$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft File: SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft (raw, json) Hash identifier: ulXSAbPLxY3TZpe5lmg6E2XzdUheLaDOMtl4Znhf0Rs= Subject key identifier: B7:0E:71:F4:91:C0:7F:A2:EB:B6:70:D0:74:7D:8A:D1:DC:4A:69:C3 Authority key identifier: 48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A Certificate issuer: /CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Certificate serial: 0BF5 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft Manifest number: 0BEE Signing time: Fri 04 Apr 2025 17:15:46 +0000 Manifest this update: Fri 04 Apr 2025 17:15:45 +0000 Manifest next update: Fri 11 Apr 2025 17:15:45 +0000 Files and hashes: 1: SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl (hash: jgelzMvnDCNRRxGc90CdmA5NACqaF8TmsqMo7nqe8Fg=) 2: AB138380985F11EEBA5D186DC4F9AE02.roa (hash: F/Rw9IBSfAAu9SS5Zj7ZXQURqKcO45qHbFvRjzx84SU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:15:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3061 (0xbf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF Validity Not Before: Apr 4 17:15:45 2025 GMT Not After : Apr 11 17:15:45 2025 GMT Subject: CN=67f013c2-05eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:70:ba:76:f3:8e:71:08:6d:b2:66:7a:10:46: 1b:f9:8a:f6:ac:7f:15:8b:85:18:dc:a4:b8:90:6f: d2:67:5c:4d:7b:69:39:3d:9f:b6:3b:b3:64:a1:91: 42:61:4c:40:c1:50:65:4d:07:60:2b:b8:2b:28:c8: f1:b9:0a:c1:7d:fc:62:1a:70:59:e7:fe:45:ed:1d: 26:17:47:54:03:c4:96:fb:e2:7d:35:b6:98:48:3a: 8c:b3:7f:ef:f1:a7:f8:e1:a6:b9:f1:02:d4:b0:17: ed:c0:dd:23:cc:b9:55:3a:1d:e0:ac:96:84:20:64: 58:d7:b8:76:1c:71:c6:e1:14:44:bb:57:4c:ea:62: 66:1e:eb:33:07:03:5c:ff:03:65:31:15:f3:46:39: e0:d0:a7:cc:a3:50:33:fe:05:73:1e:03:d8:bf:78: f2:e7:20:2b:6d:a3:f4:bc:14:3e:69:91:2a:c5:1a: 88:56:9a:1f:0d:96:77:b2:3e:a1:d1:fb:60:73:68: e8:77:9b:f6:cd:97:51:ce:3f:a9:31:14:56:36:f7: 5c:5c:dd:3a:c5:7d:59:01:8c:1b:d6:c0:b7:b5:75: 63:f2:89:b9:18:8c:a0:2c:83:dd:21:31:be:83:78: 70:57:87:96:de:0b:34:bf:b0:eb:54:4d:16:25:03: b3:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:0E:71:F4:91:C0:7F:A2:EB:B6:70:D0:74:7D:8A:D1:DC:4A:69:C3 X509v3 Authority Key Identifier: keyid:48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:4c:a3:a2:ed:47:b4:e2:83:15:6d:31:53:2c:91:1e:91:b0: 63:75:6d:f4:81:75:6a:88:b5:eb:e3:11:06:f7:30:3f:f2:72: 8e:92:2c:d1:fe:e9:9e:9b:fb:d3:46:0f:05:25:9a:d9:db:66: 98:df:75:d7:5f:34:e5:27:16:49:9c:6d:d2:cd:50:d8:29:01: 8b:06:d2:99:ae:bb:33:82:e3:1d:bf:6d:96:08:6e:87:a5:3a: fc:24:c7:c2:0f:72:36:34:5c:30:5a:84:e5:dc:7f:af:49:38: c8:a2:ff:75:53:d5:5b:bc:23:15:b8:e8:f3:97:84:6e:29:45: a7:99:71:4a:01:30:a5:40:4e:be:66:04:71:19:dd:5a:cb:36: f4:a9:08:4f:4d:3a:39:d3:c4:dd:3d:56:db:ed:3a:09:2f:92: d5:36:92:07:1b:32:c1:fb:74:c9:25:5f:2f:bf:19:c0:12:9b: e7:7d:fa:64:79:9e:ef:06:89:cf:b4:30:f2:e2:70:7e:c3:fd: 7e:ae:02:f3:dc:42:8a:ed:72:67:7f:01:b6:f6:e0:8f:11:78: 2b:dd:79:9f:23:f7:99:8b:f2:99:e7:40:c1:4d:06:b2:f0:2c: 43:1c:ac:7a:cc:93:68:a1:11:35:99:57:f4:27:ea:ce:bf:68: 31:d1:c0:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDQ4NTJFODcyNkMxNDQ4QTEwNDBDQ0ZBMDQzQjgzMTRB QUU0QzRFOUEwHhcNMjUwNDA0MTcxNTQ1WhcNMjUwNDExMTcxNTQ1WjAYMRYwFAYD VQQDEw02N2YwMTNjMi0wNWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXC6dvOOcQhtsmZ6EEYb+Yr2rH8Vi4UY3KS4kG/SZ1xNe2k5PZ+2O7NkoZFC YUxAwVBlTQdgK7grKMjxuQrBffxiGnBZ5/5F7R0mF0dUA8SW++J9NbaYSDqMs3/v 8af44aa58QLUsBftwN0jzLlVOh3grJaEIGRY17h2HHHG4RREu1dM6mJmHuszBwNc /wNlMRXzRjng0KfMo1Az/gVzHgPYv3jy5yArbaP0vBQ+aZEqxRqIVpofDZZ3sj6h 0ftgc2jod5v2zZdRzj+pMRRWNvdcXN06xX1ZAYwb1sC3tXVj8om5GIygLIPdITG+ g3hwV4eW3gs0v7DrVE0WJQOz2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcOcfSR wH+i67Zw0HR9itHcSmnDMB8GA1UdIwQYMBaAFEhS6HJsFEihBAzPoEO4MUquTE6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9DMUNCMkRGMjEw RDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNLRUVETS1nUTdneFNxNU1U cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1NGTG9jbXdVU0tFRURNLWdRN2d4U3E1TVRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9DMUNCMkRGMjEwRDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNL RUVETS1nUTdneFNxNU1UcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+TKOi7Ue04oMVbTFTLJEekbBjdW30gXVqiLXr4xEG9zA/8nKOkizR /umem/vTRg8FJZrZ22aY33XXXzTlJxZJnG3SzVDYKQGLBtKZrrszguMdv22WCG6H pTr8JMfCD3I2NFwwWoTl3H+vSTjIov91U9VbvCMVuOjzl4RuKUWnmXFKATClQE6+ ZgRxGd1ayzb0qQhPTTo508TdPVbb7ToJL5LVNpIHGzLB+3TJJV8vvxnAEpvnffpk eZ7vBonPtDDy4nB+w/1+rgLz3EKK7XJnfwG29uCPEXgr3XmfI/eZi/KZ50DBTQay 8CxDHKx6zJNooRE1mVf0J+rOv2gx0cAt -----END CERTIFICATE-----Generated at Sat Apr 5 08:47:41 2025 by rpki-client