$ rpki-client -vvf rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft File: KISNw_Gedyn_43735PClycW0kOk.mft (raw, json) Hash identifier: eiUaDxXtC1//sqzwHWIYZpnm361Q61TMCxzxTO8TVDs= Subject key identifier: 71:44:20:0E:F9:31:BF:47:49:D4:82:8F:EC:C1:0C:59:E6:6D:50:F6 Authority key identifier: 28:84:8D:C3:F1:9E:77:29:FF:E3:7E:F7:E4:F0:A5:C9:C5:B4:90:E9 Certificate issuer: /CN=A9141B5B/serialNumber=28848DC3F19E7729FFE37EF7E4F0A5C9C5B490E9 Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft Manifest number: 01AE Signing time: Fri 25 Jul 2025 03:24:23 +0000 Manifest this update: Fri 25 Jul 2025 03:24:22 +0000 Manifest next update: Fri 01 Aug 2025 03:24:22 +0000 Files and hashes: 1: KISNw_Gedyn_43735PClycW0kOk.crl (hash: uP5h0bwD2Z2BSw+BDMJucxrxL5Y9/KedE+Un5f38ong=) 2: EC61C060DDB411ED93355C4FC4F9AE02.roa (hash: Ds1Oggb1CXmheiOx4YZNVxU2i1qg8eEHn8KdU83omHg=) 3: 6C0C84D8DD9E11EDB661B12CC4F9AE02.roa (hash: NvHtd8ujE1yELsuYXTHpNbSZA6sMXQEq9scs3taiBxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.crl rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 03:24:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141B5B, serialNumber=28848DC3F19E7729FFE37EF7E4F0A5C9C5B490E9 Validity Not Before: Jul 25 03:24:22 2025 GMT Not After : Aug 1 03:24:22 2025 GMT Subject: CN=6882f8e7-cdf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7c:3b:f4:56:af:6c:9b:1d:fd:87:8a:cc:40: 42:4c:85:67:45:b1:d4:5a:ca:cf:64:50:81:af:9e: 82:b5:ab:9a:38:be:2b:b5:2d:aa:cd:5d:f2:a9:ad: 17:fd:47:60:37:b5:d4:92:ab:c9:3c:da:46:2b:a4: 8a:86:93:d8:b6:4a:02:44:66:5d:84:52:11:80:ac: aa:93:97:2e:8b:8d:dd:4b:2c:91:89:a3:c0:3e:5a: a9:a4:9a:04:04:4b:70:2d:ec:f0:25:79:7a:0e:ee: 94:b0:3a:ee:a1:f4:73:90:5f:83:fe:27:db:7a:9b: d3:3e:07:f3:f9:a7:4e:e9:ba:5f:86:cb:35:7c:66: 97:8c:ca:a4:df:fc:c8:c2:4c:dc:d9:95:dc:96:a1: fe:36:69:83:e9:ee:41:54:e5:d4:b5:0e:fd:a7:83: 53:b8:2f:ae:d0:59:c5:c6:32:31:14:a1:7b:0f:5d: 26:e5:0a:34:2b:64:5b:52:db:a3:35:00:b2:5b:53: d4:da:c9:24:04:c5:e5:22:36:25:0d:e4:86:f3:80: 90:85:09:c0:57:e0:e3:d2:96:d3:33:81:92:73:5f: 8f:f8:24:48:72:07:f4:82:ff:3a:c8:71:74:ce:ef: 88:74:f2:28:66:28:c4:4d:7f:59:0a:68:a5:c0:b2: bd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:44:20:0E:F9:31:BF:47:49:D4:82:8F:EC:C1:0C:59:E6:6D:50:F6 X509v3 Authority Key Identifier: keyid:28:84:8D:C3:F1:9E:77:29:FF:E3:7E:F7:E4:F0:A5:C9:C5:B4:90:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:79:ac:10:b2:a5:55:3e:f7:4a:64:3a:b5:89:76:e0:1e:3d: