This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: QLkJ0EaiiUq27sZe5Kv42p5RovnSbgwGf3ld1FZp/f8= Subject key identifier: 4E:C7:15:F3:03:1D:74:27:AA:84:89:0A:4D:C2:9F:2C:F4:57:94:1A Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 6D1FCB4B8F941988F6B0739CD3DA0E94A354F471 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0593 Signing time: Mon 05 Jan 2026 00:12:21 +0000 Manifest this update: Mon 05 Jan 2026 00:12:21 +0000 Manifest next update: Fri 09 Jan 2026 00:12:21 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: zKNFLrHy49XVZ0xHHrSnsfG6Ldes1mtUooL7pwFFe0c=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 Jan 2026 00:12:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:1f:cb:4b:8f:94:19:88:f6:b0:73:9c:d3:da:0e:94:a3:54:f4:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jan 5 00:12:21 2026 GMT Not After : Jan 9 00:12:21 2026 GMT Subject: serialNumber=6355aba3dbc311b9723277e39eda94a3ba7c611cf8c973564573a95936f56133, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c7:bc:58:f9:b8:6e:fa:a7:9d:88:2c:9b:af: 85:98:ce:80:4a:33:11:a9:82:1e:9e:f9:10:eb:00: e7:38:a6:76:26:c6:b5:14:57:56:ce:c2:0f:2d:3c: 1f:e6:37:4b:b6:98:f9:ef:0a:07:0b:29:f8:ff:43: f9:98:00:90:f7:d7:4e:2f:e4:a5:0b:bb:ce:28:8c: f5:9a:4b:ba:01:5d:6c:79:4f:24:78:28:ff:4e:01: 14:fc:5c:10:8e:ba:d8:10:90:79:1e:8b:92:2b:1d: 97:c2:08:a4:82:75:07:03:aa:5b:83:8f:ee:db:f3: b3:31:43:97:0f:dd:d1:d5:57:4f:af:4e:e0:cc:5a: 08:73:47:22:2a:ca:ae:fd:ec:cd:2f:99:8a:63:68: 4d:7f:ef:a7:48:48:67:09:d2:b1:1f:94:f3:d5:21: 04:4c:16:00:86:9b:0d:da:5f:c8:1a:43:2f:f5:16: 42:a1:4a:d3:da:2d:2b:7d:27:12:d8:6c:af:4c:9e: 38:8a:d3:24:f6:a6:a9:8b:bd:9b:1c:bf:f7:6b:f6: 8a:9f:87:67:56:a6:5a:79:c9:d3:ce:62:24:c7:0a: 1e:a6:d0:b9:f6:56:f9:ea:aa:83:0b:c1:e1:12:79: 1d:ca:7d:a8:ec:e4:85:12:ab:65:8c:45:fe:dc:9a: e5:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:C7:15:F3:03:1D:74:27:AA:84:89:0A:4D:C2:9F:2C:F4:57:94:1A X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:ee:1e:73:1b:32:1d:8a:d9:39:d8:bf:b2:d5:8d:df:fc:b3: 6f:49:7b:12:48:3e:92:bb:f7:a4:f1:5b:4b:02:1d:b0:12:eb: 2e:1e:98:4a:e2:12:e9:03:4e:ce:59:d1:71:00:9f:a8:d3:3a: dc:d8:ca:74:be:b7:48:8a:41:eb:8d:48:b8:91:0c:f8:87:c1: 7a:67:a8:ce:d6:d6:72:aa:65:62:85:42:48:d5:ce:d9:10:af: 25:d4:a6:de:fe:d2:c0:14:5a:32:a8:75:f4:9d:9a:44:a1:c0: cf:d6:0b:a5:52:cd:c7:5b:e1:53:0a:35:bd:a2:ff:db:21:73: 72:88:61:86:c2:f0:d8:93:d5:24:77:81:e5:a3:ef:c8:92:a0: 3c:a1:69:54:b4:a5:f7:fd:2b:bc:a4:75:0b:07:f1:5b:5e:aa: a9:c8:af:37:b1:46:56:11:a8:f6:d3:8c:3b:b9:78:91:d3:ef: 3a:9c:66:27:5d:a7:b0:28:74:84:d5:50:4c:27:a2:fc:06:f2: 5d:cc:c3:6a:14:d1:e4:4d:d1:20:cb:40:26:3c:08:d7:8d:a9: d9:48:16:af:bf:fe:87:f6:c0:99:33:c8:86:40:fc:3b:ec:6a: 80:e9:3d:87:84:05:a5:52:3e:56:fa:2a:d7:69:28:2e:96:9c: fb:d3:f7:dc -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUbR/LS4+UGYj2sHOc09oOlKNU9HEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDEwNTAwMTIyMVoX DTI2MDEwOTAwMTIyMVowejFJMEcGA1UEBRNANjM1NWFiYTNkYmMzMTFiOTcyMzI3 N2UzOWVkYTk0YTNiYTdjNjExY2Y4Yzk3MzU2NDU3M2E5NTkzNmY1NjEzMzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzMe8WPm4bvqnnYgsm6+FmM6ASjMR qYIenvkQ6wDnOKZ2Jsa1FFdWzsIPLTwf5jdLtpj57woHCyn4/0P5mACQ99dOL+Sl C7vOKIz1mku6AV1seU8keCj/TgEU/FwQjrrYEJB5HouSKx2XwgikgnUHA6pbg4/u 2/OzMUOXD93R1VdPr07gzFoIc0ciKsqu/ezNL5mKY2hNf++nSEhnCdKxH5Tz1SEE TBYAhpsN2l/IGkMv9RZCoUrT2i0rfScS2GyvTJ44itMk9qapi72bHL/3a/aKn4dn VqZaecnTzmIkxwoeptC59lb56qqDC8HhEnkdyn2o7OSFEqtljEX+3JrlCQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFE7HFfMDHXQnqoSJCk3Cnyz0V5QaMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAIHuHnMbMh2K2TnYv7LVjd/8s29JexJI PpK796TxW0sCHbAS6y4emEriEukDTs5Z0XEAn6jTOtzYynS+t0iKQeuNSLiRDPiH wXpnqM7W1nKqZWKFQkjVztkQryXUpt7+0sAUWjKodfSdmkShwM/WC6VSzcdb4VMK Nb2i/9shc3KIYYbC8NiT1SR3geWj78iSoDyhaVS0pff9K7ykdQsH8VteqqnIrzex RlYRqPbTjDu5eJHT7zqcZiddp7AodITVUEwnovwG8l3Mw2oU0eRN0SDLQCY8CNeN qdlIFq+//of2wJkzyIZA/DvsaoDpPYeEBaVSPlb6KtdpKC6WnPvT99w= -----END CERTIFICATE-----Generated at Mon Jan 5 09:13:33 2026 by rpki-client