This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: NOoEf0lgRM1iFwKyA5HeT6vAltuLZAYavJrnK6YHtDc= Subject key identifier: DA:17:AE:BE:82:FD:5E:D0:B1:96:D4:5B:CE:8D:5F:99:C4:3F:C4:0F Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 15DE631B8085F587F21726FCD5FCD0A977B3B9E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0599 Signing time: Sun 11 Jan 2026 00:13:28 +0000 Manifest this update: Sun 11 Jan 2026 00:13:28 +0000 Manifest next update: Thu 15 Jan 2026 00:13:28 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: FjUipSN8sQs2ZF0re5rBXOEclzn2ahSBDsVhKm4z5Zw=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 Jan 2026 00:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:de:63:1b:80:85:f5:87:f2:17:26:fc:d5:fc:d0:a9:77:b3:b9:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jan 11 00:13:28 2026 GMT Not After : Jan 15 00:13:28 2026 GMT Subject: serialNumber=cbf46cc56568a4e2d0fc177eff8cb10ab2d031bf2ace0c8e18f820cc88ea3452, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ec:be:e1:08:f1:df:5a:c0:e4:d6:16:2e:57: 7a:aa:a2:a1:db:fa:3a:96:cc:e8:0d:50:70:78:c6: ca:04:71:f0:45:8c:e8:2b:a7:dd:01:22:27:a9:58: a5:43:48:89:14:f1:53:5f:3b:f1:6d:ad:02:40:f3: e8:5b:cc:b6:2f:ac:ec:ef:86:7c:dd:4b:59:58:9d: e1:13:24:c2:af:0f:12:2a:ac:de:e8:92:45:5b:82: 92:c6:9e:5e:10:81:22:0f:3f:f9:39:08:bb:39:b5: 1b:73:51:e0:60:80:5b:6e:75:c3:4e:27:38:62:0a: 09:4e:f5:0b:0d:13:b5:7a:52:d9:df:32:11:14:32: e7:df:4b:cc:3b:ec:d4:e4:e9:52:51:85:19:8c:50: a8:d1:94:d4:f3:3a:85:5a:70:6f:69:7a:11:1b:90: 16:d6:55:f5:49:69:f0:4f:e2:55:e5:9c:10:06:9c: 97:d2:20:45:fd:62:85:1a:17:89:dd:17:8b:8c:27: 69:eb:0e:5c:1e:4c:07:b9:68:e8:a7:61:e4:f0:a2: 22:71:db:5a:19:9e:bc:f9:76:d4:de:0a:b7:26:d1: 6e:1b:5b:75:af:30:36:c0:96:50:4d:98:33:37:c3: 55:4c:ca:3b:7e:1f:a3:03:ff:fb:04:41:d6:14:b6: 4d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:17:AE:BE:82:FD:5E:D0:B1:96:D4:5B:CE:8D:5F:99:C4:3F:C4:0F X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:fa:e1:d1:84:37:9f:1f:78:50:57:2c:94:8a:03:04:2b:f0: 8e:bf:e4:36:be:ba:8a:b6:87:b1:3d:96:82:fb:19:bf:40:b7: 82:3c:54:69:6b:ae:78:2a:b3:78:0f:68:64:17:96:b6:85:7e: 2c:3a:94:cf:28:4e:12:95:8c:db:d5:25:ff:04:df:9e:1f:87: 09:1f:79:3b:c8:13:46:f0:84:af:31:81:a8:cf:d3:7d:7b:2b: 81:ec:3d:f8:70:d2:c4:bd:fe:e1:85:6b:12:c6:f0:25:29:7c: be:63:79:f7:4e:3f:d5:88:d6:a7:c6:ce:df:4e:91:b1:98:db: 17:f8:e4:d6:ac:da:ce:50:ac:bc:48:f1:33:ba:ae:16:f3:49: 75:88:78:3d:6a:4e:0a:89:74:d5:45:93:2d:c0:61:f4:b7:3c: 90:78:8e:b7:bf:53:a9:4f:54:91:b1:e7:95:a2:54:bb:dc:3f: 96:a4:6d:6e:ec:91:1e:cf:ee:4b:38:77:3e:f5:db:b6:58:7b: 14:cb:ff:d2:9d:03:cf:3d:0a:31:e7:fe:e0:b1:2a:45:d2:bf: 59:ba:a4:e9:57:03:fd:f0:4e:04:29:45:fa:73:d5:dc:12:c0: bb:33:87:4b:f0:25:f5:3c:74:38:b9:9f:e5:a0:50:40:bc:c9: 16:d6:1e:25 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUFd5jG4CF9YfyFyb81fzQqXezueMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDExMTAwMTMyOFoX DTI2MDExNTAwMTMyOFowejFJMEcGA1UEBRNAY2JmNDZjYzU2NTY4YTRlMmQwZmMx NzdlZmY4Y2IxMGFiMmQwMzFiZjJhY2UwYzhlMThmODIwY2M4OGVhMzQ1MjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmOy+4Qjx31rA5NYWLld6qqKh2/o6 lszoDVBweMbKBHHwRYzoK6fdASInqVilQ0iJFPFTXzvxba0CQPPoW8y2L6zs74Z8 3UtZWJ3hEyTCrw8SKqze6JJFW4KSxp5eEIEiDz/5OQi7ObUbc1HgYIBbbnXDTic4 YgoJTvULDRO1elLZ3zIRFDLn30vMO+zU5OlSUYUZjFCo0ZTU8zqFWnBvaXoRG5AW 1lX1SWnwT+JV5ZwQBpyX0iBF/WKFGheJ3ReLjCdp6w5cHkwHuWjop2Hk8KIicdta GZ68+XbU3gq3JtFuG1t1rzA2wJZQTZgzN8NVTMo7fh+jA//7BEHWFLZNjQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNoXrr6C/V7QsZbUW86NX5nEP8QPMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBABv64dGEN58feFBXLJSKAwQr8I6/5Da+ uoq2h7E9loL7Gb9At4I8VGlrrngqs3gPaGQXlraFfiw6lM8oThKVjNvVJf8E354f hwkfeTvIE0bwhK8xgajP0317K4HsPfhw0sS9/uGFaxLG8CUpfL5jefdOP9WI1qfG zt9OkbGY2xf45Nas2s5QrLxI8TO6rhbzSXWIeD1qTgqJdNVFky3AYfS3PJB4jre/ U6lPVJGx55WiVLvcP5akbW7skR7P7ks4dz7127ZYexTL/9KdA889CjHn/uCxKkXS v1m6pOlXA/3wTgQpRfpz1dwSwLszh0vwJfU8dDi5n+WgUEC8yRbWHiU= -----END CERTIFICATE-----Generated at Sun Jan 11 10:38:24 2026 by rpki-client