$ rpki-client -vvf rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft File: KISNw_Gedyn_43735PClycW0kOk.mft (raw, json) Hash identifier: Pw7OKMJmiHlBM768A+QXdl5GHNlAhBhRBPGVglg/Cds= Subject key identifier: D2:E0:C0:26:B4:CE:E5:5F:D6:11:74:35:5C:EA:B2:55:43:6C:29:27 Authority key identifier: 28:84:8D:C3:F1:9E:77:29:FF:E3:7E:F7:E4:F0:A5:C9:C5:B4:90:E9 Certificate issuer: /CN=A9141B5B/serialNumber=28848DC3F19E7729FFE37EF7E4F0A5C9C5B490E9 Certificate serial: 01BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft Manifest number: 01B4 Signing time: Tue 05 Aug 2025 03:37:01 +0000 Manifest this update: Tue 05 Aug 2025 03:37:01 +0000 Manifest next update: Tue 12 Aug 2025 03:37:01 +0000 Files and hashes: 1: KISNw_Gedyn_43735PClycW0kOk.crl (hash: t8LD4Yk1hU1lf4FDWuHQB3ULKrf15VCbmr7YWae4Bk8=) 2: EC61C060DDB411ED93355C4FC4F9AE02.roa (hash: Ds1Oggb1CXmheiOx4YZNVxU2i1qg8eEHn8KdU83omHg=) 3: 6C0C84D8DD9E11EDB661B12CC4F9AE02.roa (hash: NvHtd8ujE1yELsuYXTHpNbSZA6sMXQEq9scs3taiBxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.crl rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 03:37:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141B5B, serialNumber=28848DC3F19E7729FFE37EF7E4F0A5C9C5B490E9 Validity Not Before: Aug 5 03:37:01 2025 GMT Not After : Aug 12 03:37:01 2025 GMT Subject: CN=68917c5d-4aeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:50:da:7e:f8:7d:99:e4:35:b0:44:23:78:7b: f8:ea:ba:98:f0:32:f4:b9:98:dd:57:57:df:a9:52: f5:3d:c1:d2:21:38:cf:ee:88:5a:d4:95:35:28:d4: c1:1e:1d:f4:73:c1:1f:04:00:ab:a6:63:fa:66:ae: 42:c5:df:bc:7f:3b:0f:7e:1b:76:82:cf:73:88:d6: 80:c2:0f:35:81:1a:fe:1b:3b:b0:bc:5f:f3:25:f5: 68:f9:27:50:ad:69:d8:5b:7c:25:21:16:54:b0:9e: 12:5c:0f:4d:b3:28:2f:b1:19:48:24:39:1f:f3:cb: 40:bc:42:73:33:6d:10:d5:97:15:c7:2f:a9:a7:80: f2:20:b9:ee:ac:e7:66:a9:85:d3:52:cd:5d:4c:76: 8d:1e:ae:a7:5a:da:48:61:63:7a:8f:02:c4:8d:33: 11:04:b2:2d:10:22:34:20:f9:8b:0c:ae:aa:7a:b3: b3:c8:15:1b:42:42:23:41:a4:cf:51:f4:eb:a6:fe: 11:7e:c2:6d:69:04:ae:40:a6:4b:5d:d2:1e:46:dd: 1f:5e:a2:cd:8e:e9:9c:07:ee:3c:e5:17:88:7c:b5: 5e:54:54:68:13:91:52:9d:30:a3:6a:08:42:6b:ee: a8:a5:36:61:d0:fd:33:b9:9c:75:79:6e:93:06:d1: 4f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:E0:C0:26:B4:CE:E5:5F:D6:11:74:35:5C:EA:B2:55:43:6C:29:27 X509v3 Authority Key Identifier: