$ rpki-client -vvf rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft File: KISNw_Gedyn_43735PClycW0kOk.mft (raw, json) Hash identifier: yrkmnfFj7Zw0StFM5JjnxwHXeGk70zL+onGCQsybwko= Subject key identifier: 32:54:B0:04:BA:A7:B2:8B:DD:DB:AD:97:A6:58:6B:CE:80:81:AE:AD Authority key identifier: 28:84:8D:C3:F1:9E:77:29:FF:E3:7E:F7:E4:F0:A5:C9:C5:B4:90:E9 Certificate issuer: /CN=A9141B5B/serialNumber=28848DC3F19E7729FFE37EF7E4F0A5C9C5B490E9 Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft Manifest number: 0131 Signing time: Sat 23 Nov 2024 02:50:13 +0000 Manifest this update: Sat 23 Nov 2024 02:50:13 +0000 Manifest next update: Sat 30 Nov 2024 02:50:13 +0000 Files and hashes: 1: KISNw_Gedyn_43735PClycW0kOk.crl (hash: MUfCnVKeNbDVVU9WtOzP2f2zkqxHbdpJ6ySU26E+40w=) 2: EC61C060DDB411ED93355C4FC4F9AE02.roa (hash: vRqbrEIa3Ebp4/kjRD23GtQNaRXqlpiIyqZhi9Zmdu0=) 3: 6C0C84D8DD9E11EDB661B12CC4F9AE02.roa (hash: Nzmti6ikO3dYYJ18CJOeeWiZRyxWKdkVvxxrlj7q/RA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.crl rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141B5B/serialNumber=28848DC3F19E7729FFE37EF7E4F0A5C9C5B490E9 Validity Not Before: Nov 23 02:50:13 2024 GMT Not After : Nov 30 02:50:13 2024 GMT Subject: CN=674142e5-5d4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:56:5c:40:44:70:5a:14:2f:67:4a:6f:71:05: 10:89:a1:f9:16:f8:de:51:83:21:f2:dc:20:ce:76: 96:4a:47:96:01:72:61:20:18:dc:0c:e2:a4:a1:fa: 5f:df:53:2d:83:f4:f3:06:e5:05:76:59:44:20:5d: d1:b0:29:61:a7:9a:3d:9f:1a:2e:7e:59:d1:7e:4b: 71:49:06:10:47:00:27:4d:36:3f:c2:f7:f4:db:90: 7f:53:96:20:55:f2:27:b8:4c:d1:ca:c6:f3:e8:9f: 77:3f:09:c6:d1:9c:b5:3e:11:7f:b6:95:3a:89:81: 46:45:42:0b:37:7f:4c:bb:5f:54:7c:21:b0:f3:d8: 8b:b6:73:d0:41:df:81:b6:49:60:06:b5:79:2b:e5: c4:46:4f:a5:eb:df:c7:8d:00:80:54:e0:60:0d:ea: f0:41:b3:5c:f4:4c:59:8b:be:2e:d8:bb:3d:57:0d: ac:d1:ec:7b:f9:7d:b2:8c:e7:1d:b4:2a:d0:87:22: c1:32:0d:ee:67:13:8b:c7:24:a7:3a:05:8c:99:4c: 93:88:11:64:35:56:88:1a:a3:d1:b3:40:45:60:a1: c2:b4:20:7e:ac:43:48:9d:ef:f8:b0:be:32:94:5d: b4:95:ce:41:e7:a0:e7:3e:b5:52:f9:3f:bb:35:57: 6a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:54:B0:04:BA:A7:B2:8B:DD:DB:AD:97:A6:58:6B:CE:80:81:AE:AD X509v3 Authority Key Identifier: keyid:28:84:8D:C3:F1:9E:77:29:FF:E3:7E:F7:E4:F0:A5:C9:C5:B4:90:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:c4:b9:af:9e:0e:07:45:1a:4e:a2:b1:a8:54:a3:e0:06:cc: