This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File: manifest.mft (raw, json)
Hash identifier: S1UECVz8Z+nLjPLP1LVWJkvzq1Aw7IVh9groiLyel8M=
Subject key identifier: 34:53:91:B9:B1:7A:64:A9:6F:36:CB:E2:43:55:A4:25:4E:F5:83:4D
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial: 06E94C5BFA5B75E85C131754CBAF314E55F0A2A9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number: 0594
Signing time: Tue 06 Jan 2026 00:12:29 +0000
Manifest this update: Tue 06 Jan 2026 00:12:29 +0000
Manifest next update: Sat 10 Jan 2026 00:12:29 +0000
Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: QhB5VBtYLBAhXwvIGFWRtjUCxMisNCN8CKVsc5pzQ3Y=)
2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=)
3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=)
4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=)
5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=)
6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=)
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 10 Jan 2026 00:12:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:e9:4c:5b:fa:5b:75:e8:5c:13:17:54:cb:af:31:4e:55:f0:a2:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Validity
Not Before: Jan 6 00:12:29 2026 GMT
Not After : Jan 10 00:12:29 2026 GMT
Subject: serialNumber=24a48a7ac87fcfa7e2b29b387205fe864b3d1c1720967cf793da8d75d91ab2ed, CN=bb9a9116-f615-462e-a680-5266b327e0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:27:b3:b2:4b:37:87:ec:eb:8a:30:ba:f3:e5:
2c:c8:8c:3f:78:ca:12:52:09:ea:4d:36:ff:9b:88:
38:db:1e:c0:10:85:8a:ec:65:62:12:c7:cb:e1:31:
3c:5c:4d:b2:7d:55:d4:51:77:12:a9:df:a2:a2:4d:
17:93:33:de:6e:ff:ee:70:88:d3:be:31:c3:27:1a:
c9:2d:cf:ac:89:44:c9:6b:4d:35:c3:48:bc:e8:31:
85:58:20:01:aa:c4:37:ee:9d:d4:26:02:69:83:47:
5e:0e:38:2c:28:03:09:e9:fd:c7:a0:24:b2:66:0d:
ab:06:2d:38:8b:ee:20:6b:b6:20:73:54:65:58:15:
b2:86:7c:93:5d:28:db:a8:06:15:39:c4:81:af:6c:
e2:ec:a8:c8:a9:98:89:c4:d3:ab:fa:b8:79:63:fb:
3d:98:85:ba:af:46:b8:28:0d:84:a1:8d:f7:c9:9b:
2c:da:c2:73:c7:84:97:d1:e4:91:07:46:fe:0e:30:
47:34:7b:4d:de:6c:7a:86:91:7c:4f:ca:d7:51:68:
e4:70:4e:45:dc:3d:63:da:1a:cc:11:a5:7c:e0:43:
90:d1:5e:81:be:d1:40:64:3c:72:92:b7:99:fa:15:
57:c4:7a:2a:de:d7:c2:5c:00:5d:cd:9a:e6:64:7d:
cd:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:53:91:B9:B1:7A:64:A9:6F:36:CB:E2:43:55:A4:25:4E:F5:83:4D
X509v3 Authority Key Identifier:
keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:1c:31:a6:80:7f:e2:8e:99:d2:c1:f4:cd:96:07:8d:8e:f2:
6e:dd:dc:b4:c9:24:51:27:ba:ca:5c:32:d2:39:89:87:2a:15:
5b:ab:89:90:4f:76:8b:b3:89:f9:f5:6a:29:4e:fa:ec:36:d1:
54:67:92:ff:7f:e6:19:1a:0d:c1:e9:12:9a:0b:db:75:5b:3c:
b6:1e:e5:c0:ec:8c:b8:23:c5:03:6c:90:91:05:47:53:3a:4a:
2d:a4:d8:57:b6:b6:b6:4b:30:82:af:83:5f:b9:83:5b:d6:36:
f3:57:e1:a4:82:3d:df:04:7b:7b:ef:98:4c:3d:9a:a0:b1:27:
84:fc:0e:1b:85:90:e3:07:67:7d:61:17:d7:fb:e5:e8:73:76:
96:93:21:60:f9:e2:ae:94:78:c0:29:7d:9b:3e:4c:60:64:16:
77:bc:ed:ae:af:ca:b0:df:e9:31:75:14:fc:94:89:3b:3b:86:
e2:ca:d1:e1:2c:93:ab:97:22:55:38:4f:df:7e:64:94:9d:bc:
29:97:f8:ca:e2:c0:7e:bc:b7:5a:9c:ba:6d:8f:bd:ff:df:51:
ad:9e:32:63:df:f7:eb:bb:3b:eb:66:50:a2:1d:b8:05:8d:4e:
cd:6f:56:bd:61:36:a7:87:dd:2e:4d:75:f4:75:d1:25:2b:ac:
a6:52:3c:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 7 01:11:56 2026 by rpki-client