$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft File: SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft (raw, json) Hash identifier: 9A9NdKd3em+/6erPK8L/fpZ5FXBVB8DsIbjN+mM5me4= Subject key identifier: F2:F0:8B:BA:D6:69:1A:E9:8C:D8:83:94:F2:98:A9:EE:AC:15:D5:46 Authority key identifier: 48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A Certificate issuer: /CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Certificate serial: 0CB4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft Manifest number: 0CA9 Signing time: Thu 26 Mar 2026 17:02:19 +0000 Manifest this update: Thu 26 Mar 2026 17:02:18 +0000 Manifest next update: Thu 02 Apr 2026 17:02:18 +0000 Files and hashes: 1: SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl (hash: dxfFIIoQ0V3Gqfom1yI0odwUJwnXF1xDrPulgXPhnh8=) 2: 16572A3CEB3511F08C2D5B303F6F56BC.roa (hash: 1y/5rrZjiZi/wou/2ExgTOGyybm/GQapVPwAdz5lbX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3252 (0xcb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF, serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Validity Not Before: Mar 26 17:02:18 2026 GMT Not After : Apr 2 17:02:18 2026 GMT Subject: CN=69c5669b-6fc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ab:f6:31:05:e8:be:f3:f9:78:61:fa:46:a0: f5:a6:74:7e:23:c5:b1:07:53:04:2d:c8:28:47:5a: 86:62:ad:64:c7:ad:47:67:a2:3b:45:5f:51:7a:fe: 70:70:f2:ae:62:c4:76:ed:bd:fd:a8:a9:f4:dc:f0: 58:8c:c1:62:51:75:3c:cd:18:5e:28:3d:a5:f9:ea: 1d:fa:46:02:44:6f:b8:b1:15:ff:65:9f:9b:db:79: 73:d9:80:81:25:a0:2b:d0:f7:71:c2:2b:a3:38:c1: bd:8b:e7:c1:53:90:62:30:e4:09:e7:0d:03:04:17: db:3a:08:42:17:8e:53:67:93:61:95:64:d9:b6:00: 90:98:4a:a7:25:3f:59:d5:1c:03:72:ea:45:68:bf: da:9b:75:c9:de:22:79:6b:f2:1e:a7:2d:3f:6b:50: 5e:f2:af:93:ff:e2:fb:9c:51:bb:7c:e4:de:6e:0b: d4:8a:d5:98:b0:cd:57:15:e2:86:2c:41:d1:bd:f9: c2:68:e9:1f:af:09:c7:f2:a7:01:5c:7f:8e:0f:74: 1f:10:cf:5c:62:36:2e:fa:57:4c:23:8b:ec:07:5c: bf:17:9d:df:7e:59:b3:2b:81:d6:0b:72:25:00:ac: a1:55:20:4a:4d:ff:b2:56:fa:f6:4d:29:cc:f6:2b: e4:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:F0:8B:BA:D6:69:1A:E9:8C:D8:83:94:F2:98:A9:EE:AC:15:D5:46 X509v3 Authority Key Identifier: keyid:48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:bc:8b:83:42:88:f2:92:e8:ea:e7:7e:a1:30:f3:17:94:d3: f6:35:28:9f:da:41:c3:ce:19:3b:49:85:26:10:99:e8:4c:df: 34:98:fa:b7:04:d4:23:9b:f2:b3:3d:c3:c8:bc:80:d7:4f:c5: 5a:33:ce:56:c3:06:1c:c0:5f:dd:c7:f1:20:96:c5:2f:1d:4a: ec:1c:7f:05:e5:7f:b6:fd:bc:40:4c:10:d3:4f:59:58:e2:c4: 63:41:f6:26:a2:3d:de:10:a9:c2:af:75:51:6f:5b:16:d0:6d: 70:31:21:cf:33:78:c8:a1:3b:8a:96:a3:2c:7c:80:3b:fb:00: aa:3e:bd:a9:8f:12:eb:d3:61:8c:15:d8:83:9d:15:86:b2:85: 3d:e8:66:ff:97:9b:4a:cd:73:af:7f:50:08:1f:80:fa:17:71: c1:45:e9:45:04:7d:df:b6:92:96:fc:46:77:67:78:27:2e:8e: 8a:8a:34:2d:36:a4:52:42:a7:bf:d7:b3:ac:33:73:76:12:b6: e6:0e:a2:4c:1d:d6:82:70:bd:86:d7:85:a8:59:bd:74:bc:d1: 29:e8:15:c7:23:43:86:85:60:64:7f:2d:0b:5b:05:a5:f1:87: 8c:8b:2a:de:58:23:e1:8e:5e:1d:28:1c:ae:b3:12:c7:c7:a1: 18:b7:0d:96 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDQ4NTJFODcyNkMxNDQ4QTEwNDBDQ0ZBMDQzQjgzMTRB QUU0QzRFOUEwHhcNMjYwMzI2MTcwMjE4WhcNMjYwNDAyMTcwMjE4WjAYMRYwFAYD VQQDEw02OWM1NjY5Yi02ZmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApKv2MQXovvP5eGH6RqD1pnR+I8WxB1MELcgoR1qGYq1kx61HZ6I7RV9Rev5w cPKuYsR27b39qKn03PBYjMFiUXU8zRheKD2l+eod+kYCRG+4sRX/ZZ+b23lz2YCB JaAr0PdxwiujOMG9i+fBU5BiMOQJ5w0DBBfbOghCF45TZ5NhlWTZtgCQmEqnJT9Z 1RwDcupFaL/am3XJ3iJ5a/Iepy0/a1Be8q+T/+L7nFG7fOTebgvUitWYsM1XFeKG LEHRvfnCaOkfrwnH8qcBXH+OD3QfEM9cYjYu+ldMI4vsB1y/F53fflmzK4HWC3Il AKyhVSBKTf+yVvr2TSnM9ivk0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPLwi7rW aRrpjNiDlPKYqe6sFdVGMB8GA1UdIwQYMBaAFEhS6HJsFEihBAzPoEO4MUquTE6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9DMUNCMkRGMjEw RDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNLRUVETS1nUTdneFNxNU1U cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1NGTG9jbXdVU0tFRURNLWdRN2d4U3E1TVRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9DMUNCMkRGMjEwRDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNL RUVETS1nUTdneFNxNU1UcG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfryLg0KI8pLo6ud+oTDzF5TT9jUon9pBw84ZO0mFJhCZ6EzfNJj6twTUI5vy sz3DyLyA10/FWjPOVsMGHMBf3cfxIJbFLx1K7Bx/BeV/tv28QEwQ009ZWOLEY0H2 JqI93hCpwq91UW9bFtBtcDEhzzN4yKE7ipajLHyAO/sAqj69qY8S69NhjBXYg50V hrKFPehm/5ebSs1zr39QCB+A+hdxwUXpRQR937aSlvxGd2d4Jy6Oioo0LTakUkKn v9ezrDNzdhK25g6iTB3WgnC9hteFqFm9dLzRKegVxyNDhoVgZH8tC1sFpfGHjIsq 3lgj4Y5eHSgcrrMSx8ehGLcNlg== -----END CERTIFICATE-----Generated at Fri Mar 27 01:08:43 2026 by rpki-client