$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.mft File: 37zT-LypGRXEUzosCmnD01suaI0.mft (raw, json) Hash identifier: ZJRwzElysUo7JI0nTwTtT51y8G0WGPWEJom30uy59uQ= Subject key identifier: 7B:E2:E2:1D:1C:EE:66:37:B7:53:20:27:D1:07:36:DC:92:95:8D:D2 Authority key identifier: DF:BC:D3:F8:BC:A9:19:15:C4:53:3A:2C:0A:69:C3:D3:5B:2E:68:8D Certificate issuer: /CN=DFBCD3F8BCA91915C4533A2C0A69C3D35B2E688D Certificate serial: 3B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.mft Manifest number: 0676 Signing time: Thu 24 Jul 2025 05:13:31 +0000 Manifest this update: Thu 24 Jul 2025 05:13:31 +0000 Manifest next update: Fri 08 Aug 2025 05:13:31 +0000 Files and hashes: 1: 1mAJcusObcRGfR8FE7EVGSKfw4M.roa (hash: D+m1Uv1mGix3Tzl3bUXtl+eGlqAAyjX3WIsBQdVA8vg=) 2: 37zT-LypGRXEUzosCmnD01suaI0.crl (hash: +5XGJ3Xw7qOFNn3oXw9e7FEnsK90EJr4LyLz/hA6hJI=) 3: FSNx6P3I2UBEOrcRbmZHQIAWwbM.roa (hash: BJMtbIA8xRvg862kXwWzbJIuUlZmryDIAZwPxXnZKCw=) 4: T4S-y1n1GGbqr3JZSSXkZEzSEO0.roa (hash: 9Klr1muHkuKyCvafZDxlYVVW28odYC9GEqmaD2G9OvQ=) 5: UB2Whd7IS8IWR4uM1S811KLdjaM.roa (hash: +MDFMYR9snmO01M5pJnpGp9sy61sN6pxdeUVZVLL4g8=) 6: UJEjl2pkQOWD4hUXE3DnLMpQr6s.roa (hash: Sx/FFgEvMgSJpjEuZomT7X1PfPllXkoShKjh0SekPbs=) 7: VJYgHShK24VeQcVp-kIznm0ZUEs.roa (hash: 5co3ADEFEEmhNr8Ev5FSK6VrSEPhVDGnVINhOXREeX4=) 8: Wx4lf8FRgXgeKMIZ4dsafnHNMgk.roa (hash: ndT8gK4dvmrExK8ZR53fq9gOHXe4Q2vQLkbHjE4z6LI=) 9: h00a7vBkuwk_8EAb3Ornv3uxXi8.roa (hash: Q3Hefu0tC1zDy635eKkTyBmG6OE0b81QRRceX/NKuaU=) 10: hehhgt7l4nmetHYS_anp3CbHiyg.roa (hash: BBDSkVC8BPCIbBaZEwzXnJ2FWLQIHqSxEYAcXaTt4C4=) 11: rAETEqliFhJ7gdsxF5rv293hfT4.roa (hash: e872fgxI6ZIg3GA1lS7iuseCksG5QOP8NKdvb04B/Rk=) 12: sC37k6EIozJhy18zD1oew8MT8Dg.roa (hash: aoUTi31k+ol/v/xgFXew45Y9SKwynq5R/0PdDIwjKKg=) Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 03:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFBCD3F8BCA91915C4533A2C0A69C3D35B2E688D Validity Not Before: Jul 15 01:41:49 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=7BE2E21D1CEE6637B7532027D10736DC92958DD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:88:d8:f6:56:01:c7:a9:1a:57:d7:a4:c8:f1: d8:d4:ee:ab:ce:4d:48:cb:e6:16:f1:7b:c2:8d:ac: 1d:2c:3c:53:f8:d4:12:ef:78:8f:f8:6f:a9:51:5e: f7:39:58:46:3d:5f:f5:c0:2d:69:f7:04:30:1a:86: d2:09:60:89:16:8c:15:6c:48:47:6a:96:18:70:02: e5:9d:07:17:ee:40:fe:1d:38:fb:b9:7c:a4:60:7c: 90:61:a8:b8:4c:af:b2:b8:9d:05:1d:11:51:a0:de: 9f:fa:d7:5a:1a:30:b5:01:a1:37:0e:cc:bf:21:76: 0f:e4:7e:18:02:4d:04:ec:f1:e6:a4:70:e4:ae:da: 92:56:bc:c8:2c:da:de:1d:cf:91:f3:06:9d:03:dc: a6:7e:6e:da:c2:7c:90:a8:51:ac:a4:64:83:24:ee: 5f:57:bf:c7:87:eb:75:8c:d1:92:39:f1:0a:0a:f4: 6d:e1:82:e4:83:06:fb:a1:6c:43:e7:cf:46:10:f0: 02:96:dc:99:14:3e:f5:23:43:92:5f:46:80:ac:19: 