This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft File: CeskiT_4OKrchy_8N1hCf2rsIXI.mft (raw, json) Hash identifier: 4aBwj14FY6mSlKRXEbF3knTUBD+IUhDdMFRS8hL8TSU= Subject key identifier: CD:AB:1C:54:44:C4:C6:B1:7D:7D:93:D0:ED:5A:41:EA:33:D6:60:12 Authority key identifier: 09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 Certificate issuer: /CN=A918F7A1/serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Certificate serial: 05BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft Manifest number: 07EA Signing time: Sat 24 Jan 2026 22:19:48 +0000 Manifest this update: Sat 24 Jan 2026 22:19:48 +0000 Manifest next update: Sat 31 Jan 2026 22:19:48 +0000 Files and hashes: 1: CeskiT_4OKrchy_8N1hCf2rsIXI.crl (hash: ikBf0AB5rnBNTxq1OJDItYbvi7Ct/3hPghXFBvivMrY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1466 (0x5ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F7A1, serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Validity Not Before: Jan 24 22:19:48 2026 GMT Not After : Jan 31 22:19:48 2026 GMT Subject: CN=69754584-0ee4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f2:a6:08:5a:cd:3f:1f:56:37:b5:47:d3:89: ce:00:f5:b0:9f:20:51:c6:bd:8d:9c:12:58:a2:69: 21:8e:40:d0:84:84:dd:34:2f:cc:85:b9:dd:a8:0b: 17:e3:1d:04:23:cb:f8:01:48:c3:29:d6:8f:88:ae: 20:10:f3:59:f7:bd:68:17:d4:81:e1:58:89:4a:41: 26:28:7a:f3:80:7f:54:6f:2f:3b:03:b0:0c:fb:28: af:81:17:48:d8:ab:b2:6e:a2:26:39:cf:08:11:21: 30:1c:35:b2:80:05:ab:c6:5b:25:87:63:9c:fd:be: 52:0e:60:8f:b8:90:2e:34:7a:cf:ea:cf:70:03:fb: 93:42:a7:e8:2b:45:85:16:8d:e4:b1:de:e4:e3:fa: c6:1f:9a:cb:8c:7a:3b:97:27:d2:55:90:3a:eb:aa: 7e:15:5a:f0:b3:3b:9d:90:ca:87:a7:91:55:de:a9: e1:cf:9b:71:94:f1:1a:20:f4:a4:13:03:23:b4:da: 68:b6:ec:d5:84:fe:b2:fa:cb:e6:2d:7c:f5:e7:68: 22:2a:14:5f:9b:fc:71:70:8a:f3:c9:a3:89:0f:8b: 91:f1:ef:6f:82:91:46:59:5f:d3:66:41:c0:b2:6f: 46:10:3b:7c:39:1a:32:af:54:9d:a5:86:50:f1:5b: ee:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:AB:1C:54:44:C4:C6:B1:7D:7D:93:D0:ED:5A:41:EA:33:D6:60:12 X509v3 Authority Key Identifier: keyid:09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:f5:43:90:71:88:64:c7:51:e8:60:ec:3d:4d:46:3d:34:63: b9:07:91:6a:db:25:77:cb:fd:d5:77:c1:f5:54:b4:91:a0:b8: 04:1f:d0:64:ea:7f:39:95:8f:05:f6:fa:1d:f7:70:e7:a0:37: 14:38:62:0a:82:13:2f:96:8f:b4:4d:9e:01:78:ee:c2:32:8f: 55:9a:aa:a1:99:9f:88:fa:02:8e:4d:5a:18:94:e7:b9:ce:7f: 51:0a:9e:ca:c7:a7:ac:13:3d:0d:e4:c1:99:eb:59:b4:41:08: 56:4f:a5:06:ea:26:72:73:92:c5:de:31:35:29:57:4c:3f:52: 1f:5f:1f:e3:8c:1f:a9:c6:42:d2:ac:c8:06:a4:89:69:5d:bd: c4:eb:b2:1f:37:19:32:64:e0:20:d2:d3:25:45:05:7c:9d:98: 2e:78:0c:f3:a6:74:6a:52:22:1e:52:d6:bf:38:bd:a6:4f:05: b1:b4:c7:4b:98:e5:11:10:a6:89:21:9a:5f:57:89:64:41:d1: f8:d4:3d:dc:5c:08:c4:1e:fa:c5:ab:6c:21:25:52:e8:1e:ed: 11:04:34:58:f1:24:0b:b6:82:cd:b5:3a:63:ca:e5:72:80:dd: 87:a3:f2:b3:8e:30:bb:55:1d:15:28:9d:ac:c3:45:f2:82:bd: 6b:80:70:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY3QTExMTAvBgNVBAUTKDA5RUIyNDg5M0ZGODM4QUFEQzg3MkZGQzM3NTg0MjdG NkFFQzIxNzIwHhcNMjYwMTI0MjIxOTQ4WhcNMjYwMTMxMjIxOTQ4WjAYMRYwFAYD VQQDDA02OTc1NDU4NC0wZWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvKmCFrNPx9WN7VH04nOAPWwnyBRxr2NnBJYomkhjkDQhITdNC/MhbndqAsX 4x0EI8v4AUjDKdaPiK4gEPNZ971oF9SB4ViJSkEmKHrzgH9Uby87A7AM+yivgRdI 2KuybqImOc8IESEwHDWygAWrxlslh2Oc/b5SDmCPuJAuNHrP6s9wA/uTQqfoK0WF Fo3ksd7k4/rGH5rLjHo7lyfSVZA666p+FVrwszudkMqHp5FV3qnhz5txlPEaIPSk EwMjtNpotuzVhP6y+svmLXz152giKhRfm/xxcIrzyaOJD4uR8e9vgpFGWV/TZkHA sm9GEDt8ORoyr1SdpYZQ8Vvu0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2rHFRE xMaxfX2T0O1aQeoz1mASMB8GA1UdIwQYMBaAFAnrJIk/+Diq3Icv/DdYQn9q7CFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjdBMS85MUU4RTI4NEY0 MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9LcmNoeV84TjFoQ2YycnNJ WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nlc2tpVF80T0tyY2h5XzhOMWhDZjJyc0lYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjdBMS85MUU4RTI4NEY0MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9L cmNoeV84TjFoQ2YycnNJWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW9UOQcYhkx1HoYOw9TUY9NGO5B5Fq2yV3y/3Vd8H1VLSRoLgEH9Bk 6n85lY8F9vod93DnoDcUOGIKghMvlo+0TZ4BeO7CMo9VmqqhmZ+I+gKOTVoYlOe5 zn9RCp7Kx6esEz0N5MGZ61m0QQhWT6UG6iZyc5LF3jE1KVdMP1IfXx/jjB+pxkLS rMgGpIlpXb3E67IfNxkyZOAg0tMlRQV8nZgueAzzpnRqUiIeUta/OL2mTwWxtMdL mOUREKaJIZpfV4lkQdH41D3cXAjEHvrFq2whJVLoHu0RBDRY8SQLtoLNtTpjyuVy gN2Ho/KzjjC7VR0VKJ2sw0Xygr1rgHCV -----END CERTIFICATE-----Generated at Sun Jan 25 10:46:30 2026 by rpki-client