:e9:08:7b:6f:a8:aa:3d:5a:04:96:7f: dd:a4:03:5e:0d:43:7a:06:8f:b8:3a:1a:1f:9f:0a:fa:90:5e: 60:e8:20:0c:20:f3:69:f3:07:be:df:c9:fb:e5:11:76:db:ae: 21:7b:fa:cc -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIBNDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhERkJD RDNGOEJDQTkxOTE1QzQ1MzNBMkMwQTY5QzNEMzVCMkU2ODhEMB4XDTI1MDMxNTAx MzA1N1oXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoN0JFMkUyMUQxQ0VFNjYz N0I3NTMyMDI3RDEwNzM2REM5Mjk1OEREMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANiI2PZWAcepGlfXpMjx2NTuq85NSMvmFvF7wo2sHSw8U/jUEu94 j/hvqVFe9zlYRj1f9cAtafcEMBqG0glgiRaMFWxIR2qWGHAC5Z0HF+5A/h04+7l8 pGB8kGGouEyvsridBR0RUaDen/rXWhowtQGhNw7MvyF2D+R+GAJNBOzx5qRw5K7a kla8yCza3h3PkfMGnQPcpn5u2sJ8kKhRrKRkgyTuX1e/x4frdYzRkjnxCgr0beGC 5IMG+6FsQ+fPRhDwApbcmRQ+9SNDkl9GgKwZbogfYerGaMSvH+eYtEkQk30Z/krz 9BZRoTH5VT/kx60ECYsCxcQ5VCGvEBWQFTcCAwEAAaOCAkEwggI9MB0GA1UdDgQW BBR74uIdHO5mN7dTICfRBzbckpWN0jAfBgNVHSMEGDAWgBTfvNP4vKkZFcRTOiwK acPTWy5ojTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAxNzUvMzd6VC1MeXBHUlhFVXpvc0NtbkQwMXN1YUkwLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMzd6VC1MeXBHUlhFVXpvc0NtbkQw MXN1YUkwLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMTc1LzM3elQtTHlwR1JYRVV6b3NDbW5EMDFzdWFJMC5t ZnQwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFfBNLqOWgX5K7tJiMo2ajsebtjjqwyQ1b2d1ZbnVHPI+vOGZjH4PJ AT2YM5vMfWHPPqFJq4eHFYgoo9qEb8uqCHDgBkYUeMVIpTygk3zwyk5nvwdZtwgA f1dacLucV3g+gLhD7Q/XcUQux75JgtQD36BbswNYDKq9KGn70jN1wOiXIlGEJ0Wi 0CRhlqIVZ7xrVnx43jDBVcHKT+k3KdYj+AIwMgvBzQXOE/7+ndLs7vb/ezyEjTpY pNfs0XK8iTBS8M4UMznKZs6AsM9c6Qh7b6iqPVoEln/dpANeDUN6Bo+4Ohofnwr6 kF5g6CAMIPNp8we+38n75RF2264he/rM -----END CERTIFICATE-----Generated at Sat Apr 5 17:40:38 2025 by rpki-client