$ rpki-client -vvf rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft File: CeskiT_4OKrchy_8N1hCf2rsIXI.mft (raw, json) Hash identifier: Aky4wcrsXBdKw1kBFUcvKWdjlEi5T+9MQB2/Um64iRI= Subject key identifier: 53:86:B4:6B:07:D0:F4:E0:9A:9B:F1:F1:DE:3D:03:E8:E4:B6:F4:98 Authority key identifier: 09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 Certificate issuer: /CN=A918F7A1/serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Certificate serial: 0538 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft Manifest number: 06E5 Signing time: Mon 12 May 2025 23:15:40 +0000 Manifest this update: Mon 12 May 2025 23:15:40 +0000 Manifest next update: Mon 19 May 2025 23:15:40 +0000 Files and hashes: 1: CeskiT_4OKrchy_8N1hCf2rsIXI.crl (hash: kA2gWD6pnr7sqDgVEhy9j25kO17p1i6omNT72/gW5pw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:15:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1336 (0x538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F7A1, serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Validity Not Before: May 12 23:15:40 2025 GMT Not After : May 19 23:15:40 2025 GMT Subject: CN=6822811c-3854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e8:c9:cf:c7:83:85:fe:d2:c6:be:b5:12:a6: 6f:69:39:91:a9:84:cd:ec:d8:b3:05:33:0a:4a:65: d0:5f:26:f9:16:c0:63:2b:4c:ae:17:e5:24:74:4e: c7:53:ee:d5:6d:ff:85:e4:ae:ff:fe:a2:8c:70:fa: 41:62:a5:5a:e1:f6:8e:00:44:3b:16:1e:ed:2a:6e: a2:67:72:d9:92:df:85:9f:88:11:b2:53:0e:53:92: 07:55:c1:8e:3b:a2:f2:fb:a1:d6:3c:e9:15:b5:12: 60:2a:c8:68:40:cd:91:10:e2:04:e6:8e:9b:6f:8f: 7c:2d:9d:07:3d:fd:60:fd:78:a5:6b:91:ef:0d:61: 19:e7:4c:a4:be:c6:38:81:1b:ab:69:fa:2e:ee:ee: 21:d2:a0:5a:f9:e9:fa:75:f1:83:2c:c1:73:c9:92: 97:32:ef:ed:09:24:a2:e3:c2:18:23:42:b2:59:44: 75:01:e6:66:3c:13:cf:d6:4b:4d:c6:e7:89:a2:be: b5:5d:71:ff:c1:f5:44:13:ba:f3:1f:5e:f1:ed:7c: 7d:00:e6:cc:bb:ac:3a:44:59:21:af:d1:d2:97:6b: dc:b7:7b:37:60:8a:b3:af:b9:4f:c5:bf:a4:df:3f: fc:db:2a:0a:d3:b1:ae:bd:b6:ec:a6:6b:2d:1e:3f: 4d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:86:B4:6B:07:D0:F4:E0:9A:9B:F1:F1:DE:3D:03:E8:E4:B6:F4:98 X509v3 Authority Key Identifier: keyid:09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:22:b7:5c:f3:b0:f3:58:8f:05:58:c1:4d:08:c8:c4:85:45: 44:3e:46:53:41:9c:c1:13:7e:5b:3d:0d:24:ac:fd:58:2c:0b: 13:2c:d5:8e:46:6e:7a:ed:9a:2e:82:6d:95:2e:41:9a:29:99: 5c:4a:cb:09:97:51:d4:c7:25:fe:c2:d8:d8:07:cb:28:0d:b5: c8:71:de:99:44:d9:2d:8d:ba:0e:b2:c2:eb:ac:b6:fe:a0:6d: 5d:e0:16:6b:9e:4d:4d:fb:45:0f:ec:09:45:55:ff:a8:14:39: a8:22:5d:ee:12:13:aa:bc:5a:b7:38:87:7b:a5:19:f0:ef:07: 4c:28:fd:78:7e:19:a6:64:82:5e:2e:68:c6:9c:06:4c:9c:c0: c5:9e:19:49:e8:f2:25:a7:9a:23:df:bd:90:35:70:31:c0:32: 2d:77:1c:c2:e7:54:81:ed:1b:f3:d2:df:bf:1d:67:1c:6c:30: 2b:22:89:84:b8:93:6f:56:ac:70:c8:34:b3:9a:ea:c2:19:94: 0b:72:2b:6a:3c:f0:fd:1f:14:ed:a4:d3:25:f8:bf:4a:a7:66: eb:95:a7:80:84:6c:02:ab:2d:1b:61:46:ab:a3:1d:8f:ac:e5: 1f:41:fe:da:a6:e9:08:db:0b:88:d2:f6:00:c3:da:17:73:0f: 0b:9a:a6:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY3QTExMTAvBgNVBAUTKDA5RUIyNDg5M0ZGODM4QUFEQzg3MkZGQzM3NTg0MjdG NkFFQzIxNzIwHhcNMjUwNTEyMjMxNTQwWhcNMjUwNTE5MjMxNTQwWjAYMRYwFAYD VQQDEw02ODIyODExYy0zODU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+jJz8eDhf7Sxr61EqZvaTmRqYTN7NizBTMKSmXQXyb5FsBjK0yuF+UkdE7H U+7Vbf+F5K7//qKMcPpBYqVa4faOAEQ7Fh7tKm6iZ3LZkt+Fn4gRslMOU5IHVcGO O6Ly+6HWPOkVtRJgKshoQM2REOIE5o6bb498LZ0HPf1g/Xila5HvDWEZ50ykvsY4 gRurafou7u4h0qBa+en6dfGDLMFzyZKXMu/tCSSi48IYI0KyWUR1AeZmPBPP1ktN xueJor61XXH/wfVEE7rzH17x7Xx9AObMu6w6RFkhr9HSl2vct3s3YIqzr7lPxb+k 3z/82yoK07GuvbbspmstHj9NkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOGtGsH 0PTgmpvx8d49A+jktvSYMB8GA1UdIwQYMBaAFAnrJIk/+Diq3Icv/DdYQn9q7CFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjdBMS85MUU4RTI4NEY0 MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9LcmNoeV84TjFoQ2YycnNJ WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nlc2tpVF80T0tyY2h5XzhOMWhDZjJyc0lYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjdBMS85MUU4RTI4NEY0MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9L cmNoeV84TjFoQ2YycnNJWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPIrdc87DzWI8FWMFNCMjEhUVEPkZTQZzBE35bPQ0krP1YLAsTLNWO Rm567Zougm2VLkGaKZlcSssJl1HUxyX+wtjYB8soDbXIcd6ZRNktjboOssLrrLb+ oG1d4BZrnk1N+0UP7AlFVf+oFDmoIl3uEhOqvFq3OId7pRnw7wdMKP14fhmmZIJe LmjGnAZMnMDFnhlJ6PIlp5oj372QNXAxwDItdxzC51SB7Rvz0t+/HWccbDArIomE uJNvVqxwyDSzmurCGZQLcitqPPD9HxTtpNMl+L9Kp2brlaeAhGwCqy0bYUarox2P rOUfQf7apukI2wuI0vYAw9oXcw8LmqZQ -----END CERTIFICATE-----Generated at Tue May 13 12:39:30 2025 by rpki-client