a0:92:cd:8d:ee:36:58:48:81:9e:2f:d3:6e:8c:a3:01:83:3f: ca:f7:e8:bd:aa:e0:29:6d:92:d2:b3:eb:16:71:64:e7:60:e2: 3c:ac:2a:94:9c:e3:de:d2:bf:7b:ea:58:77:c6:83:19:af:49: a0:46:1e:18:28:1d:33:77:7a:38:d4:f6:e1:b7:49:45:8d:d4: 66:6e:38:26:88:11:3e:13:0d:29:44:fa:59:7b:dd:25:f8:d2: 2d:10:11:9a:1f:76:bd:97:44:67:9c:7a:af:03:95:a2:6c:4f: c0:cd:59:cb:b7:28:af:d8:fc:0c:81:64:31:7d:06:e5:c5:61: 64:19:15:91:28:c0:c7:2f:3a:26:4e:0d:5f:51:dd:a8:be:8d: e8:cb:f2:5f:7a:90:08:18:d6:dd:d0:d2:3c:2b:07:6c:45:17: 83:bd:b0:30:d5:99:8b:5a:17:62:a0:74:13:28:92:f2:83:3e: 2d:e3:ad:28:c3:27:b9:e9:8d:ce:d1:86:bc:0f:9c:c5:ee:b6: ca:16:cd:b8:b1:2a:64:59:b1:6c:62:49:63:45:f3:3e:30:c6: ff:70:9c:ff:f1:5c:3f:f6:37:b5:fe:b6:81:9c:b3:cb:df:35: bb:32:c5:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFCNUIxMTAvBgNVBAUTKDI4ODQ4REMzRjE5RTc3MjlGRkUzN0VGN0U0RjBBNUM5 QzVCNDkwRTkwHhcNMjUwNzI1MDMyNDIyWhcNMjUwODAxMDMyNDIyWjAYMRYwFAYD VQQDEw02ODgyZjhlNy1jZGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXw79FavbJsd/YeKzEBCTIVnRbHUWsrPZFCBr56CtauaOL4rtS2qzV3yqa0X /UdgN7XUkqvJPNpGK6SKhpPYtkoCRGZdhFIRgKyqk5cui43dSyyRiaPAPlqppJoE BEtwLezwJXl6Du6UsDruofRzkF+D/ifbepvTPgfz+adO6bpfhss1fGaXjMqk3/zI wkzc2ZXclqH+NmmD6e5BVOXUtQ79p4NTuC+u0FnFxjIxFKF7D10m5Qo0K2RbUtuj NQCyW1PU2skkBMXlIjYlDeSG84CQhQnAV+Dj0pbTM4GSc1+P+CRIcgf0gv86yHF0 zu+IdPIoZijETX9ZCmilwLK97wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFEIA75 Mb9HSdSCj+zBDFnmbVD2MB8GA1UdIwQYMBaAFCiEjcPxnncp/+N+9+TwpcnFtJDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUI1Qi84RDU3RTE3Q0RE OTUxMUVEQUU4QzZDN0FDNEY5QUUwMi9LSVNOd19HZWR5bl80MzczNVBDbHljVzBr T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tJU053X0dlZHluXzQzNzM1UENseWNXMGtPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MUI1Qi84RDU3RTE3Q0REOTUxMUVEQUU4QzZDN0FDNEY5QUUwMi9LSVNOd19HZWR5 bl80MzczNVBDbHljVzBrT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9eawQsqVVPvdKZDq1iXbgHj2gks2N7jZYSIGeL9NujKMBgz/K9+i9 quApbZLSs+sWcWTnYOI8rCqUnOPe0r976lh3xoMZr0mgRh4YKB0zd3o41Pbht0lF jdRmbjgmiBE+Ew0pRPpZe90l+NItEBGaH3a9l0RnnHqvA5WibE/AzVnLtyiv2PwM gWQxfQblxWFkGRWRKMDHLzomTg1fUd2ovo3oy/JfepAIGNbd0NI8KwdsRReDvbAw 1ZmLWhdioHQTKJLygz4t460owye56Y3O0Ya8D5zF7rbKFs24sSpkWbFsYkljRfM+ MMb/cJz/8Vw/9je1/raBnLPL3zW7MsVh -----END CERTIFICATE-----Generated at Fri Jul 25 17:24:08 2025 by rpki-client