This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft File: SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft (raw, json) Hash identifier: Gcc/fEALZEyfniet4mKgO+YqdjYanTg3ywRTwW3VopI= Subject key identifier: 22:D1:D4:DA:B6:0A:AB:20:DB:2E:9F:C4:F5:8C:4D:23:59:22:03:86 Authority key identifier: 48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A Certificate issuer: /CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Certificate serial: 0C75 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft Manifest number: 0C6D Signing time: Sat 06 Dec 2025 16:38:25 +0000 Manifest this update: Sat 06 Dec 2025 16:38:24 +0000 Manifest next update: Sat 13 Dec 2025 16:38:24 +0000 Files and hashes: 1: SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl (hash: DgsNgmEiXpGf7KhyAcg6Pfx8Sss+kH7e+P9HzDscfn4=) 2: AB138380985F11EEBA5D186DC4F9AE02.roa (hash: AHx+rcesmSJ02RarPyYkZVOe2l/xINiEbEhHNsgsus8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:11:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3189 (0xc75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF, serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Validity Not Before: Dec 6 16:38:24 2025 GMT Not After : Dec 13 16:38:24 2025 GMT Subject: CN=69345c01-b9aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7f:c4:c6:30:55:c1:f0:a4:e3:58:65:21:74: 4c:bb:9e:b0:67:c9:6f:63:46:d9:17:90:fb:d0:53: ca:ff:0e:28:78:a4:f4:d9:72:79:2c:52:b0:d1:aa: ed:7c:67:11:77:30:a2:5e:12:7b:7c:58:b3:68:5d: cb:50:a4:26:67:06:48:9f:b2:68:fd:66:a9:62:5b: c9:dd:3b:39:1f:12:6a:b2:95:3c:68:57:bf:95:0f: 78:dd:6c:d8:e7:d4:7e:d3:a7:b1:09:04:a9:bc:1f: 22:b3:ca:32:39:82:7a:fb:11:06:16:35:9f:61:b4: c2:24:85:42:de:96:02:15:f8:ef:5b:45:b0:b9:01: bf:76:85:1a:82:01:ad:8a:db:f9:ff:eb:ff:cc:19: cd:0a:d3:23:db:39:2d:b3:0b:c9:52:a0:99:4c:21: 62:04:14:fb:ca:16:0d:28:a1:e1:b2:ba:e4:cd:a0: c5:1f:e9:98:a8:1b:03:79:89:da:a9:5a:1c:d3:5f: 2f:30:e7:c3:f4:3f:f6:b2:b5:75:f5:29:3d:85:a9: 27:c7:94:2b:68:2b:49:27:ed:f5:00:86:ae:4a:d2: 5a:5c:39:ac:0b:33:a6:2d:65:6d:1b:50:20:d6:5f: 79:f7:90:1f:39:29:8b:99:79:df:ec:0c:6e:94:a7: 72:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:D1:D4:DA:B6:0A:AB:20:DB:2E:9F:C4:F5:8C:4D:23:59:22:03:86 X509v3 Authority Key Identifier: keyid:48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:8b:19:fe:ef:f5:75:a5:99:62:b8:cc:06:bc:e4:a8:63:2c: 0a:66:c4:da:8f:0e:c9:2d:7e:fe:54:05:b8:af:60:89:c5:92: 84:55:d9:65:c3:e9:ca:44:0b:59:7e:93:f2:f8:1d:80:c8:c2: 34:1d:a7:ef:bf:35:d4:39:e4:74:ec:11:8a:97:b1:c2:87:d2: 0a:8f:80:23:fb:82:22:9b:46:51:04:58:7e:ed:f0:06:8f:f8: 71:d8:d5:d8:82:34:cc:1a:f9:45:9f:f7:5a:0c:b7:e8:fe:28: eb:28:2a:2a:eb:ae:d9:a8:10:16:ce:85:4d:97:53:5e:5c:91: d8:c3:16:c1:ac:be:93:90:43:a7:3d:ba:c0:b6:56:c6:b1:3c: 8d:55:22:6b:90:89:78:a0:eb:96:06:29:28:8e:21:d7:cf:3f: 21:2e:88:95:86:70:7c:ac:6d:41:13:57:12:1e:22:6c:f2:14: 9f:35:93:0d:bc:29:ae:15:3a:8e:40:54:d7:e2:19:bd:c4:a6: 8b:c6:4b:ad:7e:3a:c0:91:29:9e:ab:14:60:9f:e2:3d:a0:6c: fd:b0:93:0d:57:48:13:3a:71:97:33:b1:e8:02:d3:ff:76:7a: 3a:22:8c:69:0b:68:b2:ca:cd:27:02:c5:26:95:f3:bd:1e:a7: cf:61:5b:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDQ4NTJFODcyNkMxNDQ4QTEwNDBDQ0ZBMDQzQjgzMTRB QUU0QzRFOUEwHhcNMjUxMjA2MTYzODI0WhcNMjUxMjEzMTYzODI0WjAYMRYwFAYD VQQDEw02OTM0NWMwMS1iOWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzX/ExjBVwfCk41hlIXRMu56wZ8lvY0bZF5D70FPK/w4oeKT02XJ5LFKw0art fGcRdzCiXhJ7fFizaF3LUKQmZwZIn7Jo/WapYlvJ3Ts5HxJqspU8aFe/lQ943WzY 59R+06exCQSpvB8is8oyOYJ6+xEGFjWfYbTCJIVC3pYCFfjvW0WwuQG/doUaggGt itv5/+v/zBnNCtMj2zktswvJUqCZTCFiBBT7yhYNKKHhsrrkzaDFH+mYqBsDeYna qVoc018vMOfD9D/2srV19Sk9haknx5QraCtJJ+31AIauStJaXDmsCzOmLWVtG1Ag 1l9595AfOSmLmXnf7AxulKdyyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLR1Nq2 Cqsg2y6fxPWMTSNZIgOGMB8GA1UdIwQYMBaAFEhS6HJsFEihBAzPoEO4MUquTE6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9DMUNCMkRGMjEw RDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNLRUVETS1nUTdneFNxNU1U cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1NGTG9jbXdVU0tFRURNLWdRN2d4U3E1TVRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9DMUNCMkRGMjEwRDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNL RUVETS1nUTdneFNxNU1UcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcixn+7/V1pZliuMwGvOSoYywKZsTajw7JLX7+VAW4r2CJxZKEVdll w+nKRAtZfpPy+B2AyMI0HafvvzXUOeR07BGKl7HCh9IKj4Aj+4Iim0ZRBFh+7fAG j/hx2NXYgjTMGvlFn/daDLfo/ijrKCoq667ZqBAWzoVNl1NeXJHYwxbBrL6TkEOn PbrAtlbGsTyNVSJrkIl4oOuWBikojiHXzz8hLoiVhnB8rG1BE1cSHiJs8hSfNZMN vCmuFTqOQFTX4hm9xKaLxkutfjrAkSmeqxRgn+I9oGz9sJMNV0gTOnGXM7HoAtP/ dno6IoxpC2iyys0nAsUmlfO9HqfPYVuj -----END CERTIFICATE-----Generated at Sat Dec 6 20:15:11 2025 by rpki-client