keyid:28:84:8D:C3:F1:9E:77:29:FF:E3:7E:F7:E4:F0:A5:C9:C5:B4:90:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:ef:48:ed:72:6d:e1:6c:01:f9:ca:d1:35:93:56:7b:46:74: 9c:e9:0c:9a:25:a9:82:be:3f:7a:64:89:2b:52:5a:d4:02:5b: bb:e8:ae:ce:de:1c:46:c8:ad:52:db:21:41:29:48:44:ef:3a: d0:c8:cd:e7:b3:83:fb:1a:d7:d2:d0:7d:4a:7e:0a:04:39:53: ad:e2:38:71:f5:5d:34:5e:3b:38:f8:d0:0c:dd:d1:db:28:73: fa:46:3f:33:82:08:bd:b7:ce:92:13:ff:33:ac:fc:7d:fe:88: 35:5e:ba:0d:43:37:30:cf:38:2f:31:4a:c1:52:05:42:20:0a: c7:65:31:73:55:44:4b:25:d6:4c:1e:ce:d8:ef:c4:67:70:58: 11:f5:93:3b:6e:48:95:17:e0:a2:d6:75:3e:21:a1:e8:ea:49: 47:4a:c8:a3:42:5e:c7:38:aa:3b:3d:aa:cc:28:59:b3:fa:00: 36:42:d8:d9:95:6c:20:16:cc:44:a6:49:d8:8d:a9:0b:1a:3c: 91:03:c9:69:66:09:8a:96:c5:b3:9f:20:f1:5a:67:4c:69:fc: c7:e4:93:d1:5b:cd:75:29:88:4c:58:6b:6e:76:4c:7e:0b:b5: 6d:87:90:65:4c:ea:ac:dc:7c:ef:6a:8a:dc:7e:22:7d:99:8d: 8f:a0:07:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFCNUIxMTAvBgNVBAUTKDI4ODQ4REMzRjE5RTc3MjlGRkUzN0VGN0U0RjBBNUM5 QzVCNDkwRTkwHhcNMjUwODA1MDMzNzAxWhcNMjUwODEyMDMzNzAxWjAYMRYwFAYD VQQDEw02ODkxN2M1ZC00YWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFDafvh9meQ1sEQjeHv46rqY8DL0uZjdV1ffqVL1PcHSITjP7oha1JU1KNTB Hh30c8EfBACrpmP6Zq5Cxd+8fzsPfht2gs9ziNaAwg81gRr+GzuwvF/zJfVo+SdQ rWnYW3wlIRZUsJ4SXA9NsygvsRlIJDkf88tAvEJzM20Q1ZcVxy+pp4DyILnurOdm qYXTUs1dTHaNHq6nWtpIYWN6jwLEjTMRBLItECI0IPmLDK6qerOzyBUbQkIjQaTP UfTrpv4RfsJtaQSuQKZLXdIeRt0fXqLNjumcB+485ReIfLVeVFRoE5FSnTCjaghC a+6opTZh0P0zuZx1eW6TBtFP2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLgwCa0 zuVf1hF0NVzqslVDbCknMB8GA1UdIwQYMBaAFCiEjcPxnncp/+N+9+TwpcnFtJDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUI1Qi84RDU3RTE3Q0RE OTUxMUVEQUU4QzZDN0FDNEY5QUUwMi9LSVNOd19HZWR5bl80MzczNVBDbHljVzBr T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tJU053X0dlZHluXzQzNzM1UENseWNXMGtPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MUI1Qi84RDU3RTE3Q0REOTUxMUVEQUU4QzZDN0FDNEY5QUUwMi9LSVNOd19HZWR5 bl80MzczNVBDbHljVzBrT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBY70jtcm3hbAH5ytE1k1Z7RnSc6QyaJamCvj96ZIkrUlrUAlu76K7O 3hxGyK1S2yFBKUhE7zrQyM3ns4P7GtfS0H1KfgoEOVOt4jhx9V00Xjs4+NAM3dHb KHP6Rj8zggi9t86SE/8zrPx9/og1XroNQzcwzzgvMUrBUgVCIArHZTFzVURLJdZM Hs7Y78RncFgR9ZM7bkiVF+Ci1nU+IaHo6klHSsijQl7HOKo7ParMKFmz+gA2QtjZ lWwgFsxEpknYjakLGjyRA8lpZgmKlsWznyDxWmdMafzH5JPRW811KYhMWGtudkx+ C7Vth5BlTOqs3HzvaorcfiJ9mY2PoAfO -----END CERTIFICATE-----Generated at Wed Aug 6 19:37:01 2025 by rpki-client