$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20219/-MAfes5CR7DxVU8RDF-B1VoI0mg.mft File: -MAfes5CR7DxVU8RDF-B1VoI0mg.mft (raw, json) Hash identifier: g1VNgqXwG/n+zIfg/EQXQXAaKdAkoHUnfdfz5GTOQXA= Subject key identifier: C7:E8:D0:9D:3C:D7:3B:E8:91:24:D8:D8:F4:70:48:FD:AF:B3:27:D0 Authority key identifier: F8:C0:1F:7A:CE:42:47:B0:F1:55:4F:11:0C:5F:81:D5:5A:08:D2:68 Certificate issuer: /CN=F8C01F7ACE4247B0F1554F110C5F81D55A08D268 Certificate serial: 20 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-MAfes5CR7DxVU8RDF-B1VoI0mg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20219/-MAfes5CR7DxVU8RDF-B1VoI0mg.mft Manifest number: 04D2 Signing time: Sun 18 May 2025 02:17:38 +0000 Manifest this update: Sun 18 May 2025 02:17:38 +0000 Manifest next update: Mon 02 Jun 2025 02:17:38 +0000 Files and hashes: 1: -MAfes5CR7DxVU8RDF-B1VoI0mg.crl (hash: NgbUXbhK2i98cLpfFbazmfdCULdprokauNYlnPcrNpc=) 2: DB0Hzrctrxq-VAHtJAkUMDaiaOY.roa (hash: XuMRtuRX2GAGIHZzW6pR00wjwPdk53edOAJUv+TuGh0=) Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20219/-MAfes5CR7DxVU8RDF-B1VoI0mg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20219/-MAfes5CR7DxVU8RDF-B1VoI0mg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-MAfes5CR7DxVU8RDF-B1VoI0mg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 15:52:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C01F7ACE4247B0F1554F110C5F81D55A08D268 Validity Not Before: May 15 01:39:09 2025 GMT Not After : May 15 01:30:03 2026 GMT Subject: CN=C7E8D09D3CD73BE89124D8D8F47048FDAFB327D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1d:f1:24:e3:e3:3a:66:95:6c:74:93:99:58: a7:ef:fa:5c:53:52:95:05:9d:e3:e9:dc:86:34:52: e5:ea:27:76:f6:74:ac:99:dc:1c:e6:b4:a3:49:15: f2:2a:a5:31:fb:17:80:3f:78:ce:b5:cf:db:de:1d: 17:89:d5:c6:fa:a4:21:45:6c:a7:b7:65:44:56:4f: 39:67:3e:91:db:d8:bd:ea:84:97:97:54:8d:d2:44: 3f:73:b9:4e:64:e2:1d:41:57:ff:67:a4:49:9e:4d: 97:b1:82:3b:45:53:e6:d9:ba:42:0d:df:2f:11:d7: 33:5f:95:9a:1e:c6:2a:4d:4b:ea:d7:16:3f:22:d2: 89:e7:e9:cc:10:cb:4e:bd:5b:32:6c:8b:0d:89:80: 43:79:1e:a3:d9:05:00:b7:f5:78:db:4a:41:7c:37: 1a:25:43:7f:f9:78:84:e4:db:35:1e:06:df:a6:26: 0a:84:d6:1e:62:76:0f:32:e3:0c:43:2b:f3:aa:b1: 1f:bb:12:c3:45:f7:1c:1d:2c:8b:28:6d:88:8c:43: de:30:05:a2:b2:22:b6:88:10:f2:39:b1:e9:8c:a2: 0a:70:b8:b2:ca:03:a6:6f:3d:0d:2b:ad:e5:22:00: 20:25:a9:72:d9:43:c3:93:86:f1:64:73:b6:16:56: 26:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E8:D0:9D:3C:D7:3B:E8:91:24:D8:D8:F4:70:48:FD:AF:B3:27:D0 X509v3 Authority Key Identifier: keyid:F8:C0:1F:7A:CE:42:47:B0:F1:55:4F:11:0C:5F:81:D5:5A:08:D2:68 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20219/-MAfes5CR7DxVU8RDF-B1VoI0mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-MAfes5CR7DxVU8RDF-B1VoI0mg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20219/-MAfes5CR7DxVU8RDF-B1VoI0mg.