$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/5444/O3CeEsRyrtPcUkKKnItWyiHI_KE.mft File: O3CeEsRyrtPcUkKKnItWyiHI_KE.mft (raw, json) Hash identifier: 6Z8AhJEeTp4i8sbJ9u6jxFkpiW90Appm5uyXoCwK1lE= Subject key identifier: CD:39:46:8F:E9:2D:0B:F9:07:D6:D9:D3:E6:83:D4:47:C2:F0:C2:57 Authority key identifier: 3B:70:9E:12:C4:72:AE:D3:DC:52:42:8A:9C:8B:56:CA:21:C8:FC:A1 Certificate issuer: /CN=3B709E12C472AED3DC52428A9C8B56CA21C8FCA1 Certificate serial: 3C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/O3CeEsRyrtPcUkKKnItWyiHI_KE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5444/O3CeEsRyrtPcUkKKnItWyiHI_KE.mft Manifest number: 0329 Signing time: Sun 16 Feb 2025 17:55:29 +0000 Manifest this update: Sun 16 Feb 2025 17:55:29 +0000 Manifest next update: Mon 03 Mar 2025 17:55:29 +0000 Files and hashes: 1: O3CeEsRyrtPcUkKKnItWyiHI_KE.crl (hash: k1I1rJfJApRSmY5bVKnNsgtv7bQoX2sw9wT1pmHzU9k=) 2: zEdFHnMZM1JZk4OUZ5kz70o6uSs.roa (hash: gm/wHJmIP38TmwJ+tsgGZ3xWzb4ONXALpLotNj/rhYM=) Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5444/O3CeEsRyrtPcUkKKnItWyiHI_KE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5444/O3CeEsRyrtPcUkKKnItWyiHI_KE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/O3CeEsRyrtPcUkKKnItWyiHI_KE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B709E12C472AED3DC52428A9C8B56CA21C8FCA1 Validity Not Before: Feb 15 01:36:28 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=CD39468FE92D0BF907D6D9D3E683D447C2F0C257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:54:de:e0:f8:af:d2:73:ce:c8:95:98:2b:a7: e0:7b:5c:ec:4f:84:0f:db:94:7d:c1:30:b6:d4:7f: cf:ef:e6:5e:66:d9:99:b2:95:bb:3b:cd:93:5a:9e: b7:f4:c0:20:52:8d:ac:d0:82:a7:13:a0:31:82:dd: 53:42:23:2a:83:b3:b6:fe:65:5c:d0:da:8a:d6:9a: 9b:e2:aa:a0:aa:d9:02:aa:85:91:87:44:d0:d9:ac: 04:fe:81:17:5a:42:8b:7f:90:08:fe:a1:7a:7c:84: 9d:c0:6c:37:e5:ad:a9:a0:8c:45:61:4f:76:5e:70: 31:e0:0e:9f:78:df:26:84:0b:e4:6b:f2:22:ff:a5: f6:23:7f:76:fc:7e:8d:84:a0:f3:02:cb:a0:59:32: c7:e1:4d:5b:03:f0:55:66:6d:59:5a:f4:50:a5:6d: 92:ac:69:b8:46:cb:94:8c:03:c7:ed:98:7a:77:a2: 68:dc:99:5c:8e:0a:d1:6b:ca:66:96:91:03:6d:52: 5d:f1:14:91:3b:eb:43:2e:0b:e4:4e:3a:92:5a:7a: 85:38:4a:a8:41:b1:7c:92:b6:cf:94:4c:27:aa:d0: b1:6b:ac:d0:5b:02:59:23:84:4b:8b:06:d9:64:97: ef:86:f3:cf:23:ea:24:e7:8a:f8:60:16:60:60:d6: 1a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:39:46:8F:E9:2D:0B:F9:07:D6:D9:D3:E6:83:D4:47:C2:F0:C2:57 X509v3 Authority Key Identifier: keyid:3B:70:9E:12:C4:72:AE:D3:DC:52:42:8A:9C:8B:56:CA:21:C8:FC:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5444/O3CeEsRyrtPcUkKKnItWyiHI_KE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/O3CeEsRyrtPcUkKKnItWyiHI_KE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5444/O3CeEsRyrtPcUkKKnItWyiHI_KE.