$ rpki-client -vvf rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft File: CeskiT_4OKrchy_8N1hCf2rsIXI.mft (raw, json) Hash identifier: Ip4xy6CHOPGqmKUAufeJ3I64CnW1KY3sf0PS0+jhYtw= Subject key identifier: 62:E6:8B:A4:9E:77:6F:55:20:52:D4:0F:21:05:AC:48:3E:6E:7E:5E Authority key identifier: 09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 Certificate issuer: /CN=A918F7A1/serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Certificate serial: 05CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft Manifest number: 0810 Signing time: Sat 28 Feb 2026 23:34:59 +0000 Manifest this update: Sat 28 Feb 2026 23:34:58 +0000 Manifest next update: Sat 07 Mar 2026 23:34:58 +0000 Files and hashes: 1: CeskiT_4OKrchy_8N1hCf2rsIXI.crl (hash: QN9umh6MPg58u431BMWOmUfkXJLnhO0fdG2tnll3w2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 23:34:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1485 (0x5cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F7A1, serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Validity Not Before: Feb 28 23:34:58 2026 GMT Not After : Mar 7 23:34:58 2026 GMT Subject: CN=69a37ba3-1994 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:14:71:9a:c6:9a:f9:2c:81:ee:68:7f:fc:9c: a4:b6:c0:59:15:7b:3f:66:94:92:00:bc:e8:a2:20: 96:c4:ae:2a:ad:65:bf:9b:56:b1:74:15:e9:a8:ce: b8:e4:7e:a1:29:04:e1:6d:fb:e6:e3:65:75:ae:b9: 02:6c:cd:cf:1c:bb:54:a7:ad:36:7a:ab:60:07:b6: 2b:c0:54:41:8d:7b:8e:11:f7:57:78:e2:54:bf:34: 75:f6:28:fd:30:b8:df:a2:f2:f8:80:4c:e7:81:16: fc:d3:a9:cb:97:f5:72:bc:e2:71:7e:23:68:4d:19: 36:17:6a:5f:71:ef:3f:cf:05:9b:cd:fc:98:ac:b4: 05:b4:4d:7f:51:26:f4:a1:31:29:95:de:16:56:d0: b6:66:cd:69:24:10:9b:69:3d:0b:54:83:54:2f:38: ac:9f:e9:a6:9d:84:ba:ac:03:4a:73:48:2a:80:0c: 91:ec:c3:e1:83:6c:32:9b:ae:c9:aa:4b:a3:b0:1f: 32:32:54:93:4f:19:d4:08:67:e6:15:45:dc:b4:7c: a5:b2:94:ff:80:42:48:3b:cf:e9:4c:26:24:fa:70: d4:e8:51:f0:8f:53:0c:a2:73:51:44:51:7f:87:ba: df:27:23:80:59:3e:c1:66:ff:3a:7b:e0:f7:89:23: 33:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:E6:8B:A4:9E:77:6F:55:20:52:D4:0F:21:05:AC:48:3E:6E:7E:5E X509v3 Authority Key Identifier: keyid:09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:f7:55:ab:6b:31:7a:fe:93:f7:f8:21:23:a7:4f:17:e3:df: 67:f3:ae:e1:2a:8e:10:e9:9d:ee:35:df:41:b7:73:ae:8f:4a: 5d:be:eb:8c:91:48:86:c6:e3:25:fa:e9:a3:9d:27:a8:0a:a4: ed:40:d4:ce:90:c7:a9:7e:d6:19:17:86:aa:cc:90:76:fa:72: a3:59:7e:43:04:bf:53:89:37:6b:17:12:e1:42:5e:35:4c:19: 74:73:99:d8:5d:97:08:3a:0a:d2:01:f1:d2:a4:1d:f7:ca:82: 55:f2:bf:c9:cc:0e:62:d4:4c:b0:a6:ea:e9:78:78:bb:ec:c3: f9:8c:24:1c:71:31:62:1e:80:eb:26:3d:6e:54:f5:df:cb:80: 89:c7:f5:5a:78:8b:80:27:f5:c8:48:95:f2:8f:70:13:56:31: dd:cd:53:43:cb:b6:b9:94:6f:ff:0e:ba:7c:4c:5a:84:e7:67: 9a:5f:c0:e0:4c:49:71:97:11:fa:cf:6a:94:f1:0c:f0:68:cf: 3b:91:e7:d3:7f:99:c3:18:33:76:b1:28:c6:fd:9e:16:a0:4c: 1e:f9:4a:b7:ba:0b:97:6b:55:f3:9f:ad:fd:f0:b5:ac:54:36: 04:1a:35:82:c8:5f:f5:1e:d2:db:96:49:ef:03:7a:92:5a:8f: 1c:25:97:9f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY3QTExMTAvBgNVBAUTKDA5RUIyNDg5M0ZGODM4QUFEQzg3MkZGQzM3NTg0MjdG NkFFQzIxNzIwHhcNMjYwMjI4MjMzNDU4WhcNMjYwMzA3MjMzNDU4WjAYMRYwFAYD VQQDDA02OWEzN2JhMy0xOTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBRxmsaa+SyB7mh//JyktsBZFXs/ZpSSALzooiCWxK4qrWW/m1axdBXpqM64 5H6hKQThbfvm42V1rrkCbM3PHLtUp602eqtgB7YrwFRBjXuOEfdXeOJUvzR19ij9 MLjfovL4gEzngRb806nLl/VyvOJxfiNoTRk2F2pfce8/zwWbzfyYrLQFtE1/USb0 oTEpld4WVtC2Zs1pJBCbaT0LVINULzisn+mmnYS6rANKc0gqgAyR7MPhg2wym67J qkujsB8yMlSTTxnUCGfmFUXctHylspT/gEJIO8/pTCYk+nDU6FHwj1MMonNRRFF/ h7rfJyOAWT7BZv86e+D3iSMz/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGLmi6Se d29VIFLUDyEFrEg+bn5eMB8GA1UdIwQYMBaAFAnrJIk/+Diq3Icv/DdYQn9q7CFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjdBMS85MUU4RTI4NEY0 MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9LcmNoeV84TjFoQ2YycnNJ WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nlc2tpVF80T0tyY2h5XzhOMWhDZjJyc0lYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjdBMS85MUU4RTI4NEY0MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9L cmNoeV84TjFoQ2YycnNJWEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUfdVq2sxev6T9/ghI6dPF+PfZ/Ou4SqOEOmd7jXfQbdzro9KXb7rjJFIhsbj Jfrpo50nqAqk7UDUzpDHqX7WGReGqsyQdvpyo1l+QwS/U4k3axcS4UJeNUwZdHOZ 2F2XCDoK0gHx0qQd98qCVfK/ycwOYtRMsKbq6Xh4u+zD+YwkHHExYh6A6yY9blT1 38uAicf1WniLgCf1yEiV8o9wE1Yx3c1TQ8u2uZRv/w66fExahOdnml/A4ExJcZcR +s9qlPEM8GjPO5Hn03+ZwxgzdrEoxv2eFqBMHvlKt7oLl2tV85+t/fC1rFQ2BBo1 gshf9R7S25ZJ7wN6klqPHCWXnw== -----END CERTIFICATE-----Generated at Mon Mar 2 00:30:35 2026 by rpki-client