$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20219/-MAfes5CR7DxVU8RDF-B1VoI0mg.mft File: -MAfes5CR7DxVU8RDF-B1VoI0mg.mft (raw, json) Hash identifier: qtDIsq30ALjUnnSJybdrbTyscESV8TRnPaYC+WbMB4k= Subject key identifier: C7:E8:D0:9D:3C:D7:3B:E8:91:24:D8:D8:F4:70:48:FD:AF:B3:27:D0 Authority key identifier: F8:C0:1F:7A:CE:42:47:B0:F1:55:4F:11:0C:5F:81:D5:5A:08:D2:68 Certificate issuer: /CN=F8C01F7ACE4247B0F1554F110C5F81D55A08D268 Certificate serial: 2A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-MAfes5CR7DxVU8RDF-B1VoI0mg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20219/-MAfes5CR7DxVU8RDF-B1VoI0mg.mft Manifest number: 0871 Signing time: Mon 20 Oct 2025 11:20:23 +0000 Manifest this update: Mon 20 Oct 2025 11:20:23 +0000 Manifest next update: Tue 04 Nov 2025 11:20:23 +0000 Files and hashes: 1: -MAfes5CR7DxVU8RDF-B1VoI0mg.crl (hash: 4NuyyNG+Q0CxzoqJ1xyTQ0qGJsriP/YBMvlb+aMS310=) 2: vsF3atZR9tn_Y1KIgE_stl29riI.roa (hash: v4dhd1H+hPybrEnIP0EYwPlK9cZFVY3h5h9p+5Z5qdI=) Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20219/-MAfes5CR7DxVU8RDF-B1VoI0mg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20219/-MAfes5CR7DxVU8RDF-B1VoI0mg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-MAfes5CR7DxVU8RDF-B1VoI0mg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 12:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C01F7ACE4247B0F1554F110C5F81D55A08D268 Validity Not Before: Oct 15 01:37:43 2025 GMT Not After : Oct 15 01:30:02 2026 GMT Subject: CN=C7E8D09D3CD73BE89124D8D8F47048FDAFB327D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1d:f1:24:e3:e3:3a:66:95:6c:74:93:99:58: a7:ef:fa:5c:53:52:95:05:9d:e3:e9:dc:86:34:52: e5:ea:27:76:f6:74:ac:99:dc:1c:e6:b4:a3:49:15: f2:2a:a5:31:fb:17:80:3f:78:ce:b5:cf:db:de:1d: 17:89:d5:c6:fa:a4:21:45:6c:a7:b7:65:44:56:4f: 39:67:3e:91:db:d8:bd:ea:84:97:97:54:8d:d2:44: 3f:73:b9:4e:64:e2:1d:41:57:ff:67:a4:49:9e:4d: 97:b1:82:3b:45:53:e6:d9:ba:42:0d:df:2f:11:d7: 33:5f:95:9a:1e:c6:2a:4d:4b:ea:d7:16:3f:22:d2: 89:e7:e9:cc:10:cb:4e:bd:5b:32:6c:8b:0d:89:80: 43:79:1e:a3:d9:05:00:b7:f5:78:db:4a:41:7c:37: 1a:25:43:7f:f9:78:84:e4:db:35:1e:06:df:a6:26: 0a:84:d6:1e:62:76:0f:32:e3:0c:43:2b:f3:aa:b1: 1f:bb:12:c3:45:f7:1c:1d:2c:8b:28:6d:88:8c:43: de:30:05:a2:b2:22:b6:88:10:f2:39:b1:e9:8c:a2: 0a:70:b8:b2:ca:03:a6:6f:3d:0d:2b:ad:e5:22:00: 20:25:a9:72:d9:43:c3:93:86:f1:64:73:b6:16:56: 26:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E8:D0:9D:3C:D7:3B:E8:91:24:D8:D8:F4:70:48:FD:AF:B3:27:D0 X509v3 Authority Key Identifier: keyid:F8:C0:1F:7A:CE:42:47:B0:F1:55:4F:11:0C:5F:81:D5:5A:08:D2:68 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20219/-MAfes5CR7DxVU8RDF-B1VoI0mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-MAfes5CR7DxVU8RDF-B1VoI0mg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20219/-MAfes5CR7DxVU8RDF-B1VoI0mg.