This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft File: SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft (raw, json) Hash identifier: HvRMRx+tDFtN/KV1Xfv19qa7qVbLZhp98dk9QmSPnR0= Subject key identifier: E8:84:6E:6D:64:B6:95:7C:27:BF:A9:27:DD:54:70:98:37:67:33:EF Authority key identifier: 48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A Certificate issuer: /CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Certificate serial: 0C90 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft Manifest number: 0C87 Signing time: Sat 24 Jan 2026 16:49:22 +0000 Manifest this update: Sat 24 Jan 2026 16:49:22 +0000 Manifest next update: Sat 31 Jan 2026 16:49:22 +0000 Files and hashes: 1: SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl (hash: Wqa3wyEqzOESVN+UmWjchpeeLc8kB3ldup4qsFsDZdk=) 2: 16572A3CEB3511F08C2D5B303F6F56BC.roa (hash: XLcDiA/e/g3NOE/mRtgv3M4weMGp247mHoEvFmNb7AY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3216 (0xc90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF, serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Validity Not Before: Jan 24 16:49:22 2026 GMT Not After : Jan 31 16:49:22 2026 GMT Subject: CN=6974f812-2ec9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:17:f4:1a:a9:f0:66:bc:7e:98:8d:03:ca:66: b3:0a:53:df:f3:c6:71:30:2d:fb:b0:f1:75:59:66: 1f:82:08:2f:26:1d:7a:f0:a2:94:52:24:3a:d6:7b: 53:ea:65:39:4e:b9:52:0a:f7:f7:85:c3:e6:b6:d7: 6f:91:a0:93:75:4a:c4:2c:dd:3d:c0:74:5a:37:8f: 69:6a:11:8f:1e:0c:52:b7:34:d5:44:ce:4d:80:b0: e4:ad:cf:92:b5:f4:75:67:01:09:91:32:2d:48:86: 5e:94:95:50:d8:03:d9:08:4c:79:34:6d:dd:20:c3: 92:f6:94:0a:c0:3d:5a:0a:86:0a:3e:10:d7:35:e9: fc:17:32:05:c5:0a:89:9f:33:e9:7c:a2:39:b4:8b: 30:e9:15:ed:31:2c:6a:d0:82:32:30:d7:dd:f8:64: b0:6a:67:9a:10:b7:fa:a4:97:cd:7a:96:29:2b:b5: e4:f0:56:d9:a8:58:86:87:ea:8c:d8:d2:d6:15:b6: f4:55:1c:0c:bd:36:43:35:50:96:49:a6:13:71:d9: 17:af:9b:e8:b3:a7:fe:29:25:9b:a1:8c:ec:0e:70: 4e:25:06:e9:d3:a0:15:ae:ad:f2:b7:84:4b:7f:3b: fe:71:fe:45:a1:64:7d:b4:3b:df:d9:1e:e2:e6:f9: 2e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:84:6E:6D:64:B6:95:7C:27:BF:A9:27:DD:54:70:98:37:67:33:EF X509v3 Authority Key Identifier: keyid:48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:5d:1c:f1:fd:6a:fa:33:a4:43:0a:96:c4:f5:e1:fb:63:0f: 54:e2:17:ac:4d:63:4d:a3:0a:b7:88:5c:3e:ed:41:7a:56:ab: 1d:a0:6f:ee:44:89:40:53:1a:0b:08:04:5d:dd:ee:06:a4:77: 68:20:61:67:6c:b6:a4:51:31:59:78:c4:1e:b9:16:4d:ad:d8: a5:57:51:cf:dd:65:74:ba:71:b5:78:5d:af:17:f0:54:05:64: a3:5a:ca:49:fe:e2:e7:86:56:76:e5:65:34:44:85:33:4c:df: 22:0c:05:86:58:10:a1:60:8a:80:44:d7:13:02:14:36:c6:2d: 3b:9f:06:12:04:83:3d:83:af:f2:fe:76:4d:97:57:e5:65:72: 0e:83:97:15:0b:6b:92:52:43:d8:e6:0a:eb:67:f9:78:96:02: 2a:65:ee:c4:10:2f:14:39:c4:d3:ad:ca:e9:a5:5b:4a:b9:a5: a4:0b:36:33:8a:2f:60:fa:82:64:0a:84:7d:c2:5d:ba:af:56: c5:77:5e:83:05:98:cc:91:78:bc:05:a3:2d:47:7c:e3:3a:f0: ca:ea:a7:7d:05:de:8e:0e:07:57:0b:29:a0:66:85:28:29:84: 72:c9:fe:f4:fc:0e:8a:0c:d6:d4:36:76:b2:ad:80:2e:3f:1b: 94:86:66:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDQ4NTJFODcyNkMxNDQ4QTEwNDBDQ0ZBMDQzQjgzMTRB QUU0QzRFOUEwHhcNMjYwMTI0MTY0OTIyWhcNMjYwMTMxMTY0OTIyWjAYMRYwFAYD VQQDDA02OTc0ZjgxMi0yZWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhf0GqnwZrx+mI0DymazClPf88ZxMC37sPF1WWYfgggvJh168KKUUiQ61ntT 6mU5TrlSCvf3hcPmttdvkaCTdUrELN09wHRaN49pahGPHgxStzTVRM5NgLDkrc+S tfR1ZwEJkTItSIZelJVQ2APZCEx5NG3dIMOS9pQKwD1aCoYKPhDXNen8FzIFxQqJ nzPpfKI5tIsw6RXtMSxq0IIyMNfd+GSwameaELf6pJfNepYpK7Xk8FbZqFiGh+qM 2NLWFbb0VRwMvTZDNVCWSaYTcdkXr5vos6f+KSWboYzsDnBOJQbp06AVrq3yt4RL fzv+cf5FoWR9tDvf2R7i5vku/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOiEbm1k tpV8J7+pJ91UcJg3ZzPvMB8GA1UdIwQYMBaAFEhS6HJsFEihBAzPoEO4MUquTE6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9DMUNCMkRGMjEw RDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNLRUVETS1nUTdneFNxNU1U cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1NGTG9jbXdVU0tFRURNLWdRN2d4U3E1TVRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9DMUNCMkRGMjEwRDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNL RUVETS1nUTdneFNxNU1UcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1XRzx/Wr6M6RDCpbE9eH7Yw9U4hesTWNNowq3iFw+7UF6VqsdoG/u RIlAUxoLCARd3e4GpHdoIGFnbLakUTFZeMQeuRZNrdilV1HP3WV0unG1eF2vF/BU BWSjWspJ/uLnhlZ25WU0RIUzTN8iDAWGWBChYIqARNcTAhQ2xi07nwYSBIM9g6/y /nZNl1flZXIOg5cVC2uSUkPY5grrZ/l4lgIqZe7EEC8UOcTTrcrppVtKuaWkCzYz ii9g+oJkCoR9wl26r1bFd16DBZjMkXi8BaMtR3zjOvDK6qd9Bd6ODgdXCymgZoUo KYRyyf70/A6KDNbUNnayrYAuPxuUhmYH -----END CERTIFICATE-----Generated at Sun Jan 25 17:25:26 2026 by rpki-client