This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: TwtYONTZnsjqtC3Mg8IX/dIgNezoXCyxOZCs/OZZF38= Subject key identifier: 73:D8:77:E1:24:38:D4:79:C9:F0:E0:0B:E2:7F:0E:E1:67:A0:31:30 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 3456300E0D525657883C79CD04AB0B040AFA6475 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05AB Signing time: Thu 29 Jan 2026 00:17:30 +0000 Manifest this update: Thu 29 Jan 2026 00:17:30 +0000 Manifest next update: Mon 02 Feb 2026 00:17:30 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: 2eG/DwqTBiEXpV58XPx8Hw4iLdFKdgJOM4r7xqhsMOU=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 00:17:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:56:30:0e:0d:52:56:57:88:3c:79:cd:04:ab:0b:04:0a:fa:64:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jan 29 00:17:30 2026 GMT Not After : Feb 2 00:17:30 2026 GMT Subject: serialNumber=dd202220215b4a7b63c0748902b72c3e7ac031c04a0e3a801c110a7f7516e40e, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a1:58:ad:4a:9d:65:49:9e:a9:b4:6a:42:9c: 04:88:f1:89:49:bc:a5:ea:3e:76:0b:c2:45:1e:52: 1c:91:18:e3:2e:22:c6:59:20:2d:f7:41:79:86:7d: 78:60:bf:01:d5:af:0a:b5:e7:0a:bb:21:3e:d7:cb: df:ce:fe:df:1b:00:af:f4:71:79:68:d3:08:76:de: 0b:93:bd:f5:ab:55:7e:2a:d6:db:4f:bd:5d:53:32: 37:6e:0b:f4:4a:0f:5a:d2:f0:cf:65:6c:21:4f:c8: 1e:f1:c4:5f:f0:dd:40:09:bb:47:41:eb:70:87:a9: ab:49:37:bc:3b:27:74:ee:69:69:7e:81:e3:f0:a8: d7:54:60:6e:94:1c:7a:1c:05:5a:d2:65:bc:ea:d5: 58:b4:bd:d5:c2:6a:a0:21:33:01:ff:fa:5c:e9:2e: 19:ac:36:69:88:82:ca:06:43:e4:f1:7a:6e:a6:92: 67:25:30:97:0d:96:a7:d0:0f:43:94:9b:ee:e5:1f: 76:55:a0:a7:8e:58:e0:44:d5:46:96:91:c3:fd:a7: 47:fa:ea:57:69:da:2d:31:0e:1a:14:f1:02:d9:dc: b5:62:a2:14:35:67:3e:08:78:1d:e4:77:15:c9:a4: 27:7c:5d:e2:63:30:2c:be:94:e6:c8:da:b7:aa:c3: d5:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:D8:77:E1:24:38:D4:79:C9:F0:E0:0B:E2:7F:0E:E1:67:A0:31:30 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:a2:63:6e:a5:2f:99:cf:29:d7:92:33:f5:f6:ce:22:d4:a8: d4:c4:5f:9d:27:21:7c:6e:51:33:2a:a5:75:0b:74:8d:87:97: 51:c7:f9:f9:85:f6:2b:42:09:3c:5e:2c:8b:4f:89:91:c7:39: 14:c4:75:b2:f0:91:18:ca:78:c8:71:2c:9e:e1:f4:2b:6c:c3: 69:59:14:0c:3a:e6:ca:13:85:13:e3:e4:76:a1:cf:1c:d8:04: 9a:bc:97:81:02:e0:90:83:59:fb:84:25:ce:b1:bb:d6:ee:81: f2:10:51:c5:b5:9a:3d:1a:67:d0:fa:33:9b:e1:06:d3:68:f0: 80:ec:24:69:ce:a6:2a:24:e0:36:dc:66:63:09:82:f6:c5:4f: 9a:94:0f:ad:99:62:fa:b2:14:2f:50:d6:0f:51:55:3a:0b:40: d3:4c:55:5e:47:2b:d2:61:6f:ac:ab:9b:c5:06:12:8f:10:41: 94:be:28:7b:46:00:85:53:b2:17:02:94:1c:1a:82:fb:08:3a: dd:ff:43:e4:0d:89:52:1c:51:21:52:6f:3b:92:b6:77:7e:f4: bf:e4:b0:c2:0e:e7:f1:eb:9c:06:50:d5:d9:ea:a3:04:ef:af: b3:45:94:83:db:dd:81:49:a3:cc:53:35:db:27:a2:92:e3:6a: 2e:56:6d:1e -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUNFYwDg1SVleIPHnNBKsLBAr6ZHUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDEyOTAwMTczMFoX DTI2MDIwMjAwMTczMFowejFJMEcGA1UEBRNAZGQyMDIyMjAyMTViNGE3YjYzYzA3 NDg5MDJiNzJjM2U3YWMwMzFjMDRhMGUzYTgwMWMxMTBhN2Y3NTE2ZTQwZTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtaFYrUqdZUmeqbRqQpwEiPGJSbyl 6j52C8JFHlIckRjjLiLGWSAt90F5hn14YL8B1a8KtecKuyE+18vfzv7fGwCv9HF5 aNMIdt4Lk731q1V+KtbbT71dUzI3bgv0Sg9a0vDPZWwhT8ge8cRf8N1ACbtHQetw h6mrSTe8Oyd07mlpfoHj8KjXVGBulBx6HAVa0mW86tVYtL3VwmqgITMB//pc6S4Z rDZpiILKBkPk8XpuppJnJTCXDZan0A9DlJvu5R92VaCnjljgRNVGlpHD/adH+upX adotMQ4aFPEC2dy1YqIUNWc+CHgd5HcVyaQnfF3iYzAsvpTmyNq3qsPVVwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFHPYd+EkONR5yfDgC+J/DuFnoDEwMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAFyiY26lL5nPKdeSM/X2ziLUqNTEX50n IXxuUTMqpXULdI2Hl1HH+fmF9itCCTxeLItPiZHHORTEdbLwkRjKeMhxLJ7h9Cts w2lZFAw65soThRPj5HahzxzYBJq8l4EC4JCDWfuEJc6xu9bugfIQUcW1mj0aZ9D6 M5vhBtNo8IDsJGnOpiok4DbcZmMJgvbFT5qUD62ZYvqyFC9Q1g9RVToLQNNMVV5H K9Jhb6yrm8UGEo8QQZS+KHtGAIVTshcClBwagvsIOt3/Q+QNiVIcUSFSbzuStnd+ 9L/ksMIO5/HrnAZQ1dnqowTvr7NFlIPb3YFJo8xTNdsnopLjai5WbR4= -----END CERTIFICATE-----Generated at Thu Jan 29 21:13:06 2026 by rpki-client