$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft File: SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft (raw, json) Hash identifier: LhTC2Cp+ny4B3Yw8jDXrkmfsA7zJu7zzYC5cXWF+Y0o= Subject key identifier: 85:46:12:AA:D3:6C:5C:C3:79:71:8C:6D:F7:0F:F4:F5:5F:DC:2B:E8 Authority key identifier: 48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A Certificate issuer: /CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Certificate serial: 0C36 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft Manifest number: 0C2F Signing time: Tue 12 Aug 2025 17:15:16 +0000 Manifest this update: Tue 12 Aug 2025 17:15:16 +0000 Manifest next update: Tue 19 Aug 2025 17:15:16 +0000 Files and hashes: 1: SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl (hash: 3vPRJTm5br6u4HBpzRA4K2IsZeFmHIveWPywMgTAUXM=) 2: AB138380985F11EEBA5D186DC4F9AE02.roa (hash: F/Rw9IBSfAAu9SS5Zj7ZXQURqKcO45qHbFvRjzx84SU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 17:15:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3126 (0xc36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF, serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Validity Not Before: Aug 12 17:15:16 2025 GMT Not After : Aug 19 17:15:16 2025 GMT Subject: CN=689b76a4-0c29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0e:b2:17:00:e7:94:83:16:6f:d6:3b:16:63: ac:61:a9:02:47:62:17:98:26:2c:eb:7e:d1:f9:29: 71:5d:5f:84:db:e0:0a:7c:df:65:fd:09:f5:3d:63: f5:82:92:37:00:e4:b7:67:c1:a4:93:02:11:b4:1d: 05:c1:30:c3:ec:7b:91:94:a3:9f:c3:20:e2:15:ea: f1:13:f9:1e:b5:b0:6d:b5:b8:61:29:37:bc:82:40: 43:14:5f:f5:ed:db:fb:a3:57:f1:92:4b:3b:c5:fc: 29:fd:f5:50:1a:4d:fd:bc:54:97:fe:af:9b:92:6e: ff:13:64:c0:89:ac:7e:36:f2:0d:dc:64:0b:b9:54: 61:61:67:cd:e8:37:fe:86:83:55:ac:ed:30:32:fa: c3:e4:80:f4:f9:6f:9b:c3:16:cf:1e:b4:1c:36:98: f0:72:2e:b2:76:7b:e9:d5:18:60:3d:3a:d3:aa:70: 6d:fd:39:d7:91:99:21:ca:d8:7b:27:89:ae:9b:2b: 2a:ef:dd:2f:ac:1e:cf:db:1c:97:15:c2:7b:2c:ea: 9f:eb:a7:25:0f:36:08:dc:ae:bb:81:cf:61:00:53: a2:38:48:ee:52:39:b6:fb:14:a9:51:f8:11:fa:4e: c9:6c:d5:6e:42:05:3c:9c:e0:96:9d:c2:59:62:a9: ad:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:46:12:AA:D3:6C:5C:C3:79:71:8C:6D:F7:0F:F4:F5:5F:DC:2B:E8 X509v3 Authority Key Identifier: keyid:48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:04:dc:d1:fb:e4:d8:6b:13:94:54:ac:07:53:92:3b:33:f5: 3a:2d:87:72:26:db:d5:f6:f4:d8:79:0a:4c:06:d5:0f:dd:30: 9f:7b:a8:be:5d:e8:5a:98:ac:e4:15:60:ef:72:5d:1f:da:f1: 3d:47:e3:30:7d:1d:eb:38:f7:0b:c0:21:1b:d1:ec:76:3e:c4: 2b:e2:b3:dc:4e:ce:14:5b:31:43:62:f6:68:e9:75:9b:d7:a9: 2d:56:e0:d1:78:3b:d1:c2:db:82:22:f1:f8:03:86:72:a6:4c: 4f:8d:62:b0:44:2f:a7:f8:38:0c:c4:f3:2d:94:33:5e:15:42: a0:a1:57:c3:2e:32:06:44:dd:d3:10:cd:6f:60:5d:67:65:20: f6:5f:2f:15:63:f9:2e:e1:a2:0c:7f:6a:4d:7e:e2:04:ae:bc: 4b:21:99:1c:b9:00:8f:d3:24:27:9f:97:11:60:e9:78:78:f0: e7:5b:33:c3:00:96:fa:64:40:5b:a9:79:7d:f5:04:55:f1:c6: d3:5b:6f:e3:c9:68:0d:75:9f:70:48:39:60:55:17:75:19:0c: e5:66:a3:d1:cf:a2:74:7b:7f:fe:43:dd:4f:ca:bf:c1:6e:a8: c7:23:68:55:b9:8c:aa:b8:7a:71:fc:f9:a5:c3:e2:14:32:3c: 60:23:d6:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDQ4NTJFODcyNkMxNDQ4QTEwNDBDQ0ZBMDQzQjgzMTRB QUU0QzRFOUEwHhcNMjUwODEyMTcxNTE2WhcNMjUwODE5MTcxNTE2WjAYMRYwFAYD VQQDEw02ODliNzZhNC0wYzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuA6yFwDnlIMWb9Y7FmOsYakCR2IXmCYs637R+SlxXV+E2+AKfN9l/Qn1PWP1 gpI3AOS3Z8GkkwIRtB0FwTDD7HuRlKOfwyDiFerxE/ketbBttbhhKTe8gkBDFF/1 7dv7o1fxkks7xfwp/fVQGk39vFSX/q+bkm7/E2TAiax+NvIN3GQLuVRhYWfN6Df+ hoNVrO0wMvrD5ID0+W+bwxbPHrQcNpjwci6ydnvp1RhgPTrTqnBt/TnXkZkhyth7 J4mumysq790vrB7P2xyXFcJ7LOqf66clDzYI3K67gc9hAFOiOEjuUjm2+xSpUfgR +k7JbNVuQgU8nOCWncJZYqmtdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIVGEqrT bFzDeXGMbfcP9PVf3CvoMB8GA1UdIwQYMBaAFEhS6HJsFEihBAzPoEO4MUquTE6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9DMUNCMkRGMjEw RDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNLRUVETS1nUTdneFNxNU1U cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1NGTG9jbXdVU0tFRURNLWdRN2d4U3E1TVRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9DMUNCMkRGMjEwRDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNL RUVETS1nUTdneFNxNU1UcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEBNzR++TYaxOUVKwHU5I7M/U6LYdyJtvV9vTYeQpMBtUP3TCfe6i+ XehamKzkFWDvcl0f2vE9R+MwfR3rOPcLwCEb0ex2PsQr4rPcTs4UWzFDYvZo6XWb 16ktVuDReDvRwtuCIvH4A4ZypkxPjWKwRC+n+DgMxPMtlDNeFUKgoVfDLjIGRN3T EM1vYF1nZSD2Xy8VY/ku4aIMf2pNfuIErrxLIZkcuQCP0yQnn5cRYOl4ePDnWzPD AJb6ZEBbqXl99QRV8cbTW2/jyWgNdZ9wSDlgVRd1GQzlZqPRz6J0e3/+Q91Pyr/B bqjHI2hVuYyquHpx/Pmlw+IUMjxgI9b1 -----END CERTIFICATE-----Generated at Wed Aug 13 08:46:21 2025 by rpki-client