$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20116/GmfyjJYHcsaYRKZzvD3Jv8D1Fp4.mft File: GmfyjJYHcsaYRKZzvD3Jv8D1Fp4.mft (raw, json) Hash identifier: XQIfXZHYvd+9JjyzeQlyZ0iV+AScW3Kmrt6bR2iQn0Q= Subject key identifier: 9C:7C:3F:6C:F0:A4:46:5F:3F:15:15:A7:D3:2B:12:A0:9C:0F:9C:38 Authority key identifier: 1A:67:F2:8C:96:07:72:C6:98:44:A6:73:BC:3D:C9:BF:C0:F5:16:9E Certificate issuer: /CN=1A67F28C960772C69844A673BC3DC9BFC0F5169E Certificate serial: 09 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GmfyjJYHcsaYRKZzvD3Jv8D1Fp4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/GmfyjJYHcsaYRKZzvD3Jv8D1Fp4.mft Manifest number: 8E Signing time: Mon 25 Nov 2024 23:17:29 +0000 Manifest this update: Mon 25 Nov 2024 23:17:29 +0000 Manifest next update: Tue 10 Dec 2024 23:17:29 +0000 Files and hashes: 1: GmfyjJYHcsaYRKZzvD3Jv8D1Fp4.crl (hash: doebwgcEvkHMiT3BXYubv7SlUPI5FQ+RpvxTH6I9p7c=) 2: r8r1bAryu4Lr85f0pmP2AkASFj4.roa (hash: +Omcr/szl52wP5tlqeTqkIO2ZMCaSbaY0VQTQi3WblI=) Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/GmfyjJYHcsaYRKZzvD3Jv8D1Fp4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/GmfyjJYHcsaYRKZzvD3Jv8D1Fp4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GmfyjJYHcsaYRKZzvD3Jv8D1Fp4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A67F28C960772C69844A673BC3DC9BFC0F5169E Validity Not Before: Nov 15 01:30:25 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=9C7C3F6CF0A4465F3F1515A7D32B12A09C0F9C38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:31:af:71:86:7f:62:f3:0d:3c:a8:a4:3e:ed: 12:6b:37:df:2e:9e:26:20:f7:ef:ad:1a:fe:eb:81: 1b:e7:93:47:b8:12:b1:93:b0:09:a8:68:f4:1c:fe: dc:09:80:78:3a:cf:ad:51:1a:55:2e:b8:83:27:a5: 02:1d:e4:32:ef:fd:9d:dc:c7:cd:cb:14:3e:2a:21: f8:be:8c:63:59:8c:fd:08:6d:32:44:41:de:35:52: 9c:8f:66:b1:7c:4c:ed:22:f0:61:fb:d7:ec:12:35: 17:1e:ca:84:4f:a6:a6:2f:09:2e:a6:67:b1:4a:a2: da:71:24:e2:2a:26:a2:23:c1:cd:46:cd:9b:ce:97: 75:6b:6e:b5:bb:7c:8b:a7:18:3a:27:31:53:d7:9f: 89:45:a2:f0:d6:5f:52:6c:37:1b:bd:d5:e9:2e:45: d6:be:5a:61:d6:77:c7:a7:29:ad:b7:c7:98:88:d0: c7:a7:62:f5:ad:0e:83:da:ab:d0:ee:03:78:8a:8a: e2:9c:cd:10:e9:95:df:6f:c7:a8:2a:15:be:86:75: db:f5:f0:f5:d2:08:8e:de:80:c0:d9:88:28:15:e7: b7:10:7d:ea:77:a0:42:b0:a4:33:a3:06:86:7e:c9: 13:c6:e6:43:83:9a:b4:43:f6:90:17:de:72:40:35: ba:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:7C:3F:6C:F0:A4:46:5F:3F:15:15:A7:D3:2B:12:A0:9C:0F:9C:38 X509v3 Authority Key Identifier: keyid:1A:67:F2:8C:96:07:72:C6:98:44:A6:73:BC:3D:C9:BF:C0:F5:16:9E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/GmfyjJYHcsaYRKZzvD3Jv8D1Fp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GmfyjJYHcsaYRKZzvD3Jv8D1Fp4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/GmfyjJYHcsaYRKZzvD3Jv8D1Fp4.