This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: mR6GQL1wxOyySizfDOKkDWndrUMxpYVCqsfR/MwsXCU= Subject key identifier: 3F:93:69:97:F6:6C:5D:8A:78:9D:46:1B:7E:32:EE:11:43:F1:3E:D4 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 2060347BEE4A5223EEB5BAAC53D4BF9761E6DC2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 058A Signing time: Sat 27 Dec 2025 00:10:39 +0000 Manifest this update: Sat 27 Dec 2025 00:10:39 +0000 Manifest next update: Wed 31 Dec 2025 00:10:39 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: VKe+lbUC8PBAaDj/kh8+72UYEbxsa22fpGKrj2T35x4=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 00:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:60:34:7b:ee:4a:52:23:ee:b5:ba:ac:53:d4:bf:97:61:e6:dc:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Dec 27 00:10:39 2025 GMT Not After : Dec 31 00:10:39 2025 GMT Subject: serialNumber=c2413c45e84c9dd5458867f66bad91a0bb69598145a5f4f9c958252b73ecf76c, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b4:19:16:f5:5d:a1:84:94:72:ff:2f:32:b5: 2b:6a:58:3a:df:71:ee:8f:4e:43:b1:6c:b9:fd:f5: 36:5e:94:54:ce:cb:d6:4d:9f:14:d7:fa:19:8e:da: 2f:93:7a:07:2e:70:d7:8c:85:22:b3:3c:19:57:61: 2d:57:88:74:d7:39:ed:29:96:c6:65:64:47:2f:ab: 14:fd:11:28:ad:e8:db:8d:3c:8d:3d:09:2c:27:71: d6:4b:ea:7e:c5:a8:ae:80:42:44:1f:06:d4:79:89: 60:14:f3:39:4f:29:97:dd:dc:00:02:fb:9a:3d:f8: 96:35:7e:b2:85:67:9f:13:98:29:93:6a:65:1d:26: 7e:ab:ca:a0:73:33:4e:3d:07:46:46:d5:d3:45:df: 9c:6d:7b:68:e7:69:80:d1:57:62:02:55:66:90:e5: 0a:7f:6b:23:1e:04:93:84:48:3a:d6:ba:ce:1e:fd: 6c:a0:3a:c8:a1:da:3b:19:00:a3:80:26:2b:a2:51: 79:f2:22:2b:42:b0:8d:98:ad:2a:fc:34:b8:7a:01: 97:50:0b:12:c7:68:6e:3e:08:2a:6a:3e:21:9a:28: e4:10:b7:a6:64:75:97:86:1d:1d:c0:6d:ba:18:5d: 9c:31:22:5b:de:e4:40:17:d7:a7:91:f7:b2:c3:db: 94:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:93:69:97:F6:6C:5D:8A:78:9D:46:1B:7E:32:EE:11:43:F1:3E:D4 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:d4:f6:1c:ab:17:ac:2a:b0:01:79:d8:37:07:4a:0b:26:aa: e8:5c:44:78:03:37:32:a8:6c:85:a0:fb:1c:ad:64:34:0d:fa: 87:53:ae:b4:42:29:b1:0c:df:c9:f4:a5:b2:17:bb:f8:38:91: 52:a3:27:cc:8c:16:62:a9:84:a5:30:c7:e6:b3:0b:8b:ab:f2: ae:92:c5:63:41:5e:85:96:41:11:6c:64:21:08:d3:89:9c:e1: eb:2b:d0:77:2b:ca:f7:66:4c:39:3b:9f:12:4c:7c:7f:1c:da: cd:b5:91:89:a9:56:21:77:9e:94:12:1e:c5:e7:0e:e8:90:6f: fa:ee:5a:43:29:25:79:49:6b:e3:32:3c:94:d7:29:2a:28:70: e6:04:c7:73:f3:6d:58:64:ab:7f:66:1c:fe:63:67:85:1c:bc: be:90:d7:27:e6:9b:47:10:f3:27:7c:a5:23:87:a5:1a:f1:ce: f2:32:f5:27:31:b6:4e:ef:0e:eb:06:bf:63:21:85:88:a1:33: 8d:8e:fb:5e:2a:88:53:c7:74:29:81:3c:82:47:4e:61:a6:c8: 17:e8:ac:ea:58:60:61:82:0d:8c:82:44:ec:16:0c:cb:77:0d: 0d:33:6f:2a:c7:0d:c9:11:20:18:93:59:9b:a2:f8:03:43:ed: 8a:80:03:d0 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUIGA0e+5KUiPutbqsU9S/l2Hm3C0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTIyNzAwMTAzOVoX DTI1MTIzMTAwMTAzOVowejFJMEcGA1UEBRNAYzI0MTNjNDVlODRjOWRkNTQ1ODg2 N2Y2NmJhZDkxYTBiYjY5NTk4MTQ1YTVmNGY5Yzk1ODI1MmI3M2VjZjc2YzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAurQZFvVdoYSUcv8vMrUralg633Hu j05DsWy5/fU2XpRUzsvWTZ8U1/oZjtovk3oHLnDXjIUiszwZV2EtV4h01zntKZbG ZWRHL6sU/REorejbjTyNPQksJ3HWS+p+xaiugEJEHwbUeYlgFPM5TymX3dwAAvua PfiWNX6yhWefE5gpk2plHSZ+q8qgczNOPQdGRtXTRd+cbXto52mA0VdiAlVmkOUK f2sjHgSThEg61rrOHv1soDrIodo7GQCjgCYrolF58iIrQrCNmK0q/DS4egGXUAsS x2huPggqaj4hmijkELemZHWXhh0dwG26GF2cMSJb3uRAF9enkfeyw9uUfwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFD+TaZf2bF2KeJ1GG34y7hFD8T7UMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAFvU9hyrF6wqsAF52DcHSgsmquhcRHgD NzKobIWg+xytZDQN+odTrrRCKbEM38n0pbIXu/g4kVKjJ8yMFmKphKUwx+azC4ur 8q6SxWNBXoWWQRFsZCEI04mc4esr0HcryvdmTDk7nxJMfH8c2s21kYmpViF3npQS HsXnDuiQb/ruWkMpJXlJa+MyPJTXKSoocOYEx3PzbVhkq39mHP5jZ4UcvL6Q1yfm m0cQ8yd8pSOHpRrxzvIy9Scxtk7vDusGv2MhhYihM42O+14qiFPHdCmBPIJHTmGm yBforOpYYGGCDYyCROwWDMt3DQ0zbyrHDckRIBiTWZui+AND7YqAA9A= -----END CERTIFICATE-----Generated at Sat Dec 27 03:07:07 2025 by rpki-client