$ rpki-client -vvf rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft File: CeskiT_4OKrchy_8N1hCf2rsIXI.mft (raw, json) Hash identifier: YEt5Qd1ikrUQLWm9iLi+V+RYRuhQlcqILdKcvqhxoGw= Subject key identifier: 25:C3:C9:C3:1F:E2:16:3C:71:1F:4B:92:47:16:02:24:C4:62:8A:C7 Authority key identifier: 09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 Certificate issuer: /CN=A918F7A1/serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Certificate serial: 052F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft Manifest number: 06D3 Signing time: Thu 24 Apr 2025 23:16:51 +0000 Manifest this update: Thu 24 Apr 2025 23:16:50 +0000 Manifest next update: Thu 01 May 2025 23:16:50 +0000 Files and hashes: 1: CeskiT_4OKrchy_8N1hCf2rsIXI.crl (hash: kV4BID+hRM8dtx5CQjddCS8SJ4v6omLWVSX3KcUdftU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:16:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1327 (0x52f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F7A1, serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Validity Not Before: Apr 24 23:16:50 2025 GMT Not After : May 1 23:16:50 2025 GMT Subject: CN=680ac662-7cb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c9:ee:09:d4:0f:1c:f9:77:8f:2a:e1:c5:d2: bb:4a:05:2f:ea:1b:f0:fa:76:06:13:6e:18:50:e9: ca:b4:a6:69:fd:1b:bb:f3:d9:97:a7:92:b2:ff:af: 8b:56:29:09:30:ff:e8:23:10:bd:31:7c:b8:ae:73: 3b:89:98:3c:a2:aa:06:67:a5:40:c8:2a:3c:c1:a3: 8e:8b:c5:ec:b6:19:9f:65:82:14:a1:97:6c:53:c7: 83:22:37:8e:de:c1:73:7c:08:15:a9:6d:f9:2a:21: 71:ab:5d:84:ad:99:63:d2:f5:4d:f7:d4:23:6d:68: fe:7e:0e:94:d6:5c:43:ad:c6:8d:50:16:e5:35:e5: ff:fa:b7:5f:d1:4a:be:de:8c:56:47:fa:c0:48:bf: 5f:37:ed:5b:24:40:49:74:f5:7b:b1:7f:2f:9e:58: 33:97:8a:68:de:58:11:6e:79:f3:9a:f0:1e:91:b8: ab:3d:b8:f0:1e:dc:57:8a:2c:c0:c4:7d:fd:70:f8: 98:d3:9c:69:19:aa:e8:47:18:69:61:8b:ac:f5:a4: 0f:1c:4b:94:a8:83:26:76:f0:aa:0c:88:7d:aa:97: 41:db:51:8a:ba:58:3e:82:84:7b:22:7e:aa:f3:77: 22:54:2b:a2:35:3e:6c:e2:f2:cd:6b:23:21:c6:c7: ee:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:C3:C9:C3:1F:E2:16:3C:71:1F:4B:92:47:16:02:24:C4:62:8A:C7 X509v3 Authority Key Identifier: keyid:09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:7b:b2:ad:d6:06:6a:98:68:fd:0c:04:8d:ae:ee:ca:92:4b: a5:5a:55:0d:98:7b:3a:0d:7c:c2:df:98:6b:ee:fa:2e:bf:2d: d8:65:86:88:00:c7:07:f5:98:3b:9a:e2:75:a6:1e:7c:a5:58: a3:4d:ae:2e:da:51:b2:8d:11:34:26:9f:01:62:9f:c0:25:78: dd:8a:48:81:36:4e:5b:7a:e5:88:ce:b3:71:2d:3e:75:ef:44: 9a:f7:29:42:cc:ef:22:d6:7a:2f:ed:7e:99:4e:fe:8c:c2:27: 38:62:5a:2e:8e:da:99:f6:c6:41:e6:ac:10:6f:d8:fd:38:ce: 80:51:a4:88:9c:85:46:55:88:ed:01:36:4f:f1:73:66:16:58: e5:38:af:65:c7:0f:0c:a4:5b:8a:29:78:33:f2:fc:28:98:44: 27:08:50:85:b8:a8:42:bc:7c:3d:60:da:02:b0:77:8b:93:40: 5e:de:33:2b:5b:d7:55:d2:7e:ea:3d:d4:46:97:fc:3c:9d:a4: 2a:cf:19:15:b1:a8:42:a5:72:0d:be:93:48:62:72:ac:6d:5d: d2:2d:5d:85:49:be:b0:13:1f:1a:f7:19:9f:51:17:53:da:61: 2d:1d:f2:f7:1a:7d:fa:45:52:7f:ae:27:3d:7f:d4:b6:29:9e: 20:25:53:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY3QTExMTAvBgNVBAUTKDA5RUIyNDg5M0ZGODM4QUFEQzg3MkZGQzM3NTg0MjdG NkFFQzIxNzIwHhcNMjUwNDI0MjMxNjUwWhcNMjUwNTAxMjMxNjUwWjAYMRYwFAYD VQQDEw02ODBhYzY2Mi03Y2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8nuCdQPHPl3jyrhxdK7SgUv6hvw+nYGE24YUOnKtKZp/Ru789mXp5Ky/6+L VikJMP/oIxC9MXy4rnM7iZg8oqoGZ6VAyCo8waOOi8XsthmfZYIUoZdsU8eDIjeO 3sFzfAgVqW35KiFxq12ErZlj0vVN99QjbWj+fg6U1lxDrcaNUBblNeX/+rdf0Uq+ 3oxWR/rASL9fN+1bJEBJdPV7sX8vnlgzl4po3lgRbnnzmvAekbirPbjwHtxXiizA xH39cPiY05xpGaroRxhpYYus9aQPHEuUqIMmdvCqDIh9qpdB21GKulg+goR7In6q 83ciVCuiNT5s4vLNayMhxsfu4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCXDycMf 4hY8cR9LkkcWAiTEYorHMB8GA1UdIwQYMBaAFAnrJIk/+Diq3Icv/DdYQn9q7CFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjdBMS85MUU4RTI4NEY0 MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9LcmNoeV84TjFoQ2YycnNJ WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nlc2tpVF80T0tyY2h5XzhOMWhDZjJyc0lYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjdBMS85MUU4RTI4NEY0MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9L cmNoeV84TjFoQ2YycnNJWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBce7Kt1gZqmGj9DASNru7KkkulWlUNmHs6DXzC35hr7vouvy3YZYaI AMcH9Zg7muJ1ph58pVijTa4u2lGyjRE0Jp8BYp/AJXjdikiBNk5beuWIzrNxLT51 70Sa9ylCzO8i1nov7X6ZTv6Mwic4YloujtqZ9sZB5qwQb9j9OM6AUaSInIVGVYjt ATZP8XNmFljlOK9lxw8MpFuKKXgz8vwomEQnCFCFuKhCvHw9YNoCsHeLk0Be3jMr W9dV0n7qPdRGl/w8naQqzxkVsahCpXINvpNIYnKsbV3SLV2FSb6wEx8a9xmfURdT 2mEtHfL3Gn36RVJ/ric9f9S2KZ4gJVME -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:04 2025 by rpki-client