This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: O42nHO8JbJtWAQfwDGkNyRC/g4MCvdrR5BVs+vgZrzA= Subject key identifier: D0:02:A3:E7:2D:C8:E3:DA:9C:59:47:D1:C0:AA:77:7B:CD:34:3D:1D Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 40CBD01D3289F93F04F4D0407B93ED5C669254B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05B4 Signing time: Sat 07 Feb 2026 00:00:50 +0000 Manifest this update: Sat 07 Feb 2026 00:00:50 +0000 Manifest next update: Wed 11 Feb 2026 00:00:50 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: l9pw72A+BLb4uIm2qVf2/Fexx1NyxYqtHNG6lG3yMJE=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Feb 2026 00:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:cb:d0:1d:32:89:f9:3f:04:f4:d0:40:7b:93:ed:5c:66:92:54:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Feb 7 00:00:50 2026 GMT Not After : Feb 11 00:00:50 2026 GMT Subject: serialNumber=90504493c0934e53843cbc05eda0ce7fec7440f2b7248d1fe39b00529563baf8, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:65:de:4b:f9:42:0c:23:68:0d:c5:e9:12:b9: 74:cf:59:87:e3:e6:31:45:33:0f:33:3e:ae:fa:2e: a5:70:64:2b:22:a3:99:d0:64:ce:ba:73:30:42:4a: 07:ec:3c:d3:7d:a6:69:3f:5c:18:28:03:54:22:52: 9b:c0:19:e3:5d:83:2c:dd:ae:9b:d5:d9:31:43:28: e4:55:ed:e7:d8:4e:89:60:91:5f:a7:52:d7:2b:82: e8:d2:3e:88:2a:91:4f:64:a6:a6:d6:d8:0b:58:1f: b3:da:b0:92:0e:7b:7e:10:0c:39:0e:7e:97:1f:9c: a9:9f:55:bc:e5:53:95:9d:36:90:de:8a:1f:6f:60: 53:6f:27:c4:0f:e1:85:86:69:f7:23:8d:d5:89:37: 52:4d:9a:2a:5e:d6:ea:3e:60:33:0a:80:7a:e0:1c: d3:2a:9b:5c:b7:90:50:e9:1d:ac:1c:40:0f:06:7a: 45:28:f0:f1:59:b2:9a:29:1f:2c:04:1c:3f:2b:1f: b3:64:09:c3:03:98:e9:a2:36:bf:f1:70:0d:fb:90: 5b:8e:cb:e8:ff:cb:16:dd:fc:e6:13:ab:49:c2:1d: 1d:98:b3:4b:e3:e7:a9:f4:0e:75:13:b8:2d:bc:d7: b8:03:ec:0b:7f:92:a8:21:92:fd:9d:0a:ea:37:c7: 44:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:02:A3:E7:2D:C8:E3:DA:9C:59:47:D1:C0:AA:77:7B:CD:34:3D:1D X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:92:74:a0:2a:ab:66:2f:87:b1:54:54:27:6a:6b:3a:85:d0: 1c:bd:02:3c:df:a7:b7:61:d5:8e:8b:a8:30:cc:88:6d:e3:95: 3e:1c:04:28:0f:d2:ac:ed:6a:15:d9:72:83:91:56:40:52:f0: 25:6e:1c:90:6f:58:c4:75:d2:26:46:fb:15:f1:46:a5:98:15: 4c:db:bb:2e:a1:c2:bd:63:67:86:a8:10:ce:41:52:7f:22:11: 86:5c:da:7e:39:38:19:c1:8e:08:f7:6a:3a:68:36:3e:5c:97: 2b:ce:9f:e2:80:2c:ad:a9:2b:92:8b:57:0c:d1:1d:5c:5d:5b: 19:12:94:a0:d4:78:0a:35:71:68:b0:cd:1b:7a:a8:39:ca:5e: 91:5d:11:30:b6:f5:ba:29:ab:74:93:c9:df:dc:40:e7:b8:7f: c0:60:ff:fd:9e:40:a7:5a:df:08:11:1c:1b:3d:67:77:1b:09: 4a:a1:35:db:1f:bc:97:94:f5:b0:10:1c:21:7b:29:2a:e8:ad: 6f:ca:37:7a:30:5c:07:0b:36:27:62:94:82:f3:4c:97:1f:88: df:46:f2:07:cb:f9:63:7a:5c:27:bc:d2:d4:59:89:d3:ad:6d: f8:53:80:c2:b9:d0:44:28:7f:1d:69:bf:06:61:51:93:52:31: 3f:c2:28:d5 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUQMvQHTKJ+T8E9NBAe5PtXGaSVLMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDIwNzAwMDA1MFoX DTI2MDIxMTAwMDA1MFowejFJMEcGA1UEBRNAOTA1MDQ0OTNjMDkzNGU1Mzg0M2Ni YzA1ZWRhMGNlN2ZlYzc0NDBmMmI3MjQ4ZDFmZTM5YjAwNTI5NTYzYmFmODEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4mXeS/lCDCNoDcXpErl0z1mH4+Yx RTMPMz6u+i6lcGQrIqOZ0GTOunMwQkoH7DzTfaZpP1wYKANUIlKbwBnjXYMs3a6b 1dkxQyjkVe3n2E6JYJFfp1LXK4Lo0j6IKpFPZKam1tgLWB+z2rCSDnt+EAw5Dn6X H5ypn1W85VOVnTaQ3oofb2BTbyfED+GFhmn3I43ViTdSTZoqXtbqPmAzCoB64BzT Kptct5BQ6R2sHEAPBnpFKPDxWbKaKR8sBBw/Kx+zZAnDA5jpoja/8XAN+5Bbjsvo /8sW3fzmE6tJwh0dmLNL4+ep9A51E7gtvNe4A+wLf5KoIZL9nQrqN8dE6wIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNACo+ctyOPanFlH0cCqd3vNND0dMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAHWSdKAqq2Yvh7FUVCdqazqF0By9Ajzf p7dh1Y6LqDDMiG3jlT4cBCgP0qztahXZcoORVkBS8CVuHJBvWMR10iZG+xXxRqWY FUzbuy6hwr1jZ4aoEM5BUn8iEYZc2n45OBnBjgj3ajpoNj5clyvOn+KALK2pK5KL VwzRHVxdWxkSlKDUeAo1cWiwzRt6qDnKXpFdETC29bopq3STyd/cQOe4f8Bg//2e QKda3wgRHBs9Z3cbCUqhNdsfvJeU9bAQHCF7KSrorW/KN3owXAcLNidilILzTJcf iN9G8gfL+WN6XCe80tRZidOtbfhTgMK50EQofx1pvwZhUZNSMT/CKNU= -----END CERTIFICATE-----Generated at Sat Feb 7 05:20:51 2026 by rpki-client