$ rpki-client -vvf rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft File: KISNw_Gedyn_43735PClycW0kOk.mft (raw, json) Hash identifier: d3GW9yiypMcZ5C8q+GKlqne61N0zNoBF/iVesgFvfFE= Subject key identifier: D7:76:03:B5:74:12:13:3A:8C:4D:92:29:5B:2D:35:F5:02:FD:4D:96 Authority key identifier: 28:84:8D:C3:F1:9E:77:29:FF:E3:7E:F7:E4:F0:A5:C9:C5:B4:90:E9 Certificate issuer: /CN=A9141B5B/serialNumber=28848DC3F19E7729FFE37EF7E4F0A5C9C5B490E9 Certificate serial: 0188 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft Manifest number: 017E Signing time: Sat 19 Apr 2025 03:00:23 +0000 Manifest this update: Sat 19 Apr 2025 03:00:23 +0000 Manifest next update: Sat 26 Apr 2025 03:00:23 +0000 Files and hashes: 1: KISNw_Gedyn_43735PClycW0kOk.crl (hash: M7UzEf5HS2VIiC6yjdcgSceOaUaR0HsI6mntfekeW8s=) 2: EC61C060DDB411ED93355C4FC4F9AE02.roa (hash: Ds1Oggb1CXmheiOx4YZNVxU2i1qg8eEHn8KdU83omHg=) 3: 6C0C84D8DD9E11EDB661B12CC4F9AE02.roa (hash: NvHtd8ujE1yELsuYXTHpNbSZA6sMXQEq9scs3taiBxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.crl rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141B5B, serialNumber=28848DC3F19E7729FFE37EF7E4F0A5C9C5B490E9 Validity Not Before: Apr 19 03:00:23 2025 GMT Not After : Apr 26 03:00:23 2025 GMT Subject: CN=680311c7-a7f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:69:04:75:02:97:b6:25:49:1b:f0:20:eb:41: 42:79:52:48:3f:eb:fb:84:1e:f4:74:07:48:0f:36: 67:c8:c2:8b:05:a0:94:2d:55:e9:e1:b5:10:87:8e: b5:0a:ed:b8:f8:d0:e4:77:46:af:b1:7b:df:09:6c: c1:fd:ca:91:7d:96:e2:e8:27:66:a5:9d:7f:c8:24: 72:ff:d6:8f:03:3f:65:c3:dd:9c:3d:fe:b4:10:1f: ab:f2:b8:d0:4b:3e:ce:0d:7d:9d:41:2c:78:fe:c1: 5e:55:7a:8d:64:d5:6c:9c:23:20:07:d5:0a:43:ed: 9f:94:33:d6:e3:5e:46:d6:5a:fe:a5:3c:c6:8e:09: 33:6e:70:0c:df:31:cd:ef:8d:8f:83:c3:15:eb:69: 5f:90:51:33:75:9d:33:de:d5:df:4d:bf:e5:5a:5b: 93:c6:82:6e:c7:28:93:7e:bd:15:51:71:f1:fa:9c: 3f:e9:bb:af:e9:ee:fe:5b:46:f0:2a:0e:ea:87:84: e6:2f:42:67:81:b6:d9:38:82:48:27:13:c1:8f:cb: bd:e1:69:98:a0:72:e0:7e:57:67:11:0c:6f:30:79: 71:42:e4:ac:f3:7d:55:41:cd:76:fc:e3:94:0f:54: c3:2e:2b:e9:ed:69:99:e8:eb:bb:4d:7a:c8:c0:a7: 4e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:76:03:B5:74:12:13:3A:8C:4D:92:29:5B:2D:35:F5:02:FD:4D:96 X509v3 Authority Key Identifier: keyid:28:84:8D:C3:F1:9E:77:29:FF:E3:7E:F7:E4:F0:A5:C9:C5:B4:90:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:27:b4:15:83:14:fb:6a:49:7e:5f:d4:e4:30:af:17:9c:46: