$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft File: SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft (raw, json) Hash identifier: nHAB0gsfZQ6tSwwJ7YT2CBzU7CEncxw5llumhdQ1E9Y= Subject key identifier: F0:89:88:A2:D0:E2:8A:3D:74:24:D2:9F:5B:1E:72:3B:24:E9:2C:4D Authority key identifier: 48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A Certificate issuer: /CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Certificate serial: 0C20 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft Manifest number: 0C19 Signing time: Mon 30 Jun 2025 17:20:53 +0000 Manifest this update: Mon 30 Jun 2025 17:20:53 +0000 Manifest next update: Mon 07 Jul 2025 17:20:53 +0000 Files and hashes: 1: SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl (hash: FaOARUk8KUa1RLHh+jyUd8D1OhpcmHL+kWhgon79Kb8=) 2: AB138380985F11EEBA5D186DC4F9AE02.roa (hash: F/Rw9IBSfAAu9SS5Zj7ZXQURqKcO45qHbFvRjzx84SU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 17:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3104 (0xc20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF, serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Validity Not Before: Jun 30 17:20:53 2025 GMT Not After : Jul 7 17:20:53 2025 GMT Subject: CN=6862c775-7730 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ec:dd:f9:07:32:51:ea:1d:95:ea:c1:3a:ef: df:ba:23:1a:d0:04:52:85:a6:cb:c7:39:6c:df:27: 7d:5c:ac:3e:88:5b:f5:9e:bf:6a:09:4a:96:7a:53: a8:a6:c9:ae:16:34:fc:b3:1b:68:7e:a5:90:c2:b8: c2:de:13:b7:6b:49:ce:f3:80:ca:67:55:5e:83:bf: e2:29:4a:b3:79:34:d5:10:a2:a4:d9:a6:ea:66:9b: 7d:17:25:0d:3f:4e:2f:d4:b8:a9:38:9f:53:ff:94: 7a:dd:0f:f2:5c:42:5a:84:57:e3:38:cc:57:42:74: 59:f2:e3:bb:66:07:43:56:dd:fd:51:be:1a:26:f6: 64:c6:78:81:01:38:7a:08:38:b1:3b:3e:c3:03:9a: 08:6d:82:12:97:28:cf:1b:5b:af:6e:81:5f:df:76: 0e:df:f1:09:0a:ab:3e:0c:46:73:a6:db:f9:cf:f4: f2:d2:1f:a0:d4:8f:0d:29:a5:57:2a:de:6c:7f:59: ca:92:21:df:11:2f:4a:83:bd:2d:87:ce:23:6d:f0: 31:da:6d:53:c6:cc:ee:c8:d2:44:cb:eb:28:d6:30: dc:e4:13:24:cd:b1:17:69:90:e8:01:9f:d1:26:d4: 46:54:99:27:9e:40:30:25:f0:66:da:f3:dc:53:2b: 83:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:89:88:A2:D0:E2:8A:3D:74:24:D2:9F:5B:1E:72:3B:24:E9:2C:4D X509v3 Authority Key Identifier: keyid:48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:b7:5b:02:2a:7c:9a:38:24:d6:db:92:17:ce:d2:da:bb:e7: 88:4f:e0:1b:4c:60:e2:a5:6d:bd:61:f1:53:da:97:07:06:ac: ce:55:2b:be:f6:4d:be:1b:3b:09:9c:f5:a9:b5:63:70:0c:10: a0:c1:f7:e6:11:b2:28:3c:2a:ac:45:9b:ec:21:4b:f5:0a:7e: 29:fa:e3:f2:b4:f8:c7:8e:07:5d:b3:c7:32:4d:72:52:5a:d0: b7:99:71:5f:f3:99:36:07:12:fc:ab:93:19:d1:7c:54:33:a9: 06:55:84:e9:32:6c:1e:a7:b8:12:31:1b:79:70:12:03:2b:f5: 0f:1c:63:cb:0e:49:33:87:92:bb:57:1b:01:bd:be:05:86:4a: 09:c5:98:b6:64:70:4f:5f:d8:13:92:02:68:f5:ec:67:c5:5d: 31:96:a4:cb:81:e8:13:cc:da:4a:52:60:80:34:6e:72:c1:97: ef:4a:99:fa:8d:4d:78:ea:0f:f3:75:b9:89:85:40:03:b6:31: 9b:08:0a:e6:ed:50:c3:aa:a0:47:62:8d:23:2b:b9:f2:2c:56: 5d:5a:d8:9a:69:ef:39:a9:b2:6d:5d:d1:55:e9:79:62:24:0b: 6d:46:3b:b1:f6:27:a5:ed:31:b0:72:b9:5b:1e:3f:a8:38:14: 04:ba:3f:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDQ4NTJFODcyNkMxNDQ4QTEwNDBDQ0ZBMDQzQjgzMTRB QUU0QzRFOUEwHhcNMjUwNjMwMTcyMDUzWhcNMjUwNzA3MTcyMDUzWjAYMRYwFAYD VQQDEw02ODYyYzc3NS03NzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Ozd+QcyUeodlerBOu/fuiMa0ARShabLxzls3yd9XKw+iFv1nr9qCUqWelOo psmuFjT8sxtofqWQwrjC3hO3a0nO84DKZ1Veg7/iKUqzeTTVEKKk2abqZpt9FyUN P04v1LipOJ9T/5R63Q/yXEJahFfjOMxXQnRZ8uO7ZgdDVt39Ub4aJvZkxniBATh6 CDixOz7DA5oIbYISlyjPG1uvboFf33YO3/EJCqs+DEZzptv5z/Ty0h+g1I8NKaVX Kt5sf1nKkiHfES9Kg70th84jbfAx2m1TxszuyNJEy+so1jDc5BMkzbEXaZDoAZ/R JtRGVJknnkAwJfBm2vPcUyuDlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPCJiKLQ 4oo9dCTSn1secjsk6SxNMB8GA1UdIwQYMBaAFEhS6HJsFEihBAzPoEO4MUquTE6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9DMUNCMkRGMjEw RDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNLRUVETS1nUTdneFNxNU1U cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1NGTG9jbXdVU0tFRURNLWdRN2d4U3E1TVRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9DMUNCMkRGMjEwRDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNL RUVETS1nUTdneFNxNU1UcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAht1sCKnyaOCTW25IXztLau+eIT+AbTGDipW29YfFT2pcHBqzOVSu+ 9k2+GzsJnPWptWNwDBCgwffmEbIoPCqsRZvsIUv1Cn4p+uPytPjHjgdds8cyTXJS WtC3mXFf85k2BxL8q5MZ0XxUM6kGVYTpMmwep7gSMRt5cBIDK/UPHGPLDkkzh5K7 VxsBvb4FhkoJxZi2ZHBPX9gTkgJo9exnxV0xlqTLgegTzNpKUmCANG5ywZfvSpn6 jU146g/zdbmJhUADtjGbCArm7VDDqqBHYo0jK7nyLFZdWtiaae85qbJtXdFV6Xli JAttRjux9iel7TGwcrlbHj+oOBQEuj/7 -----END CERTIFICATE-----Generated at Wed Jul 2 04:14:05 2025 by rpki-client