$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/655/Z64ho8fUeCtFtr3BS4oSDQYXq0I.mft File: Z64ho8fUeCtFtr3BS4oSDQYXq0I.mft (raw, json) Hash identifier: T53AGF1WlYXlsuN1O90h7r5B7R9+kIY7j98LATaR6Ak= Subject key identifier: 7E:C5:79:78:6D:D1:CB:4A:7B:FE:D5:4F:2B:E5:BA:A2:76:D2:C3:56 Authority key identifier: 67:AE:21:A3:C7:D4:78:2B:45:B6:BD:C1:4B:8A:12:0D:06:17:AB:42 Certificate issuer: /CN=67AE21A3C7D4782B45B6BDC14B8A120D0617AB42 Certificate serial: 11 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z64ho8fUeCtFtr3BS4oSDQYXq0I.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/655/Z64ho8fUeCtFtr3BS4oSDQYXq0I.mft Manifest number: 0282 Signing time: Sun 16 Feb 2025 17:48:14 +0000 Manifest this update: Sun 16 Feb 2025 17:48:14 +0000 Manifest next update: Mon 03 Mar 2025 17:48:14 +0000 Files and hashes: 1: 2Tw7EnBa5Rtk2dcMiORHdHsnXUE.roa (hash: 3JVBwQRBxXkp+bidb45oYiKa2HP5ukrotC9IJppGXsk=) 2: Z64ho8fUeCtFtr3BS4oSDQYXq0I.crl (hash: NL0IdJvtFGSRYM8jwZocEN5c3JNvjnyUtdBOaJyeUEo=) Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/655/Z64ho8fUeCtFtr3BS4oSDQYXq0I.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/655/Z64ho8fUeCtFtr3BS4oSDQYXq0I.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z64ho8fUeCtFtr3BS4oSDQYXq0I.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67AE21A3C7D4782B45B6BDC14B8A120D0617AB42 Validity Not Before: Feb 15 01:38:07 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=7EC579786DD1CB4A7BFED54F2BE5BAA276D2C356 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:04:c1:3b:79:f6:a4:83:bd:54:16:d9:16:83: 01:ed:60:2a:0b:32:dc:54:df:2e:23:49:b6:9a:9d: 35:a8:a7:0e:7e:fa:4b:b7:41:d6:1c:a6:f2:4f:35: 6d:09:1f:e7:a0:84:32:50:2e:86:83:34:ee:ca:22: 02:44:1f:82:7f:ac:c4:ca:12:16:5b:41:62:aa:38: 7a:fe:ca:be:ef:7e:c1:ba:29:86:02:b9:8b:50:d3: ad:ff:5b:25:a5:80:b0:dc:aa:f9:ef:51:aa:6a:7f: 76:5f:f9:12:0b:41:2c:ab:fc:8e:e7:81:45:df:57: 34:7c:74:d9:f5:df:31:fb:a5:2e:4d:96:e6:3d:76: 13:bb:88:f9:c3:c0:eb:ce:00:9b:bc:67:fa:be:0e: 0a:00:d2:f1:86:85:01:8e:fc:f7:5c:6a:ae:55:67: cd:69:eb:b3:e6:d2:26:bf:73:c4:aa:19:cf:c9:79: 9c:de:dc:ed:ac:0d:e4:10:7d:72:f0:57:d8:b3:da: 3f:b6:d1:66:20:13:e3:fa:24:68:db:d1:de:4c:23: 1d:a7:19:7a:5b:38:48:87:b3:9f:7d:39:a1:34:3a: 65:0f:90:58:91:19:7c:38:74:a2:c1:3d:2a:dc:bd: f7:63:13:ed:3f:4d:89:29:a8:bd:9d:fd:52:d8:51: 77:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:C5:79:78:6D:D1:CB:4A:7B:FE:D5:4F:2B:E5:BA:A2:76:D2:C3:56 X509v3 Authority Key Identifier: keyid:67:AE:21:A3:C7:D4:78:2B:45:B6:BD:C1:4B:8A:12:0D:06:17:AB:42 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/655/Z64ho8fUeCtFtr3BS4oSDQYXq0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z64ho8fUeCtFtr3BS4oSDQYXq0I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/655/Z64ho8fUeCtFtr3BS4oSDQYXq0I.