$ rpki-client -vvf rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft File: CeskiT_4OKrchy_8N1hCf2rsIXI.mft (raw, json) Hash identifier: IlyXYaHQhiqfJHB65j/JeSyNUOxGZXNuNXC0OdYNZOU= Subject key identifier: 18:4F:CA:A7:93:F6:75:16:C0:D5:16:2F:C7:1D:4F:37:5C:F8:32:20 Authority key identifier: 09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 Certificate issuer: /CN=A918F7A1/serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Certificate serial: 05E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft Manifest number: 0837 Signing time: Sat 04 Apr 2026 22:45:05 +0000 Manifest this update: Sat 04 Apr 2026 22:45:04 +0000 Manifest next update: Sat 11 Apr 2026 22:45:04 +0000 Files and hashes: 1: CeskiT_4OKrchy_8N1hCf2rsIXI.crl (hash: yR2wNKFiY8rph+DiKH98hshFh1ZmnPj2xKc2rtFzXu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:45:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1504 (0x5e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F7A1, serialNumber=09EB24893FF838AADC872FFC3758427F6AEC2172 Validity Not Before: Apr 4 22:45:04 2026 GMT Not After : Apr 11 22:45:04 2026 GMT Subject: CN=69d19470-84ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:77:96:1c:1f:90:b0:ed:23:bd:c3:30:4b:90: ce:fe:3f:d5:0e:05:61:57:f4:20:aa:f5:16:aa:f4: 73:14:86:c5:93:0b:7b:1c:51:6f:a9:5b:6a:d6:c8: 52:4a:60:dd:df:2c:29:e1:1a:77:b9:0a:ff:6c:a6: de:27:5b:e1:bf:48:f2:08:5c:c3:4f:1c:e7:39:09: c9:e9:ee:4a:f9:bb:aa:ee:3c:5d:eb:06:49:44:11: b0:06:78:60:58:a1:9e:78:a5:e1:fb:d9:aa:2d:47: 5d:a4:e1:36:18:2c:0e:a9:81:40:98:30:9a:f2:20: fc:df:9d:38:23:d5:85:8f:83:2f:17:c1:c1:b1:7b: a0:98:bc:2d:9b:be:5a:92:77:29:98:43:a0:55:6b: e8:56:c4:16:f2:67:3e:ac:a1:2f:3b:8e:fa:fe:2a: 70:ff:a1:b5:47:a4:51:0e:8b:7f:9a:b8:a0:a7:c4: 6b:f1:3d:dd:f1:d1:2c:78:55:11:d7:4e:57:c2:2a: 00:ba:c8:14:a5:ed:c0:7b:92:95:89:57:f1:9b:3c: 6c:1d:e3:3e:a0:93:04:f7:b1:90:02:ac:5c:b6:3f: da:9f:0f:0f:23:ff:4b:36:2b:24:c8:78:a3:02:8a: 63:20:3f:7e:28:b7:54:8a:20:cd:7d:87:e8:47:20: f9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:4F:CA:A7:93:F6:75:16:C0:D5:16:2F:C7:1D:4F:37:5C:F8:32:20 X509v3 Authority Key Identifier: keyid:09:EB:24:89:3F:F8:38:AA:DC:87:2F:FC:37:58:42:7F:6A:EC:21:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeskiT_4OKrchy_8N1hCf2rsIXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F7A1/91E8E284F43711EBB5D5691CC4F9AE02/CeskiT_4OKrchy_8N1hCf2rsIXI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:a5:6f:70:df:f5:6c:56:6e:3a:76:81:19:ce:8b:7b:5a:39: