Manifest

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/21116/hfuGICK75cxARi-_2La7gRNdZf0.mft
File:                     hfuGICK75cxARi-_2La7gRNdZf0.mft (raw, json)
Hash identifier:          TvkhOoCfYjxcC7jKmtO0y7sNDn7xCyHkCYoMlGaTzA8=
Subject key identifier:   F7:EC:70:C8:B3:C7:9F:FB:DC:00:09:1C:88:6B:CF:5B:29:F9:0B:89
Authority key identifier: 85:FB:86:20:22:BB:E5:CC:40:46:2F:BF:D8:B6:BB:81:13:5D:65:FD
Certificate issuer:       /CN=85FB862022BBE5CC40462FBFD8B6BB81135D65FD
Certificate serial:       5B
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hfuGICK75cxARi-_2La7gRNdZf0.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21116/hfuGICK75cxARi-_2La7gRNdZf0.mft
Manifest number:          0EED
Signing time:             Tue 30 Jun 2026 21:37:13 +0000
Manifest this update:     Tue 30 Jun 2026 21:37:13 +0000
Manifest next update:     Thu 30 Jul 2026 21:37:13 +0000
Files and hashes:         1: 4r-TFt-Lqk6zb27Q5ZJ8gfWPO_o.roa (hash: Q89vL6Ie29Wqc7hR1WGYfTa0d2Dhkrfg5vZR6pWpYD4=)
                          2: hfuGICK75cxARi-_2La7gRNdZf0.crl (hash: dOSIvvMLUgZOGeC3Mtrm31099l94OBi6og38g6N/TiU=)
Validation:               OK
Signature path:           rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21116/hfuGICK75cxARi-_2La7gRNdZf0.crl
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21116/hfuGICK75cxARi-_2La7gRNdZf0.mft
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hfuGICK75cxARi-_2La7gRNdZf0.cer
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yMD7hwR0w-hMq4NZfEaoYsR_iII.crl
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yMD7hwR0w-hMq4NZfEaoYsR_iII.mft
                          rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/yMD7hwR0w-hMq4NZfEaoYsR_iII.cer
                          rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
                          rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 07 Jul 2026 15:25:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 91 (0x5b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=85FB862022BBE5CC40462FBFD8B6BB81135D65FD
        Validity
            Not Before: Jun 15 01:43:24 2026 GMT
            Not After : Jun 15 01:30:02 2027 GMT
        Subject: CN=F7EC70C8B3C79FFBDC00091C886BCF5B29F90B89
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:fb:46:b1:59:66:9b:2d:58:c6:76:db:05:d3:
                    fe:00:bb:e9:86:39:c9:69:56:80:74:b8:32:40:a9:
                    89:ef:0a:80:71:33:22:b7:a1:2e:f1:06:61:2d:55:
                    73:87:0f:0f:f5:84:86:51:59:64:3a:a0:fd:8d:92:
                    93:d9:b4:e5:51:ee:b4:35:1a:e1:56:5b:c9:2f:4a:
                    5a:ee:2b:db:d3:82:67:1d:47:17:ea:21:27:97:1a:
                    48:88:3c:bb:f4:e6:03:b4:36:29:b5:0f:a9:96:3c:
                    df:ca:93:d5:ad:b4:5d:4b:f9:79:89:34:6c:06:30:
                    ca:8e:2c:d8:1c:49:da:29:c3:67:48:aa:c9:9d:cf:
                    95:3f:37:4b:d4:df:03:f6:61:88:15:8a:20:c9:b1:
                    72:55:3c:02:68:6d:b3:7d:8e:76:70:1b:6c:f6:17:
                    77:34:67:97:20:3e:41:a0:36:1e:00:58:0f:48:a3:
                    3c:b2:00:62:b4:c2:bd:f3:01:88:f3:7e:cc:fa:3f:
                    c4:e9:b6:cb:b7:75:50:99:f8:e4:57:2c:68:94:3d:
                    6a:47:40:be:aa:ff:24:00:9e:e8:a1:98:2d:68:6b:
                    73:bf:d3:1d:e5:f1:b1:d9:b2:29:56:4a:7d:29:b6:
                    dc:35:5a:18:4e:03:b1:28:55:9c:3c:ee:2f:55:62:
                    3e:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:EC:70:C8:B3:C7:9F:FB:DC:00:09:1C:88:6B:CF:5B:29:F9:0B:89
            X509v3 Authority Key Identifier:
                keyid:85:FB:86:20:22:BB:E5:CC:40:46:2F:BF:D8:B6:BB:81:13:5D:65:FD

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21116/hfuGICK75cxARi-_2La7gRNdZf0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hfuGICK75cxARi-_2La7gRNdZf0.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21116/hfuGICK75cxARi-_2La7gRNdZf0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a2:aa:ef:b7:fc:12:a0:0f:fb:de:d4:d4:b1:b5:ba:7e:5d:f7:
         cd:c1:9e:9b:9e:28:c2:96:44:2a:17:38:de:8d:46:c3:48:98:
         43:8b:68:f9:2a:3e:ff:f1:10:0d:80:fa:59:5e:c2:a6:bb:1e:
         c0:f3:af:7f:ec:d3:0e:dd:bb:ee:81:0c:52:1b:6b:3d:d8:f9:
         99:b2:e3:0f:f4:c1:ac:1e:5f:cf:15:34:29:4c:c7:7a:30:a0:
         69:44:17:29:63:1d:3f:93:be:e9:b0:08:75:bb:a4:32:fb:33:
         25:5e:d5:8c:e8:07:87:db:b2:1c:7a:0b:57:e9:ba:77:ef:cc:
         cf:61:e6:06:42:ce:f8:8e:43:c8:aa:89:07:77:15:ee:e9:57:
         98:94:1c:6e:e3:13:16:eb:de:0a:0b:1b:2e:c9:c4:cd:58:18:
         78:d8:f8:94:de:b6:33:86:49:ad:4c:68:07:e9:b2:b5:d8:dc:
         9d:dc:d2:f4:8e:c2:29:c6:b6:6b:6a:bf:a2:f9:e1:e3:85:2b:
         7c:c0:2c:b8:fa:77:3a:5f:f4:6b:66:cf:b5:4c:16:2f:c1:08:
         95:03:07:42:75:2c:92:a2:12:fd:c0:43:a6:1b:cd:a2:95:3a:
         1a:58:fd:a5:9e:da:f6:78:fb:09:8e:b3:cb:6d:6a:b7:67:de:
         b2:c3:86:1e
-----BEGIN CERTIFICATE-----
MIIE2TCCA8GgAwIBAgIBWzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4NUZC
ODYyMDIyQkJFNUNDNDA0NjJGQkZEOEI2QkI4MTEzNUQ2NUZEMB4XDTI2MDYxNTAx
NDMyNFoXDTI3MDYxNTAxMzAwMlowMzExMC8GA1UEAxMoRjdFQzcwQzhCM0M3OUZG
QkRDMDAwOTFDODg2QkNGNUIyOUY5MEI4OTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKr7RrFZZpstWMZ22wXT/gC76YY5yWlWgHS4MkCpie8KgHEzIreh
LvEGYS1Vc4cPD/WEhlFZZDqg/Y2Sk9m05VHutDUa4VZbyS9KWu4r29OCZx1HF+oh
J5caSIg8u/TmA7Q2KbUPqZY838qT1a20XUv5eYk0bAYwyo4s2BxJ2inDZ0iqyZ3P
lT83S9TfA/ZhiBWKIMmxclU8Amhts32OdnAbbPYXdzRnlyA+QaA2HgBYD0ijPLIA
YrTCvfMBiPN+zPo/xOm2y7d1UJn45FcsaJQ9akdAvqr/JACe6KGYLWhrc7/THeXx
sdmyKVZKfSm23DVaGE4DsShVnDzuL1ViPk8CAwEAAaOCAfYwggHyMB0GA1UdDgQW
BBT37HDIs8ef+9wACRyIa89bKfkLiTAfBgNVHSMEGDAWgBSF+4YgIrvlzEBGL7/Y
truBE11l/TAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb
oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMjExMTYvaGZ1R0lDSzc1Y3hBUmktXzJMYTdnUk5kWmYwLmNybDBtBggr
BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5
Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvaGZ1R0lDSzc1Y3hBUmktXzJMYTdn
Uk5kWmYwLmNlcjAOBgNVHQ8BAf8EBAMCB4AwcwYIKwYBBQUHAQsEZzBlMGMGCCsG
AQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx
QTczODEwMDAwLzIxMTE2L2hmdUdJQ0s3NWN4QVJpLV8yTGE3Z1JOZFpmMC5tZnQw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEF
ADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCiqu+3/BKgD/ve1NSxtbp+XffN
wZ6bnijClkQqFzjejUbDSJhDi2j5Kj7/8RANgPpZXsKmux7A869/7NMO3bvugQxS
G2s92PmZsuMP9MGsHl/PFTQpTMd6MKBpRBcpYx0/k77psAh1u6Qy+zMlXtWM6AeH
27IcegtX6bp378zPYeYGQs74jkPIqokHdxXu6VeYlBxu4xMW694KCxsuycTNWBh4
2PiU3rYzhkmtTGgH6bK12Nyd3NL0jsIpxrZrar+i+eHjhSt8wCy4+nc6X/RrZs+1
TBYvwQiVAwdCdSySohL9wEOmG82ilToaWP2lntr2ePsJjrPLbWq3Z96yw4Ye
-----END CERTIFICATE-----
Generated at Wed Jul 1 03:17:47 2026 by rpki-client