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:23:d9:f9:8a:f4:8a:5b:95:a1:62:ca:b1:c5:fa:88:28:86: cb:9e:43:87:88:c6:97:35:18:19:93:2a:cc:4a:c9:17:b9:87: 82:d8:d2:a9:8f:d3:07:54:f9:e6:5f:89:ae:80:2e:34:dc:d0: fe:b0:29:c3:36:63:f7:38:82:74:56:6c:fa:cc:9b:97:4e:f4: bd:27:19:55:ce:4c:52:8f:96:d6:b0:c8:ed:d8:57:ba:48:3f: b6:62:7d:60:12:4f:f2:bf:57:a4:ed:1b:d6:6d:25:27:d3:73: 3e:25:53:c6:b8:68:31:92:03:c7:4b:9b:17:e3:cb:38:ad:a0: 3d:2a:5a:98:bd:96:57:56:9f:70:4c:42:fb:d4:20:12:62:64: fd:eb:90:cb:a2:6a:24:c3:aa:74:6e:c8:b2:8c:56:af:53:2c: c5:9e:8b:81:11:c6:f6:de:1b:38:f0:cb:e4:2b:62:d4:00:05: ae:d3:a9:bf:c9:0e:3e:db:0a:06:7e:c1:eb:67:e9:51:2c:1f: 90:96:0b:96:d1:a2:a6:57:1a:52:4c:ab:b5:c4:5e:4c:cd:60: b4:0a:a0:31:33:eb:8e:be:21:0c:41:09:4e:6c:d4:54:64:4a: b8:61:4a:16:50:12:86:dc:e0:38:a4:3f:66:c0:1f:57:7d:e7: 5d:f3:47:c5 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIBCTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQTY3 RjI4Qzk2MDc3MkM2OTg0NEE2NzNCQzNEQzlCRkMwRjUxNjlFMB4XDTI0MTExNTAx MzAyNVoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoOUM3QzNGNkNGMEE0NDY1 RjNGMTUxNUE3RDMyQjEyQTA5QzBGOUMzODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKAxr3GGf2LzDTyopD7tEms33y6eJiD3760a/uuBG+eTR7gSsZOw Caho9Bz+3AmAeDrPrVEaVS64gyelAh3kMu/9ndzHzcsUPioh+L6MY1mM/QhtMkRB 3jVSnI9msXxM7SLwYfvX7BI1Fx7KhE+mpi8JLqZnsUqi2nEk4iomoiPBzUbNm86X dWtutbt8i6cYOicxU9efiUWi8NZfUmw3G73V6S5F1r5aYdZ3x6cprbfHmIjQx6di 9a0Og9qr0O4DeIqK4pzNEOmV32/HqCoVvoZ12/Xw9dIIjt6AwNmIKBXntxB96neg QrCkM6MGhn7JE8bmQ4OatEP2kBfeckA1ugUCAwEAAaOCAkEwggI9MB0GA1UdDgQW BBScfD9s8KRGXz8VFafTKxKgnA+cODAfBgNVHSMEGDAWgBQaZ/KMlgdyxphEpnO8 Pcm/wPUWnjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxMTYvR21meWpKWUhjc2FZUktaenZEM0p2OEQxRnA0LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvR21meWpKWUhjc2FZUktaenZEM0p2 OEQxRnA0LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMTE2L0dtZnlqSllIY3NhWVJLWnp2RDNKdjhEMUZwNC5t ZnQwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaI9n5ivSKW5WhYsqxxfqIKIbLnkOHiMaXNRgZkyrMSskXuYeC2NKp j9MHVPnmX4mugC403ND+sCnDNmP3OIJ0Vmz6zJuXTvS9JxlVzkxSj5bWsMjt2Fe6 SD+2Yn1gEk/yv1ek7RvWbSUn03M+JVPGuGgxkgPHS5sX48s4raA9KlqYvZZXVp9w TEL71CASYmT965DLomokw6p0bsiyjFavUyzFnouBEcb23hs48MvkK2LUAAWu06m/ yQ4+2woGfsHrZ+lRLB+QlguW0aKmVxpSTKu1xF5MzWC0CqAxM+uOviEMQQlObNRU ZEq4YUoWUBKG3OA4pD9mwB9Xfedd80fF -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:04 2024 by rpki-client on console-fra.rpki-client.org