$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft File: SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft (raw, json) Hash identifier: /z5unlx87S35VxQBRqWC+tH72KOtDznTtId0VJssabw= Subject key identifier: B9:83:DE:40:7A:6B:BE:85:B5:40:58:4A:F8:A6:E8:0C:D7:AE:D2:54 Authority key identifier: 48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A Certificate issuer: /CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Certificate serial: 0BFF Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft Manifest number: 0BF8 Signing time: Thu 24 Apr 2025 17:10:58 +0000 Manifest this update: Thu 24 Apr 2025 17:10:57 +0000 Manifest next update: Thu 01 May 2025 17:10:57 +0000 Files and hashes: 1: SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl (hash: zigQ4WAhZLiH4BlTXplSEWd0hnLbXy3weOu0rjJJq6s=) 2: AB138380985F11EEBA5D186DC4F9AE02.roa (hash: F/Rw9IBSfAAu9SS5Zj7ZXQURqKcO45qHbFvRjzx84SU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:10:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3071 (0xbff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF, serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Validity Not Before: Apr 24 17:10:57 2025 GMT Not After : May 1 17:10:57 2025 GMT Subject: CN=680a70a1-0e90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ba:3a:18:b6:55:b3:ff:a9:da:e8:59:ce:13: 60:b4:23:14:72:b0:ec:a5:1c:1c:6f:6a:dc:9d:e8: af:ba:ed:1f:cc:14:d9:31:b4:e2:c5:eb:05:9f:49: b8:47:1e:7a:cd:e6:23:01:2e:06:e8:f6:b1:e7:5a: 45:0f:51:56:ba:f9:55:7e:33:c8:99:5d:04:1d:ef: f5:0c:ba:0a:ab:4f:e7:15:00:4f:e5:3b:96:2b:b6: e9:b3:9d:19:1a:7a:1e:0f:a2:4d:d6:af:0b:ff:e9: bb:0f:f6:4b:71:46:23:93:fc:9d:89:f7:45:33:ef: e6:a1:10:26:b1:23:22:2f:17:13:cb:c6:6f:ce:0f: f9:31:16:eb:b2:80:52:7b:ab:c4:e4:6a:75:51:62: 9c:a7:aa:00:b7:72:4a:d3:bf:e3:da:81:2e:f5:1b: 0a:c1:fe:b7:e7:88:1c:a8:65:7f:49:92:92:ba:98: a2:30:e8:dc:7b:7c:ac:5f:f7:7f:a2:27:7e:1d:50: 73:f9:25:3b:c1:1f:21:04:6f:c9:34:a8:25:bc:d5: a6:e2:c6:a2:8f:b1:3f:d6:d1:fb:03:ed:c6:cf:9c: 3b:9b:59:3a:b5:11:cc:50:7d:a4:00:e7:70:5d:32: b3:dd:53:f3:13:24:4a:38:97:3d:12:dc:c3:30:a9: 4e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:83:DE:40:7A:6B:BE:85:B5:40:58:4A:F8:A6:E8:0C:D7:AE:D2:54 X509v3 Authority Key Identifier: keyid:48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:02:56:41:eb:5f:fa:98:a7:ac:e2:94:d1:ef:00:a9:6d:1f: 3a:92:74:15:79:5c:f3:ff:d4:49:a5:11:5d:13:25:2d:a1:15: a0:a1:99:e6:c6:12:10:d7:7d:c2:55:a3:fe:9d:3f:b0:ee:24: 1e:8f:9a:f1:b5:87:76:58:ed:d4:f4:58:71:ee:b8:1b:4f:82: e2:45:43:e6:11:8f:4b:43:de:1f:97:6f:c7:96:09:fd:6f:e5: 00:1c:d3:e2:e5:2c:ac:08:2b:3e:f1:d3:1a:15:a2:ae:ec:15: 0d:f3:58:27:c5:9b:cd:ee:18:13:3e:9a:ae:52:5e:dd:8a:73: 18:19:0b:0c:79:6e:27:e8:2c:05:1f:ec:a4:c6:07:51:f2:1f: 60:ab:4d:c8:d2:8f:67:53:3a:f8:2d:85:5d:19:7d:f3:03:ec: 50:f8:bc:1b:de:c7:94:4d:1f:89:b2:61:8c:93:1b:05:97:e7: a0:05:f7:32:82:4b:74:3c:1d:2c:eb:82:3c:5d:e2:71:98:f8: 7f:e6:aa:1d:25:6d:47:96:0b:01:88:82:b7:af:64:a0:13:5a: 3a:71:f3:28:1c:83:5e:3a:ab:4c:fd:a8:94:32:1f:cc:ed:9e: e6:e5:29:01:5b:90:31:98:35:a3:1c:e9:05:a4:ee:54:d1:c9: eb:cc:73:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDQ4NTJFODcyNkMxNDQ4QTEwNDBDQ0ZBMDQzQjgzMTRB QUU0QzRFOUEwHhcNMjUwNDI0MTcxMDU3WhcNMjUwNTAxMTcxMDU3WjAYMRYwFAYD VQQDEw02ODBhNzBhMS0wZTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5bo6GLZVs/+p2uhZzhNgtCMUcrDspRwcb2rcneivuu0fzBTZMbTixesFn0m4 Rx56zeYjAS4G6Pax51pFD1FWuvlVfjPImV0EHe/1DLoKq0/nFQBP5TuWK7bps50Z GnoeD6JN1q8L/+m7D/ZLcUYjk/ydifdFM+/moRAmsSMiLxcTy8Zvzg/5MRbrsoBS e6vE5Gp1UWKcp6oAt3JK07/j2oEu9RsKwf6354gcqGV/SZKSupiiMOjce3ysX/d/ oid+HVBz+SU7wR8hBG/JNKglvNWm4saij7E/1tH7A+3Gz5w7m1k6tRHMUH2kAOdw XTKz3VPzEyRKOJc9EtzDMKlOSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmD3kB6 a76FtUBYSvim6AzXrtJUMB8GA1UdIwQYMBaAFEhS6HJsFEihBAzPoEO4MUquTE6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9DMUNCMkRGMjEw RDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNLRUVETS1nUTdneFNxNU1U cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1NGTG9jbXdVU0tFRURNLWdRN2d4U3E1TVRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9DMUNCMkRGMjEwRDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNL RUVETS1nUTdneFNxNU1UcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2AlZB61/6mKes4pTR7wCpbR86knQVeVzz/9RJpRFdEyUtoRWgoZnm xhIQ133CVaP+nT+w7iQej5rxtYd2WO3U9Fhx7rgbT4LiRUPmEY9LQ94fl2/Hlgn9 b+UAHNPi5SysCCs+8dMaFaKu7BUN81gnxZvN7hgTPpquUl7dinMYGQsMeW4n6CwF H+ykxgdR8h9gq03I0o9nUzr4LYVdGX3zA+xQ+Lwb3seUTR+JsmGMkxsFl+egBfcy gkt0PB0s64I8XeJxmPh/5qodJW1HlgsBiIK3r2SgE1o6cfMoHINeOqtM/aiUMh/M 7Z7m5SkBW5AxmDWjHOkFpO5U0cnrzHNx -----END CERTIFICATE-----Generated at Sat Apr 26 14:52:06 2025 by rpki-client