This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: LeO6gi7mFs4A0hZlacRxJhPe/sIG8bpkiiUmdvyZEmM= Subject key identifier: A8:E4:58:89:39:56:96:A9:AC:7C:D6:AD:2D:05:67:D5:2A:7D:4A:61 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 10A28331814E6D9DFA1A10BBECBD94E6B30FFDE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0574 Signing time: Fri 05 Dec 2025 00:04:09 +0000 Manifest this update: Fri 05 Dec 2025 00:04:09 +0000 Manifest next update: Tue 09 Dec 2025 00:04:09 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: axmiV+jwZIkQ300/uKrX4MFoB6xMnVahvCV8ygYaYY0=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: w+4+bxo/lRwC2hOG9Edn/+79C2GPpMAPhWdMbwG/9JU=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 00:04:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:a2:83:31:81:4e:6d:9d:fa:1a:10:bb:ec:bd:94:e6:b3:0f:fd:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Dec 5 00:04:09 2025 GMT Not After : Dec 9 00:04:09 2025 GMT Subject: serialNumber=24492a5eafa4732cc1f866f23e5637dce92825a031c4ad9ba41e17ae05c1750f, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f6:bc:2e:c4:e2:08:ae:b2:50:22:78:14:18: a1:13:47:83:2d:8c:5f:ad:e9:95:65:a5:b8:c4:a5: 88:a7:77:a0:fc:b3:7f:fc:4e:ca:bd:b9:bd:d1:2d: ff:bb:f6:47:61:13:5c:e2:f7:9c:fc:a2:8d:1e:4d: 38:67:e1:f6:51:0d:f1:b9:b9:14:7d:63:3a:a9:4b: c3:de:00:02:e0:10:75:bf:5c:4a:92:f4:fd:7c:f8: b8:50:82:17:7c:41:4d:b2:22:24:05:d7:b5:7c:86: 1f:ae:3a:9c:62:83:68:33:3c:0d:93:69:41:e2:85: e8:35:8e:3b:d3:a4:04:d6:ab:4f:89:48:40:b7:cc: 15:7d:0f:59:3e:0b:ef:6a:8d:df:f7:e1:ee:56:0c: 64:f9:f7:c5:8a:2a:80:60:a5:e0:8f:81:8a:71:41: 7c:e0:2b:4f:da:fe:d3:9c:74:be:62:ae:c4:99:a7: 5d:3f:31:b0:bb:da:92:3d:37:19:b9:e4:98:70:35: 8a:e0:73:b3:89:da:21:44:e9:5f:b4:1f:5a:5d:e5: a9:af:4f:b8:16:50:91:e9:c9:3f:7f:84:5b:1e:26: 37:ec:0f:9c:5c:57:58:78:c9:e8:74:62:c2:f4:d1: 83:d5:d6:b3:5e:fc:be:51:70:7b:3f:34:1d:46:1a: bb:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:E4:58:89:39:56:96:A9:AC:7C:D6:AD:2D:05:67:D5:2A:7D:4A:61 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:7d:24:05:66:78:f8:55:03:84:89:2c:44:87:86:96:71:09: b9:d7:7d:a6:71:73:cf:52:d6:49:e6:e0:64:c1:fe:f4:36:32: c5:fe:59:6a:ac:cf:f4:c4:8e:d4:77:77:e2:65:5c:6b:7e:cd: d4:4f:7a:1e:27:7d:91:24:71:3c:47:71:3f:ce:47:ef:6d:0c: 90:34:40:87:a5:da:07:5b:a8:ea:fc:3c:f4:39:da:46:00:10: 86:14:95:43:2f:92:57:83:fd:53:dc:84:a2:60:c6:83:d2:d8: 6f:6e:fb:c5:eb:d7:d8:96:37:34:77:23:94:9b:05:71:50:77: 9a:46:7d:4d:2b:f0:36:ad:ba:f8:cd:6d:d2:6a:89:c6:d2:a9: a4:29:f2:95:f0:5e:0f:34:24:1d:99:94:05:bb:72:45:66:e3: 3f:b9:b1:56:40:fb:71:92:30:72:c4:18:0a:ea:1d:7c:48:21: 1e:59:4d:77:1a:ba:98:4f:7c:7b:bd:6a:3c:d5:1e:69:1a:7a: 3b:bf:3a:4c:14:59:32:07:c6:b1:88:e7:3a:fa:37:68:6e:b6: 61:35:bc:0d:24:8b:19:9f:27:25:64:d1:7c:b5:d7:3b:95:b8: e0:b1:1c:d8:f8:f8:71:33:87:fa:c0:d1:28:dc:d0:26:bb:82: 13:0c:6c:4f -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUEKKDMYFObZ36GhC77L2U5rMP/eEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTIwNTAwMDQwOVoX DTI1MTIwOTAwMDQwOVowejFJMEcGA1UEBRNAMjQ0OTJhNWVhZmE0NzMyY2MxZjg2 NmYyM2U1NjM3ZGNlOTI4MjVhMDMxYzRhZDliYTQxZTE3YWUwNWMxNzUwZjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/a8LsTiCK6yUCJ4FBihE0eDLYxf remVZaW4xKWIp3eg/LN//E7Kvbm90S3/u/ZHYRNc4vec/KKNHk04Z+H2UQ3xubkU fWM6qUvD3gAC4BB1v1xKkvT9fPi4UIIXfEFNsiIkBde1fIYfrjqcYoNoMzwNk2lB 4oXoNY4706QE1qtPiUhAt8wVfQ9ZPgvvao3f9+HuVgxk+ffFiiqAYKXgj4GKcUF8 4CtP2v7TnHS+Yq7EmaddPzGwu9qSPTcZueSYcDWK4HOzidohROlftB9aXeWpr0+4 FlCR6ck/f4RbHiY37A+cXFdYeMnodGLC9NGD1dazXvy+UXB7PzQdRhq7bwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFKjkWIk5VpaprHzWrS0FZ9UqfUphMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGd9JAVmePhVA4SJLESHhpZxCbnXfaZx c89S1knm4GTB/vQ2MsX+WWqsz/TEjtR3d+JlXGt+zdRPeh4nfZEkcTxHcT/OR+9t DJA0QIel2gdbqOr8PPQ52kYAEIYUlUMvkleD/VPchKJgxoPS2G9u+8Xr19iWNzR3 I5SbBXFQd5pGfU0r8DatuvjNbdJqicbSqaQp8pXwXg80JB2ZlAW7ckVm4z+5sVZA +3GSMHLEGArqHXxIIR5ZTXcauphPfHu9ajzVHmkaeju/OkwUWTIHxrGI5zr6N2hu tmE1vA0kixmfJyVk0Xy11zuVuOCxHNj4+HEzh/rA0Sjc0Ca7ghMMbE8= -----END CERTIFICATE-----Generated at Fri Dec 5 07:44:45 2025 by rpki-client