$ rpki-client -vvf rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft File: KISNw_Gedyn_43735PClycW0kOk.mft (raw, json) Hash identifier: TakVrUkLlxmt39r2yJ/QLj7DNteuOuapZFXpgVHysPM= Subject key identifier: 2F:B6:8D:17:8C:54:6F:69:7D:DC:8B:AE:25:06:3D:33:26:86:53:EC Authority key identifier: 28:84:8D:C3:F1:9E:77:29:FF:E3:7E:F7:E4:F0:A5:C9:C5:B4:90:E9 Certificate issuer: /CN=A9141B5B/serialNumber=28848DC3F19E7729FFE37EF7E4F0A5C9C5B490E9 Certificate serial: 01EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft Manifest number: 01E2 Signing time: Wed 05 Nov 2025 02:50:10 +0000 Manifest this update: Wed 05 Nov 2025 02:50:09 +0000 Manifest next update: Wed 12 Nov 2025 02:50:09 +0000 Files and hashes: 1: KISNw_Gedyn_43735PClycW0kOk.crl (hash: yMCsUtqeIsNGE8NcZirnslHjvLp7u2C7YfG9nBTwVuY=) 2: EC61C060DDB411ED93355C4FC4F9AE02.roa (hash: Ds1Oggb1CXmheiOx4YZNVxU2i1qg8eEHn8KdU83omHg=) 3: 6C0C84D8DD9E11EDB661B12CC4F9AE02.roa (hash: NvHtd8ujE1yELsuYXTHpNbSZA6sMXQEq9scs3taiBxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.crl rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141B5B, serialNumber=28848DC3F19E7729FFE37EF7E4F0A5C9C5B490E9 Validity Not Before: Nov 5 02:50:09 2025 GMT Not After : Nov 12 02:50:09 2025 GMT Subject: CN=690abb61-f65d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c7:6d:3d:45:92:a1:55:d3:a3:4e:19:b2:d1: 6d:d0:f8:c9:0f:19:5a:91:61:56:04:f3:9c:d9:c6: 33:3e:e1:1c:f7:19:87:f7:3e:44:89:cd:3e:fa:ff: ed:06:61:90:41:40:23:97:54:aa:10:a7:da:56:82: 1b:62:28:87:ae:1f:30:81:a9:5b:4d:ca:34:51:31: 7f:69:17:3c:c9:4c:b1:4c:69:a6:5a:b5:c7:11:e8: 9b:af:e3:9b:c6:72:7b:2c:49:a9:6d:d0:34:15:7a: e2:e2:98:b4:cc:bd:5a:9c:5a:95:1c:b4:e8:5a:36: 2d:76:1f:89:67:75:b7:11:19:33:5e:bc:59:22:43: 05:9c:32:cd:93:31:be:30:11:e3:6c:52:c0:26:48: 58:6b:87:0d:1a:3d:6a:c7:d4:4d:ed:da:e2:70:a1: 5b:ad:87:6b:00:80:a8:22:0c:18:af:e0:59:7c:63: 60:b8:82:5f:b0:e1:62:ed:89:78:91:5a:93:b8:62: ee:a4:6a:f8:99:c4:83:f9:fa:ae:cc:1a:b3:ad:72: d3:c8:ba:56:18:9b:3f:c6:53:1c:47:10:87:d7:2f: 61:e3:ee:a7:b8:69:49:29:5c:55:47:82:e3:07:a0: 72:1e:f3:23:68:2e:9a:da:6d:9e:10:65:49:78:f9: 07:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:B6:8D:17:8C:54:6F:69:7D:DC:8B:AE:25:06:3D:33:26:86:53:EC X509v3 Authority Key Identifier: keyid:28:84:8D:C3:F1:9E:77:29:FF:E3:7E:F7:E4:F0:A5:C9:C5:B4:90:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:15:a3:15:31:4d:a3:74:fd:93:3b:03:3f:f2:92:a4:6e:e0: 