This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: WxDs7iSdi0FHnkUfCrYZI4ptnRspNlgfp0Pptt1+gGw= Subject key identifier: D0:BE:9C:EC:3F:2F:83:9A:13:76:EA:19:D7:1E:A3:F8:4F:B4:48:BC Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 0961373411ACA8C1000E0F7C9517853565B64BD3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05B3 Signing time: Fri 06 Feb 2026 00:00:39 +0000 Manifest this update: Fri 06 Feb 2026 00:00:39 +0000 Manifest next update: Tue 10 Feb 2026 00:00:39 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: idXI2gb8u1v6DPc46R4dA4TMjSEG7hnlQIXCTsQu/Dc=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Feb 2026 00:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:61:37:34:11:ac:a8:c1:00:0e:0f:7c:95:17:85:35:65:b6:4b:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Feb 6 00:00:39 2026 GMT Not After : Feb 10 00:00:39 2026 GMT Subject: serialNumber=584ee6c2b18d686e9ac0a930779bb0da3d9bd8438ac218c7468fce4d86367935, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:50:c0:af:75:5a:67:73:3f:1f:34:0e:5f:19: c5:3a:30:c9:ed:cb:7a:f0:2e:1b:5a:7b:1f:a3:40: 32:e1:b4:ed:6b:cd:a8:44:95:5a:0a:3f:b2:02:25: 67:e6:be:5a:35:8e:55:b4:7a:e8:96:74:7a:f3:a2: 1c:2d:29:2a:7b:80:fc:bc:4a:8b:da:c6:e4:bb:8c: cc:d9:47:9d:d4:4d:90:f9:5e:79:93:6d:6d:d6:08: 7a:9d:8a:91:6b:ba:86:44:c9:d0:f8:ce:ac:67:c3: 35:38:7f:16:36:d9:ef:9f:7c:e4:5f:4a:ba:76:f2: a2:0d:50:f4:db:0f:f2:04:a9:5b:ab:dd:d8:13:23: 4d:f9:84:9f:34:32:f9:79:8c:87:9a:af:67:72:a3: 0c:41:22:6f:fa:5e:57:93:14:20:ea:70:2e:5c:30: ac:78:fb:1e:24:2d:3a:72:ba:50:30:fd:28:60:d1: 2e:fb:b2:46:83:b9:eb:4d:a1:ec:a1:10:72:7a:ff: 64:6a:ec:86:11:50:86:22:32:eb:ff:ed:25:7f:b0: ad:6d:33:64:5c:61:8a:d8:8c:d8:7c:a6:89:ab:c5: 12:3a:eb:25:18:65:fc:27:36:75:6c:af:db:5e:b8: 25:e6:13:ef:e0:21:c2:b5:05:62:77:b5:6f:5c:1d: 21:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:BE:9C:EC:3F:2F:83:9A:13:76:EA:19:D7:1E:A3:F8:4F:B4:48:BC X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:93:ea:6e:7b:74:1d:f0:ad:e5:a9:79:55:d0:85:a1:fa:36: 54:d0:f8:36:20:f5:2e:12:16:d4:3d:12:66:35:58:88:f5:57: 61:6e:62:64:d3:0e:b4:f1:e7:1d:8c:b8:98:05:3d:13:02:5b: cb:b4:17:e7:b6:61:f8:19:fe:5f:ff:3e:02:b4:11:15:1a:99: 77:87:9c:21:93:27:2e:2a:c1:0b:ec:07:97:d6:31:1f:e8:d2: a5:e8:62:98:8e:a1:e5:aa:aa:97:c8:5f:c2:1a:6e:5f:f7:a6: 1a:51:03:52:72:53:c3:bd:0a:e0:12:e7:c1:7c:56:43:0c:e2: e3:2b:82:04:8e:31:23:b8:21:ad:d7:b6:c4:7e:28:4b:dd:32: 21:ad:d8:bb:09:82:71:24:00:e1:28:d0:eb:e7:e2:59:af:78: 37:10:bc:a7:b2:89:e0:9c:41:f5:e5:07:66:fd:f1:6c:61:18: db:93:ab:da:f2:7b:da:bb:aa:50:2b:c9:79:ff:a2:54:1d:c5: 97:8e:dc:a1:93:02:3a:b9:c4:3b:d1:47:19:ae:60:92:6c:46: 17:57:e9:6d:7e:21:cb:1d:f3:14:a9:0f:9b:d3:96:7b:42:8c: e4:bc:f6:63:8f:95:7d:5e:71:8f:ef:ed:38:ed:77:39:45:57: e7:47:19:75 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUCWE3NBGsqMEADg98lReFNWW2S9MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDIwNjAwMDAzOVoX DTI2MDIxMDAwMDAzOVowejFJMEcGA1UEBRNANTg0ZWU2YzJiMThkNjg2ZTlhYzBh OTMwNzc5YmIwZGEzZDliZDg0MzhhYzIxOGM3NDY4ZmNlNGQ4NjM2NzkzNTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAylDAr3VaZ3M/HzQOXxnFOjDJ7ct6 8C4bWnsfo0Ay4bTta82oRJVaCj+yAiVn5r5aNY5VtHrolnR686IcLSkqe4D8vEqL 2sbku4zM2Ued1E2Q+V55k21t1gh6nYqRa7qGRMnQ+M6sZ8M1OH8WNtnvn3zkX0q6 dvKiDVD02w/yBKlbq93YEyNN+YSfNDL5eYyHmq9ncqMMQSJv+l5XkxQg6nAuXDCs ePseJC06crpQMP0oYNEu+7JGg7nrTaHsoRByev9kauyGEVCGIjLr/+0lf7CtbTNk XGGK2IzYfKaJq8USOuslGGX8JzZ1bK/bXrgl5hPv4CHCtQVid7VvXB0howIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNC+nOw/L4OaE3bqGdceo/hPtEi8MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAF2T6m57dB3wreWpeVXQhaH6NlTQ+DYg 9S4SFtQ9EmY1WIj1V2FuYmTTDrTx5x2MuJgFPRMCW8u0F+e2YfgZ/l//PgK0ERUa mXeHnCGTJy4qwQvsB5fWMR/o0qXoYpiOoeWqqpfIX8Iabl/3phpRA1JyU8O9CuAS 58F8VkMM4uMrggSOMSO4Ia3XtsR+KEvdMiGt2LsJgnEkAOEo0Ovn4lmveDcQvKey ieCcQfXlB2b98WxhGNuTq9rye9q7qlAryXn/olQdxZeO3KGTAjq5xDvRRxmuYJJs RhdX6W1+Icsd8xSpD5vTlntCjOS89mOPlX1ecY/v7TjtdzlFV+dHGXU= -----END CERTIFICATE-----Generated at Fri Feb 6 05:14:51 2026 by rpki-client