$ rpki-client -vvf rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft File: CeskiT_4OKrchy_8N1hCf2rsIXI.mft (raw, json) Hash identifier: aEmj0vjx2ddsqSjhDJ+D37+WXq9ntD+Sqr531C2nE54= Subject key identifier: 31:2D:98:27:80:75:1D:8B:5E:FE:4A:B1:9D:E7:A1:16:69:80:F9:82 Authority key identifier: 09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 Certificate issuer: /CN=A918F7A1/serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Certificate serial: 04E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft Manifest number: 0637 Signing time: Fri 22 Nov 2024 23:17:43 +0000 Manifest this update: Fri 22 Nov 2024 23:17:43 +0000 Manifest next update: Fri 29 Nov 2024 23:17:43 +0000 Files and hashes: 1: CeskiT_4OKrchy_8N1hCf2rsIXI.crl (hash: k8MKjWkFELHHhMiU93uHhoPFNjuAWQSFjIJNYyaBPz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1249 (0x4e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F7A1/serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Validity Not Before: Nov 22 23:17:43 2024 GMT Not After : Nov 29 23:17:43 2024 GMT Subject: CN=67411117-0ea1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ba:4a:89:c8:e9:2b:5b:ba:43:9c:37:e3:81: 0d:ec:30:52:d1:cb:c8:e4:9a:95:c2:6b:35:5d:91: f1:2c:d6:63:9d:1a:1c:9e:72:ee:90:1f:a2:13:6f: cc:83:e8:61:58:66:b8:31:a9:95:bb:25:a6:78:fb: b8:6c:0f:a1:fa:f5:36:ee:e0:db:a0:7a:68:8f:a5: 4c:6c:f7:0f:5c:74:e9:10:94:99:b0:f7:99:6e:9f: 97:bb:26:2f:c8:4b:8c:a6:5e:17:f3:10:ae:48:6f: 98:d5:6a:13:e9:17:d4:ab:0c:0f:59:bb:a5:3c:f1: 8a:d6:b6:6c:51:3c:f7:56:c2:78:dd:8e:a8:36:43: ce:f2:15:68:3d:73:c8:15:e3:03:1a:27:62:ef:fd: b4:a9:76:ba:f6:f7:82:87:16:f6:2b:0d:6c:37:03: e8:96:58:6f:86:a2:76:44:63:4d:ab:26:de:11:c1: 35:cd:ab:6f:52:28:e0:9b:8c:d6:2c:e0:bd:fe:e6: bd:fc:92:9b:0a:1f:12:e3:24:93:9b:b1:f9:ee:ff: 9e:92:8f:56:ea:5a:12:2b:40:82:31:71:22:69:2b: ab:a2:47:96:90:23:4a:b5:fb:f5:19:b5:28:e4:3e: 19:14:1f:6c:8f:93:b2:a8:1f:39:34:77:10:1b:14: 2b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:2D:98:27:80:75:1D:8B:5E:FE:4A:B1:9D:E7:A1:16:69:80:F9:82 X509v3 Authority Key Identifier: keyid:09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:55:f2:29:dd:28:3f:ef:e8:12:b2:ce:7d:1c:c4:ee:c2:a8: bf:d8:da:b3:e2:ef:72:8d:17:15:d6:44:34:06:43:db:93:1e: df:f1:77:39:cd:60:58:d7:c6:e1:1c:84:71:7c:f9:69:c7:26: eb:b2:5e:33:48:9d:b2:fa:31:b0:a7:b6:47:78:1d:5d:5a:39: 7a:3b:3a:1c:c0:72:17:de:f3:08:43:97:da:36:32:ce:7a:14: 47:5e:90:39:54:b2:06:59:67:59:40:40:97:ac:c2:7f:d4:45: 0c:a0:5a:d1:10:01:52:ed:c0:f2:02:62:72:8b:3f:12:c1:65: 01:0b:65:67:d8:f8:45:e5:54:bb:d3:2d:fa:6a:c4:a0:45:bf: 72:5b:cf:fa:b0:92:88:42:ff:ee:fe:07:1d:45:11:70:39:a5: 96:a5:91:ba:24:76:d2:f1:1f:9a:54:17:7c:d2:ed:ab:06:ec: a9:89:f3:7a:c3:4a:4c:95:bf:9e:c7:20:2e:d2:86:c7:26:69: 09:a9:9a:20:9c:3c:e7:6a:ad:03:ea:5a:e6:86:ec:48:e7:ff: 29:71:25:33:0c:93:ea:21:2b:d0:a5:39:4a:fc:0b:c9:87:3e: f2:bd:d2:1c:d3:9a:7f:43:dc:9a:f8:4c:da:c2:6a:cc:fa:c9: 12:23:52:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY3QTExMTAvBgNVBAUTKDA5RUIyNDg5M0ZGODM4QUFEQzg3MkZGQzM3NTg0MjdG NkFFQzIxNzIwHhcNMjQxMTIyMjMxNzQzWhcNMjQxMTI5MjMxNzQzWjAYMRYwFAYD VQQDEw02NzQxMTExNy0wZWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoLpKicjpK1u6Q5w344EN7DBS0cvI5JqVwms1XZHxLNZjnRocnnLukB+iE2/M g+hhWGa4MamVuyWmePu4bA+h+vU27uDboHpoj6VMbPcPXHTpEJSZsPeZbp+XuyYv yEuMpl4X8xCuSG+Y1WoT6RfUqwwPWbulPPGK1rZsUTz3VsJ43Y6oNkPO8hVoPXPI FeMDGidi7/20qXa69veChxb2Kw1sNwPollhvhqJ2RGNNqybeEcE1zatvUijgm4zW LOC9/ua9/JKbCh8S4ySTm7H57v+eko9W6loSK0CCMXEiaSurokeWkCNKtfv1GbUo 5D4ZFB9sj5OyqB85NHcQGxQrBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDEtmCeA dR2LXv5KsZ3noRZpgPmCMB8GA1UdIwQYMBaAFAnrJIk/+Diq3Icv/DdYQn9q7CFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjdBMS85MUU4RTI4NEY0 MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9LcmNoeV84TjFoQ2YycnNJ WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nlc2tpVF80T0tyY2h5XzhOMWhDZjJyc0lYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjdBMS85MUU4RTI4NEY0MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9L cmNoeV84TjFoQ2YycnNJWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChVfIp3Sg/7+gSss59HMTuwqi/2Nqz4u9yjRcV1kQ0BkPbkx7f8Xc5 zWBY18bhHIRxfPlpxybrsl4zSJ2y+jGwp7ZHeB1dWjl6OzocwHIX3vMIQ5faNjLO ehRHXpA5VLIGWWdZQECXrMJ/1EUMoFrREAFS7cDyAmJyiz8SwWUBC2Vn2PhF5VS7 0y36asSgRb9yW8/6sJKIQv/u/gcdRRFwOaWWpZG6JHbS8R+aVBd80u2rBuypifN6 w0pMlb+exyAu0obHJmkJqZognDznaq0D6lrmhuxI5/8pcSUzDJPqISvQpTlK/AvJ hz7yvdIc05p/Q9ya+EzawmrM+skSI1LG -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:25 2024 by rpki-client on console-ams.rpki-client.org