$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.mft File: NYkhQ8STubLMHnkTP1Ixxy4VJoU.mft (raw, json) Hash identifier: nD7cfzDNbsdUA1k9quIr7BNuDCLne58z+wyfkEPfFvo= Subject key identifier: F8:98:72:BC:2A:03:3F:42:FA:AA:15:03:CC:12:4E:E1:75:98:36:07 Authority key identifier: 35:89:21:43:C4:93:B9:B2:CC:1E:79:13:3F:52:31:C7:2E:15:26:85 Certificate issuer: /CN=35892143C493B9B2CC1E79133F5231C72E152685 Certificate serial: 41 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/NYkhQ8STubLMHnkTP1Ixxy4VJoU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.mft Manifest number: 04CE Signing time: Sat 26 Apr 2025 12:01:18 +0000 Manifest this update: Sat 26 Apr 2025 12:01:18 +0000 Manifest next update: Sun 11 May 2025 12:01:18 +0000 Files and hashes: 1: L1ArHsJJh9_MmzhA7wSfhtltGD4.roa (hash: sX3RNFxFCN+BPhh936llbs/T9eZAOXP3iZfUpa27hBQ=) 2: NYkhQ8STubLMHnkTP1Ixxy4VJoU.crl (hash: NAE9Mm6bko7wAajX+ad/DFA8NknEFhpQFnI0PhHsIcI=) Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/NYkhQ8STubLMHnkTP1Ixxy4VJoU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 13:09:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35892143C493B9B2CC1E79133F5231C72E152685 Validity Not Before: Apr 15 01:36:10 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=F89872BC2A033F42FAAA1503CC124EE175983607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:34:48:14:72:62:e3:3a:47:17:7a:3b:8f:36: 26:ce:84:13:dd:9f:49:8f:17:8a:0d:24:34:c5:ef: 45:cb:2f:33:71:e9:72:72:da:9c:6e:c3:c3:a2:40: 06:5f:91:84:0b:3a:60:e1:ba:bd:72:a1:e4:82:a1: f7:d4:18:82:65:a7:c6:60:60:81:2a:1d:d0:3a:a6: 73:26:40:64:31:bf:61:b2:e1:b8:cf:99:43:3d:5a: cb:f3:d2:82:72:1b:6b:8b:33:ae:c0:ff:f1:73:15: 1f:ea:02:81:c0:bd:3b:43:e6:35:1f:0a:a4:1d:77: f3:3a:1b:4a:64:d7:88:7c:a2:25:52:ad:6f:66:62: e5:56:00:39:67:31:bf:67:ec:64:9e:e0:e8:bc:bf: f4:fe:a6:f5:d4:d9:ca:e1:14:4b:57:d4:a6:7f:3e: b9:1c:5c:2c:6e:be:13:36:fa:81:d7:27:32:17:7a: 82:b5:ce:f8:4b:9f:c1:5d:7b:6b:c5:ae:b3:4a:11: 45:a5:fd:08:2b:75:5b:bc:20:f2:8c:f2:42:b4:af: f0:e0:99:d5:75:91:0d:7b:cc:76:03:7b:e7:5f:ac: 2a:30:52:9e:08:fe:64:73:c7:cc:e0:50:4b:f5:c0: f0:e7:a2:71:77:c7:7b:37:f9:61:d1:70:42:51:ee: 73:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:98:72:BC:2A:03:3F:42:FA:AA:15:03:CC:12:4E:E1:75:98:36:07 X509v3 Authority Key Identifier: keyid:35:89:21:43:C4:93:B9:B2:CC:1E:79:13:3F:52:31:C7:2E:15:26:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/NYkhQ8STubLMHnkTP1Ixxy4VJoU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:c0:4b:93:9b:cd:a6:2e:b6:b6:02:67:b2:00:56:29:40:41: 