$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft File: SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft (raw, json) Hash identifier: omEkNizDCKD9gBJUXXjqGKcK8TLcMpreJQlwq4Z+Xng= Subject key identifier: 5F:20:12:E4:55:60:BF:44:04:D0:6B:AE:0D:D6:02:53:8B:22:5C:41 Authority key identifier: 48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A Certificate issuer: /CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Certificate serial: 0CA8 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft Manifest number: 0C9D Signing time: Mon 02 Mar 2026 17:05:22 +0000 Manifest this update: Mon 02 Mar 2026 17:05:22 +0000 Manifest next update: Mon 09 Mar 2026 17:05:22 +0000 Files and hashes: 1: SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl (hash: i7qK6OXk0nD0zCq0VNldKvGcPrVik2ZBD1OGq+5Ei+E=) 2: 16572A3CEB3511F08C2D5B303F6F56BC.roa (hash: 1y/5rrZjiZi/wou/2ExgTOGyybm/GQapVPwAdz5lbX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3240 (0xca8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF, serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Validity Not Before: Mar 2 17:05:22 2026 GMT Not After : Mar 9 17:05:22 2026 GMT Subject: CN=69a5c352-3de8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:57:6d:71:9f:9c:88:2d:c5:f1:dd:5a:3e:7c: 58:e7:7e:8a:25:30:d3:93:f0:25:e3:23:eb:8c:cb: aa:39:f8:33:c6:4a:26:87:74:04:47:d0:24:38:65: 9c:91:08:8e:48:9c:0a:0c:a5:4a:9e:40:aa:25:74: a0:6f:85:5e:1c:92:82:dd:e9:72:db:31:d2:28:3c: 08:85:a5:cf:0f:68:6a:64:04:43:3d:a1:f2:3e:3d: 37:48:02:8e:b9:cb:8d:d7:20:24:52:a9:99:a3:17: ee:68:4f:b8:a7:1a:ef:f1:e8:e0:63:08:21:ed:41: c9:31:60:48:85:ea:33:7a:1e:7c:61:60:41:58:58: 8a:b1:8f:58:51:6f:e0:28:22:81:dc:29:bd:f3:7e: 66:8e:8a:05:ba:7f:da:09:f7:d6:15:d1:de:54:36: 99:de:13:96:0f:09:86:f1:dc:fb:21:06:bd:b6:cb: 24:00:30:2d:b4:13:fa:ff:b4:58:04:d2:fa:d3:55: 11:4d:68:38:80:76:08:e8:39:4d:f2:cf:18:39:da: 64:28:d6:a6:e9:f8:2b:f4:b3:e2:f8:e8:1c:08:f6: 35:d1:a1:74:60:29:87:5e:1c:49:98:24:8e:f2:2c: bd:e3:11:b9:b5:19:6a:61:5f:69:38:fe:1f:43:0d: e5:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:20:12:E4:55:60:BF:44:04:D0:6B:AE:0D:D6:02:53:8B:22:5C:41 X509v3 Authority Key Identifier: keyid:48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:9a:ef:be:80:01:c3:df:f9:33:72:c4:2a:2f:3c:94:4b:f1: 71:4f:14:ab:a7:a7:4e:08:88:95:e3:1d:31:8e:0a:6e:ca:97: 65:d5:e9:f9:76:dd:14:fb:9c:73:1a:81:0d:e2:27:94:29:ba: 78:b9:0b:78:d5:3a:f6:ff:6d:4b:f3:17:b5:ea:e6:9a:ec:07: 9e:a6:9d:a4:40:3c:37:d0:d7:e8:c4:66:31:f7:67:04:50:66: 0c:96:9c:a3:38:30:98:ee:a4:47:ee:f4:ac:80:1f:cd:77:10: f3:71:f1:30:37:b1:ef:68:dd:d8:ec:bd:06:22:78:26:86:8a: 3c:57:1c:30:5c:63:9c:07:2a:19:e0:b0:6e:da:27:db:c3:29: 96:66:28:e8:df:e1:9e:e8:58:9b:52:dd:de:d2:12:a9:04:91: 4b:2a:0a:75:ba:6d:ff:43:b2:c0:6d:ef:f8:f5:f1:d5:4c:f5: ff:c2:cf:25:a4:85:34:d2:00:2a:7e:94:f6:19:fc:5d:25:da: a4:5a:ad:fc:69:6a:b6:f5:aa:0f:9f:77:07:53:8a:6c:78:31: 17:a6:7c:d9:28:b8:e3:0c:83:01:2d:eb:85:32:e9:96:2b:c5: ba:82:ee:5a:77:e2:fe:6b:cd:d8:2e:14:29:7f:7b:9e:f7:c0: 8d:aa:16:ea -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDQ4NTJFODcyNkMxNDQ4QTEwNDBDQ0ZBMDQzQjgzMTRB QUU0QzRFOUEwHhcNMjYwMzAyMTcwNTIyWhcNMjYwMzA5MTcwNTIyWjAYMRYwFAYD VQQDEw02OWE1YzM1Mi0zZGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1dtcZ+ciC3F8d1aPnxY536KJTDTk/Al4yPrjMuqOfgzxkomh3QER9AkOGWc kQiOSJwKDKVKnkCqJXSgb4VeHJKC3ely2zHSKDwIhaXPD2hqZARDPaHyPj03SAKO ucuN1yAkUqmZoxfuaE+4pxrv8ejgYwgh7UHJMWBIheozeh58YWBBWFiKsY9YUW/g KCKB3Cm9835mjooFun/aCffWFdHeVDaZ3hOWDwmG8dz7IQa9tsskADAttBP6/7RY BNL601URTWg4gHYI6DlN8s8YOdpkKNam6fgr9LPi+OgcCPY10aF0YCmHXhxJmCSO 8iy94xG5tRlqYV9pOP4fQw3lJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF8gEuRV YL9EBNBrrg3WAlOLIlxBMB8GA1UdIwQYMBaAFEhS6HJsFEihBAzPoEO4MUquTE6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9DMUNCMkRGMjEw RDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNLRUVETS1nUTdneFNxNU1U cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1NGTG9jbXdVU0tFRURNLWdRN2d4U3E1TVRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9DMUNCMkRGMjEwRDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNL RUVETS1nUTdneFNxNU1UcG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATZrvvoABw9/5M3LEKi88lEvxcU8Uq6enTgiIleMdMY4KbsqXZdXp+XbdFPuc cxqBDeInlCm6eLkLeNU69v9tS/MXtermmuwHnqadpEA8N9DX6MRmMfdnBFBmDJac ozgwmO6kR+70rIAfzXcQ83HxMDex72jd2Oy9BiJ4JoaKPFccMFxjnAcqGeCwbton 28MplmYo6N/hnuhYm1Ld3tISqQSRSyoKdbpt/0OywG3v+PXx1Uz1/8LPJaSFNNIA Kn6U9hn8XSXapFqt/GlqtvWqD593B1OKbHgxF6Z82Si44wyDAS3rhTLplivFuoLu Wnfi/mvN2C4UKX97nvfAjaoW6g== -----END CERTIFICATE-----Generated at Mon Mar 2 20:16:43 2026 by rpki-client