e8:05:1e:d8:11:96:40:cf:fa:0f:8f:71:a4:03:da:98:89:fc: e0:3f:c0:ac:b9:df:68:17:f6:b4:90:ee:7a:4d:37:91:50:19: 82:8f:18:5e:e0:d0:29:ec:a3:f6:ba:17:0b:75:dc:d1:45:1c: 7d:f3:e6:57:b4:e9:21:3a:5b:ab:10:3b:be:98:f6:7d:38:dd: 5a:1a:3e:8e:b9:f3:8b:56:76:17:ef:10:41:28:91:67:d8:ec: 1b:6b:b2:ea:a6:6e:d7:da:ad:77:2e:43:5c:79:24:49:30:a9: e3:41:bc:ed:0f:85:36:3d:8c:ef:32:1a:7e:c9:e8:d3:5e:b6: 8f:98:1a:2b:83:75:0a:a8:a0:d5:1a:48:36:55:80:92:37:ca: 90:38:18:98:1a:0c:2e:50:26:56:ce:44:80:f6:c4:4a:a2:7d: 20:fa:00:3c:04:06:cc:50:eb:90:db:88:9d:cd:4e:41:51:69: d1:0a:47:6e:a1:c3:40:69:5e:fa:b4:71:29:40:64:79:a4:31: d0:3b:dd:bc:7e:ec:fb:42:7e:47:67:24:58:20:23:f4:c9:59: ed:d4:1a:fd:ce:d3:61:21:1f:d2:eb:00:32:74:e4:73:d0:99: 93:40:84:2e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY3QTExMTAvBgNVBAUTKDA5RUIyNDg5M0ZGODM4QUFEQzg3MkZGQzM3NTg0MjdG NkFFQzIxNzIwHhcNMjYwNDA0MjI0NTA0WhcNMjYwNDExMjI0NTA0WjAYMRYwFAYD VQQDEw02OWQxOTQ3MC04NGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XeWHB+QsO0jvcMwS5DO/j/VDgVhV/QgqvUWqvRzFIbFkwt7HFFvqVtq1shS SmDd3ywp4Rp3uQr/bKbeJ1vhv0jyCFzDTxznOQnJ6e5K+buq7jxd6wZJRBGwBnhg WKGeeKXh+9mqLUddpOE2GCwOqYFAmDCa8iD83504I9WFj4MvF8HBsXugmLwtm75a kncpmEOgVWvoVsQW8mc+rKEvO476/ipw/6G1R6RRDot/mrigp8Rr8T3d8dEseFUR 105XwioAusgUpe3Ae5KViVfxmzxsHeM+oJME97GQAqxctj/anw8PI/9LNiskyHij AopjID9+KLdUiiDNfYfoRyD5kwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBhPyqeT 9nUWwNUWL8cdTzdc+DIgMB8GA1UdIwQYMBaAFAnrJIk/+Diq3Icv/DdYQn9q7CFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjdBMS85MUU4RTI4NEY0 MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9LcmNoeV84TjFoQ2YycnNJ WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nlc2tpVF80T0tyY2h5XzhOMWhDZjJyc0lYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjdBMS85MUU4RTI4NEY0MzcxMUVCQjVENTY5MUNDNEY5QUUwMi9DZXNraVRfNE9L cmNoeV84TjFoQ2YycnNJWEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUaVvcN/1bFZuOnaBGc6Le1o56AUe2BGWQM/6D49xpAPamIn84D/ArLnfaBf2 tJDuek03kVAZgo8YXuDQKeyj9roXC3Xc0UUcffPmV7TpITpbqxA7vpj2fTjdWho+ jrnzi1Z2F+8QQSiRZ9jsG2uy6qZu19qtdy5DXHkkSTCp40G87Q+FNj2M7zIafsno 0162j5gaK4N1Cqig1RpINlWAkjfKkDgYmBoMLlAmVs5EgPbESqJ9IPoAPAQGzFDr kNuInc1OQVFp0QpHbqHDQGle+rRxKUBkeaQx0DvdvH7s+0J+R2ckWCAj9MlZ7dQa /c7TYSEf0usAMnTkc9CZk0CELg== -----END CERTIFICATE-----Generated at Sun Apr 5 20:57:58 2026 by rpki-client