This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: ZBqQdfwd7ak+aI7JbjB7FmTIx+bz/+waENmeF/OSjXY= Subject key identifier: 8A:8F:7A:95:FB:8E:75:A3:B9:F2:68:3B:9C:E9:25:A4:2E:0F:11:CD Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 6E419441C3EE3807BD46DF7DB43A53CC30828405 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 056C Signing time: Thu 27 Nov 2025 00:02:40 +0000 Manifest this update: Thu 27 Nov 2025 00:02:40 +0000 Manifest next update: Mon 01 Dec 2025 00:02:40 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: o8OylWTxDKQtTulPCGYgnKDITPzcVuIL1D3gKLxN5Vc=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: w+4+bxo/lRwC2hOG9Edn/+79C2GPpMAPhWdMbwG/9JU=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Dec 2025 00:02:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:41:94:41:c3:ee:38:07:bd:46:df:7d:b4:3a:53:cc:30:82:84:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Nov 27 00:02:40 2025 GMT Not After : Dec 1 00:02:40 2025 GMT Subject: serialNumber=c626c6199278453f3926211e0f4aa9f3e28e982245ba0ea4961569294677410e, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:84:1c:c2:9d:64:2b:11:62:f6:fd:dc:4e:de: 87:13:b2:66:13:0c:83:bf:96:86:57:be:96:85:a7: 3b:e8:fa:97:6e:53:9c:19:70:62:db:b9:87:8a:2a: f2:9f:ff:ec:f8:b9:8f:cd:39:52:ea:90:26:5c:fd: c2:bd:08:98:e1:06:58:83:ea:a4:bb:fb:2c:ce:a5: cb:96:9f:00:62:96:fd:65:a2:00:91:f1:0e:ff:3d: 92:6d:be:05:b8:4c:98:6d:35:35:ad:da:e4:91:b4: 19:15:2a:2b:b3:60:8f:75:92:e0:ad:64:90:17:80: 0b:b7:b5:4d:dd:4f:00:d2:12:68:14:88:19:37:a2: 8f:09:e1:2d:9b:5d:f5:d6:ad:41:59:7e:74:35:8b: 55:c3:3a:84:fe:b5:38:a4:c5:5b:38:68:62:d8:77: 0a:77:b1:76:4e:5d:3f:2b:b0:a8:6c:3d:cb:89:59: 51:1f:ca:62:7c:4d:84:c6:ec:f9:64:d6:34:7f:56: 92:09:72:34:bc:71:5c:f6:0e:f5:32:19:8d:9e:6a: db:85:04:45:f2:20:3c:18:f5:03:7b:7e:41:f5:f1: d7:f0:07:01:d5:78:30:89:45:f8:03:43:2e:55:6d: 75:67:59:3d:be:d9:04:5a:08:01:93:8e:ac:62:fb: 58:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:8F:7A:95:FB:8E:75:A3:B9:F2:68:3B:9C:E9:25:A4:2E:0F:11:CD X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:92:8a:ea:8e:a6:45:3a:dd:09:e8:ea:6e:71:32:3a:96:74: b5:03:0c:31:03:c2:cf:b1:b8:14:b6:4a:ad:14:bf:b2:48:32: 97:33:a4:8c:96:a7:3f:86:d6:79:9a:b9:53:61:99:40:09:33: c5:10:44:a8:aa:71:72:8f:b9:cc:f0:e7:d0:f7:4a:ea:26:a4: 6d:ac:5d:61:05:b7:a2:ab:2a:50:75:b4:5d:00:fa:ca:68:c0: e2:a8:21:c9:45:bd:64:5f:fe:33:9a:08:71:85:33:90:b2:3c: cb:dd:9e:f2:89:31:22:b8:ef:28:cb:05:4f:e4:52:ff:f6:2d: 57:bd:11:87:99:e6:0b:b2:71:47:63:92:c8:51:84:7e:bb:98: 6b:45:4d:5e:46:77:ed:5a:4c:91:9c:da:c1:6f:0a:06:61:3f: e2:4a:fa:db:b3:16:a2:92:77:f7:c4:a6:40:62:56:5d:f3:48: bb:d4:cd:72:a4:b6:74:cc:ab:6a:e4:75:a1:98:a7:8c:db:43: e1:b5:41:06:c8:0d:2c:ba:84:d8:99:76:17:f5:56:68:9a:ec: a2:ea:73:7f:2f:30:56:21:ee:8f:90:0c:80:84:da:fb:ce:45: c8:31:5e:6d:ca:a4:4b:25:bd:f7:43:23:c5:0c:79:10:5f:68: b4:58:7d:81 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUbkGUQcPuOAe9Rt99tDpTzDCChAUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTEyNzAwMDI0MFoX DTI1MTIwMTAwMDI0MFowejFJMEcGA1UEBRNAYzYyNmM2MTk5Mjc4NDUzZjM5MjYy MTFlMGY0YWE5ZjNlMjhlOTgyMjQ1YmEwZWE0OTYxNTY5Mjk0Njc3NDEwZTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyYQcwp1kKxFi9v3cTt6HE7JmEwyD v5aGV76Whac76PqXblOcGXBi27mHiiryn//s+LmPzTlS6pAmXP3CvQiY4QZYg+qk u/sszqXLlp8AYpb9ZaIAkfEO/z2Sbb4FuEyYbTU1rdrkkbQZFSors2CPdZLgrWSQ F4ALt7VN3U8A0hJoFIgZN6KPCeEtm1311q1BWX50NYtVwzqE/rU4pMVbOGhi2HcK d7F2Tl0/K7CobD3LiVlRH8pifE2Exuz5ZNY0f1aSCXI0vHFc9g71MhmNnmrbhQRF 8iA8GPUDe35B9fHX8AcB1XgwiUX4A0MuVW11Z1k9vtkEWggBk46sYvtY3wIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFIqPepX7jnWjufJoO5zpJaQuDxHNMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBADGSiuqOpkU63Qno6m5xMjqWdLUDDDED ws+xuBS2Sq0Uv7JIMpczpIyWpz+G1nmauVNhmUAJM8UQRKiqcXKPuczw59D3Suom pG2sXWEFt6KrKlB1tF0A+spowOKoIclFvWRf/jOaCHGFM5CyPMvdnvKJMSK47yjL BU/kUv/2LVe9EYeZ5guycUdjkshRhH67mGtFTV5Gd+1aTJGc2sFvCgZhP+JK+tuz FqKSd/fEpkBiVl3zSLvUzXKktnTMq2rkdaGYp4zbQ+G1QQbIDSy6hNiZdhf1Vmia 7KLqc38vMFYh7o+QDICE2vvORcgxXm3KpEslvfdDI8UMeRBfaLRYfYE= -----END CERTIFICATE-----Generated at Thu Nov 27 05:06:44 2025 by rpki-client