a8:d6:13:c8:9c:e5:a3:e2:f0:7a:2b:4e:75:7b:8e:27:f4:9b: 4d:83:1d:c8:e3:7f:0b:e1:95:1b:8e:09:1a:76:ac:be:bc:eb: 66:35:e9:d1:57:9a:eb:3f:09:38:5b:f9:ac:2d:90:54:25:40: ce:32:af:da:e7:26:f7:e0:3c:cf:5a:ca:b6:c4:7b:19:34:e7: 5e:ff:f4:4a:dd:64:05:cc:71:e3:27:99:6f:29:07:e4:a4:8f: cd:5d:a3:db:ec:47:0b:41:07:bb:6e:bc:b5:10:6f:77:ba:ae: 35:f5:4b:b7:91:70:70:fd:71:07:7a:0f:84:b3:fe:a3:85:ec: 24:36:50:27:dc:54:aa:7f:e1:14:b8:72:73:b5:a6:53:f9:d5: 6a:e6:19:61:b9:bb:a3:d1:85:3a:a3:60:45:b3:07:87:87:2b: 7c:8b:2e:9d:e5:c6:e2:6c:45:4a:62:ae:03:59:2f:90:cd:93: e9:97:2f:5a:ef:bb:21:76:a3:16:1b:b7:c1:22:ac:7b:7c:7e: 7f:b4:26:8a:bb:f4:b5:ed:b5:b4:49:4e:6a:e3:88:9b:cf:f9: b1:dc:bb:9f:5a:f6:52:42:08:52:dd:33:84:81:4f:89:b8:81: 58:c4:fa:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFCNUIxMTAvBgNVBAUTKDI4ODQ4REMzRjE5RTc3MjlGRkUzN0VGN0U0RjBBNUM5 QzVCNDkwRTkwHhcNMjQxMTIzMDI1MDEzWhcNMjQxMTMwMDI1MDEzWjAYMRYwFAYD VQQDEw02NzQxNDJlNS01ZDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFZcQERwWhQvZ0pvcQUQiaH5FvjeUYMh8twgznaWSkeWAXJhIBjcDOKkofpf 31Mtg/TzBuUFdllEIF3RsClhp5o9nxouflnRfktxSQYQRwAnTTY/wvf025B/U5Yg VfInuEzRysbz6J93PwnG0Zy1PhF/tpU6iYFGRUILN39Mu19UfCGw89iLtnPQQd+B tklgBrV5K+XERk+l69/HjQCAVOBgDerwQbNc9ExZi74u2Ls9Vw2s0ex7+X2yjOcd tCrQhyLBMg3uZxOLxySnOgWMmUyTiBFkNVaIGqPRs0BFYKHCtCB+rENIne/4sL4y lF20lc5B56DnPrVS+T+7NVdqIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJUsAS6 p7KL3dutl6ZYa86Aga6tMB8GA1UdIwQYMBaAFCiEjcPxnncp/+N+9+TwpcnFtJDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUI1Qi84RDU3RTE3Q0RE OTUxMUVEQUU4QzZDN0FDNEY5QUUwMi9LSVNOd19HZWR5bl80MzczNVBDbHljVzBr T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tJU053X0dlZHluXzQzNzM1UENseWNXMGtPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MUI1Qi84RDU3RTE3Q0REOTUxMUVEQUU4QzZDN0FDNEY5QUUwMi9LSVNOd19HZWR5 bl80MzczNVBDbHljVzBrT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2xLmvng4HRRpOorGoVKPgBsyo1hPInOWj4vB6K051e44n9JtNgx3I 438L4ZUbjgkadqy+vOtmNenRV5rrPwk4W/msLZBUJUDOMq/a5yb34DzPWsq2xHsZ NOde//RK3WQFzHHjJ5lvKQfkpI/NXaPb7EcLQQe7bry1EG93uq419Uu3kXBw/XEH eg+Es/6jhewkNlAn3FSqf+EUuHJztaZT+dVq5hlhubuj0YU6o2BFsweHhyt8iy6d 5cbibEVKYq4DWS+QzZPply9a77shdqMWG7fBIqx7fH5/tCaKu/S17bW0SU5q44ib z/mx3LufWvZSQghS3TOEgU+JuIFYxPp6 -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:47 2024 by rpki-client on console-fra.rpki-client.org