This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: VYQ4uhcJ9nB0Lnx1Fb7Wtw0IP5xVCAXJ9ccWQuXKF3U= Subject key identifier: 55:67:BA:28:FB:03:E3:71:FD:83:E6:25:13:90:3D:20:E8:67:6A:4F Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 7969C5E2A0EAB2E67519C22B595EBD090CF14E5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05A9 Signing time: Tue 27 Jan 2026 00:16:37 +0000 Manifest this update: Tue 27 Jan 2026 00:16:37 +0000 Manifest next update: Sat 31 Jan 2026 00:16:37 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: ysYkEi9K1lSi9fKoIC2YNgyKYECGW6IUtslMruGwnIg=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 00:16:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:69:c5:e2:a0:ea:b2:e6:75:19:c2:2b:59:5e:bd:09:0c:f1:4e:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jan 27 00:16:37 2026 GMT Not After : Jan 31 00:16:37 2026 GMT Subject: serialNumber=d7583cf25ff0fd210f2e7e6e1160c6265547b3d5b00abea83044addd1e051710, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8d:85:f9:16:69:89:87:69:94:bc:22:41:dd: 59:7f:35:12:b3:6d:fb:c3:d3:a9:50:c5:59:df:0e: 47:dc:ab:ee:e4:1c:d6:af:2b:6e:29:f6:61:2d:bf: fe:6f:90:63:a1:e0:7e:7c:73:f0:e8:cf:08:09:b8: e1:1d:6d:43:2a:e3:d0:2c:2a:5e:de:98:9b:67:8d: c0:af:e9:08:c4:9a:b5:31:e5:8a:22:59:0c:8d:15: 89:9b:bc:c8:d4:23:4f:1e:80:c5:71:be:af:75:11: 55:e1:37:03:cf:64:76:ce:ef:37:e7:58:08:86:43: aa:d6:fe:74:09:4c:90:05:ec:e6:a9:03:18:94:35: bd:79:0f:a9:1e:9a:82:4e:ea:9a:20:1c:7b:c8:05: cf:76:88:77:12:33:51:66:2e:1c:93:ba:3b:19:8d: 0b:cd:bb:c8:60:d3:cb:5f:06:92:72:c6:e6:08:d2: 5e:52:4b:61:ac:f0:ae:8f:88:29:68:09:85:e4:d4: 94:5b:9c:24:8d:8e:d5:dd:06:24:74:aa:3a:df:90: 60:e4:86:37:67:c0:e3:56:1d:6d:bf:66:01:f4:bb: 47:60:d7:d3:d0:3c:de:92:ad:a4:b0:97:48:08:e2: ef:ca:81:d9:79:fe:30:d8:d1:52:32:4b:f7:84:e2: ea:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:67:BA:28:FB:03:E3:71:FD:83:E6:25:13:90:3D:20:E8:67:6A:4F X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:b5:a4:f9:c8:95:d6:0e:7a:1e:28:b8:59:53:c2:18:f4:30: 93:87:c1:7b:21:b3:4e:d9:c1:54:be:40:e1:89:f9:42:65:e3: c6:00:17:87:36:e6:ff:91:e0:0b:ba:61:9c:15:b0:9c:11:1a: 11:b5:43:07:c8:37:f6:6d:9d:6b:11:b6:a6:5f:7a:c7:67:db: 9f:be:b0:82:1c:31:81:69:35:fa:12:db:12:92:b3:de:62:b2: 7d:cf:04:e7:9e:41:bc:fc:87:fc:6b:01:ac:33:21:3d:40:36: ce:9f:14:bf:7a:7d:3b:c6:45:5f:f9:89:84:cd:e4:92:81:52: 18:51:a0:7a:c4:3c:2b:ef:bb:fa:3d:4e:d6:8a:fc:39:7e:b3: 52:de:73:54:3d:0f:e7:5d:1d:7a:e0:20:71:e7:d7:0b:4b:55: 58:90:12:a0:5e:46:0a:ea:21:1c:10:f7:d9:86:3a:1e:3d:c5: 57:03:c2:0c:b5:f3:49:09:b4:2c:28:f9:73:3b:67:bb:f1:f1: 2d:87:68:38:62:31:a6:fa:4e:9a:ce:1b:c1:03:64:5b:91:65: 45:00:46:18:c0:31:5a:e1:d0:03:a1:1a:a7:c4:87:a0:79:19: 8d:15:5d:6b:a2:0f:a1:55:43:7a:48:03:48:e9:98:c0:30:39: 39:ff:0b:39 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUeWnF4qDqsuZ1GcIrWV69CQzxTl8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDEyNzAwMTYzN1oX DTI2MDEzMTAwMTYzN1owejFJMEcGA1UEBRNAZDc1ODNjZjI1ZmYwZmQyMTBmMmU3 ZTZlMTE2MGM2MjY1NTQ3YjNkNWIwMGFiZWE4MzA0NGFkZGQxZTA1MTcxMDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArY2F+RZpiYdplLwiQd1ZfzUSs237 w9OpUMVZ3w5H3Kvu5BzWrytuKfZhLb/+b5BjoeB+fHPw6M8ICbjhHW1DKuPQLCpe 3pibZ43Ar+kIxJq1MeWKIlkMjRWJm7zI1CNPHoDFcb6vdRFV4TcDz2R2zu8351gI hkOq1v50CUyQBezmqQMYlDW9eQ+pHpqCTuqaIBx7yAXPdoh3EjNRZi4ck7o7GY0L zbvIYNPLXwaScsbmCNJeUkthrPCuj4gpaAmF5NSUW5wkjY7V3QYkdKo635Bg5IY3 Z8DjVh1tv2YB9LtHYNfT0Dzekq2ksJdICOLvyoHZef4w2NFSMkv3hOLq9QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFFVnuij7A+Nx/YPmJROQPSDoZ2pPMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAIi1pPnIldYOeh4ouFlTwhj0MJOHwXsh s07ZwVS+QOGJ+UJl48YAF4c25v+R4Au6YZwVsJwRGhG1QwfIN/ZtnWsRtqZfesdn 25++sIIcMYFpNfoS2xKSs95isn3PBOeeQbz8h/xrAawzIT1ANs6fFL96fTvGRV/5 iYTN5JKBUhhRoHrEPCvvu/o9TtaK/Dl+s1Lec1Q9D+ddHXrgIHHn1wtLVViQEqBe RgrqIRwQ99mGOh49xVcDwgy180kJtCwo+XM7Z7vx8S2HaDhiMab6TprOG8EDZFuR ZUUARhjAMVrh0AOhGqfEh6B5GY0VXWuiD6FVQ3pIA0jpmMAwOTn/Czk= -----END CERTIFICATE-----Generated at Tue Jan 27 14:27:09 2026 by rpki-client