6e:88:1f:61:ea:c6:68:c4:af:1f:e7:98:b4:49:10: 93:7d:19:fe:4a:f3:f4:16:51:a1:31:f9:55:3f:e4: c7:ad:04:09:8b:02:c5:c4:39:54:21:af:10:15:90: 15:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:E2:E2:1D:1C:EE:66:37:B7:53:20:27:D1:07:36:DC:92:95:8D:D2 X509v3 Authority Key Identifier: keyid:DF:BC:D3:F8:BC:A9:19:15:C4:53:3A:2C:0A:69:C3:D3:5B:2E:68:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:a9:e1:cc:2f:bd:dd:c7:0a:65:8f:3c:d0:bf:30:96:c7:62: c3:23:f9:1d:5f:af:7a:24:85:cf:6e:83:b7:61:36:a9:98:4f: f4:ec:e5:80:89:7f:9e:68:cb:a4:18:51:ad:94:7c:97:97:21: 21:80:cb:9b:98:b2:fe:66:d8:be:61:e0:2d:94:8d:e0:64:96: 56:7b:a3:60:f9:50:30:c4:a1:c9:ac:7e:c7:35:b1:9d:cc:bb: a0:a1:ce:aa:c7:27:57:ec:e0:8b:26:59:ab:e9:9b:b7:ff:b7: 8d:2a:f6:1a:f4:97:fa:33:53:0a:8c:0a:a3:e0:43:41:05:8b: 4d:5f:0c:04:e6:7c:10:90:e8:06:22:51:42:a6:b3:f3:00:73: 80:01:e4:7b:74:af:8d:5e:06:76:34:e5:ae:13:4d:7d:19:42: e1:d4:6c:8a:43:60:af:4f:de:56:89:28:86:96:d6:d9:21:48: ee:87:55:10:cf:2c:3b:b4:a1:9c:47:04:4f:b5:99:ed:b4:40: 8d:0b:01:c6:5f:c4:05:f2:60:90:c0:68:e2:03:79:0d:ac:8d: 5f:17:fd:ba:30:c5:94:c3:44:43:6a:a5:c3:0c:84:2e:a6:0d: 15:a7:a8:93:10:6d:73:63:2f:89:97:d7:80:fd:14:93:04:a9: ef:37:04:eb -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIBOzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhERkJD RDNGOEJDQTkxOTE1QzQ1MzNBMkMwQTY5QzNEMzVCMkU2ODhEMB4XDTI1MDcxNTAx NDE0OVoXDTI2MDcxNTAxMzAwMVowMzExMC8GA1UEAxMoN0JFMkUyMUQxQ0VFNjYz N0I3NTMyMDI3RDEwNzM2REM5Mjk1OEREMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANiI2PZWAcepGlfXpMjx2NTuq85NSMvmFvF7wo2sHSw8U/jUEu94 j/hvqVFe9zlYRj1f9cAtafcEMBqG0glgiRaMFWxIR2qWGHAC5Z0HF+5A/h04+7l8 pGB8kGGouEyvsridBR0RUaDen/rXWhowtQGhNw7MvyF2D+R+GAJNBOzx5qRw5K7a kla8yCza3h3PkfMGnQPcpn5u2sJ8kKhRrKRkgyTuX1e/x4frdYzRkjnxCgr0beGC 5IMG+6FsQ+fPRhDwApbcmRQ+9SNDkl9GgKwZbogfYerGaMSvH+eYtEkQk30Z/krz 9BZRoTH5VT/kx60ECYsCxcQ5VCGvEBWQFTcCAwEAAaOCAkEwggI9MB0GA1UdDgQW BBR74uIdHO5mN7dTICfRBzbckpWN0jAfBgNVHSMEGDAWgBTfvNP4vKkZFcRTOiwK acPTWy5ojTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAxNzUvMzd6VC1MeXBHUlhFVXpvc0NtbkQwMXN1YUkwLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMzd6VC1MeXBHUlhFVXpvc0NtbkQw MXN1YUkwLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMTc1LzM3elQtTHlwR1JYRVV6b3NDbW5EMDFzdWFJMC5t ZnQwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmqeHML73dxwpljzzQvzCWx2LDI/kdX696JIXPboO3YTapmE/07OWA iX+eaMukGFGtlHyXlyEhgMubmLL+Zti+YeAtlI3gZJZWe6Ng+VAwxKHJrH7HNbGd zLugoc6qxydX7OCLJlmr6Zu3/7eNKvYa9Jf6M1MKjAqj4ENBBYtNXwwE5nwQkOgG IlFCprPzAHOAAeR7dK+NXgZ2NOWuE019GULh1GyKQ2CvT95WiSiGltbZIUjuh1UQ zyw7tKGcRwRPtZnttECNCwHGX8QF8mCQwGjiA3kNrI1fF/26MMWUw0RDaqXDDIQu pg0Vp6iTEG1zYy+Jl9eA/RSTBKnvNwTr -----END CERTIFICATE-----Generated at Thu Jul 24 09:00:37 2025 by rpki-client