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:2e:ba:3a:78:ba:c5:b3:f7:e6:85:d8:93:0c:c8:d1:22:cf: 89:d1:74:22:39:d0:db:12:74:cf:21:73:bf:26:88:bb:8f:44: 78:a9:72:56:a1:07:a3:a0:90:a9:b0:72:18:42:70:9c:64:f5: 65:26:18:e9:fe:70:06:2b:5c:c5:68:7c:c3:e9:40:72:b3:2d: db:e0:bc:05:eb:cb:00:99:4d:e1:c1:2f:db:e8:b6:e5:c1:ee: e4:96:d9:d9:77:67:0f:c5:85:58:3c:17:c5:fe:4a:12:05:82: bb:7b:7a:94:2b:ce:59:30:ad:ab:ab:20:d7:11:b2:a5:5e:b8: 0f:2e:e3:c9:d8:0c:57:01:ac:f0:09:2c:4b:b3:aa:03:32:0c: 23:0d:43:64:a0:34:54:21:54:10:ff:24:8f:93:54:d5:9a:c9: 79:ba:58:0c:28:1e:10:b9:01:a4:c0:a2:e2:38:0e:8b:4c:3d: 1b:b8:ed:dd:66:0c:23:47:8d:8d:8b:b6:15:7a:97:1d:18:b4: 13:9a:ac:c5:9e:38:88:a3:1b:b8:51:45:bc:f7:b0:d6:9e:13: a4:00:48:9a:7b:f5:d0:0e:70:05:b3:f5:01:b6:98:46:57:52: 94:f7:ef:7a:dd:22:03:e8:cf:fc:79:a6:60:d5:a2:ab:a1:6e: 2e:d8:c4:b2 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIBIDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGOEMw MUY3QUNFNDI0N0IwRjE1NTRGMTEwQzVGODFENTVBMDhEMjY4MB4XDTI1MDUxNTAx MzkwOVoXDTI2MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoQzdFOEQwOUQzQ0Q3M0JF ODkxMjREOEQ4RjQ3MDQ4RkRBRkIzMjdEMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALUd8STj4zpmlWx0k5lYp+/6XFNSlQWd4+nchjRS5eondvZ0rJnc HOa0o0kV8iqlMfsXgD94zrXP294dF4nVxvqkIUVsp7dlRFZPOWc+kdvYveqEl5dU jdJEP3O5TmTiHUFX/2ekSZ5Nl7GCO0VT5tm6Qg3fLxHXM1+Vmh7GKk1L6tcWPyLS iefpzBDLTr1bMmyLDYmAQ3keo9kFALf1eNtKQXw3GiVDf/l4hOTbNR4G36YmCoTW HmJ2DzLjDEMr86qxH7sSw0X3HB0siyhtiIxD3jAForIitogQ8jmx6YyiCnC4ssoD pm89DSut5SIAICWpctlDw5OG8WRzthZWJlUCAwEAAaOCAkEwggI9MB0GA1UdDgQW BBTH6NCdPNc76JEk2Nj0cEj9r7Mn0DAfBgNVHSMEGDAWgBT4wB96zkJHsPFVTxEM X4HVWgjSaDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAyMTkvLU1BZmVzNUNSN0R4VlU4UkRGLUIxVm9JMG1nLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvLU1BZmVzNUNSN0R4VlU4UkRGLUIx Vm9JMG1nLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMjE5Ly1NQWZlczVDUjdEeFZVOFJERi1CMVZvSTBtZy5t ZnQwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9Lro6eLrFs/fmhdiTDMjRIs+J0XQiOdDbEnTPIXO/Joi7j0R4qXJW oQejoJCpsHIYQnCcZPVlJhjp/nAGK1zFaHzD6UBysy3b4LwF68sAmU3hwS/b6Lbl we7kltnZd2cPxYVYPBfF/koSBYK7e3qUK85ZMK2rqyDXEbKlXrgPLuPJ2AxXAazw CSxLs6oDMgwjDUNkoDRUIVQQ/ySPk1TVmsl5ulgMKB4QuQGkwKLiOA6LTD0buO3d ZgwjR42Ni7YVepcdGLQTmqzFnjiIoxu4UUW897DWnhOkAEiae/XQDnAFs/UBtphG V1KU9+963SID6M/8eaZg1aKroW4u2MSy -----END CERTIFICATE-----Generated at Sun May 18 18:29:14 2025 by rpki-client