$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft File: SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft (raw, json) Hash identifier: ysMysPEINbZPacttZVzVTPwJnakgxdA9mcx4AtoOi1Y= Subject key identifier: FB:EE:B9:0F:43:E0:C3:12:4E:C4:07:FB:C4:18:75:0E:B4:EE:07:A9 Authority key identifier: 48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A Certificate issuer: /CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Certificate serial: 0C65 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft Manifest number: 0C5D Signing time: Tue 04 Nov 2025 17:12:41 +0000 Manifest this update: Tue 04 Nov 2025 17:12:40 +0000 Manifest next update: Tue 11 Nov 2025 17:12:40 +0000 Files and hashes: 1: SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl (hash: 461qNqA5dWpJT8ybp8Bk4G7d8AqDHK0C1Dlf26gq4a0=) 2: AB138380985F11EEBA5D186DC4F9AE02.roa (hash: AHx+rcesmSJ02RarPyYkZVOe2l/xINiEbEhHNsgsus8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3173 (0xc65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF, serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Validity Not Before: Nov 4 17:12:40 2025 GMT Not After : Nov 11 17:12:40 2025 GMT Subject: CN=690a3409-56be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:02:15:9b:12:6e:59:69:e0:70:c0:ff:99:03: 4e:62:99:5f:66:1a:14:f0:c7:2e:bc:52:78:f4:27: e9:c8:4a:1c:84:5d:cc:1a:a0:de:ea:82:c3:e0:2f: 44:8a:ab:11:d7:c8:8b:5a:f4:6e:8c:37:49:53:d9: b9:9f:be:54:c3:a3:cf:a5:a1:d2:41:ec:21:aa:e0: f1:2a:b7:70:5a:0f:a2:5d:85:55:11:74:8a:73:58: e1:8d:97:00:75:26:11:0b:18:2b:17:07:09:7f:26: 21:c9:c1:98:89:09:bd:5e:86:ac:c2:f5:fc:27:33: fc:40:dd:ac:59:25:c6:8c:56:19:f0:4e:b6:07:4d: bf:82:b4:8d:53:1a:99:d7:2f:d9:31:9a:b3:cc:1b: f1:be:8e:e4:58:9e:c4:a1:b0:8b:61:45:fe:bb:6f: 64:24:cb:6d:7c:c9:39:69:c0:6b:86:7b:b8:99:82: db:1f:85:e8:57:65:36:bd:66:35:41:0e:dd:32:60: de:d7:d6:32:95:6e:3e:02:a5:ad:bc:9b:fd:f1:57: 0f:cf:49:fc:8b:d0:2b:f2:d6:4e:b6:39:dd:d8:e8: fb:17:b1:51:99:a2:66:39:45:af:51:73:43:e5:c2: 37:da:26:b2:99:a8:04:a5:e7:9e:4e:96:98:41:f4: 75:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:EE:B9:0F:43:E0:C3:12:4E:C4:07:FB:C4:18:75:0E:B4:EE:07:A9 X509v3 Authority Key Identifier: keyid:48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:02:61:db:c3:9e:63:9b:10:5c:40:04:c5:53:c3:fd:d6:ed: 2c:20:d8:c6:d9:ee:06:15:41:dd:d2:5d:6e:aa:39:8c:e8:1c: b5:4a:53:3f:46:a5:65:72:bc:48:d5:c9:2b:81:4f:98:93:36: ca:71:83:96:08:05:0e:15:da:fb:e9:b7:47:f8:d4:da:1f:06: f4:0b:79:89:e2:d6:75:68:3d:7c:9e:5c:2e:e9:b9:e5:ab:59: 1d:72:a4:35:b6:0d:71:5a:ef:1d:8e:cc:27:47:b6:a2:08:d9: 6a:b5:fb:61:51:93:ea:6c:9d:83:dd:6b:03:9c:d6:57:c6:ab: a1:67:c4:57:c4:e7:79:c3:b0:03:11:2f:19:a0:90:93:76:78: c8:06:e3:c8:aa:7a:62:32:92:a2:38:9f:e0:fa:ea:02:21:5e: 0a:55:d8:6b:5f:83:a5:a0:7c:09:4f:7b:2c:ca:e4:b6:28:53: 72:52:5c:e5:e1:3f:f2:46:4b:9a:39:b7:fd:db:f5:f5:7b:ed: e8:c2:d0:35:ec:be:0b:b4:13:8f:56:69:8e:47:f2:a1:ce:ee: cc:12:f3:ec:fd:e2:1f:53:51:c2:aa:22:58:80:6c:d7:36:c9: e8:8f:f1:73:01:0d:13:84:bc:cd:fa:92:3f:fc:77:9e:e0:53: 2d:e3:34:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDQ4NTJFODcyNkMxNDQ4QTEwNDBDQ0ZBMDQzQjgzMTRB QUU0QzRFOUEwHhcNMjUxMTA0MTcxMjQwWhcNMjUxMTExMTcxMjQwWjAYMRYwFAYD VQQDEw02OTBhMzQwOS01NmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1gIVmxJuWWngcMD/mQNOYplfZhoU8McuvFJ49CfpyEochF3MGqDe6oLD4C9E iqsR18iLWvRujDdJU9m5n75Uw6PPpaHSQewhquDxKrdwWg+iXYVVEXSKc1jhjZcA dSYRCxgrFwcJfyYhycGYiQm9XoaswvX8JzP8QN2sWSXGjFYZ8E62B02/grSNUxqZ 1y/ZMZqzzBvxvo7kWJ7EobCLYUX+u29kJMttfMk5acBrhnu4mYLbH4XoV2U2vWY1 QQ7dMmDe19YylW4+AqWtvJv98VcPz0n8i9Ar8tZOtjnd2Oj7F7FRmaJmOUWvUXND 5cI32iaymagEpeeeTpaYQfR1NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvuuQ9D 4MMSTsQH+8QYdQ607gepMB8GA1UdIwQYMBaAFEhS6HJsFEihBAzPoEO4MUquTE6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9DMUNCMkRGMjEw RDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNLRUVETS1nUTdneFNxNU1U cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1NGTG9jbXdVU0tFRURNLWdRN2d4U3E1TVRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9DMUNCMkRGMjEwRDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNL RUVETS1nUTdneFNxNU1UcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAAmHbw55jmxBcQATFU8P91u0sINjG2e4GFUHd0l1uqjmM6By1SlM/ RqVlcrxI1ckrgU+YkzbKcYOWCAUOFdr76bdH+NTaHwb0C3mJ4tZ1aD18nlwu6bnl q1kdcqQ1tg1xWu8djswnR7aiCNlqtfthUZPqbJ2D3WsDnNZXxquhZ8RXxOd5w7AD ES8ZoJCTdnjIBuPIqnpiMpKiOJ/g+uoCIV4KVdhrX4OloHwJT3ssyuS2KFNyUlzl 4T/yRkuaObf92/X1e+3owtA17L4LtBOPVmmOR/Khzu7MEvPs/eIfU1HCqiJYgGzX Nsnoj/FzAQ0ThLzN+pI//Hee4FMt4zSx -----END CERTIFICATE-----Generated at Tue Nov 4 23:19:39 2025 by rpki-client