This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: aPkW273WczZQ+z6gR8ZAViGjCxe/XKbEfCGFduGUzUI= Subject key identifier: 1F:80:65:51:A2:60:62:99:A4:64:D8:0A:34:1C:EC:7B:CF:1B:76:65 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 5AF20657654B30E90E3D3D8949FAAC186ED81454 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 056A Signing time: Tue 25 Nov 2025 00:02:17 +0000 Manifest this update: Tue 25 Nov 2025 00:02:17 +0000 Manifest next update: Sat 29 Nov 2025 00:02:17 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: Um5aHv50HV9awsUX7l1n3PBYruuDb5gGidkA0AqpyMs=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: w+4+bxo/lRwC2hOG9Edn/+79C2GPpMAPhWdMbwG/9JU=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 29 Nov 2025 00:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:f2:06:57:65:4b:30:e9:0e:3d:3d:89:49:fa:ac:18:6e:d8:14:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Nov 25 00:02:17 2025 GMT Not After : Nov 29 00:02:17 2025 GMT Subject: serialNumber=68caf985251dfae0904ae58e1849c369a806b1b16bcea216b985ad2d63dd0308, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:32:3b:42:5d:96:83:c0:77:be:4e:c1:bd:c0: a9:25:f5:06:8f:fd:6f:f1:67:f6:09:82:98:0b:60: 50:3a:7a:e1:bf:b7:45:8d:4c:44:ca:06:0d:15:91: 45:87:0a:76:ab:ad:08:d3:41:c3:dc:6f:9a:6f:52: 7f:2c:b8:56:c4:fe:fc:54:9a:bf:57:2e:f5:4c:b5: 0b:f1:8c:11:70:b4:10:38:95:7d:22:68:6f:77:5c: a5:49:a2:b3:15:b3:9f:8e:3f:52:5f:8f:63:f9:de: 81:cc:ce:66:00:88:62:56:b2:87:3a:b1:ae:ea:85: 44:ea:55:e9:b5:f5:c0:10:4e:96:9a:af:b3:c5:87: 08:2a:15:b2:bb:45:0e:0e:38:f9:f2:14:64:a8:9c: 61:81:6f:40:0a:0c:e1:f6:65:86:d4:ae:95:52:7a: 47:61:09:6f:08:83:92:48:49:56:b5:d3:0e:c1:d4: 11:24:aa:ec:e1:1b:03:0c:08:00:b5:f6:fe:ae:70: 1d:1b:4b:c3:e9:a8:65:23:14:ad:45:95:18:10:7e: 12:03:3a:37:f5:56:76:6e:7a:8d:b1:78:42:bb:a0: c2:f1:30:00:54:5b:41:dd:f4:49:fe:8b:fe:15:1f: d9:be:2b:f3:fe:1b:ff:ff:3c:e3:28:31:40:ea:7c: 8e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:80:65:51:A2:60:62:99:A4:64:D8:0A:34:1C:EC:7B:CF:1B:76:65 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:f9:1e:05:e3:72:cc:d3:b5:d9:bc:89:f9:3e:0b:8c:00:11: a0:bf:67:4d:e2:2d:68:e3:bc:0a:15:9d:f4:2b:70:77:61:3b: b1:88:f4:d7:0b:19:39:ef:86:d6:6b:73:1e:40:0f:61:25:57: 34:5c:89:0c:77:4e:d6:23:18:93:22:e1:06:7b:a1:4e:ba:e0: 83:ff:68:b6:93:1f:ad:a8:e7:6c:a1:7f:7b:ed:c8:05:90:f6: 7c:31:1d:dc:a2:9f:aa:3a:09:db:2f:42:ae:2d:9c:66:6f:7e: b0:14:57:a5:53:bd:15:30:24:74:97:39:91:03:d3:a6:69:39: 6f:0f:1a:84:0b:47:d2:28:17:ea:f3:36:6c:ce:a5:8a:d8:9f: fb:85:8b:03:82:a9:bf:56:78:ea:36:19:21:05:e7:ef:38:28: a7:68:85:03:d3:67:24:a0:bc:cd:0f:de:11:ba:bd:b8:3f:1a: 19:26:8f:7a:f8:6f:dd:7e:07:7c:d5:50:46:0b:c6:69:12:2a: 65:4a:77:3c:9d:34:7f:4a:48:ad:33:78:71:0f:cd:ed:5a:96: a8:32:93:c4:98:4c:dc:95:22:4f:77:9e:38:b8:70:0a:37:07: ab:01:ca:bc:be:c9:c3:fb:9c:de:5e:85:0a:15:9b:43:d1:00: d7:50:06:ee -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUWvIGV2VLMOkOPT2JSfqsGG7YFFQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTEyNTAwMDIxN1oX DTI1MTEyOTAwMDIxN1owejFJMEcGA1UEBRNANjhjYWY5ODUyNTFkZmFlMDkwNGFl NThlMTg0OWMzNjlhODA2YjFiMTZiY2VhMjE2Yjk4NWFkMmQ2M2RkMDMwODEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxzI7Ql2Wg8B3vk7BvcCpJfUGj/1v 8Wf2CYKYC2BQOnrhv7dFjUxEygYNFZFFhwp2q60I00HD3G+ab1J/LLhWxP78VJq/ Vy71TLUL8YwRcLQQOJV9Imhvd1ylSaKzFbOfjj9SX49j+d6BzM5mAIhiVrKHOrGu 6oVE6lXptfXAEE6Wmq+zxYcIKhWyu0UODjj58hRkqJxhgW9ACgzh9mWG1K6VUnpH YQlvCIOSSElWtdMOwdQRJKrs4RsDDAgAtfb+rnAdG0vD6ahlIxStRZUYEH4SAzo3 9VZ2bnqNsXhCu6DC8TAAVFtB3fRJ/ov+FR/Zvivz/hv//zzjKDFA6nyO5QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFB+AZVGiYGKZpGTYCjQc7HvPG3ZlMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAFz5HgXjcszTtdm8ifk+C4wAEaC/Z03i LWjjvAoVnfQrcHdhO7GI9NcLGTnvhtZrcx5AD2ElVzRciQx3TtYjGJMi4QZ7oU66 4IP/aLaTH62o52yhf3vtyAWQ9nwxHdyin6o6CdsvQq4tnGZvfrAUV6VTvRUwJHSX OZED06ZpOW8PGoQLR9IoF+rzNmzOpYrYn/uFiwOCqb9WeOo2GSEF5+84KKdohQPT ZySgvM0P3hG6vbg/Ghkmj3r4b91+B3zVUEYLxmkSKmVKdzydNH9KSK0zeHEPze1a lqgyk8SYTNyVIk93nji4cAo3B6sByry+ycP7nN5ehQoVm0PRANdQBu4= -----END CERTIFICATE-----Generated at Tue Nov 25 12:35:32 2025 by rpki-client