This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: rBCXpyab8osjxNx1ZcD7tVk5C/mMo3qatSp2OSR+skQ= Subject key identifier: 31:EF:DE:83:79:08:CA:92:DB:2D:CF:D7:D6:F2:FF:6F:2D:5C:48:C9 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 294F071D972F54D649F1432B9340B606142CB557 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0595 Signing time: Wed 07 Jan 2026 00:12:44 +0000 Manifest this update: Wed 07 Jan 2026 00:12:44 +0000 Manifest next update: Sun 11 Jan 2026 00:12:44 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: JW00iSNx37jCXxywSGIYDuv4iltf1wcLKcx9Nmk+cjc=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 Jan 2026 00:12:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:4f:07:1d:97:2f:54:d6:49:f1:43:2b:93:40:b6:06:14:2c:b5:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jan 7 00:12:44 2026 GMT Not After : Jan 11 00:12:44 2026 GMT Subject: serialNumber=e5cdf76cfde8f41340afce3d2d5d3dd1a32819ef915e06e0bf363c7156c231b4, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5a:5a:f2:fe:ab:0c:13:20:29:74:88:24:b7: 86:7d:ad:53:0b:fd:3a:a9:6c:f8:20:ad:10:66:34: 73:34:59:d2:87:f0:04:14:8b:5b:3a:ae:23:43:53: ed:d3:74:f9:03:ec:d3:67:73:5a:d8:6a:80:99:e7: 2a:5e:46:63:dd:b7:c1:22:11:e7:28:66:9b:59:ec: 25:80:88:87:7f:2a:12:29:93:d0:7a:66:8d:b6:83: 4b:18:20:c6:57:e2:d6:39:ea:ec:cf:58:e4:2a:7b: 5a:7e:4c:a7:34:62:d7:bd:d9:24:fd:b1:91:37:9e: 65:e4:cc:77:0b:c8:52:e6:67:bf:ec:b7:b3:f4:83: 2c:1d:19:7d:22:b8:a3:f7:19:17:ce:69:e3:84:22: 86:9b:cb:d0:fa:18:94:b7:0d:63:77:fa:e6:63:aa: b8:b6:8d:94:41:8c:0e:6f:28:60:a4:b3:23:a7:ee: 57:ae:74:40:95:a6:36:9c:15:22:a6:05:c6:8e:9d: 75:5d:a7:8e:b2:08:3a:2d:a9:07:92:26:75:4c:ab: ea:8a:39:5f:83:c2:df:a0:0d:11:69:6f:5c:04:34: 91:ee:01:e4:1e:1d:f8:fb:a5:4e:f9:26:55:0b:e3: 25:28:44:93:55:b0:e3:f5:26:13:25:a3:1c:6e:00: bf:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:EF:DE:83:79:08:CA:92:DB:2D:CF:D7:D6:F2:FF:6F:2D:5C:48:C9 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:a6:33:0b:60:12:5e:b5:1a:a8:00:56:21:45:67:1b:0f:9a: 4d:4b:4d:19:c3:b1:36:92:d0:f7:fc:ba:6f:52:45:5f:fe:49: 4e:36:4c:2d:71:a9:f9:98:ac:12:76:57:f4:6c:d8:32:4e:02: 19:95:a1:a0:56:9a:23:f1:c7:6c:0c:57:1f:e3:cb:86:a3:63: 1e:b8:b6:fa:5e:02:79:ff:60:59:30:4b:8f:5c:cd:ef:ad:1f: 11:cb:e0:f0:03:8b:06:ad:c9:71:71:4b:07:16:0f:06:62:b3: a1:e1:0d:8e:9f:47:f9:27:9a:a3:19:72:85:c9:1f:e9:ed:83: 2a:56:6a:aa:e9:98:a0:78:ce:60:17:9d:a7:a8:3b:0a:d5:5c: 49:45:e2:7d:39:62:db:f0:2d:31:01:4b:9a:89:7b:94:34:c1: 77:0d:79:2c:d5:68:e8:b6:0c:86:c8:ff:ea:5f:a5:2a:77:34: c3:4f:d3:08:88:6a:70:23:80:0e:e4:4c:31:d2:ce:aa:1d:b7: a5:de:4a:d3:fb:8d:6a:4f:f3:16:92:9e:05:8f:8c:a4:6c:6a: 61:d5:cc:d8:39:1d:f6:05:8a:3b:98:7c:87:68:73:f4:76:34: 2f:30:0f:21:cd:08:a0:87:dd:af:19:b1:a2:27:53:32:83:dc: f0:53:5c:b7 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUKU8HHZcvVNZJ8UMrk0C2BhQstVcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDEwNzAwMTI0NFoX DTI2MDExMTAwMTI0NFowejFJMEcGA1UEBRNAZTVjZGY3NmNmZGU4ZjQxMzQwYWZj ZTNkMmQ1ZDNkZDFhMzI4MTllZjkxNWUwNmUwYmYzNjNjNzE1NmMyMzFiNDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqVpa8v6rDBMgKXSIJLeGfa1TC/06 qWz4IK0QZjRzNFnSh/AEFItbOq4jQ1Pt03T5A+zTZ3Na2GqAmecqXkZj3bfBIhHn KGabWewlgIiHfyoSKZPQemaNtoNLGCDGV+LWOersz1jkKntafkynNGLXvdkk/bGR N55l5Mx3C8hS5me/7Lez9IMsHRl9Irij9xkXzmnjhCKGm8vQ+hiUtw1jd/rmY6q4 to2UQYwObyhgpLMjp+5XrnRAlaY2nBUipgXGjp11XaeOsgg6LakHkiZ1TKvqijlf g8LfoA0RaW9cBDSR7gHkHh34+6VO+SZVC+MlKESTVbDj9SYTJaMcbgC/tQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFDHv3oN5CMqS2y3P19by/28tXEjJMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAIGmMwtgEl61GqgAViFFZxsPmk1LTRnD sTaS0Pf8um9SRV/+SU42TC1xqfmYrBJ2V/Rs2DJOAhmVoaBWmiPxx2wMVx/jy4aj Yx64tvpeAnn/YFkwS49cze+tHxHL4PADiwatyXFxSwcWDwZis6HhDY6fR/knmqMZ coXJH+ntgypWaqrpmKB4zmAXnaeoOwrVXElF4n05YtvwLTEBS5qJe5Q0wXcNeSzV aOi2DIbI/+pfpSp3NMNP0wiIanAjgA7kTDHSzqodt6XeStP7jWpP8xaSngWPjKRs amHVzNg5HfYFijuYfIdoc/R2NC8wDyHNCKCH3a8ZsaInUzKD3PBTXLc= -----END CERTIFICATE-----Generated at Wed Jan 7 21:42:13 2026 by rpki-client