$ rpki-client -vvf rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft File: CeskiT_4OKrchy_8N1hCf2rsIXI.mft (raw, json) Hash identifier: BGe53s3iKqTEoZtuyHAUHxwp6p8vw7W6DEmCnPu2bNg= Subject key identifier: 8F:59:54:05:83:29:CC:FE:C6:FF:BA:7B:D6:7A:F3:F8:FB:BB:BA:46 Authority key identifier: 09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 Certificate issuer: /CN=A918F7A1/serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Certificate serial: 0564 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft Manifest number: 073D Signing time: Fri 08 Aug 2025 23:47:14 +0000 Manifest this update: Fri 08 Aug 2025 23:47:13 +0000 Manifest next update: Fri 15 Aug 2025 23:47:13 +0000 Files and hashes: 1: CeskiT_4OKrchy_8N1hCf2rsIXI.crl (hash: Tc5wirhdiQxCQ1nV9bXK9WFVI7yQ2JrwYyCag9UO+8I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1380 (0x564) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F7A1, serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Validity Not Before: Aug 8 23:47:13 2025 GMT Not After : Aug 15 23:47:13 2025 GMT Subject: CN=68968c81-c7e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:29:8e:a6:95:b7:98:e1:a9:e5:ad:2c:af:a9: 55:79:58:06:da:7c:c9:cf:a2:ec:dd:0f:43:6e:c8: 99:d5:f5:48:42:9e:c9:5e:f8:c3:bb:7d:58:76:22: f1:1c:36:c6:d5:83:4a:3b:44:2a:83:14:57:c3:5a: 7d:c3:40:74:65:e2:b6:6d:a6:cf:d0:17:db:46:17: df:28:ac:31:f1:72:c2:35:16:46:bf:81:fe:63:c3: 69:58:59:72:5b:77:aa:e6:7e:fa:38:2e:6c:00:28: 00:f2:67:95:cf:32:c4:3c:83:95:6c:b8:90:1b:f0: 41:f1:5d:bf:28:98:29:2d:c2:3d:ac:5d:90:be:0e: 56:07:99:44:95:36:0a:37:96:65:b8:ef:f4:83:02: ec:e0:43:50:30:89:39:55:e9:10:1f:83:02:52:f1: 72:4c:83:1b:96:13:e7:62:1b:c8:70:61:da:7d:de: a4:ea:df:64:d7:07:4f:26:f4:1a:da:b0:ee:6e:7d: 4f:e8:c5:c2:0d:90:86:78:b7:0f:2c:b9:18:3d:50: a7:b8:28:13:1e:b2:fe:35:ff:d8:f4:63:f4:3b:19: c7:92:19:9d:7a:30:60:d9:75:e8:ac:52:e6:64:77: c1:ef:f9:f9:d6:98:e8:dc:fc:5c:5a:08:08:b7:3b: 85:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:59:54:05:83:29:CC:FE:C6:FF:BA:7B:D6:7A:F3:F8:FB:BB:BA:46 X509v3 Authority Key Identifier: keyid:09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:7e:ae:89:20:8b:15:34:28:47:40:57:a9:23:20:55:dc:75: 10:bc:c6:4b:84:9c:1a:04:55:4e:19:ad:99:10:30:bc:29:82: c9:3d:67:2d:1e:25:ac:4c:39:0f:8f:55:80:0e:79:d1:3e:95: 70:c7:74:1c:a2:b6:7b:36:f4:1c:45:91:2c:98:c4:77:20:01: 82:92:14:ba:46:9f:e8:88:ba:91:f3:9d:2c:35:cb:9b:58:57: 4d:0d:c0:f2:4a:fb:85:87:86:40:9e:a1:2b:d4:a5:7f:7b:f9: 04:3a:33:6d:e6:07:3e:38:36:df:98:9c:5f:70:80:9b:bc:30: 68:05:ce:dd:5d:00:c5:cf:cd:98:32:06:d7:cf:e8:a8:44:08: 00:5e:50:76:69:e9:f8:bc:96:c3:f4:e1:26:eb:39:61:3f:77: ac:3e:da:ee:c8:d8:5f:59:4b:ea:ca:aa:87:96:0f:50:3f:38: 8c:32:f0:00:eb:2e:3f:ca:19:7e:9a:6d:85:23:a1:f3:b8:0d: b9:6e:06:1b:fb:a1:03:75:2a:cb:b5:a7:fd:5f:c8:35:41:22: d6:96:a7:e3:68:cc:1a:65:1f:a5:ad:58:d4:0d:97:78:80:2b: a4:3c:cc:c5:c8:1d:04:38:61:59:54:1a:b6:7d:34:28:1c:e7: d4:bf:40:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY3QTExMTAvBgNVBAUTKDA5RUIyNDg5M0ZGODM4QUFEQzg3MkZGQzM3NTg0MjdG NkFFQzIxNzIwHhcNMjUwODA4MjM0NzEzWhcNMjUwODE1MjM0NzEzWjAYMRYwFAYD VQQDEw02ODk2OGM4MS1jN2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCmOppW3mOGp5a0sr6lVeVgG2nzJz6Ls3Q9DbsiZ1fVIQp7JXvjDu31YdiLx HDbG1YNKO0QqgxRXw1p9w0B0ZeK2babP0BfbRhffKKwx8XLCNRZGv4H+Y8NpWFly W3eq5n76OC5sACgA8meVzzLEPIOVbLiQG/BB8V2/KJgpLcI9rF2Qvg5WB5lElTYK N5ZluO/0gwLs4ENQMIk5VekQH4MCUvFyTIMblhPnYhvIcGHafd6k6t9k1wdPJvQa 2rDubn1P6MXCDZCGeLcPLLkYPVCnuCgTHrL+Nf/Y9GP0OxnHkhmdejBg2XXorFLm ZHfB7/n51pjo3PxcWggItzuFQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI9ZVAWD Kcz+xv+6e9Z68/j7u7pGMB8GA1UdIwQYMBaAFAnrJIk/+Diq3Icv/DdYQn9q7CFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjdBMS85MUU4RTI4NEY0 MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9LcmNoeV84TjFoQ2YycnNJ WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nlc2tpVF80T0tyY2h5XzhOMWhDZjJyc0lYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjdBMS85MUU4RTI4NEY0MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9L cmNoeV84TjFoQ2YycnNJWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIfq6JIIsVNChHQFepIyBV3HUQvMZLhJwaBFVOGa2ZEDC8KYLJPWct HiWsTDkPj1WADnnRPpVwx3QcorZ7NvQcRZEsmMR3IAGCkhS6Rp/oiLqR850sNcub WFdNDcDySvuFh4ZAnqEr1KV/e/kEOjNt5gc+ODbfmJxfcICbvDBoBc7dXQDFz82Y MgbXz+ioRAgAXlB2aen4vJbD9OEm6zlhP3esPtruyNhfWUvqyqqHlg9QPziMMvAA 6y4/yhl+mm2FI6HzuA25bgYb+6EDdSrLtaf9X8g1QSLWlqfjaMwaZR+lrVjUDZd4 gCukPMzFyB0EOGFZVBq2fTQoHOfUv0Cv -----END CERTIFICATE-----Generated at Sat Aug 9 23:22:04 2025 by rpki-client