a1:5f:3f:c2:db:69:fb:21:95:62:96:df:56:33:6b:d2:7e:e6: 2f:03:e8:37:23:14:38:f0:8a:50:7c:22:c1:c5:a0:cd:50:0e: 38:e1:3f:6a:a8:97:d9:e4:ca:fe:46:37:c3:2f:8f:f5:dc:1b: ac:a2:07:d2:79:9b:3e:c9:32:91:e1:e5:12:7f:bd:6f:5a:a1: 7a:14:26:ef:fb:4a:06:76:9c:32:dc:d2:1f:59:7e:83:d2:64: a4:3f:fd:26:de:79:69:d6:08:cb:ef:18:67:e5:e7:cc:c6:70: ab:3d:02:13:23:3c:00:01:db:c5:77:ec:63:57:3a:80:22:f8: 53:44:96:8d:80:51:81:1b:0d:03:70:fc:7b:b5:33:a0:8b:cc: 16:f1:20:19:4a:65:36:cc:cb:a0:09:26:71:0f:de:04:02:05: 3b:dc:c9:28:b9:c1:58:bd:38:bc:a0:e5:b3:18:cb:47:85:af: 98:d1:1c:10:52:55:f3:81:91:b7:ae:16:f8:68:d2:2e:d7:db: 17:1e:e0:bc:39:db:90:22:cb:94:6e:8f:1a:c3:18:96:db:f7: f0:c3:28:c2:1e:c6:c3:9e:ac:ee:fc:01:70:c4:05:c4:a9:60: 62:0f:45:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFCNUIxMTAvBgNVBAUTKDI4ODQ4REMzRjE5RTc3MjlGRkUzN0VGN0U0RjBBNUM5 QzVCNDkwRTkwHhcNMjUwNDE5MDMwMDIzWhcNMjUwNDI2MDMwMDIzWjAYMRYwFAYD VQQDEw02ODAzMTFjNy1hN2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2kEdQKXtiVJG/Ag60FCeVJIP+v7hB70dAdIDzZnyMKLBaCULVXp4bUQh461 Cu24+NDkd0avsXvfCWzB/cqRfZbi6CdmpZ1/yCRy/9aPAz9lw92cPf60EB+r8rjQ Sz7ODX2dQSx4/sFeVXqNZNVsnCMgB9UKQ+2flDPW415G1lr+pTzGjgkzbnAM3zHN 742Pg8MV62lfkFEzdZ0z3tXfTb/lWluTxoJuxyiTfr0VUXHx+pw/6buv6e7+W0bw Kg7qh4TmL0JngbbZOIJIJxPBj8u94WmYoHLgfldnEQxvMHlxQuSs831VQc12/OOU D1TDLivp7WmZ6Ou7TXrIwKdOXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNd2A7V0 EhM6jE2SKVstNfUC/U2WMB8GA1UdIwQYMBaAFCiEjcPxnncp/+N+9+TwpcnFtJDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUI1Qi84RDU3RTE3Q0RE OTUxMUVEQUU4QzZDN0FDNEY5QUUwMi9LSVNOd19HZWR5bl80MzczNVBDbHljVzBr T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tJU053X0dlZHluXzQzNzM1UENseWNXMGtPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MUI1Qi84RDU3RTE3Q0REOTUxMUVEQUU4QzZDN0FDNEY5QUUwMi9LSVNOd19HZWR5 bl80MzczNVBDbHljVzBrT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmJ7QVgxT7akl+X9TkMK8XnEahXz/C22n7IZVilt9WM2vSfuYvA+g3 IxQ48IpQfCLBxaDNUA444T9qqJfZ5Mr+RjfDL4/13BusogfSeZs+yTKR4eUSf71v WqF6FCbv+0oGdpwy3NIfWX6D0mSkP/0m3nlp1gjL7xhn5efMxnCrPQITIzwAAdvF d+xjVzqAIvhTRJaNgFGBGw0DcPx7tTOgi8wW8SAZSmU2zMugCSZxD94EAgU73Mko ucFYvTi8oOWzGMtHha+Y0RwQUlXzgZG3rhb4aNIu19sXHuC8OduQIsuUbo8awxiW 2/fwwyjCHsbDnqzu/AFwxAXEqWBiD0We -----END CERTIFICATE-----Generated at Sat Apr 19 07:48:32 2025 by rpki-client