$ rpki-client -vvf rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft File: CeskiT_4OKrchy_8N1hCf2rsIXI.mft (raw, json) Hash identifier: tS7G9gjRfA5UzjLZkm30xlD9yLFMlhFRXZeLaVRf7IE= Subject key identifier: CB:9D:44:61:0B:87:82:FA:A6:EF:82:91:01:98:2E:AD:13:D2:13:E8 Authority key identifier: 09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 Certificate issuer: /CN=A918F7A1/serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Certificate serial: 05DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft Manifest number: 082B Signing time: Tue 24 Mar 2026 22:40:53 +0000 Manifest this update: Tue 24 Mar 2026 22:40:52 +0000 Manifest next update: Tue 31 Mar 2026 22:40:52 +0000 Files and hashes: 1: CeskiT_4OKrchy_8N1hCf2rsIXI.crl (hash: g44RyqAVbvIOWOyt9T/RuqeXr5203uXJVrlRLtxdpa4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:40:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1498 (0x5da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F7A1, serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Validity Not Before: Mar 24 22:40:52 2026 GMT Not After : Mar 31 22:40:52 2026 GMT Subject: CN=69c312f4-e738 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fc:f8:43:99:b0:dc:8b:bd:76:6f:ab:98:6c: 76:56:88:a0:0d:bd:36:50:6b:21:89:f8:24:a9:46: a3:19:df:da:c2:d2:15:76:f3:6f:14:7e:ba:da:7f: a8:44:25:8c:d6:e4:f7:7c:c2:ff:d7:aa:6b:58:8e: c1:91:af:0f:60:60:14:23:c2:f7:18:cd:06:10:89: a3:46:36:4c:36:56:8b:89:1c:87:1c:77:69:c6:23: ff:3a:3a:6e:bc:4e:ba:89:78:45:02:a8:5e:f6:c5: 5d:1c:33:bb:b7:56:4b:91:c8:55:67:3b:80:c4:7d: 92:0b:8d:03:c7:cc:37:51:8c:6d:09:ef:6c:42:9a: cf:37:ab:43:17:f4:fc:1f:bb:5d:2b:fd:66:a4:eb: 78:05:13:fd:08:94:f5:56:7b:6a:ad:39:61:85:3d: 35:73:f9:15:d7:f9:a8:dd:0d:c3:a4:bf:47:70:eb: c2:b4:65:ac:3c:85:32:22:ed:43:d6:db:26:2e:b6: b9:bd:26:bd:91:b7:b0:5e:b1:fd:4c:5d:d8:11:25: 9e:17:f9:6f:d9:e7:46:b5:6c:57:32:db:c8:c7:1a: 96:83:d9:38:93:41:bd:c3:d3:bf:65:4b:d0:8b:a7: be:dd:b0:b7:40:7b:15:6d:41:97:84:4f:72:09:5c: 5d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:9D:44:61:0B:87:82:FA:A6:EF:82:91:01:98:2E:AD:13:D2:13:E8 X509v3 Authority Key Identifier: keyid:09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:0d:4a:06:c6:14:1e:9d:37:f4:57:7e:e7:eb:b7:1e:21:12: 0e:8a:1b:04:f0:eb:04:f4:75:20:01:9b:db:49:ef:c3:ff:6d: e4:c0:71:d7:1f:0e:57:c4:ed:d2:b7:0a:73:1d:0a:bc:f0:6e: 4f:5d:1b:5e:a3:e4:1c:f5:a5:e3:ad:8b:e7:13:7d:46:73:70: 0c:b9:81:5b:89:79:cb:62:69:f7:68:3f:95:e8:90:91:67:c8: d1:1a:d5:c4:7e:fe:3f:25:db:b6:32:38:ff:9e:82:c1:1c:dd: 95:7a:83:cf:43:87:da:34:3f:2f:64:1d:12:2d:b3:9b:9a:5e: 08:57:83:48:32:60:f2:4e:d2:ea:90:84:5d:b4:41:27:0a:7b: 23:f2:9e:03:d1:93:58:55:62:fc:3c:de:81:6a:17:bd:a9:d6: 70:80:ef:1e:3f:0d:44:2f:c1:97:b3:9a:89:8c:b2:bd:f3:aa: db:a9:30:ce:b5:c3:f0:2c:34:09:8f:25:d3:1b:e0:32:36:29: ed:86:b9:25:0a:a2:a1:53:14:df:b4:de:a6:5b:c2:ac:1d:8c: ef:11:54:7c:59:39:53:05:08:f4:65:d8:9f:6a:22:9f:f7:3e: 91:4a:e5:01:d4:09:16:c2:9a:a4:f9:a8:95:61:0b:5e:43:5e: ba:ac:7d:ad -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY3QTExMTAvBgNVBAUTKDA5RUIyNDg5M0ZGODM4QUFEQzg3MkZGQzM3NTg0MjdG NkFFQzIxNzIwHhcNMjYwMzI0MjI0MDUyWhcNMjYwMzMxMjI0MDUyWjAYMRYwFAYD VQQDEw02OWMzMTJmNC1lNzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfz4Q5mw3Iu9dm+rmGx2VoigDb02UGshifgkqUajGd/awtIVdvNvFH662n+o RCWM1uT3fML/16prWI7Bka8PYGAUI8L3GM0GEImjRjZMNlaLiRyHHHdpxiP/Ojpu vE66iXhFAqhe9sVdHDO7t1ZLkchVZzuAxH2SC40Dx8w3UYxtCe9sQprPN6tDF/T8 H7tdK/1mpOt4BRP9CJT1VntqrTlhhT01c/kV1/mo3Q3DpL9HcOvCtGWsPIUyIu1D 1tsmLra5vSa9kbewXrH9TF3YESWeF/lv2edGtWxXMtvIxxqWg9k4k0G9w9O/ZUvQ i6e+3bC3QHsVbUGXhE9yCVxdnwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMudRGEL h4L6pu+CkQGYLq0T0hPoMB8GA1UdIwQYMBaAFAnrJIk/+Diq3Icv/DdYQn9q7CFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjdBMS85MUU4RTI4NEY0 MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9LcmNoeV84TjFoQ2YycnNJ WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nlc2tpVF80T0tyY2h5XzhOMWhDZjJyc0lYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjdBMS85MUU4RTI4NEY0MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9L cmNoeV84TjFoQ2YycnNJWEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATQ1KBsYUHp039Fd+5+u3HiESDoobBPDrBPR1IAGb20nvw/9t5MBx1x8OV8Tt 0rcKcx0KvPBuT10bXqPkHPWl462L5xN9RnNwDLmBW4l5y2Jp92g/leiQkWfI0RrV xH7+PyXbtjI4/56CwRzdlXqDz0OH2jQ/L2QdEi2zm5peCFeDSDJg8k7S6pCEXbRB Jwp7I/KeA9GTWFVi/DzegWoXvanWcIDvHj8NRC/Bl7OaiYyyvfOq26kwzrXD8Cw0 CY8l0xvgMjYp7Ya5JQqioVMU37TeplvCrB2M7xFUfFk5UwUI9GXYn2oin/c+kUrl AdQJFsKapPmolWELXkNeuqx9rQ== -----END CERTIFICATE-----Generated at Thu Mar 26 02:17:35 2026 by rpki-client