$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft File: SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft (raw, json) Hash identifier: w1T64WpE0GgGTaGrUlh1KN/Qb2FZuhurIDv/izQz+40= Subject key identifier: A9:5A:E6:6A:ED:8A:0B:DD:28:EB:EB:3F:43:04:58:BA:BB:01:40:99 Authority key identifier: 48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A Certificate issuer: /CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Certificate serial: 0C07 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft Manifest number: 0C00 Signing time: Sat 10 May 2025 17:03:34 +0000 Manifest this update: Sat 10 May 2025 17:03:34 +0000 Manifest next update: Sat 17 May 2025 17:03:34 +0000 Files and hashes: 1: SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl (hash: Xw3zF21n2PVrpY0y1H7sZcUBMtFtIXfk05AABTkyVBE=) 2: AB138380985F11EEBA5D186DC4F9AE02.roa (hash: F/Rw9IBSfAAu9SS5Zj7ZXQURqKcO45qHbFvRjzx84SU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 17:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3079 (0xc07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF, serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Validity Not Before: May 10 17:03:34 2025 GMT Not After : May 17 17:03:34 2025 GMT Subject: CN=681f86e6-b667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c9:4c:68:32:79:b1:9b:e1:f8:9d:0b:7f:33: 5a:c7:cf:f3:c3:4b:9d:2b:50:3c:fc:89:0e:8f:50: e0:64:da:56:75:3e:37:1f:da:29:35:6d:f5:93:0b: 28:5a:1e:b9:2b:4f:bd:c7:49:60:1c:2c:99:6c:d4: 8f:c4:1c:d3:0a:cb:34:9a:41:10:c7:cc:90:64:98: 3a:a3:66:a7:7f:ec:f8:62:d9:5b:7f:4b:d2:0a:01: a6:17:07:2c:54:f0:63:1b:61:17:cb:49:9f:40:87: 9e:c0:99:92:3b:ae:bc:7a:9a:87:73:a7:ff:9f:16: c5:ac:56:83:21:f0:9e:ba:8e:e4:25:90:32:5b:5e: ff:ed:ad:1a:c1:38:84:a4:09:70:c1:8c:d8:b7:c2: 12:e2:a9:15:0f:96:dc:d8:18:a7:bf:04:ad:0f:a3: 89:33:d5:b3:ba:51:61:e6:ed:da:b7:3f:9d:d1:2b: 72:7d:12:06:f8:b3:76:b8:7e:21:dd:92:df:93:ca: e3:2b:d2:24:2c:3a:4f:47:74:9c:23:dd:c5:29:0c: 6f:23:c9:fb:c9:83:77:7e:8d:ed:3f:77:e4:3a:45: 6c:55:5f:36:86:2a:2d:4e:1b:24:65:10:e1:90:bc: 90:15:01:8a:fe:a4:bd:98:30:4e:23:b0:39:8f:ac: 94:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:5A:E6:6A:ED:8A:0B:DD:28:EB:EB:3F:43:04:58:BA:BB:01:40:99 X509v3 Authority Key Identifier: keyid:48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:ae:03:75:8c:cc:09:c4:36:ab:47:9f:da:ad:db:30:1d:4c: 22:85:d2:d8:a5:6c:d2:c8:ae:b7:0c:fc:ef:0d:b6:2c:93:d6: 84:7c:72:78:6d:24:4d:0b:85:4b:97:a8:d2:24:04:67:17:aa: e4:ab:41:ab:d5:73:10:96:34:88:03:3c:3d:d3:52:8b:7e:9b: c8:c6:fe:22:51:fa:c4:ec:08:2e:b0:c8:52:a6:00:d9:49:00: 2a:cf:89:8f:82:89:ba:d2:cf:75:54:bd:7d:2f:f4:10:c6:10: 4f:0a:1e:c4:0c:17:0e:65:02:6c:d6:4c:0c:81:81:89:e3:c3: 7a:af:c4:77:db:00:07:63:8a:fd:2b:f3:e4:3a:8b:5e:9f:84: df:27:c1:9f:96:62:ee:bf:9c:80:64:b5:70:ac:37:f2:99:a3: e3:d7:4e:51:5f:d5:ec:bd:35:0d:ec:0c:99:34:56:56:af:50: 88:32:3a:81:be:97:a1:78:0d:d4:df:f7:1f:44:b0:b9:1d:ac: d6:78:e3:33:3f:19:04:fd:c5:64:5c:f4:93:49:94:9f:17:b6: 80:47:c6:9d:ea:ab:40:39:ae:41:39:be:6a:3b:8f:eb:b4:eb: c6:d5:25:ee:45:78:bc:78:f1:b3:d6:0a:21:1a:29:97:f3:a4: 82:20:2d:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDQ4NTJFODcyNkMxNDQ4QTEwNDBDQ0ZBMDQzQjgzMTRB QUU0QzRFOUEwHhcNMjUwNTEwMTcwMzM0WhcNMjUwNTE3MTcwMzM0WjAYMRYwFAYD VQQDEw02ODFmODZlNi1iNjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuclMaDJ5sZvh+J0LfzNax8/zw0udK1A8/IkOj1DgZNpWdT43H9opNW31kwso Wh65K0+9x0lgHCyZbNSPxBzTCss0mkEQx8yQZJg6o2anf+z4Ytlbf0vSCgGmFwcs VPBjG2EXy0mfQIeewJmSO668epqHc6f/nxbFrFaDIfCeuo7kJZAyW17/7a0awTiE pAlwwYzYt8IS4qkVD5bc2BinvwStD6OJM9WzulFh5u3atz+d0StyfRIG+LN2uH4h 3ZLfk8rjK9IkLDpPR3ScI93FKQxvI8n7yYN3fo3tP3fkOkVsVV82hiotThskZRDh kLyQFQGK/qS9mDBOI7A5j6yUAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKla5mrt igvdKOvrP0MEWLq7AUCZMB8GA1UdIwQYMBaAFEhS6HJsFEihBAzPoEO4MUquTE6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9DMUNCMkRGMjEw RDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNLRUVETS1nUTdneFNxNU1U cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1NGTG9jbXdVU0tFRURNLWdRN2d4U3E1TVRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9DMUNCMkRGMjEwRDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNL RUVETS1nUTdneFNxNU1UcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmrgN1jMwJxDarR5/ardswHUwihdLYpWzSyK63DPzvDbYsk9aEfHJ4 bSRNC4VLl6jSJARnF6rkq0Gr1XMQljSIAzw901KLfpvIxv4iUfrE7AgusMhSpgDZ SQAqz4mPgom60s91VL19L/QQxhBPCh7EDBcOZQJs1kwMgYGJ48N6r8R32wAHY4r9 K/PkOoten4TfJ8GflmLuv5yAZLVwrDfymaPj105RX9XsvTUN7AyZNFZWr1CIMjqB vpeheA3U3/cfRLC5HazWeOMzPxkE/cVkXPSTSZSfF7aAR8ad6qtAOa5BOb5qO4/r tOvG1SXuRXi8ePGz1gohGimX86SCIC1o -----END CERTIFICATE-----Generated at Mon May 12 11:07:39 2025 by rpki-client