This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: jIAEIxlw8JUk6AZkuib9hVPGdLDY6pp8+Xn+SEvA+gU= Subject key identifier: 23:F3:79:05:A3:7D:CF:9F:F5:E0:6F:CA:19:BE:1F:43:68:76:AD:29 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 57F1A42D25C00CF8F843C1E9C71B307EDF27E745 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0592 Signing time: Sun 04 Jan 2026 00:12:10 +0000 Manifest this update: Sun 04 Jan 2026 00:12:10 +0000 Manifest next update: Thu 08 Jan 2026 00:12:10 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: tdqUz+0kszqb0oQC0GAHd/yQZe+ZhMhvWcHGktAVOYI=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 00:12:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:f1:a4:2d:25:c0:0c:f8:f8:43:c1:e9:c7:1b:30:7e:df:27:e7:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jan 4 00:12:10 2026 GMT Not After : Jan 8 00:12:10 2026 GMT Subject: serialNumber=58367ad3524446e18510ee2001547d3d6c6aaa25838fa6a2bb4d45a9569b0d57, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5f:2f:7a:81:b7:35:ca:64:bf:f2:19:c5:53: 98:bd:9b:f9:d4:01:f9:6a:2e:72:c6:70:5c:fc:e8: 26:46:78:70:8b:1c:ee:58:3c:5d:d9:9e:4c:cd:d4: ec:a1:9a:53:48:50:03:b6:c3:fc:0b:4b:44:60:24: 12:0f:a8:40:63:08:36:a5:7e:49:55:d0:e1:95:07: 48:64:6c:be:0d:b1:c6:fa:ac:c0:76:a0:62:64:aa: c7:a5:22:7b:54:f4:be:fd:4d:76:35:da:a6:b5:52: d0:e2:3a:ce:2d:6d:c3:b7:34:fc:49:3e:da:a4:c9: 68:0e:7f:e2:a0:34:ae:cb:e4:28:aa:82:5f:4f:99: 64:e1:57:42:96:91:df:11:73:40:b7:21:a0:75:8e: c0:29:77:40:f8:08:a7:6c:60:b5:f3:e6:c6:84:11: fe:5d:13:e6:a8:32:02:69:7c:74:f6:55:5e:69:95: ed:e1:b8:84:c9:b3:be:90:8f:60:e0:cb:49:38:26: 26:50:0f:61:4c:13:b1:d5:ca:17:79:f0:d8:23:e6: 62:d8:91:e1:79:4f:c6:6a:c0:79:4e:bf:3d:f0:0b: c5:7e:3f:f4:89:35:d9:d7:6a:77:ec:07:62:16:fe: 65:0e:49:a2:21:36:9a:8e:18:3a:0d:9e:be:bf:69: 54:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:F3:79:05:A3:7D:CF:9F:F5:E0:6F:CA:19:BE:1F:43:68:76:AD:29 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:e8:55:3d:17:0d:f3:d1:90:5b:1b:f0:85:80:54:eb:c4:e2: fc:8d:87:a4:91:9f:d9:f8:be:fe:6c:79:7e:6f:e8:ce:37:43: 99:e7:a7:65:a6:b6:21:74:d8:99:c0:19:48:82:16:34:9d:d4: 54:89:b5:12:f4:09:6e:79:47:ae:e5:6d:42:14:07:3d:77:c6: 5d:3a:54:17:53:39:86:75:0e:01:92:4c:ce:d1:90:a0:95:61: 59:99:23:d8:b0:e3:70:92:6f:1e:70:22:e2:18:5a:8a:b8:2d: 77:45:93:b4:cd:a0:75:73:8b:92:c2:d3:e4:4a:96:e0:bc:c8: 3e:94:1e:96:54:ee:3e:e4:ce:bf:2f:29:d2:5d:e6:74:8b:8d: a2:35:62:db:de:c2:b5:43:7a:30:a5:52:e7:b3:e7:e8:8b:96: 22:10:c1:f0:b2:9e:a8:4e:ab:72:98:be:c0:8f:0b:f5:7f:82: c1:e0:91:1f:80:66:d0:60:7b:64:b9:c0:ec:9d:c9:d1:c2:f8: c4:fe:fa:62:27:84:45:09:00:02:24:50:a7:ec:4d:a9:28:c2: e0:2f:50:e8:77:b4:a3:ae:3d:a2:1e:3a:c1:22:81:4a:e1:d8: cd:05:1c:08:e3:77:af:f3:fc:90:2d:ec:9f:43:cd:53:61:00: 32:8e:69:94 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUV/GkLSXADPj4Q8Hpxxswft8n50UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDEwNDAwMTIxMFoX DTI2MDEwODAwMTIxMFowejFJMEcGA1UEBRNANTgzNjdhZDM1MjQ0NDZlMTg1MTBl ZTIwMDE1NDdkM2Q2YzZhYWEyNTgzOGZhNmEyYmI0ZDQ1YTk1NjliMGQ1NzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsV8veoG3Ncpkv/IZxVOYvZv51AH5 ai5yxnBc/OgmRnhwixzuWDxd2Z5MzdTsoZpTSFADtsP8C0tEYCQSD6hAYwg2pX5J VdDhlQdIZGy+DbHG+qzAdqBiZKrHpSJ7VPS+/U12NdqmtVLQ4jrOLW3DtzT8ST7a pMloDn/ioDSuy+QoqoJfT5lk4VdClpHfEXNAtyGgdY7AKXdA+AinbGC18+bGhBH+ XRPmqDICaXx09lVeaZXt4biEybO+kI9g4MtJOCYmUA9hTBOx1coXefDYI+Zi2JHh eU/GasB5Tr898AvFfj/0iTXZ12p37AdiFv5lDkmiITaajhg6DZ6+v2lUcwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFCPzeQWjfc+f9eBvyhm+H0Nodq0pMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBACzoVT0XDfPRkFsb8IWAVOvE4vyNh6SR n9n4vv5seX5v6M43Q5nnp2WmtiF02JnAGUiCFjSd1FSJtRL0CW55R67lbUIUBz13 xl06VBdTOYZ1DgGSTM7RkKCVYVmZI9iw43CSbx5wIuIYWoq4LXdFk7TNoHVzi5LC 0+RKluC8yD6UHpZU7j7kzr8vKdJd5nSLjaI1YtvewrVDejClUuez5+iLliIQwfCy nqhOq3KYvsCPC/V/gsHgkR+AZtBge2S5wOydydHC+MT++mInhEUJAAIkUKfsTako wuAvUOh3tKOuPaIeOsEigUrh2M0FHAjjd6/z/JAt7J9DzVNhADKOaZQ= -----END CERTIFICATE-----Generated at Sun Jan 4 10:07:10 2026 by rpki-client