$ rpki-client -vvf rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft File: CeskiT_4OKrchy_8N1hCf2rsIXI.mft (raw, json) Hash identifier: jNXdSQqt64AMVrY54mQeBYqlzilYOOXMmRomc0HJ1NQ= Subject key identifier: 23:E6:CF:71:25:26:B5:B3:C1:83:14:86:5B:D7:48:CD:CA:03:C2:1A Authority key identifier: 09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 Certificate issuer: /CN=A918F7A1/serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Certificate serial: 05F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft Manifest number: 085D Signing time: Tue 12 May 2026 23:00:15 +0000 Manifest this update: Tue 12 May 2026 23:00:14 +0000 Manifest next update: Tue 19 May 2026 23:00:14 +0000 Files and hashes: 1: CeskiT_4OKrchy_8N1hCf2rsIXI.crl (hash: 81ogvleIqB15sOKGz1g60hm2cORaqmesy54KUvLcKsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 23:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1523 (0x5f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F7A1, serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Validity Not Before: May 12 23:00:14 2026 GMT Not After : May 19 23:00:14 2026 GMT Subject: CN=6a03b0ff-bd67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:61:51:9d:04:2b:e1:c3:ee:23:c9:cf:07:53: 20:c5:a7:78:e8:e5:be:e9:20:7d:e3:ff:36:8a:83: ae:14:ec:42:02:2d:b7:d9:4d:3b:77:88:d3:62:05: 2e:d3:af:77:b8:ef:e7:79:72:25:1d:38:5b:71:40: a5:e9:1d:8d:f2:0d:74:9a:b2:ea:81:0a:a8:03:68: 76:a1:13:41:9d:97:0d:ee:0e:7e:c0:20:aa:d1:42: 6e:8f:ab:ff:53:85:18:46:fd:76:9e:77:15:67:ca: 6e:89:55:04:ca:3d:be:4f:6f:97:63:ed:3e:50:09: a4:24:7d:b5:fd:6f:b9:d4:dc:c8:a6:db:2b:95:3c: 86:c6:59:67:76:55:22:26:9e:4d:42:da:d2:1f:10: d4:24:5c:54:35:97:85:0d:fc:97:ba:44:46:83:22: e0:da:d0:86:9e:79:6d:fb:c9:ad:73:70:0e:4b:ba: 47:a7:4d:01:12:5b:37:6a:08:ce:86:9f:a7:cb:78: 08:b8:5a:df:cf:aa:cf:d2:b7:1d:27:29:38:a0:c3: de:fb:58:13:d9:2b:50:2b:c4:6c:ce:44:fe:05:76: f3:f6:9e:43:1f:3e:0c:be:10:0e:57:6f:46:fb:22: 6f:4a:d5:9b:61:6a:4f:a9:ac:02:c0:3c:c2:28:56: 54:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:E6:CF:71:25:26:B5:B3:C1:83:14:86:5B:D7:48:CD:CA:03:C2:1A X509v3 Authority Key Identifier: keyid:09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:0b:e4:33:a7:8f:da:2c:1e:86:9c:a6:93:b7:03:d6:ce:3c: 6c:b9:82:59:4a:53:6e:2c:15:23:18:47:a3:25:df:f3:f7:e9: 45:46:81:d4:1a:89:da:6e:f4:1b:d6:d7:55:65:be:d3:c5:42: 24:bb:62:37:52:4c:c9:b8:4e:15:b8:ab:c9:68:46:c5:50:8b: e9:2d:c6:23:ad:b2:2f:04:74:43:ed:7d:9f:a5:45:9e:93:f1: c3:a2:01:b3:4d:9f:44:6e:1c:90:62:a1:81:d5:0a:c9:9a:62: e1:58:6b:1d:00:af:08:c9:96:da:02:78:f9:97:23:c0:e0:6c: dd:05:72:25:f8:dc:c0:50:00:96:68:69:9e:e7:b8:17:7e:d3: 66:3e:69:8b:3a:0d:72:fa:a0:21:6d:b2:8e:2b:21:8e:14:d1: c2:57:af:75:ad:84:ed:64:a4:a7:94:76:66:1f:ff:1b:4a:d8: 16:18:16:a8:fd:ae:09:35:73:34:24:1c:3b:f9:13:f5:5d:3d: a3:ee:9d:b2:3c:10:b5:3a:18:de:8b:dd:e0:18:d1:02:f2:95: cc:14:20:a1:88:d3:b8:6f:18:d3:14:a9:60:ad:da:e8:ed:03: 4b:eb:7c:bf:19:67:09:be:b7:5e:fb:e1:4a:7b:a0:8f:68:cf: 85:c5:79:bd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY3QTExMTAvBgNVBAUTKDA5RUIyNDg5M0ZGODM4QUFEQzg3MkZGQzM3NTg0MjdG NkFFQzIxNzIwHhcNMjYwNTEyMjMwMDE0WhcNMjYwNTE5MjMwMDE0WjAYMRYwFAYD VQQDEw02YTAzYjBmZi1iZDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3WFRnQQr4cPuI8nPB1Mgxad46OW+6SB94/82ioOuFOxCAi232U07d4jTYgUu 0693uO/neXIlHThbcUCl6R2N8g10mrLqgQqoA2h2oRNBnZcN7g5+wCCq0UJuj6v/ U4UYRv12nncVZ8puiVUEyj2+T2+XY+0+UAmkJH21/W+51NzIptsrlTyGxllndlUi Jp5NQtrSHxDUJFxUNZeFDfyXukRGgyLg2tCGnnlt+8mtc3AOS7pHp00BEls3agjO hp+ny3gIuFrfz6rP0rcdJyk4oMPe+1gT2StQK8RszkT+BXbz9p5DHz4MvhAOV29G +yJvStWbYWpPqawCwDzCKFZUOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCPmz3El JrWzwYMUhlvXSM3KA8IaMB8GA1UdIwQYMBaAFAnrJIk/+Diq3Icv/DdYQn9q7CFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjdBMS85MUU4RTI4NEY0 MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9LcmNoeV84TjFoQ2YycnNJ WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nlc2tpVF80T0tyY2h5XzhOMWhDZjJyc0lYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjdBMS85MUU4RTI4NEY0MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9L cmNoeV84TjFoQ2YycnNJWEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANAvkM6eP2iwehpymk7cD1s48bLmCWUpTbiwVIxhHoyXf8/fpRUaB1BqJ2m70 G9bXVWW+08VCJLtiN1JMybhOFbiryWhGxVCL6S3GI62yLwR0Q+19n6VFnpPxw6IB s02fRG4ckGKhgdUKyZpi4VhrHQCvCMmW2gJ4+ZcjwOBs3QVyJfjcwFAAlmhpnue4 F37TZj5pizoNcvqgIW2yjishjhTRwlevda2E7WSkp5R2Zh//G0rYFhgWqP2uCTVz NCQcO/kT9V09o+6dsjwQtToY3ovd4BjRAvKVzBQgoYjTuG8Y0xSpYK3a6O0DS+t8 vxlnCb63XvvhSnugj2jPhcV5vQ== -----END CERTIFICATE-----Generated at Wed May 13 04:15:08 2026 by rpki-client