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:76:f9:53:14:1f:b2:f7:23:a2:ae:3d:9c:b3:b1:3d:db:12: 01:76:91:a8:f2:32:7c:6d:55:19:07:40:46:2c:e7:90:d8:f4: 11:fa:fa:06:d5:da:4d:9d:d5:da:d7:db:46:10:a7:81:fe:ce: 30:3e:02:bf:8f:4c:bc:1d:7b:94:75:73:20:a5:ac:ab:fd:da: 87:67:4d:62:97:0d:0c:68:f5:01:36:29:37:89:ff:11:c0:80: ba:37:e3:06:9f:d2:7d:c6:cc:5b:49:52:75:be:49:6c:4f:d3: fa:26:f2:fc:50:ab:45:46:46:6e:16:1d:be:6b:91:fd:c0:5b: d2:ed:eb:1c:76:22:b7:50:c9:f8:84:22:e8:43:62:a4:40:d8: 9e:d0:fd:70:be:8f:5d:b3:88:c3:e9:7a:dc:83:06:92:9b:b1: ea:29:77:9e:91:02:83:65:77:32:5c:98:ad:91:c8:d1:4a:0a: 86:e0:e6:a6:fd:8c:f2:36:91:07:2b:f8:5c:0d:9f:2b:38:bb: c8:25:23:5f:25:6e:ea:67:5f:cc:9f:e7:d8:79:36:40:63:50: 13:62:3e:d8:81:17:a0:61:9b:d5:d3:70:fd:5a:e1:45:2e:a1: 15:9d:68:65:c5:49:27:a6:65:0b:b3:1c:48:06:88:5d:4c:b5: ca:5b:03:5d -----BEGIN CERTIFICATE----- MIIFIDCCBAigAwIBAgIBETANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2N0FF MjFBM0M3RDQ3ODJCNDVCNkJEQzE0QjhBMTIwRDA2MTdBQjQyMB4XDTI1MDIxNTAx MzgwN1oXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoN0VDNTc5Nzg2REQxQ0I0 QTdCRkVENTRGMkJFNUJBQTI3NkQyQzM1NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALsEwTt59qSDvVQW2RaDAe1gKgsy3FTfLiNJtpqdNainDn76S7dB 1hym8k81bQkf56CEMlAuhoM07soiAkQfgn+sxMoSFltBYqo4ev7Kvu9+wbophgK5 i1DTrf9bJaWAsNyq+e9Rqmp/dl/5EgtBLKv8jueBRd9XNHx02fXfMfulLk2W5j12 E7uI+cPA684Am7xn+r4OCgDS8YaFAY7891xqrlVnzWnrs+bSJr9zxKoZz8l5nN7c 7awN5BB9cvBX2LPaP7bRZiAT4/okaNvR3kwjHacZels4SIezn305oTQ6ZQ+QWJEZ fDh0osE9Kty992MT7T9NiSmovZ39UthRdzkCAwEAAaOCAj0wggI5MB0GA1UdDgQW BBR+xXl4bdHLSnv+1U8r5bqidtLDVjAfBgNVHSMEGDAWgBRnriGjx9R4K0W2vcFL ihINBherQjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjU1L1o2NGhvOGZVZUN0RnRyM0JTNG9TRFFZWHEwSS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1o2NGhvOGZVZUN0RnRyM0JTNG9TRFFZ WHEwSS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC82NTUvWjY0aG84ZlVlQ3RGdHIzQlM0b1NEUVlYcTBJLm1mdDBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAC52+VMUH7L3I6KuPZyzsT3bEgF2kajyMnxtVRkHQEYs55DY9BH6+gbV2k2d 1drX20YQp4H+zjA+Ar+PTLwde5R1cyClrKv92odnTWKXDQxo9QE2KTeJ/xHAgLo3 4waf0n3GzFtJUnW+SWxP0/om8vxQq0VGRm4WHb5rkf3AW9Lt6xx2IrdQyfiEIuhD YqRA2J7Q/XC+j12ziMPpetyDBpKbseopd56RAoNldzJcmK2RyNFKCobg5qb9jPI2 kQcr+FwNnys4u8glI18lbupnX8yf59h5NkBjUBNiPtiBF6Bhm9XTcP1a4UUuoRWd aGXFSSemZQuzHEgGiF1MtcpbA10= -----END CERTIFICATE-----Generated at Sun Feb 16 22:28:54 2025 by rpki-client