This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: cvuqV8VE4zLpau5fzPnLW0MELsr6seaUZ8qUgmE4h2A= Subject key identifier: 0F:06:40:B3:61:23:39:86:A1:AE:3F:36:DB:07:D6:B7:B6:4C:C6:34 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 19A1FE5CE34D73F64D11B2F8AFB2FF76F93C6224 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0570 Signing time: Mon 01 Dec 2025 00:03:27 +0000 Manifest this update: Mon 01 Dec 2025 00:03:27 +0000 Manifest next update: Fri 05 Dec 2025 00:03:27 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: V16DLDR3LtJUKFLAmGUYTVX1OTZQB26JWtNjoNgNAGM=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: w+4+bxo/lRwC2hOG9Edn/+79C2GPpMAPhWdMbwG/9JU=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 00:03:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:a1:fe:5c:e3:4d:73:f6:4d:11:b2:f8:af:b2:ff:76:f9:3c:62:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Dec 1 00:03:27 2025 GMT Not After : Dec 5 00:03:27 2025 GMT Subject: serialNumber=e996d288a016e4853fb31e6dc3b043679158c3694a89e73b2ea0a27d3776bfb9, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:dd:27:0a:4f:1c:2b:a0:fd:08:0e:de:c5:2c: d8:56:34:04:bc:b2:c2:f9:d1:b1:1c:e4:da:8f:e9: 8b:af:2c:c1:01:1d:34:c0:d1:ff:b5:13:cd:fb:1e: c9:df:e6:c7:c5:64:cb:8e:d6:1a:26:da:d2:8a:f6: c2:48:a0:64:70:18:2a:6d:49:ba:8e:f8:28:0f:31: 64:3e:83:bd:d1:d5:65:c4:18:9c:b3:90:fe:26:92: 3d:3c:6c:5c:67:35:2a:d8:0d:e4:08:26:cf:c0:0a: 6c:e5:54:94:8a:be:bd:67:42:e5:d3:9c:db:e6:3c: 39:30:50:8b:c1:d7:76:ac:c6:08:74:95:1f:78:c9: fa:87:3f:92:11:ca:e5:22:f2:20:65:de:30:9d:f6: f0:95:fe:5a:74:5b:bc:f5:67:50:7b:83:66:72:cc: d6:18:14:0e:6e:d7:d5:75:44:4c:c6:c6:33:14:99: dd:0c:0f:53:8d:31:f5:10:df:4b:6e:e2:fc:08:7c: e9:8e:5f:2c:7f:2c:2c:94:a8:f5:62:8b:56:45:1b: cb:32:cf:2f:ef:ac:4e:b0:11:a8:80:e2:20:ec:7a: e0:ee:7c:d2:6e:be:cc:2d:4b:c1:bf:02:8b:f3:f0: e8:0f:fe:9d:17:5a:c5:47:2a:ea:38:0e:e7:4f:87: 60:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:06:40:B3:61:23:39:86:A1:AE:3F:36:DB:07:D6:B7:B6:4C:C6:34 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:eb:8d:f2:e9:bc:a2:b6:ba:e3:fe:d4:de:f8:f2:8b:ac:be: 0c:24:b3:7e:e8:33:dd:96:21:88:b1:8e:8a:f2:c1:47:1f:88: 23:aa:2c:23:18:dd:c9:a6:ca:e9:7c:f7:f5:f5:56:f5:28:26: 89:ee:d5:3c:ef:84:1d:8a:fe:66:6a:09:b2:be:17:a4:2b:ec: df:d8:9d:de:3d:d8:28:df:bd:85:f0:f9:e6:d0:9a:d6:eb:fb: e8:53:cd:e5:ff:d3:31:fb:3c:71:d6:92:93:d5:cf:b3:15:74: f4:cb:e9:de:f5:25:dd:19:ea:f4:57:a2:72:1a:47:e5:1b:2e: 1e:ec:a1:2e:90:c2:1b:b2:84:0d:13:66:fb:68:b1:ce:64:a9: 7b:f8:6f:8c:3b:75:7d:4d:f1:ec:5a:0a:7f:19:a2:76:6a:7a: cb:65:d7:cb:49:ec:92:ab:ac:ad:08:ab:f8:5d:40:b9:1e:27: 3b:c5:38:84:75:d3:35:f8:21:35:45:96:b1:ef:f2:41:00:c1: 10:97:3b:e9:15:9c:1a:ea:ab:57:dd:32:fd:cf:af:3a:3e:3b: 43:16:62:f0:79:43:78:c3:0f:b4:7a:d7:48:9e:19:4c:8f:a8: 9c:76:90:fb:59:8c:d4:de:33:93:5d:94:b9:9c:b8:dc:92:d8: 3d:38:09:c9 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUGaH+XONNc/ZNEbL4r7L/dvk8YiQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTIwMTAwMDMyN1oX DTI1MTIwNTAwMDMyN1owejFJMEcGA1UEBRNAZTk5NmQyODhhMDE2ZTQ4NTNmYjMx ZTZkYzNiMDQzNjc5MTU4YzM2OTRhODllNzNiMmVhMGEyN2QzNzc2YmZiOTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzd0nCk8cK6D9CA7exSzYVjQEvLLC +dGxHOTaj+mLryzBAR00wNH/tRPN+x7J3+bHxWTLjtYaJtrSivbCSKBkcBgqbUm6 jvgoDzFkPoO90dVlxBics5D+JpI9PGxcZzUq2A3kCCbPwAps5VSUir69Z0Ll05zb 5jw5MFCLwdd2rMYIdJUfeMn6hz+SEcrlIvIgZd4wnfbwlf5adFu89WdQe4NmcszW GBQObtfVdURMxsYzFJndDA9TjTH1EN9LbuL8CHzpjl8sfywslKj1YotWRRvLMs8v 76xOsBGogOIg7Hrg7nzSbr7MLUvBvwKL8/DoD/6dF1rFRyrqOA7nT4dgXwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFA8GQLNhIzmGoa4/NtsH1re2TMY0MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAB7rjfLpvKK2uuP+1N748ousvgwks37o M92WIYixjorywUcfiCOqLCMY3cmmyul89/X1VvUoJonu1TzvhB2K/mZqCbK+F6Qr 7N/Ynd492CjfvYXw+ebQmtbr++hTzeX/0zH7PHHWkpPVz7MVdPTL6d71Jd0Z6vRX onIaR+UbLh7soS6QwhuyhA0TZvtosc5kqXv4b4w7dX1N8exaCn8ZonZqestl18tJ 7JKrrK0Iq/hdQLkeJzvFOIR10zX4ITVFlrHv8kEAwRCXO+kVnBrqq1fdMv3Przo+ O0MWYvB5Q3jDD7R610ieGUyPqJx2kPtZjNTeM5NdlLmcuNyS2D04Cck= -----END CERTIFICATE-----Generated at Mon Dec 1 05:59:56 2025 by rpki-client