This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: B8H5gxEfObHfuQZagJdZ9vQW8cpZ2qa26JeD/A169Ho= Subject key identifier: DF:E0:E0:D7:DA:8A:1F:BF:30:DF:DA:0C:33:55:8E:45:B8:0D:61:70 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 71EA191770AA29870469D63FE3B8CF46F60A0CCE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05A8 Signing time: Mon 26 Jan 2026 00:16:17 +0000 Manifest this update: Mon 26 Jan 2026 00:16:17 +0000 Manifest next update: Fri 30 Jan 2026 00:16:17 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: sD8hCVIrVasj7n2tb4VWoh37LkHnRQgFUYyfnxAVvQo=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 00:16:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:ea:19:17:70:aa:29:87:04:69:d6:3f:e3:b8:cf:46:f6:0a:0c:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jan 26 00:16:17 2026 GMT Not After : Jan 30 00:16:17 2026 GMT Subject: serialNumber=a0162fa1ce7996d3ad1b3f37c8b5165f36863712f876b302fbb98d3de8a3d1ab, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:94:8b:8e:77:d2:d4:05:37:3e:6e:b2:f6:94: 6c:11:05:8c:36:62:da:82:ed:5b:ca:57:c9:36:23: cd:2b:9b:9c:8e:7c:eb:68:c3:ce:6b:98:69:70:6f: 9a:6c:92:38:58:46:8a:8c:d1:1a:f0:e6:cf:67:fa: b4:48:3a:d0:06:df:55:09:65:32:1a:54:f4:27:d5: 5f:93:03:6a:df:d9:a6:e8:74:aa:58:fb:4d:96:ce: 85:37:49:c9:7d:4b:60:2e:3c:54:d5:cd:62:7c:51: 45:9b:75:bd:7e:ce:fb:21:95:b9:50:76:aa:13:e3: 09:d4:2a:97:ea:80:8c:34:1a:0f:f8:93:76:43:4d: 46:6f:84:cd:96:00:ff:a6:3e:cb:04:36:11:ea:40: da:b2:a7:3b:c9:f0:39:a2:2e:30:9c:3a:b4:44:34: d2:8c:b1:e2:7b:f2:23:43:db:d7:11:50:8a:e8:6f: c9:83:39:c1:b8:f7:e6:ee:e0:fb:c1:75:b4:58:c3: 25:ee:b0:39:62:0b:ad:2e:23:35:65:1f:c3:7a:d1: 81:fc:40:7e:7b:ed:f9:1f:39:d1:6c:39:49:8e:f9: 5a:76:76:0f:c3:a7:29:78:29:fc:ff:e6:fa:98:59: ab:ae:ac:4d:a6:4e:6c:4b:54:b9:cb:f4:c0:f9:fb: bb:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:E0:E0:D7:DA:8A:1F:BF:30:DF:DA:0C:33:55:8E:45:B8:0D:61:70 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:68:36:8a:6e:6a:da:79:f7:81:57:4b:fd:26:43:a2:33:c0: ea:b6:2a:72:1d:89:4c:a4:c6:46:27:9f:b6:5a:32:9b:06:95: 9a:d8:35:37:2a:2a:bb:4a:c3:47:86:9e:6f:29:58:f7:d2:19: bc:e7:3f:c2:18:d6:11:27:37:15:8e:f4:b6:40:94:2d:6d:4f: a7:ae:2a:20:80:07:a1:40:22:97:62:bb:aa:b2:09:37:8a:c8: 45:99:d6:e5:73:b6:8d:70:31:8d:bc:11:60:6c:c6:96:24:fd: ab:dc:2d:09:41:de:2d:bc:f0:6e:41:ce:10:5c:d0:93:65:d2: 75:d2:c0:86:e6:c0:96:2c:66:f6:11:19:4c:64:82:1a:87:50: fd:63:b3:d7:23:30:e3:8a:0c:f8:d3:d9:20:01:a9:0c:34:dc: a0:30:b4:4c:e1:44:63:99:77:a8:df:79:87:3d:86:08:fd:ef: cc:ab:d0:60:fb:01:bc:24:3d:7f:73:51:45:79:df:4f:43:fb: 64:07:3b:20:75:21:e1:27:af:81:49:a2:fb:20:e8:1f:19:30: b9:ff:fc:b1:e4:b7:fc:46:5c:ad:b0:5e:17:f0:60:48:75:33: f4:86:a2:d2:67:db:a8:43:23:5d:bb:c6:12:37:ee:2a:2b:47: d7:9c:01:49 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUceoZF3CqKYcEadY/47jPRvYKDM4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDEyNjAwMTYxN1oX DTI2MDEzMDAwMTYxN1owejFJMEcGA1UEBRNAYTAxNjJmYTFjZTc5OTZkM2FkMWIz ZjM3YzhiNTE2NWYzNjg2MzcxMmY4NzZiMzAyZmJiOThkM2RlOGEzZDFhYjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyZSLjnfS1AU3Pm6y9pRsEQWMNmLa gu1bylfJNiPNK5ucjnzraMPOa5hpcG+abJI4WEaKjNEa8ObPZ/q0SDrQBt9VCWUy GlT0J9VfkwNq39mm6HSqWPtNls6FN0nJfUtgLjxU1c1ifFFFm3W9fs77IZW5UHaq E+MJ1CqX6oCMNBoP+JN2Q01Gb4TNlgD/pj7LBDYR6kDasqc7yfA5oi4wnDq0RDTS jLHie/IjQ9vXEVCK6G/JgznBuPfm7uD7wXW0WMMl7rA5YgutLiM1ZR/DetGB/EB+ e+35HznRbDlJjvladnYPw6cpeCn8/+b6mFmrrqxNpk5sS1S5y/TA+fu7bQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFN/g4Nfaih+/MN/aDDNVjkW4DWFwMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAAdoNopuatp594FXS/0mQ6IzwOq2KnId iUykxkYnn7ZaMpsGlZrYNTcqKrtKw0eGnm8pWPfSGbznP8IY1hEnNxWO9LZAlC1t T6euKiCAB6FAIpdiu6qyCTeKyEWZ1uVzto1wMY28EWBsxpYk/avcLQlB3i288G5B zhBc0JNl0nXSwIbmwJYsZvYRGUxkghqHUP1js9cjMOOKDPjT2SABqQw03KAwtEzh RGOZd6jfeYc9hgj978yr0GD7AbwkPX9zUUV5309D+2QHOyB1IeEnr4FJovsg6B8Z MLn//LHkt/xGXK2wXhfwYEh1M/SGotJn26hDI127xhI37iorR9ecAUk= -----END CERTIFICATE-----Generated at Mon Jan 26 16:24:44 2026 by rpki-client