$ rpki-client -vvf rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft File: KISNw_Gedyn_43735PClycW0kOk.mft (raw, json) Hash identifier: h7WU3RsT0SKoC6Qmd8r32LBranIlzd1Mi179SeMNwko= Subject key identifier: DD:0A:3C:A9:D0:3D:2D:CB:C3:86:10:2D:E4:5A:B0:00:7A:BB:44:74 Authority key identifier: 28:84:8D:C3:F1:9E:77:29:FF:E3:7E:F7:E4:F0:A5:C9:C5:B4:90:E9 Certificate issuer: /CN=A9141B5B/serialNumber=28848DC3F19E7729FFE37EF7E4F0A5C9C5B490E9 Certificate serial: 018B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft Manifest number: 0181 Signing time: Fri 25 Apr 2025 02:52:10 +0000 Manifest this update: Fri 25 Apr 2025 02:52:09 +0000 Manifest next update: Fri 02 May 2025 02:52:09 +0000 Files and hashes: 1: KISNw_Gedyn_43735PClycW0kOk.crl (hash: 7K3fkWvKBJyuG+E1lX1i5HXi4rFr6lFb/6/v+Ojj4uM=) 2: EC61C060DDB411ED93355C4FC4F9AE02.roa (hash: Ds1Oggb1CXmheiOx4YZNVxU2i1qg8eEHn8KdU83omHg=) 3: 6C0C84D8DD9E11EDB661B12CC4F9AE02.roa (hash: NvHtd8ujE1yELsuYXTHpNbSZA6sMXQEq9scs3taiBxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.crl rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:52:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141B5B, serialNumber=28848DC3F19E7729FFE37EF7E4F0A5C9C5B490E9 Validity Not Before: Apr 25 02:52:09 2025 GMT Not After : May 2 02:52:09 2025 GMT Subject: CN=680af8d9-94c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c9:a1:91:28:5b:f8:27:c5:ad:7c:03:37:65: d3:2f:f4:dc:8b:4c:b9:cb:14:4a:6d:35:ec:ed:09: 4a:48:94:a6:f0:00:0d:54:b9:c1:65:09:ed:e7:10: 6a:bd:b4:4e:db:8d:fd:3b:0e:af:34:7d:d5:c1:54: 48:37:b0:4c:3f:20:89:66:43:cc:5b:ab:b2:54:c5: 5b:1d:31:f8:a5:af:40:3b:e8:bf:3b:9f:47:1f:47: b1:33:59:11:27:6a:76:2f:85:1a:92:20:fe:f2:b2: 52:56:ae:e5:96:52:d5:7c:b4:95:eb:f5:77:bc:b5: b9:ca:47:13:a5:83:f9:27:e5:7a:82:c5:83:c8:d6: c3:b4:28:6d:7a:b4:9b:d4:57:b5:f3:85:e5:b9:52: 7a:47:a0:cc:ae:a3:7b:fa:c5:7d:36:ef:1b:44:84: e7:b0:24:d4:50:75:f5:69:ac:83:6a:22:00:60:6c: 98:df:ad:52:b3:21:01:2d:8b:f5:ad:30:17:24:05: 33:48:5a:95:45:d4:59:36:0b:20:aa:68:3f:92:60: 2a:70:92:8a:18:b2:d7:a3:8c:09:e7:19:55:5c:fe: e5:06:b5:0d:22:fb:c7:e4:cc:a5:08:48:08:39:cf: b4:b2:4f:36:7f:cd:99:75:bf:3e:4d:59:b6:46:5d: 67:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:0A:3C:A9:D0:3D:2D:CB:C3:86:10:2D:E4:5A:B0:00:7A:BB:44:74 X509v3 Authority Key Identifier: