$ rpki-client -vvf rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft File: CeskiT_4OKrchy_8N1hCf2rsIXI.mft (raw, json) Hash identifier: l5vH+j3CTvDoUZNb5xEBOyZYY88mxlLRtQIVjCOqaNs= Subject key identifier: 93:EE:1A:44:BF:CC:64:7A:F2:A4:ED:E3:02:B4:C3:A9:61:ED:A1:80 Authority key identifier: 09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 Certificate issuer: /CN=A918F7A1/serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Certificate serial: 0527 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft Manifest number: 06C3 Signing time: Tue 08 Apr 2025 23:15:01 +0000 Manifest this update: Tue 08 Apr 2025 23:15:01 +0000 Manifest next update: Tue 15 Apr 2025 23:15:01 +0000 Files and hashes: 1: CeskiT_4OKrchy_8N1hCf2rsIXI.crl (hash: f7xLF5HpI3KOKyjiqW+RYjhr61k07rS300nk5U6uIZs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 23:15:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1319 (0x527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F7A1 Validity Not Before: Apr 8 23:15:01 2025 GMT Not After : Apr 15 23:15:01 2025 GMT Subject: CN=67f5adf5-943f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a4:e7:a1:df:bd:df:9b:29:8e:e8:de:2f:db: 4e:5a:d4:03:b5:5c:b6:31:ee:1a:85:12:2f:28:65: 6d:f4:1c:b6:99:e9:f6:6f:d8:ce:17:18:07:bd:bd: 84:38:7e:d5:b6:03:19:c6:65:cb:ed:f5:ec:b5:51: 04:d3:c7:09:97:3e:20:45:49:a7:1e:df:27:22:76: c0:9e:93:9f:ea:37:81:d4:32:86:52:d0:80:ce:75: dd:a5:aa:e8:84:b6:63:a1:ae:30:d0:dd:58:10:96: fa:ac:d0:fa:56:b0:31:7f:76:17:69:77:3f:d3:a1: 6f:d6:43:b5:d0:aa:ee:e4:63:d0:cf:17:fa:fe:ff: 10:71:fe:3c:70:c3:c2:a0:d7:f9:91:92:45:2e:9b: 36:29:65:e9:d3:b6:d7:14:68:1d:7b:85:9a:49:4e: 7b:07:cb:cf:2b:7a:73:37:f5:cf:8a:09:aa:d2:20: 6b:d5:9f:a5:22:49:69:20:04:c3:40:56:08:78:d6: e0:6d:ae:02:9e:ca:9d:a8:39:d8:35:70:aa:0d:5d: 04:02:b2:e2:9e:bd:f6:9e:7f:a7:ec:fb:71:09:76: 00:53:ec:86:ae:5f:3b:0b:cb:f1:54:54:4c:33:f7: d6:02:c7:c1:df:4b:b6:3b:7f:13:6b:3f:4f:85:e7: 44:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:EE:1A:44:BF:CC:64:7A:F2:A4:ED:E3:02:B4:C3:A9:61:ED:A1:80 X509v3 Authority Key Identifier: keyid:09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:6a:92:82:9c:e6:31:ba:50:de:3b:99:ec:02:57:d4:e8:e1: 3b:ff:1a:04:01:4b:bc:f4:e0:26:de:06:84:14:2d:ff:db:8a: a6:54:e7:55:b1:41:4a:55:b7:c8:ae:75:fb:60:aa:59:e4:09: c9:03:ec:8b:3f:91:79:ad:94:f6:b5:09:21:4d:bb:c8:e7:81: 36:99:2e:45:6d:d2:7e:a8:ab:36:f0:1c:e4:28:4a:c7:55:1b: d2:cd:11:b7:e5:ac:c2:67:27:92:de:61:8b:01:c6:1c:56:26: 57:c8:77:02:b6:cd:54:9e:a6:91:1e:57:77:ea:4b:e9:1c:fe: 16:ff:a4:5e:6e:10:72:96:06:ed:fa:1b:49:e2:14:ca:66:dc: ca:ef:19:5c:42:3f:f1:d4:33:fb:e3:3c:b1:ed:42:83:c6:a5: 87:8e:49:1c:85:ae:39:b0:b5:d8:22:44:63:5b:6a:57:f7:ee: 95:14:2b:cf:19:19:b7:a5:e8:f7:2a:25:b5:4a:69:50:83:ac: f8:3a:ac:fc:cd:f8:e7:28:ef:e4:51:50:e7:68:be:5c:fc:97: 73:0c:77:87:58:91:64:8d:95:5b:50:24:be:c8:30:51:57:f1: 49:0a:37:f3:ea:28:cb:91:ff:ad:a3:d3:43:6f:2c:20:7d:26: dd:8f:be:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY3QTExMTAvBgNVBAUTKDA5RUIyNDg5M0ZGODM4QUFEQzg3MkZGQzM3NTg0MjdG NkFFQzIxNzIwHhcNMjUwNDA4MjMxNTAxWhcNMjUwNDE1MjMxNTAxWjAYMRYwFAYD VQQDEw02N2Y1YWRmNS05NDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKTnod+935spjujeL9tOWtQDtVy2Me4ahRIvKGVt9By2men2b9jOFxgHvb2E OH7VtgMZxmXL7fXstVEE08cJlz4gRUmnHt8nInbAnpOf6jeB1DKGUtCAznXdparo hLZjoa4w0N1YEJb6rND6VrAxf3YXaXc/06Fv1kO10Kru5GPQzxf6/v8Qcf48cMPC oNf5kZJFLps2KWXp07bXFGgde4WaSU57B8vPK3pzN/XPigmq0iBr1Z+lIklpIATD QFYIeNbgba4CnsqdqDnYNXCqDV0EArLinr32nn+n7PtxCXYAU+yGrl87C8vxVFRM M/fWAsfB30u2O38Taz9PhedEEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJPuGkS/ zGR68qTt4wK0w6lh7aGAMB8GA1UdIwQYMBaAFAnrJIk/+Diq3Icv/DdYQn9q7CFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjdBMS85MUU4RTI4NEY0 MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9LcmNoeV84TjFoQ2YycnNJ WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nlc2tpVF80T0tyY2h5XzhOMWhDZjJyc0lYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjdBMS85MUU4RTI4NEY0MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9L cmNoeV84TjFoQ2YycnNJWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkapKCnOYxulDeO5nsAlfU6OE7/xoEAUu89OAm3gaEFC3/24qmVOdV sUFKVbfIrnX7YKpZ5AnJA+yLP5F5rZT2tQkhTbvI54E2mS5FbdJ+qKs28BzkKErH VRvSzRG35azCZyeS3mGLAcYcViZXyHcCts1UnqaRHld36kvpHP4W/6RebhBylgbt +htJ4hTKZtzK7xlcQj/x1DP74zyx7UKDxqWHjkkcha45sLXYIkRjW2pX9+6VFCvP GRm3pej3KiW1SmlQg6z4Oqz8zfjnKO/kUVDnaL5c/JdzDHeHWJFkjZVbUCS+yDBR V/FJCjfz6ijLkf+to9NDbywgfSbdj76L -----END CERTIFICATE-----Generated at Thu Apr 10 17:55:51 2025 by rpki-client