This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: wlnPMJmXbkKuipd0IeC5Nm4lzuM0yH5ELf/wlZ+t2vs= Subject key identifier: 30:97:F3:5A:18:57:4D:89:AB:97:10:A0:95:77:C3:2B:F3:05:C8:38 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 69E73153319AF661B332A53AB7F45EF7E6282AF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 057B Signing time: Fri 12 Dec 2025 00:01:49 +0000 Manifest this update: Fri 12 Dec 2025 00:01:49 +0000 Manifest next update: Tue 16 Dec 2025 00:01:49 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: UV4PoogMyeg/sb1QWoIgL1X5JlJ1Bcoj8TlVpP7OT1c=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 00:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:e7:31:53:31:9a:f6:61:b3:32:a5:3a:b7:f4:5e:f7:e6:28:2a:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Dec 12 00:01:49 2025 GMT Not After : Dec 16 00:01:49 2025 GMT Subject: serialNumber=a03c4f24ed52ddad1d78b253ba8e461e8f1a69831d928aa2f6692070cd397d0f, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c2:ef:21:e4:12:8d:4b:27:84:25:83:35:74: b6:8b:91:b3:32:f2:87:a8:c8:bc:7c:77:fd:ea:a0: e0:1d:0b:92:2f:e7:65:f1:f5:cc:98:a8:12:65:37: 42:b9:b4:11:c4:a4:44:d2:f3:5b:17:00:a4:65:4a: bf:ce:52:73:68:44:2a:2d:1f:96:ed:ee:65:6c:cc: 71:ca:c2:55:61:3a:f4:d2:31:93:ad:0f:56:d4:cd: 58:18:6f:68:58:92:9e:71:f8:29:fb:39:c0:db:a4: 83:f1:e8:8b:6f:e7:ae:c6:fe:21:b4:aa:50:cb:63: 3e:8b:2d:f8:01:65:14:d2:ff:15:1c:09:ed:a1:aa: c7:bb:93:52:f9:7d:0c:bc:9c:8f:c7:3c:32:f7:7f: 98:d4:ee:04:f7:32:8a:3b:40:3c:67:c7:2a:a7:06: 15:1c:d0:dc:a5:8f:ee:94:a3:bf:b4:6d:98:92:bb: 94:a9:27:1e:ff:5b:2e:15:19:f7:fc:89:d6:65:7e: 43:ad:e1:a2:ba:ee:e5:e8:9f:68:91:13:0e:a5:d5: 5d:33:7b:32:67:a5:d7:6e:7d:d6:e6:8d:52:b6:6c: 36:55:b0:28:69:62:9d:49:ea:90:99:ff:c0:13:88: f5:1c:08:0a:68:c4:80:ce:d3:d6:88:03:29:87:42: 22:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:97:F3:5A:18:57:4D:89:AB:97:10:A0:95:77:C3:2B:F3:05:C8:38 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:96:84:fc:14:03:36:0e:43:03:27:8c:2f:bf:e6:ad:96:35: 6c:bd:04:ce:45:cf:8a:40:07:06:53:70:bb:ec:93:0c:fc:df: 42:d7:a0:39:87:a7:89:9d:fa:06:55:04:8a:a5:54:48:e5:01: 09:89:e5:c7:a0:1e:22:8d:ec:33:e2:3b:11:e9:a3:ad:52:01: 0e:05:a5:14:a5:dc:25:99:68:3b:19:72:71:c9:d3:0b:84:02: 33:10:60:ec:ae:34:ab:80:7a:74:e9:1d:7a:93:9b:04:52:db: 67:ce:c3:0c:22:dd:d9:06:b2:78:e2:92:7c:ae:01:c5:c6:bc: 02:10:68:fe:22:38:05:4f:36:13:21:e3:fe:c0:21:16:7b:47: 30:d5:55:1c:71:5f:26:ab:2e:17:77:9a:a1:e0:9f:fb:d2:21: 90:77:76:eb:0c:13:4a:75:72:77:39:b0:b5:1f:40:f3:f4:a9: f8:57:6b:59:af:c8:92:7c:79:78:f8:01:62:f6:51:3b:c7:e4: f7:fc:c0:2e:41:7c:bc:17:d5:f9:33:ec:16:9c:b2:65:98:72: 8c:4b:e6:5d:62:38:45:17:51:35:f9:fd:e3:06:11:35:1a:9c: 57:e0:3e:7b:8c:7c:18:5e:f3:40:04:06:a6:11:f8:a3:38:c5: 29:2a:63:e2 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUaecxUzGa9mGzMqU6t/Re9+YoKvIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTIxMjAwMDE0OVoX DTI1MTIxNjAwMDE0OVowejFJMEcGA1UEBRNAYTAzYzRmMjRlZDUyZGRhZDFkNzhi MjUzYmE4ZTQ2MWU4ZjFhNjk4MzFkOTI4YWEyZjY2OTIwNzBjZDM5N2QwZjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqsLvIeQSjUsnhCWDNXS2i5GzMvKH qMi8fHf96qDgHQuSL+dl8fXMmKgSZTdCubQRxKRE0vNbFwCkZUq/zlJzaEQqLR+W 7e5lbMxxysJVYTr00jGTrQ9W1M1YGG9oWJKecfgp+znA26SD8eiLb+euxv4htKpQ y2M+iy34AWUU0v8VHAntoarHu5NS+X0MvJyPxzwy93+Y1O4E9zKKO0A8Z8cqpwYV HNDcpY/ulKO/tG2YkruUqSce/1suFRn3/InWZX5DreGiuu7l6J9okRMOpdVdM3sy Z6XXbn3W5o1Stmw2VbAoaWKdSeqQmf/AE4j1HAgKaMSAztPWiAMph0IinwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFDCX81oYV02Jq5cQoJV3wyvzBcg4MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAIuWhPwUAzYOQwMnjC+/5q2WNWy9BM5F z4pABwZTcLvskwz830LXoDmHp4md+gZVBIqlVEjlAQmJ5cegHiKN7DPiOxHpo61S AQ4FpRSl3CWZaDsZcnHJ0wuEAjMQYOyuNKuAenTpHXqTmwRS22fOwwwi3dkGsnji knyuAcXGvAIQaP4iOAVPNhMh4/7AIRZ7RzDVVRxxXyarLhd3mqHgn/vSIZB3dusM E0p1cnc5sLUfQPP0qfhXa1mvyJJ8eXj4AWL2UTvH5Pf8wC5BfLwX1fkz7BacsmWY coxL5l1iOEUXUTX5/eMGETUanFfgPnuMfBhe80AEBqYR+KM4xSkqY+I= -----END CERTIFICATE-----Generated at Fri Dec 12 10:36:26 2025 by rpki-client