This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft File: SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft (raw, json) Hash identifier: kAfhVR3+Gk+DE6z8TDu4a5d6tTfW5Y2hlsY5LqHXHkI= Subject key identifier: 62:B8:8F:D0:C4:94:3B:C0:89:BF:F9:F2:4B:31:C6:1B:01:77:5D:AA Authority key identifier: 48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A Certificate issuer: /CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Certificate serial: 0C70 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft Manifest number: 0C68 Signing time: Wed 26 Nov 2025 16:42:37 +0000 Manifest this update: Wed 26 Nov 2025 16:42:37 +0000 Manifest next update: Wed 03 Dec 2025 16:42:37 +0000 Files and hashes: 1: SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl (hash: UzUcVSLo0Jk0UlkHNiFJr/RjU9C32syksHyrsWo1/Is=) 2: AB138380985F11EEBA5D186DC4F9AE02.roa (hash: AHx+rcesmSJ02RarPyYkZVOe2l/xINiEbEhHNsgsus8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Dec 2025 16:42:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3184 (0xc70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF, serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Validity Not Before: Nov 26 16:42:37 2025 GMT Not After : Dec 3 16:42:37 2025 GMT Subject: CN=69272dfd-8ff3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7b:77:9c:93:e4:0e:4f:f5:20:f6:bc:9e:b3: c1:77:5e:8d:40:2e:41:77:cf:47:65:81:cc:15:5f: 49:8d:41:c6:0d:16:3a:fb:bd:fc:a5:5a:b4:f3:f9: bc:cb:f7:8f:45:2e:f0:e9:a2:df:5f:ff:d1:4a:31: 30:b3:d6:09:05:3e:fa:ad:02:e6:d9:0a:bb:12:64: 73:64:dd:10:fa:09:21:9b:1a:69:44:f2:da:ab:ec: e3:d4:bd:49:12:4d:bb:19:f1:d2:cd:c1:60:b1:bb: 00:c4:d7:ab:bf:2c:7a:40:95:5d:d4:1c:c8:c6:af: fa:9d:47:9f:1a:0a:4b:a4:da:8c:bc:37:54:f2:79: 70:f4:fb:73:e1:a4:ff:9d:59:3d:0b:31:c3:a8:4e: 89:e8:fb:43:2f:22:12:78:6a:77:53:fa:3b:ef:98: 4e:89:0f:28:bc:ab:5c:f7:23:87:ea:4e:ef:95:61: 32:2c:ad:32:46:fe:91:d1:7e:ff:c9:0d:cc:91:9c: 05:fd:79:e8:48:4f:74:80:99:c7:13:8c:5f:9f:4b: 50:84:50:d3:d8:0b:cc:82:fc:88:24:e2:24:93:49: 8e:1f:e3:1a:f6:d1:b2:a7:94:3c:06:cc:f6:1c:fc: cc:3a:3f:8d:55:b3:32:8f:35:db:00:d6:2a:66:26: ae:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:B8:8F:D0:C4:94:3B:C0:89:BF:F9:F2:4B:31:C6:1B:01:77:5D:AA X509v3 Authority Key Identifier: keyid:48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:e5:f8:62:65:af:7a:ce:d1:73:53:32:3e:0b:e5:9f:18:84: 80:80:a1:82:bf:05:9c:61:37:2b:3a:33:f1:f2:8f:52:c0:d0: 42:81:07:a0:d1:2a:c5:96:0c:bb:21:a3:9b:bd:1e:b8:69:cc: 97:ee:8f:09:b2:8f:d4:ec:99:00:cb:ea:02:17:98:e1:05:01: 93:f1:6b:92:14:c2:81:18:38:6a:d4:14:a1:25:be:55:a7:f1: c2:3c:98:97:57:89:33:93:c0:36:bf:a2:bd:e5:6f:bb:e5:a3: 99:bb:c5:fd:88:73:a5:23:71:20:69:90:00:5a:c1:b0:f3:ad: 3f:15:80:ae:72:d9:ae:3f:9e:43:81:52:e3:55:03:57:7e:b0: a0:89:af:8f:d6:26:6a:36:a3:75:ea:5b:57:78:3a:93:46:96: 20:7d:55:16:61:59:9c:be:bd:89:81:e5:cf:09:a5:2e:1a:5a: 4f:4a:e1:53:31:8d:11:54:93:1e:be:a6:86:28:8a:f3:09:fc: 1b:80:5e:20:fe:13:8f:a2:f6:5b:df:91:df:91:55:26:ad:d9: 01:93:a5:ad:2c:63:2a:f6:76:10:a6:be:20:d3:98:c3:10:94: 89:a0:1e:50:c3:2e:a4:42:25:3a:da:c9:57:bf:38:6f:a9:83: 23:ac:35:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDQ4NTJFODcyNkMxNDQ4QTEwNDBDQ0ZBMDQzQjgzMTRB QUU0QzRFOUEwHhcNMjUxMTI2MTY0MjM3WhcNMjUxMjAzMTY0MjM3WjAYMRYwFAYD VQQDEw02OTI3MmRmZC04ZmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXt3nJPkDk/1IPa8nrPBd16NQC5Bd89HZYHMFV9JjUHGDRY6+738pVq08/m8 y/ePRS7w6aLfX//RSjEws9YJBT76rQLm2Qq7EmRzZN0Q+gkhmxppRPLaq+zj1L1J Ek27GfHSzcFgsbsAxNervyx6QJVd1BzIxq/6nUefGgpLpNqMvDdU8nlw9Ptz4aT/ nVk9CzHDqE6J6PtDLyISeGp3U/o775hOiQ8ovKtc9yOH6k7vlWEyLK0yRv6R0X7/ yQ3MkZwF/XnoSE90gJnHE4xfn0tQhFDT2AvMgvyIJOIkk0mOH+Ma9tGyp5Q8Bsz2 HPzMOj+NVbMyjzXbANYqZiauHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGK4j9DE lDvAib/58ksxxhsBd12qMB8GA1UdIwQYMBaAFEhS6HJsFEihBAzPoEO4MUquTE6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9DMUNCMkRGMjEw RDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNLRUVETS1nUTdneFNxNU1U cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1NGTG9jbXdVU0tFRURNLWdRN2d4U3E1TVRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9DMUNCMkRGMjEwRDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNL RUVETS1nUTdneFNxNU1UcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI5fhiZa96ztFzUzI+C+WfGISAgKGCvwWcYTcrOjPx8o9SwNBCgQeg 0SrFlgy7IaObvR64acyX7o8Jso/U7JkAy+oCF5jhBQGT8WuSFMKBGDhq1BShJb5V p/HCPJiXV4kzk8A2v6K95W+75aOZu8X9iHOlI3EgaZAAWsGw860/FYCuctmuP55D gVLjVQNXfrCgia+P1iZqNqN16ltXeDqTRpYgfVUWYVmcvr2JgeXPCaUuGlpPSuFT MY0RVJMevqaGKIrzCfwbgF4g/hOPovZb35HfkVUmrdkBk6WtLGMq9nYQpr4g05jD EJSJoB5Qwy6kQiU62slXvzhvqYMjrDVU -----END CERTIFICATE-----Generated at Fri Nov 28 05:41:48 2025 by rpki-client