$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft File: SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft (raw, json) Hash identifier: Gk84PFq6p5Ba6gCCF8wOd+7WyuTLndtw29SOunBQsLw= Subject key identifier: 26:6E:71:9C:64:2C:72:13:8C:79:58:AC:86:B3:E5:9B:80:F0:06:EE Authority key identifier: 48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A Certificate issuer: /CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Certificate serial: 0C3B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft Manifest number: 0C34 Signing time: Fri 22 Aug 2025 17:16:10 +0000 Manifest this update: Fri 22 Aug 2025 17:16:09 +0000 Manifest next update: Fri 29 Aug 2025 17:16:09 +0000 Files and hashes: 1: SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl (hash: u2f1FmPihTAqnGTrKgbtrwfTOajHYOgS86xayujGVNg=) 2: AB138380985F11EEBA5D186DC4F9AE02.roa (hash: F/Rw9IBSfAAu9SS5Zj7ZXQURqKcO45qHbFvRjzx84SU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:16:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3131 (0xc3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF, serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Validity Not Before: Aug 22 17:16:09 2025 GMT Not After : Aug 29 17:16:09 2025 GMT Subject: CN=68a8a5d9-c3d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:93:42:8c:8b:ef:5d:aa:ff:d3:8b:af:34:60: be:2b:34:54:ee:fd:b9:2b:ac:0b:2c:09:6a:4b:fc: c3:72:86:ae:c3:e0:8b:33:98:d5:eb:af:ed:5a:21: 70:1b:2a:12:08:e7:f1:1d:07:95:af:ff:0e:d6:2e: 35:e9:df:35:c0:da:0b:b7:47:f4:b8:d6:62:d9:35: 48:bd:b8:15:92:ea:ed:55:36:fc:c3:9e:bd:8f:0a: b9:27:53:4a:bd:70:f0:13:1c:d3:9c:e2:e7:74:65: 83:be:aa:fa:11:d8:89:e0:e1:1e:0f:c2:82:30:5a: 8a:1a:fb:f0:1f:94:34:fe:32:03:f3:e7:df:22:49: b4:02:01:05:dd:9e:75:72:76:8f:d0:de:ec:ee:ea: 07:43:5f:2d:52:30:bf:6a:18:7e:df:96:64:a7:04: ef:77:ca:97:16:f2:ba:af:e8:97:15:d0:5b:6c:14: 28:d3:ed:fc:43:45:40:92:20:8a:d8:22:73:cc:af: 7f:05:23:21:de:56:cc:70:44:34:b9:10:dc:9a:65: d6:52:b3:df:96:83:e2:e1:2e:0f:05:72:7e:4e:21: 9a:b7:a8:5b:b9:1a:1e:d7:eb:c8:43:08:f9:8c:9a: 7c:20:05:e5:8b:93:e3:1d:56:c5:96:31:cb:5f:b2: 38:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:6E:71:9C:64:2C:72:13:8C:79:58:AC:86:B3:E5:9B:80:F0:06:EE X509v3 Authority Key Identifier: keyid:48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:c6:48:37:8e:f8:64:81:0a:03:75:fa:42:ce:f9:8f:51:13: f3:0c:7a:d2:1f:07:e9:dd:e7:46:cd:30:da:5e:d2:50:54:36: 11:ff:43:da:e0:3b:a0:ee:f1:22:54:f0:7a:ab:d3:ab:0d:ff: 32:fe:f5:ba:94:15:a6:ca:cb:cd:41:8f:ab:68:65:78:c8:03: 03:d6:85:8a:42:af:33:23:ce:4b:1c:37:06:63:aa:e6:d7:d9: b4:12:23:60:70:57:c4:86:a2:bb:16:c6:b1:a9:5c:3f:d8:9b: 31:01:53:4c:b9:5f:fa:43:65:12:10:6d:ba:e1:84:9d:5b:81: 70:5d:36:f4:75:66:da:c7:7b:5d:96:92:68:35:00:24:4e:f4: 2c:98:35:85:99:ce:8f:59:f0:ac:d4:c8:b4:52:e2:31:6e:79: 3b:e7:a2:da:f3:d6:15:75:9a:3e:86:ce:ad:fc:17:01:f7:49: 1c:d6:bf:54:2c:87:10:82:54:46:91:2b:b6:6b:d8:06:be:66: 00:db:34:71:91:93:a8:f3:a8:8a:67:20:d1:4e:bd:99:32:e3: 63:0e:72:de:0d:1d:1e:a8:7d:0c:f9:fd:c5:a4:c5:c6:f1:b9: a4:ea:3d:32:62:fe:25:0e:1f:2b:b5:a7:86:e6:9a:f1:28:a5: 21:b2:1c:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDQ4NTJFODcyNkMxNDQ4QTEwNDBDQ0ZBMDQzQjgzMTRB QUU0QzRFOUEwHhcNMjUwODIyMTcxNjA5WhcNMjUwODI5MTcxNjA5WjAYMRYwFAYD VQQDEw02OGE4YTVkOS1jM2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA45NCjIvvXar/04uvNGC+KzRU7v25K6wLLAlqS/zDcoauw+CLM5jV66/tWiFw GyoSCOfxHQeVr/8O1i416d81wNoLt0f0uNZi2TVIvbgVkurtVTb8w569jwq5J1NK vXDwExzTnOLndGWDvqr6EdiJ4OEeD8KCMFqKGvvwH5Q0/jID8+ffIkm0AgEF3Z51 cnaP0N7s7uoHQ18tUjC/ahh+35ZkpwTvd8qXFvK6r+iXFdBbbBQo0+38Q0VAkiCK 2CJzzK9/BSMh3lbMcEQ0uRDcmmXWUrPfloPi4S4PBXJ+TiGat6hbuRoe1+vIQwj5 jJp8IAXli5PjHVbFljHLX7I4qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZucZxk LHITjHlYrIaz5ZuA8AbuMB8GA1UdIwQYMBaAFEhS6HJsFEihBAzPoEO4MUquTE6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9DMUNCMkRGMjEw RDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNLRUVETS1nUTdneFNxNU1U cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1NGTG9jbXdVU0tFRURNLWdRN2d4U3E1TVRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9DMUNCMkRGMjEwRDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNL RUVETS1nUTdneFNxNU1UcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZxkg3jvhkgQoDdfpCzvmPURPzDHrSHwfp3edGzTDaXtJQVDYR/0Pa 4Dug7vEiVPB6q9OrDf8y/vW6lBWmysvNQY+raGV4yAMD1oWKQq8zI85LHDcGY6rm 19m0EiNgcFfEhqK7FsaxqVw/2JsxAVNMuV/6Q2USEG264YSdW4FwXTb0dWbax3td lpJoNQAkTvQsmDWFmc6PWfCs1Mi0UuIxbnk756La89YVdZo+hs6t/BcB90kc1r9U LIcQglRGkSu2a9gGvmYA2zRxkZOo86iKZyDRTr2ZMuNjDnLeDR0eqH0M+f3FpMXG 8bmk6j0yYv4lDh8rtaeG5prxKKUhshyc -----END CERTIFICATE-----Generated at Sat Aug 23 13:38:57 2025 by rpki-client