46:3e:81:b5:66:7a:b2:2d:39:75:c9:4b:89:2a:0a:4e:3b:e6: 90:71:71:f4:7d:7e:c6:16:32:36:2b:3f:cb:36:46:0c:c6:fa: 85:36:0e:13:90:26:c3:f0:73:fe:ef:2e:d8:42:3d:d7:7e:b3: d3:44:dc:72:57:0b:ed:84:64:4b:ff:e8:10:b1:4b:ab:84:bb: ec:ad:0e:37:52:f5:1c:01:69:52:24:93:fc:ae:58:8b:0b:ba: 60:3e:f7:76:0a:33:cf:e3:26:0c:8e:13:6e:c6:cf:a6:a9:a8: 53:6b:08:5b:f7:80:6b:b1:8e:63:1c:2f:d4:cd:60:76:e9:a6: 04:13:a3:cb:53:52:88:fe:69:10:37:00:63:0d:3a:d0:9a:de: 89:25:63:f8:09:82:98:ae:a5:82:81:3e:0b:79:86:c6:1c:28: 27:82:c7:67:5e:a1:65:4b:b8:95:cb:a0:6b:84:1f:77:35:7d: 53:6a:42:d1:e3:8a:d0:61:b1:9d:d3:71:09:4b:dd:84:39:b5: 2f:87:f2:b6:42:35:8e:8b:46:f8:44:8e:d8:63:8b:e8:cf:4c: dc:20:3d:db:1c:bd:2a:e8:1c:ec:1a:79:37:e5:db:b2:51:19: 30:46:cd:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFCNUIxMTAvBgNVBAUTKDI4ODQ4REMzRjE5RTc3MjlGRkUzN0VGN0U0RjBBNUM5 QzVCNDkwRTkwHhcNMjUxMTA1MDI1MDA5WhcNMjUxMTEyMDI1MDA5WjAYMRYwFAYD VQQDEw02OTBhYmI2MS1mNjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0sdtPUWSoVXTo04ZstFt0PjJDxlakWFWBPOc2cYzPuEc9xmH9z5Eic0++v/t BmGQQUAjl1SqEKfaVoIbYiiHrh8wgalbTco0UTF/aRc8yUyxTGmmWrXHEeibr+Ob xnJ7LEmpbdA0FXri4pi0zL1anFqVHLToWjYtdh+JZ3W3ERkzXrxZIkMFnDLNkzG+ MBHjbFLAJkhYa4cNGj1qx9RN7dricKFbrYdrAICoIgwYr+BZfGNguIJfsOFi7Yl4 kVqTuGLupGr4mcSD+fquzBqzrXLTyLpWGJs/xlMcRxCH1y9h4+6nuGlJKVxVR4Lj B6ByHvMjaC6a2m2eEGVJePkH8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC+2jReM VG9pfdyLriUGPTMmhlPsMB8GA1UdIwQYMBaAFCiEjcPxnncp/+N+9+TwpcnFtJDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUI1Qi84RDU3RTE3Q0RE OTUxMUVEQUU4QzZDN0FDNEY5QUUwMi9LSVNOd19HZWR5bl80MzczNVBDbHljVzBr T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tJU053X0dlZHluXzQzNzM1UENseWNXMGtPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MUI1Qi84RDU3RTE3Q0REOTUxMUVEQUU4QzZDN0FDNEY5QUUwMi9LSVNOd19HZWR5 bl80MzczNVBDbHljVzBrT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+FaMVMU2jdP2TOwM/8pKkbuBGPoG1ZnqyLTl1yUuJKgpOO+aQcXH0 fX7GFjI2Kz/LNkYMxvqFNg4TkCbD8HP+7y7YQj3XfrPTRNxyVwvthGRL/+gQsUur hLvsrQ43UvUcAWlSJJP8rliLC7pgPvd2CjPP4yYMjhNuxs+mqahTawhb94BrsY5j HC/UzWB26aYEE6PLU1KI/mkQNwBjDTrQmt6JJWP4CYKYrqWCgT4LeYbGHCgngsdn XqFlS7iVy6BrhB93NX1TakLR44rQYbGd03EJS92EObUvh/K2QjWOi0b4RI7YY4vo z0zcID3bHL0q6BzsGnk35duyURkwRs3e -----END CERTIFICATE-----Generated at Wed Nov 5 17:52:19 2025 by rpki-client