This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: ZYXDlx2RrMJTI16jaOi3lsZGrbgXTJ/Tuy0eBYcUstA= Subject key identifier: DC:88:66:D4:19:3B:43:15:A3:DB:C4:24:83:8D:A6:51:E9:78:74:06 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 6E46531E135531262E84D05BAAC487311482BDE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0571 Signing time: Tue 02 Dec 2025 00:03:38 +0000 Manifest this update: Tue 02 Dec 2025 00:03:38 +0000 Manifest next update: Sat 06 Dec 2025 00:03:38 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: 2ULe2lIZqyDqtQApFHY+eKIqTuo/gKPF0Lo4b7LM844=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: w+4+bxo/lRwC2hOG9Edn/+79C2GPpMAPhWdMbwG/9JU=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 00:03:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:46:53:1e:13:55:31:26:2e:84:d0:5b:aa:c4:87:31:14:82:bd:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Dec 2 00:03:38 2025 GMT Not After : Dec 6 00:03:38 2025 GMT Subject: serialNumber=1755baef3096e3677d5608988b28f432e061d13a8c98f19580a4671e42b75cd9, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:84:0b:95:d1:fc:7c:9a:66:86:5b:90:9b:4c: 1d:2d:81:1f:61:10:1c:2d:81:e7:e0:92:b9:dd:b2: d5:0f:72:93:86:56:7a:5f:7f:1f:1a:ad:7b:7e:3c: 74:8f:87:af:74:0d:39:ab:84:42:65:9b:2b:7f:26: 3a:b6:d1:95:9c:13:09:09:3f:08:63:44:0a:22:e6: d8:aa:c4:77:65:d2:6d:12:48:ff:33:0a:e7:6e:7e: a4:d2:79:4c:3d:f4:bb:10:2c:4f:71:e5:25:16:47: 0b:7a:d2:37:f2:69:16:19:bd:95:cc:d8:14:8b:b5: 9d:62:f5:1e:e4:58:d4:cc:1e:9a:e9:7d:bb:55:23: cb:49:14:83:4b:94:4c:7d:cd:7f:ed:55:99:a9:f4: 28:38:5a:42:f3:db:c9:a2:e4:f8:67:72:c5:0b:ab: 14:b5:05:97:4d:a9:3b:a1:44:42:12:e0:6e:dc:e1: 31:e4:78:d1:f8:ed:74:39:16:6b:e7:fb:60:c3:5d: ed:9f:33:cb:4c:27:19:3d:09:b8:56:39:02:16:aa: 4f:e6:4b:ab:01:3b:8d:df:9a:53:f6:ae:8c:5c:2c: 2c:8c:a6:ea:a4:0a:b3:08:ae:82:f0:05:ca:aa:68: d3:66:d9:4e:a2:4e:e5:db:2f:e2:05:ac:5f:2a:04: 2b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:88:66:D4:19:3B:43:15:A3:DB:C4:24:83:8D:A6:51:E9:78:74:06 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:3e:a9:20:05:d8:dd:78:72:78:35:27:36:c6:3c:6f:01:26: d1:ae:77:07:6e:36:99:0a:00:11:63:64:cc:51:24:b1:8e:80: c4:01:4e:c8:25:df:08:2d:f2:a0:43:52:b3:b7:46:65:f1:11: e7:12:b8:a0:de:f9:9b:b3:8c:c7:d5:55:67:52:86:79:44:14: 1a:42:02:db:a9:c7:60:ab:a6:7d:9f:5c:d1:48:2d:1a:d7:ff: 2e:5a:a9:c7:94:73:b4:cb:26:48:4b:2b:1d:f3:a3:97:8d:ef: 83:f4:eb:2c:a0:ed:93:02:2d:fc:c3:a5:95:d6:62:02:11:d6: bc:b7:1d:1e:48:8b:2b:32:1b:75:e1:78:40:73:9f:e4:d7:e6: 9d:10:31:68:01:a1:34:c1:ce:0c:f6:57:67:99:d5:d2:b2:24: d5:9b:eb:36:eb:07:89:37:ef:d1:88:25:03:26:1a:d2:20:92: 44:c8:e4:e2:c4:14:aa:b1:f1:d8:45:8b:6c:6f:60:ae:f7:83: 7f:8a:6e:51:96:c2:c0:99:f3:54:0e:53:08:c5:be:b0:5f:44: 2f:72:d2:2e:5f:e0:5a:ad:8b:31:52:e6:d8:71:fe:54:7f:77: 00:a3:b1:aa:05:11:1f:41:8f:df:f6:dd:17:23:52:c5:cb:25: 77:e4:61:b1 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUbkZTHhNVMSYuhNBbqsSHMRSCvegwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTIwMjAwMDMzOFoX DTI1MTIwNjAwMDMzOFowejFJMEcGA1UEBRNAMTc1NWJhZWYzMDk2ZTM2NzdkNTYw ODk4OGIyOGY0MzJlMDYxZDEzYThjOThmMTk1ODBhNDY3MWU0MmI3NWNkOTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw4QLldH8fJpmhluQm0wdLYEfYRAc LYHn4JK53bLVD3KThlZ6X38fGq17fjx0j4evdA05q4RCZZsrfyY6ttGVnBMJCT8I Y0QKIubYqsR3ZdJtEkj/Mwrnbn6k0nlMPfS7ECxPceUlFkcLetI38mkWGb2VzNgU i7WdYvUe5FjUzB6a6X27VSPLSRSDS5RMfc1/7VWZqfQoOFpC89vJouT4Z3LFC6sU tQWXTak7oURCEuBu3OEx5HjR+O10ORZr5/tgw13tnzPLTCcZPQm4VjkCFqpP5kur ATuN35pT9q6MXCwsjKbqpAqzCK6C8AXKqmjTZtlOok7l2y/iBaxfKgQrPQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNyIZtQZO0MVo9vEJIONplHpeHQGMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBADI+qSAF2N14cng1JzbGPG8BJtGudwdu NpkKABFjZMxRJLGOgMQBTsgl3wgt8qBDUrO3RmXxEecSuKDe+ZuzjMfVVWdShnlE FBpCAtupx2Crpn2fXNFILRrX/y5aqceUc7TLJkhLKx3zo5eN74P06yyg7ZMCLfzD pZXWYgIR1ry3HR5IiysyG3XheEBzn+TX5p0QMWgBoTTBzgz2V2eZ1dKyJNWb6zbr B4k379GIJQMmGtIgkkTI5OLEFKqx8dhFi2xvYK73g3+KblGWwsCZ81QOUwjFvrBf RC9y0i5f4FqtizFS5thx/lR/dwCjsaoFER9Bj9/23RcjUsXLJXfkYbE= -----END CERTIFICATE-----Generated at Tue Dec 2 06:06:00 2025 by rpki-client