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:11:a5:0f:2d:c6:d9:0f:6e:c6:e0:6c:70:0c:73:ba:4b:90: 39:94:4f:1c:c2:7c:d9:ed:a1:2c:68:03:8f:7c:74:b7:a1:5b: c7:24:46:17:63:55:8f:08:d1:02:15:e3:f5:8e:c8:1c:d9:3d: 8c:ee:30:47:d6:82:13:0e:34:6e:dc:13:1c:40:0c:02:b2:74: 64:f4:93:73:ac:35:c3:79:d6:17:20:ff:a6:af:aa:ba:e3:75: 5c:bb:dd:cf:c4:40:f2:70:32:00:6d:13:b9:b9:24:06:41:f9: 18:1d:9c:06:76:be:54:31:c7:0b:c1:dd:0f:7a:38:77:b3:f8: 92:66:03:16:da:ba:ad:2b:65:5c:1f:f1:5d:e7:ae:ae:00:39: ac:d0:87:de:38:3f:71:90:b5:61:a2:15:c5:81:0e:4f:05:45: d0:7f:cc:ef:4c:7e:a6:c1:36:82:45:b2:dd:a8:91:c2:8e:f4: 17:e8:da:b7:8f:eb:9f:8a:de:f1:82:81:2c:8a:36:da:8e:47: 70:c3:a4:70:08:ce:b1:75:40:99:5b:78:71:31:14:f8:60:a6: 0f:fc:91:c2:a0:51:b6:87:37:fe:e8:fa:1b:d4:0e:33:49:1e: 7d:e0:8f:39:1c:b1:57:0d:be:2c:fa:70:a9:a7:a9:0f:34:b8: e5:cd:fc:3a -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIBPDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzQjcw OUUxMkM0NzJBRUQzREM1MjQyOEE5QzhCNTZDQTIxQzhGQ0ExMB4XDTI1MDIxNTAx MzYyOFoXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoQ0QzOTQ2OEZFOTJEMEJG OTA3RDZEOUQzRTY4M0Q0NDdDMkYwQzI1NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKdU3uD4r9JzzsiVmCun4Htc7E+ED9uUfcEwttR/z+/mXmbZmbKV uzvNk1qet/TAIFKNrNCCpxOgMYLdU0IjKoOztv5lXNDaitaam+KqoKrZAqqFkYdE 0NmsBP6BF1pCi3+QCP6henyEncBsN+WtqaCMRWFPdl5wMeAOn3jfJoQL5GvyIv+l 9iN/dvx+jYSg8wLLoFkyx+FNWwPwVWZtWVr0UKVtkqxpuEbLlIwDx+2YeneiaNyZ XI4K0WvKZpaRA21SXfEUkTvrQy4L5E46klp6hThKqEGxfJK2z5RMJ6rQsWus0FsC WSOES4sG2WSX74bzzyPqJOeK+GAWYGDWGjsCAwEAAaOCAj8wggI7MB0GA1UdDgQW BBTNOUaP6S0L+QfW2dPmg9RHwvDCVzAfBgNVHSMEGDAWgBQ7cJ4SxHKu09xSQoqc i1bKIcj8oTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTQ0NC9PM0NlRXNSeXJ0UGNVa0tLbkl0V3lpSElfS0UuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9PM0NlRXNSeXJ0UGNVa0tLbkl0V3lp SElfS0UuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTQ0NC9PM0NlRXNSeXJ0UGNVa0tLbkl0V3lpSElfS0UubWZ0 MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAw IQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsF AAOCAQEAVBGlDy3G2Q9uxuBscAxzukuQOZRPHMJ82e2hLGgDj3x0t6FbxyRGF2NV jwjRAhXj9Y7IHNk9jO4wR9aCEw40btwTHEAMArJ0ZPSTc6w1w3nWFyD/pq+quuN1 XLvdz8RA8nAyAG0TubkkBkH5GB2cBna+VDHHC8HdD3o4d7P4kmYDFtq6rStlXB/x XeeurgA5rNCH3jg/cZC1YaIVxYEOTwVF0H/M70x+psE2gkWy3aiRwo70F+jat4/r n4re8YKBLIo22o5HcMOkcAjOsXVAmVt4cTEU+GCmD/yRwqBRtoc3/uj6G9QOM0ke feCPORyxVw2+LPpwqaepDzS45c38Og== -----END CERTIFICATE-----Generated at Sun Feb 16 22:14:16 2025 by rpki-client