$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft File: SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft (raw, json) Hash identifier: BrwCWyjzSm5tfZCjd53FsUFwYc027+YU6yQ0FHzsX6g= Subject key identifier: BB:5E:09:96:75:DD:ED:71:E9:3C:52:8B:88:82:3D:DB:AA:E0:B3:74 Authority key identifier: 48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A Certificate issuer: /CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Certificate serial: 0C1A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft Manifest number: 0C13 Signing time: Wed 18 Jun 2025 17:07:50 +0000 Manifest this update: Wed 18 Jun 2025 17:07:49 +0000 Manifest next update: Wed 25 Jun 2025 17:07:49 +0000 Files and hashes: 1: SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl (hash: H5/fNOmp/5Ms5IlpZtxMXZGu93T4OsjHStsYBYnaDI8=) 2: AB138380985F11EEBA5D186DC4F9AE02.roa (hash: F/Rw9IBSfAAu9SS5Zj7ZXQURqKcO45qHbFvRjzx84SU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 14:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3098 (0xc1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF, serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Validity Not Before: Jun 18 17:07:49 2025 GMT Not After : Jun 25 17:07:49 2025 GMT Subject: CN=6852f266-e28c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5d:53:a7:8f:94:73:50:4f:9c:ed:d5:8b:9d: e1:bc:31:a2:95:31:3c:ba:0c:dc:74:89:8d:0d:22: 6c:c5:45:1c:97:e4:9d:dc:ad:64:66:a2:f5:73:8f: ea:f0:ba:31:ad:fa:6a:20:25:6c:e4:c6:b4:40:b9: 91:cb:88:95:d0:b7:1e:c6:4c:e8:f1:61:0b:b7:04: d2:2b:29:06:53:dd:f6:e3:f3:12:33:d0:75:2e:4e: 0b:8d:b6:ef:bd:21:5f:86:c7:b9:ae:4c:6a:6c:3b: 8f:88:36:2c:a4:6f:52:84:86:59:a7:8c:43:78:38: eb:55:6f:d5:b2:ed:3d:ff:a8:01:ec:75:29:30:1b: f8:80:29:8f:71:91:f4:95:89:4d:99:76:e6:95:95: cd:54:50:01:6d:0a:95:6b:7a:06:fd:4b:07:da:5c: 41:95:bb:eb:dd:88:f1:b7:d3:4c:8b:21:d2:67:2b: cd:05:2c:a0:d1:46:09:f1:d4:47:50:3b:e9:ae:da: 1a:b2:85:33:e5:fb:4b:b4:cb:d1:0d:fe:38:bf:36: 51:60:c4:dd:62:69:db:39:cb:94:1d:3d:10:e2:b3: 82:25:af:b4:98:5c:b3:ac:99:9f:38:36:5e:bd:4e: 33:60:b5:61:77:b4:d0:f9:7b:98:27:86:6b:85:09: 19:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:5E:09:96:75:DD:ED:71:E9:3C:52:8B:88:82:3D:DB:AA:E0:B3:74 X509v3 Authority Key Identifier: keyid:48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:38:3b:2a:8c:f9:ec:40:36:f6:63:d4:51:d3:f3:bb:00:cb: 25:e1:8a:4c:60:21:b1:4f:8a:c0:09:72:46:ee:e5:4f:92:cb: c3:d9:10:57:db:e6:1c:ad:b8:9c:58:b8:75:69:2a:a5:b2:f6: 29:f6:4b:69:98:d0:53:f3:8e:e5:18:0a:cb:31:34:d6:e1:53: 58:47:36:69:d5:81:0a:08:62:f4:4f:50:8b:b3:0e:f7:c5:2f: 75:dc:32:23:3d:01:74:bb:d8:48:a2:f4:d8:c7:17:22:a2:8e: 00:a7:17:3a:2b:52:9e:88:3e:dd:15:96:14:33:0e:a8:fb:f2: 2a:32:f6:da:27:d2:91:ef:02:24:70:bb:1f:0d:c3:8d:4f:02: 8f:97:ac:29:ca:53:4e:e0:f5:83:ab:9c:6e:96:d0:05:f7:c7: 8b:d9:f4:34:49:dd:b9:99:18:21:2d:97:d3:55:ca:c9:61:35: 2d:a3:ba:60:57:2f:61:46:70:21:7b:65:25:79:67:7a:ea:94: f6:e0:d1:9f:33:88:1e:4a:0c:5b:07:f2:8a:74:49:1a:b1:4c: 92:1d:92:15:4b:f3:b2:7d:ac:86:dc:d0:ec:b2:13:86:4e:a8: a0:04:a1:1c:21:45:e0:e9:13:c0:a8:83:94:a8:df:58:f8:dc: b4:d5:b4:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDQ4NTJFODcyNkMxNDQ4QTEwNDBDQ0ZBMDQzQjgzMTRB QUU0QzRFOUEwHhcNMjUwNjE4MTcwNzQ5WhcNMjUwNjI1MTcwNzQ5WjAYMRYwFAYD VQQDEw02ODUyZjI2Ni1lMjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwF1Tp4+Uc1BPnO3Vi53hvDGilTE8ugzcdImNDSJsxUUcl+Sd3K1kZqL1c4/q 8LoxrfpqICVs5Ma0QLmRy4iV0Lcexkzo8WELtwTSKykGU9324/MSM9B1Lk4Ljbbv vSFfhse5rkxqbDuPiDYspG9ShIZZp4xDeDjrVW/Vsu09/6gB7HUpMBv4gCmPcZH0 lYlNmXbmlZXNVFABbQqVa3oG/UsH2lxBlbvr3Yjxt9NMiyHSZyvNBSyg0UYJ8dRH UDvprtoasoUz5ftLtMvRDf44vzZRYMTdYmnbOcuUHT0Q4rOCJa+0mFyzrJmfODZe vU4zYLVhd7TQ+XuYJ4ZrhQkZ9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLteCZZ1 3e1x6TxSi4iCPduq4LN0MB8GA1UdIwQYMBaAFEhS6HJsFEihBAzPoEO4MUquTE6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9DMUNCMkRGMjEw RDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNLRUVETS1nUTdneFNxNU1U cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1NGTG9jbXdVU0tFRURNLWdRN2d4U3E1TVRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9DMUNCMkRGMjEwRDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNL RUVETS1nUTdneFNxNU1UcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnODsqjPnsQDb2Y9RR0/O7AMsl4YpMYCGxT4rACXJG7uVPksvD2RBX 2+YcrbicWLh1aSqlsvYp9ktpmNBT847lGArLMTTW4VNYRzZp1YEKCGL0T1CLsw73 xS913DIjPQF0u9hIovTYxxcioo4Apxc6K1KeiD7dFZYUMw6o+/IqMvbaJ9KR7wIk cLsfDcONTwKPl6wpylNO4PWDq5xultAF98eL2fQ0Sd25mRghLZfTVcrJYTUto7pg Vy9hRnAhe2UleWd66pT24NGfM4geSgxbB/KKdEkasUySHZIVS/OyfayG3NDsshOG TqigBKEcIUXg6RPAqIOUqN9Y+Ny01bSy -----END CERTIFICATE-----Generated at Wed Jun 18 22:57:37 2025 by rpki-client