$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft File: SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft (raw, json) Hash identifier: QaTnnOPfv74pmUFv4eztvuhM9eIZLni/XlU2ur7AZxo= Subject key identifier: 19:4A:2A:4F:41:54:E1:AE:E7:2B:82:A8:05:54:0B:18:F5:DF:42:A4 Authority key identifier: 48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A Certificate issuer: /CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Certificate serial: 0C58 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft Manifest number: 0C51 Signing time: Sat 18 Oct 2025 17:38:20 +0000 Manifest this update: Sat 18 Oct 2025 17:38:19 +0000 Manifest next update: Sat 25 Oct 2025 17:38:19 +0000 Files and hashes: 1: SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl (hash: zCxNoTP8jccR1Iwyrio1QTwozmVfOpSTN7sBxt7IJME=) 2: AB138380985F11EEBA5D186DC4F9AE02.roa (hash: F/Rw9IBSfAAu9SS5Zj7ZXQURqKcO45qHbFvRjzx84SU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:38:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3160 (0xc58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF, serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Validity Not Before: Oct 18 17:38:19 2025 GMT Not After : Oct 25 17:38:19 2025 GMT Subject: CN=68f3d08c-2758 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:08:24:b7:3d:6c:2a:4d:ce:3b:12:ec:0a:a3: ef:83:5c:a4:c1:12:e9:3f:70:c2:a1:9e:83:3b:b5: 5d:a8:39:48:4f:4c:35:93:63:9f:1c:4c:1b:3c:ef: 35:9c:51:cf:d4:9f:c0:6b:f3:57:b8:0a:b3:c6:3c: 71:39:3f:13:b2:61:a0:07:55:70:21:d6:28:91:29: 3b:81:cb:29:80:06:60:82:14:77:e9:9e:25:0f:a3: 61:88:2d:c6:fe:e5:be:aa:95:fc:7f:53:7c:a0:f7: 49:88:bc:03:1c:b8:29:20:70:77:37:e2:08:da:7d: ae:3f:3e:d7:61:f3:fa:88:b4:6d:00:fe:ac:5e:cb: 61:1c:e7:3a:6e:06:a6:fc:70:eb:0e:6f:1e:43:46: 6c:61:66:12:8b:ab:02:6f:23:4e:53:42:d1:4a:2c: 77:47:dc:a2:32:b9:27:7e:82:96:5d:36:be:6e:ae: c3:c4:a5:e8:d1:56:cc:3c:b0:17:53:4d:4a:79:e1: 1e:60:99:ca:37:71:40:f6:c5:99:d1:d2:bb:35:7a: f2:a5:4b:73:fa:2e:80:a4:16:48:93:61:87:b4:78: 0a:c8:24:c1:df:5b:d4:9b:b4:64:c5:27:be:77:01: 7a:66:ea:69:18:4c:8f:3f:03:7f:84:de:86:b7:b4: f2:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:4A:2A:4F:41:54:E1:AE:E7:2B:82:A8:05:54:0B:18:F5:DF:42:A4 X509v3 Authority Key Identifier: keyid:48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:b5:53:f4:f4:97:14:92:97:5a:02:4f:6e:a5:9f:64:29:8d: a8:3d:21:38:3f:86:8e:1a:a0:57:eb:9a:c4:ae:eb:9d:68:c8: ac:00:5c:8c:78:68:0b:11:c2:40:9e:c2:02:b6:c8:69:f6:60: 33:2e:be:19:4a:0f:90:08:ef:fa:d6:47:78:8a:69:51:6f:5b: b7:4d:34:f7:9d:a5:87:41:00:8b:80:2a:08:fd:4e:e8:ad:ca: 38:a1:52:b9:ef:08:3a:64:b3:73:05:4b:c4:cf:49:ad:78:96: ca:f2:b6:74:23:99:dc:38:27:bd:78:8e:ce:85:ca:39:a7:c8: bf:44:7f:77:41:40:76:e4:4c:49:4e:a3:56:d5:5e:34:96:7f: 3b:19:a1:8a:4d:d5:d6:0f:4d:c4:d4:cb:85:4c:00:11:ac:cb: 2d:ef:e3:d0:ba:48:9e:a5:8b:d6:1f:2a:cd:9f:73:0c:ca:87: f4:55:cc:6b:e7:bb:12:7e:29:80:72:ad:75:3e:95:14:9f:0c: 74:d0:38:fd:e2:c3:94:ef:c6:76:f5:1b:15:50:2b:47:63:73: 48:9b:c0:4f:e3:7e:e1:e8:78:cb:b1:a0:8d:0a:c3:37:79:fb: 46:00:b8:80:aa:56:6c:c9:d9:64:bd:68:56:c7:27:9a:67:98: b3:ad:7e:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDQ4NTJFODcyNkMxNDQ4QTEwNDBDQ0ZBMDQzQjgzMTRB QUU0QzRFOUEwHhcNMjUxMDE4MTczODE5WhcNMjUxMDI1MTczODE5WjAYMRYwFAYD VQQDEw02OGYzZDA4Yy0yNzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ggktz1sKk3OOxLsCqPvg1ykwRLpP3DCoZ6DO7VdqDlIT0w1k2OfHEwbPO81 nFHP1J/Aa/NXuAqzxjxxOT8TsmGgB1VwIdYokSk7gcspgAZgghR36Z4lD6NhiC3G /uW+qpX8f1N8oPdJiLwDHLgpIHB3N+II2n2uPz7XYfP6iLRtAP6sXsthHOc6bgam /HDrDm8eQ0ZsYWYSi6sCbyNOU0LRSix3R9yiMrknfoKWXTa+bq7DxKXo0VbMPLAX U01KeeEeYJnKN3FA9sWZ0dK7NXrypUtz+i6ApBZIk2GHtHgKyCTB31vUm7RkxSe+ dwF6ZuppGEyPPwN/hN6Gt7TyuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBlKKk9B VOGu5yuCqAVUCxj130KkMB8GA1UdIwQYMBaAFEhS6HJsFEihBAzPoEO4MUquTE6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9DMUNCMkRGMjEw RDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNLRUVETS1nUTdneFNxNU1U cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1NGTG9jbXdVU0tFRURNLWdRN2d4U3E1TVRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9DMUNCMkRGMjEwRDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNL RUVETS1nUTdneFNxNU1UcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACtVP09JcUkpdaAk9upZ9kKY2oPSE4P4aOGqBX65rEruudaMisAFyM eGgLEcJAnsICtshp9mAzLr4ZSg+QCO/61kd4imlRb1u3TTT3naWHQQCLgCoI/U7o rco4oVK57wg6ZLNzBUvEz0mteJbK8rZ0I5ncOCe9eI7Ohco5p8i/RH93QUB25ExJ TqNW1V40ln87GaGKTdXWD03E1MuFTAARrMst7+PQukiepYvWHyrNn3MMyof0Vcxr 57sSfimAcq11PpUUnwx00Dj94sOU78Z29RsVUCtHY3NIm8BP437h6HjLsaCNCsM3 eftGALiAqlZsydlkvWhWxyeaZ5izrX7/ -----END CERTIFICATE-----Generated at Mon Oct 20 02:35:16 2025 by rpki-client