05:92:00:e9:20:8e:25:17:58:a6:5f:09:68:ab:ee:d8:d0:9d: 2e:d7:cf:31:61:12:5b:4e:d2:e6:b1:d4:ab:ac:ed:f4:2d:03: e7:b1:04:28:a2:e9:55:e9:1a:a9:a4:1b:b9:60:12:05:6c:fc: 5c:1e:43:c8:08:f1:91:04:e2:65:19:8f:0e:05:60:c1:85:c6: 0a:a0:f4:05:a4:02:ae:4f:3d:5f:32:49:a9:a2:54:c5:8a:cf: c8:43:8c:0e:e2:6e:a4:38:79:3a:98:4c:ca:9f:5d:8e:14:6f: cc:76:e6:1d:19:34:da:72:33:74:ef:37:56:f0:57:a8:6c:d9: a0:af:93:ca:75:84:3e:4a:b9:55:e8:db:32:da:4d:b1:d2:ce: d0:c8:4a:1e:67:41:c4:19:b0:6b:a5:cb:d1:fa:17:72:43:88: e7:fa:fa:3d:5b:01:0a:11:d0:b2:95:18:80:fb:0a:50:c9:c2: 8e:fb:e9:78:2d:c1:4e:74:e6:74:c3:25:71:03:a8:f5:bc:a5: 5f:39:9f:24:2e:40:de:60:80:d8:af:a5:59:d2:36:f5:f5:8e: ee:85:c7:1f:ce:fe:46:85:c0:54:db:31:e1:b2:7c:21:be:64: 51:ea:12:f4 -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIBQTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNTg5 MjE0M0M0OTNCOUIyQ0MxRTc5MTMzRjUyMzFDNzJFMTUyNjg1MB4XDTI1MDQxNTAx MzYxMFoXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoRjg5ODcyQkMyQTAzM0Y0 MkZBQUExNTAzQ0MxMjRFRTE3NTk4MzYwNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANQ0SBRyYuM6Rxd6O482Js6EE92fSY8Xig0kNMXvRcsvM3HpcnLa nG7Dw6JABl+RhAs6YOG6vXKh5IKh99QYgmWnxmBggSod0DqmcyZAZDG/YbLhuM+Z Qz1ay/PSgnIba4szrsD/8XMVH+oCgcC9O0PmNR8KpB138zobSmTXiHyiJVKtb2Zi 5VYAOWcxv2fsZJ7g6Ly/9P6m9dTZyuEUS1fUpn8+uRxcLG6+Ezb6gdcnMhd6grXO +EufwV17a8Wus0oRRaX9CCt1W7wg8ozyQrSv8OCZ1XWRDXvMdgN751+sKjBSngj+ ZHPHzOBQS/XA8OeicXfHezf5YdFwQlHuc4sCAwEAAaOCAj8wggI7MB0GA1UdDgQW BBT4mHK8KgM/QvqqFQPMEk7hdZg2BzAfBgNVHSMEGDAWgBQ1iSFDxJO5ssweeRM/ UjHHLhUmhTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjE1NC9OWWtoUThTVHViTE1IbmtUUDFJeHh5NFZKb1UuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9OWWtoUThTVHViTE1IbmtUUDFJeHh5 NFZKb1UuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjE1NC9OWWtoUThTVHViTE1IbmtUUDFJeHh5NFZKb1UubWZ0 MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAw IQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsF AAOCAQEAXcBLk5vNpi62tgJnsgBWKUBBBZIA6SCOJRdYpl8JaKvu2NCdLtfPMWES W07S5rHUq6zt9C0D57EEKKLpVekaqaQbuWASBWz8XB5DyAjxkQTiZRmPDgVgwYXG CqD0BaQCrk89XzJJqaJUxYrPyEOMDuJupDh5OphMyp9djhRvzHbmHRk02nIzdO83 VvBXqGzZoK+TynWEPkq5VejbMtpNsdLO0MhKHmdBxBmwa6XL0foXckOI5/r6PVsB ChHQspUYgPsKUMnCjvvpeC3BTnTmdMMlcQOo9bylXzmfJC5A3mCA2K+lWdI29fWO 7oXHH87+RoXAVNsx4bJ8Ib5kUeoS9A== -----END CERTIFICATE-----Generated at Sat Apr 26 15:38:17 2025 by rpki-client