$ rpki-client -vvf rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft File: CeskiT_4OKrchy_8N1hCf2rsIXI.mft (raw, json) Hash identifier: jh+mj5AnJxx2Whj3Ol+0AFrIlL/h/Enw7KAXaKI3/uE= Subject key identifier: 9C:92:CD:3B:B6:0D:3F:4E:31:26:70:5D:CE:12:DB:54:93:34:08:F9 Authority key identifier: 09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 Certificate issuer: /CN=A918F7A1/serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Certificate serial: 05E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft Manifest number: 0843 Signing time: Thu 16 Apr 2026 22:51:38 +0000 Manifest this update: Thu 16 Apr 2026 22:51:38 +0000 Manifest next update: Thu 23 Apr 2026 22:51:38 +0000 Files and hashes: 1: CeskiT_4OKrchy_8N1hCf2rsIXI.crl (hash: q5uk/+xVtBxrPRVAwAP7OElGxES4ZklEAl9kFENzdAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:51:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1510 (0x5e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F7A1, serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Validity Not Before: Apr 16 22:51:38 2026 GMT Not After : Apr 23 22:51:38 2026 GMT Subject: CN=69e167fa-716f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:dc:4a:7d:18:fb:ad:96:62:59:24:3f:23:32: 0c:c1:27:7a:60:74:62:44:d5:76:a9:b5:65:9f:3e: b2:b3:d5:3d:4a:d6:77:e3:d1:f9:bb:d6:50:ad:bb: f9:d8:9c:89:c6:6c:3a:da:82:4c:f9:9e:50:05:30: 34:8e:da:2c:e7:1d:00:18:69:14:7c:aa:a2:5f:5f: 32:3a:04:d3:0f:51:26:3d:62:2c:4b:a3:bb:d6:3c: c8:9e:77:b4:14:50:b8:c5:db:e5:53:20:aa:a6:b0: dd:79:ff:e6:b5:35:fb:11:47:54:33:3b:1b:ad:00: 6f:46:fd:a5:80:a1:f9:87:bc:93:26:2e:67:67:fa: f9:5b:4e:2a:68:e5:49:25:4b:c2:5d:e1:f4:51:d7: e0:bb:05:fb:c2:8e:3c:0f:c7:3e:08:56:b0:45:13: e3:22:92:ca:e8:d9:2a:98:82:0a:37:87:27:56:11: 61:6e:ee:82:33:71:5d:e1:13:6a:e6:70:af:d9:41: bf:ab:f4:5f:6b:a3:81:b9:9d:ae:d0:e6:ab:67:90: 4d:95:76:7d:21:aa:6a:aa:dd:bd:e0:40:2e:22:77: a4:64:26:e4:7d:c2:0a:e0:69:38:85:8d:b3:7c:b0: 72:25:cf:a5:24:04:ed:af:a1:44:fe:f1:bf:cd:23: 09:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:92:CD:3B:B6:0D:3F:4E:31:26:70:5D:CE:12:DB:54:93:34:08:F9 X509v3 Authority Key Identifier: keyid:09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:80:ed:3c:f4:94:e5:cf:db:fb:00:dd:c9:91:20:d5:63:fb: 40:f3:f2:1e:57:ed:d7:80:9f:ee:99:f5:1c:45:85:fa:78:57: 93:67:be:0b:73:27:4d:7f:41:63:ac:b7:9d:5d:91:81:5d:36: bc:77:38:f1:2f:e2:f7:15:00:1c:18:d3:6b:38:3c:99:e7:07: fd:da:25:89:99:ea:ec:70:00:17:ed:41:65:a2:2c:d1:d5:07: ac:e2:5e:93:2b:1c:7e:26:88:2f:ba:fc:5a:66:67:1e:67:83: 42:74:f0:bc:5b:ec:7a:5d:33:73:a8:81:74:25:2d:14:66:cd: ea:ae:ee:1c:14:d3:02:a0:7c:e0:b7:09:7c:30:fe:8f:0e:fc: cd:c5:fa:c2:c7:ba:0a:23:1d:9c:bc:17:8e:10:ec:bd:aa:8e: 23:2e:80:e4:42:1c:b0:ac:03:ad:96:00:de:bd:2f:f5:e7:27: 56:21:f4:f9:ad:b4:58:71:4d:b1:15:c0:7b:0f:e7:63:56:0c: 27:37:60:cd:55:52:72:b0:94:9d:00:10:84:3f:8f:f4:f7:83: c6:9d:64:5a:b8:5c:72:49:4d:db:af:fe:b7:05:8a:a3:33:9b: 1b:82:d6:fc:88:91:94:63:fa:78:63:e8:b5:1e:47:35:7e:ec: ce:c4:af:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY3QTExMTAvBgNVBAUTKDA5RUIyNDg5M0ZGODM4QUFEQzg3MkZGQzM3NTg0MjdG NkFFQzIxNzIwHhcNMjYwNDE2MjI1MTM4WhcNMjYwNDIzMjI1MTM4WjAYMRYwFAYD VQQDEw02OWUxNjdmYS03MTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnNxKfRj7rZZiWSQ/IzIMwSd6YHRiRNV2qbVlnz6ys9U9StZ349H5u9ZQrbv5 2JyJxmw62oJM+Z5QBTA0jtos5x0AGGkUfKqiX18yOgTTD1EmPWIsS6O71jzInne0 FFC4xdvlUyCqprDdef/mtTX7EUdUMzsbrQBvRv2lgKH5h7yTJi5nZ/r5W04qaOVJ JUvCXeH0UdfguwX7wo48D8c+CFawRRPjIpLK6NkqmIIKN4cnVhFhbu6CM3Fd4RNq 5nCv2UG/q/Rfa6OBuZ2u0OarZ5BNlXZ9Iapqqt294EAuInekZCbkfcIK4Gk4hY2z fLByJc+lJATtr6FE/vG/zSMJeQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJySzTu2 DT9OMSZwXc4S21STNAj5MB8GA1UdIwQYMBaAFAnrJIk/+Diq3Icv/DdYQn9q7CFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjdBMS85MUU4RTI4NEY0 MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9LcmNoeV84TjFoQ2YycnNJ WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nlc2tpVF80T0tyY2h5XzhOMWhDZjJyc0lYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjdBMS85MUU4RTI4NEY0MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9L cmNoeV84TjFoQ2YycnNJWEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIIDtPPSU5c/b+wDdyZEg1WP7QPPyHlft14Cf7pn1HEWF+nhXk2e+C3MnTX9B Y6y3nV2RgV02vHc48S/i9xUAHBjTazg8mecH/doliZnq7HAAF+1BZaIs0dUHrOJe kyscfiaIL7r8WmZnHmeDQnTwvFvsel0zc6iBdCUtFGbN6q7uHBTTAqB84LcJfDD+ jw78zcX6wse6CiMdnLwXjhDsvaqOIy6A5EIcsKwDrZYA3r0v9ecnViH0+a20WHFN sRXAew/nY1YMJzdgzVVScrCUnQAQhD+P9PeDxp1kWrhccklN26/+twWKozObG4LW /IiRlGP6eGPotR5HNX7szsSvqQ== -----END CERTIFICATE-----Generated at Fri Apr 17 07:27:50 2026 by rpki-client