keyid:28:84:8D:C3:F1:9E:77:29:FF:E3:7E:F7:E4:F0:A5:C9:C5:B4:90:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KISNw_Gedyn_43735PClycW0kOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141B5B/8D57E17CDD9511EDAE8C6C7AC4F9AE02/KISNw_Gedyn_43735PClycW0kOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:a7:a7:59:41:9d:89:09:60:f7:fe:f9:71:db:ac:1d:ee:8b: e8:7c:7c:98:3a:c1:a5:61:2b:4a:4c:71:b9:b9:aa:41:ed:5b: 46:83:10:15:d3:1c:f1:4b:bd:f7:b5:d0:0c:33:2a:89:54:06: 62:ac:c7:e4:ee:10:4f:a0:fd:98:22:53:da:cc:2c:9d:b1:d3: 64:36:db:99:a0:ed:40:d8:93:25:e0:e2:81:0b:4b:f5:95:f7: 3b:74:8b:dc:b5:c5:83:a4:9d:b7:d0:85:e7:c5:8b:61:82:0f: ca:6f:04:53:9f:21:27:16:fe:b4:80:e6:67:be:b7:39:cc:b7: 30:32:36:48:36:ba:aa:be:64:c7:0c:8b:26:44:e7:00:04:3c: 00:02:54:a7:b3:a9:c2:78:ea:e4:cd:60:99:7a:f3:74:37:a1: d5:8a:3a:1f:eb:60:e9:39:d0:b0:7b:4a:8b:21:3b:04:4a:2c: 04:af:3d:ed:e2:ce:a8:ae:b9:05:6d:22:9e:08:a9:07:ac:64: 81:f5:af:d8:92:b2:91:6d:3e:4f:92:04:16:70:ec:29:35:2d: 9e:d1:63:dc:73:5a:42:cb:31:97:0f:f8:0e:76:86:ca:a0:b5: 3a:96:7a:f7:be:55:ab:8e:54:a0:fd:38:8e:98:cb:bb:82:b7: eb:50:74:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFCNUIxMTAvBgNVBAUTKDI4ODQ4REMzRjE5RTc3MjlGRkUzN0VGN0U0RjBBNUM5 QzVCNDkwRTkwHhcNMjUwNDI1MDI1MjA5WhcNMjUwNTAyMDI1MjA5WjAYMRYwFAYD VQQDEw02ODBhZjhkOS05NGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8mhkShb+CfFrXwDN2XTL/Tci0y5yxRKbTXs7QlKSJSm8AANVLnBZQnt5xBq vbRO2439Ow6vNH3VwVRIN7BMPyCJZkPMW6uyVMVbHTH4pa9AO+i/O59HH0exM1kR J2p2L4UakiD+8rJSVq7lllLVfLSV6/V3vLW5ykcTpYP5J+V6gsWDyNbDtChterSb 1Fe184XluVJ6R6DMrqN7+sV9Nu8bRITnsCTUUHX1aayDaiIAYGyY361SsyEBLYv1 rTAXJAUzSFqVRdRZNgsgqmg/kmAqcJKKGLLXo4wJ5xlVXP7lBrUNIvvH5MylCEgI Oc+0sk82f82Zdb8+TVm2Rl1nfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0KPKnQ PS3Lw4YQLeRasAB6u0R0MB8GA1UdIwQYMBaAFCiEjcPxnncp/+N+9+TwpcnFtJDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUI1Qi84RDU3RTE3Q0RE OTUxMUVEQUU4QzZDN0FDNEY5QUUwMi9LSVNOd19HZWR5bl80MzczNVBDbHljVzBr T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tJU053X0dlZHluXzQzNzM1UENseWNXMGtPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MUI1Qi84RDU3RTE3Q0REOTUxMUVEQUU4QzZDN0FDNEY5QUUwMi9LSVNOd19HZWR5 bl80MzczNVBDbHljVzBrT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8p6dZQZ2JCWD3/vlx26wd7ovofHyYOsGlYStKTHG5uapB7VtGgxAV 0xzxS733tdAMMyqJVAZirMfk7hBPoP2YIlPazCydsdNkNtuZoO1A2JMl4OKBC0v1 lfc7dIvctcWDpJ230IXnxYthgg/KbwRTnyEnFv60gOZnvrc5zLcwMjZINrqqvmTH DIsmROcABDwAAlSns6nCeOrkzWCZevN0N6HVijof62DpOdCwe0qLITsESiwErz3t 4s6orrkFbSKeCKkHrGSB9a/YkrKRbT5PkgQWcOwpNS2e0WPcc1pCyzGXD/gOdobK oLU6lnr3vlWrjlSg/TiOmMu7grfrUHRg -----END CERTIFICATE-----Generated at Sat Apr 26 12:57:24 2025 by rpki-client