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:16:e8:6a:61:5b:b2:08:ec:e4:55:5d:fc:1e:51:e0:bd:69: f2:f2:24:8a:96:28:36:0a:68:58:16:c1:1d:87:c6:6a:69:34: fa:08:62:61:7c:7f:1d:1e:6b:78:d8:9c:53:d4:19:c8:34:92: d0:b3:42:42:25:a1:de:de:7c:bb:03:bd:b4:88:d5:28:d8:60: 34:9f:1e:14:ff:82:fc:b9:f2:00:8c:e3:c3:e8:30:c8:95:c6: b1:68:f5:ff:bd:33:c1:ae:bd:d9:71:82:30:c4:7a:dd:14:43: 44:70:14:31:03:b1:ea:7d:58:c4:04:20:7e:28:ef:42:4f:c9: 79:2e:56:65:24:eb:d3:98:0a:6e:2a:a9:f0:b6:72:01:56:c6: 23:9b:46:63:84:53:1d:21:b5:cb:2e:45:e0:ec:f8:57:ec:2f: 87:a2:e5:ce:68:51:1e:95:e5:45:48:99:8e:05:3e:5d:8d:d0: 32:e8:20:1e:d2:5f:fe:5a:b8:15:19:fa:8f:41:9e:ee:ad:8a: ae:27:ae:f0:db:b1:c7:10:49:93:0a:03:b9:19:18:be:92:85: a6:46:26:26:f9:3a:90:49:95:7c:34:ce:d6:73:6f:3b:15:4d: 1a:9f:df:12:68:a6:e7:dc:d9:a2:c7:d8:24:37:b5:5a:48:bb: dc:02:90:44 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIBKjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGOEMw MUY3QUNFNDI0N0IwRjE1NTRGMTEwQzVGODFENTVBMDhEMjY4MB4XDTI1MTAxNTAx Mzc0M1oXDTI2MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoQzdFOEQwOUQzQ0Q3M0JF ODkxMjREOEQ4RjQ3MDQ4RkRBRkIzMjdEMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALUd8STj4zpmlWx0k5lYp+/6XFNSlQWd4+nchjRS5eondvZ0rJnc HOa0o0kV8iqlMfsXgD94zrXP294dF4nVxvqkIUVsp7dlRFZPOWc+kdvYveqEl5dU jdJEP3O5TmTiHUFX/2ekSZ5Nl7GCO0VT5tm6Qg3fLxHXM1+Vmh7GKk1L6tcWPyLS iefpzBDLTr1bMmyLDYmAQ3keo9kFALf1eNtKQXw3GiVDf/l4hOTbNR4G36YmCoTW HmJ2DzLjDEMr86qxH7sSw0X3HB0siyhtiIxD3jAForIitogQ8jmx6YyiCnC4ssoD pm89DSut5SIAICWpctlDw5OG8WRzthZWJlUCAwEAAaOCAkEwggI9MB0GA1UdDgQW BBTH6NCdPNc76JEk2Nj0cEj9r7Mn0DAfBgNVHSMEGDAWgBT4wB96zkJHsPFVTxEM X4HVWgjSaDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAyMTkvLU1BZmVzNUNSN0R4VlU4UkRGLUIxVm9JMG1nLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvLU1BZmVzNUNSN0R4VlU4UkRGLUIx Vm9JMG1nLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMjE5Ly1NQWZlczVDUjdEeFZVOFJERi1CMVZvSTBtZy5t ZnQwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXFuhqYVuyCOzkVV38HlHgvWny8iSKlig2CmhYFsEdh8ZqaTT6CGJh fH8dHmt42JxT1BnINJLQs0JCJaHe3ny7A720iNUo2GA0nx4U/4L8ufIAjOPD6DDI lcaxaPX/vTPBrr3ZcYIwxHrdFENEcBQxA7HqfVjEBCB+KO9CT8l5LlZlJOvTmApu KqnwtnIBVsYjm0ZjhFMdIbXLLkXg7PhX7C+HouXOaFEeleVFSJmOBT5djdAy6CAe 0l/+WrgVGfqPQZ7urYquJ67w27HHEEmTCgO5GRi+koWmRiYm+TqQSZV8NM7Wc287 FU0an98SaKbn3Nmix9gkN7VaSLvcApBE -----END CERTIFICATE-----Generated at Mon Oct 20 14:23:12 2025 by rpki-client