This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: 5hwd8QsdUu9xDgyX+z7m0SJa4ZBqMbbmBra4SdARaC0= Subject key identifier: 8F:04:4F:B3:3B:45:46:2C:65:D8:94:C8:76:F0:6C:0D:C2:74:64:9C Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 2DA8424ADF8D6609903263FC4813C16D65ABD9D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0588 Signing time: Thu 25 Dec 2025 00:10:16 +0000 Manifest this update: Thu 25 Dec 2025 00:10:16 +0000 Manifest next update: Mon 29 Dec 2025 00:10:16 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: YEl92aF7EMuRSNrtDZ6M3j5rmKul75UfEiyvh9HzqwM=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 00:10:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:a8:42:4a:df:8d:66:09:90:32:63:fc:48:13:c1:6d:65:ab:d9:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Dec 25 00:10:16 2025 GMT Not After : Dec 29 00:10:16 2025 GMT Subject: serialNumber=2b79648f1e0e3e4f1b6ab6eb834d805bd7495742e0fb22cca4bbc7e642a328b6, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:cc:af:85:b6:8c:50:db:21:c8:84:7a:bc:5f: 12:e0:af:8f:83:dd:bd:b5:29:ea:f8:22:b4:ef:12: bf:92:81:f2:e4:2b:bd:28:92:79:ec:e6:f6:9b:92: 60:49:02:97:3f:e4:77:fa:d2:10:1e:63:aa:0b:01: 2b:0f:50:e7:5b:b9:da:6a:a3:78:3d:7b:5b:46:10: a4:84:5b:7d:e2:a5:e7:cf:0c:a1:d5:91:33:e4:8a: d3:11:95:22:92:e0:2c:e2:9e:28:c9:dc:08:bb:34: 6b:0d:96:d6:d7:93:3f:ac:d1:e8:5d:af:ee:b4:6e: d9:32:64:d1:87:56:19:5a:f6:63:63:72:18:af:cb: 3e:49:8c:b8:e1:e4:33:3e:ca:67:2c:b2:01:be:57: 0a:ef:28:27:7b:05:46:e6:f7:0f:11:2a:db:d3:73: 61:2e:d7:4d:5d:2e:93:e6:f4:b8:5f:c4:44:95:46: 76:7e:3c:74:e5:14:c9:e8:64:25:cb:56:65:7b:41: c9:6a:a2:c6:92:f4:54:3b:70:ce:5f:01:c2:18:fa: 05:1c:4c:93:4a:38:b1:93:95:9a:e9:94:e3:93:a2: 21:40:f2:63:d2:b8:1f:4a:e9:ed:1f:69:3c:05:e0: 18:c6:b5:be:23:0a:fc:52:fb:6d:6b:de:c8:48:a7: ac:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:04:4F:B3:3B:45:46:2C:65:D8:94:C8:76:F0:6C:0D:C2:74:64:9C X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:3c:54:48:42:4f:20:80:15:dd:67:71:29:c4:ce:7a:88:d0: 8a:ad:39:4c:f9:47:41:7a:2b:e7:4e:4a:3e:85:dd:53:8b:be: 45:48:65:2a:90:ad:2b:07:82:c3:bd:82:91:42:e2:a8:e3:71: 44:54:07:84:e6:98:7d:9b:76:c3:35:de:a1:b1:6b:9e:c1:02: af:34:72:52:3f:17:f2:8e:34:49:c4:60:39:a3:cf:bf:06:fe: db:84:ee:6d:53:d8:be:7f:80:d9:aa:86:1e:a4:d5:6f:67:2e: ce:3a:a8:82:9a:f2:df:5a:ae:77:95:54:97:74:20:79:95:bd: 11:ec:d0:4d:d5:19:ba:d7:cb:65:21:8c:37:5d:6d:09:01:71: 97:16:08:ff:54:5e:34:80:e1:0b:89:9a:09:95:08:6a:fd:76: cd:e0:e2:f6:3d:cd:ed:a1:2c:0f:55:1a:55:5c:51:3d:a9:d8: 8f:5d:b2:be:94:7f:05:56:61:af:0a:71:8e:31:87:c6:d4:e7: 4e:1a:eb:24:2b:65:a1:4d:83:ad:d6:8d:26:2a:a4:37:60:9d: 7b:7a:6a:6c:02:0a:2a:28:f0:80:4d:dc:b7:c8:cb:1d:a8:e1: e4:3f:37:98:1b:27:52:9c:fc:a7:b2:0a:cf:9a:cf:fa:e4:34: 86:3c:57:13 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIULahCSt+NZgmQMmP8SBPBbWWr2dcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTIyNTAwMTAxNloX DTI1MTIyOTAwMTAxNlowejFJMEcGA1UEBRNAMmI3OTY0OGYxZTBlM2U0ZjFiNmFi NmViODM0ZDgwNWJkNzQ5NTc0MmUwZmIyMmNjYTRiYmM3ZTY0MmEzMjhiNjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlsyvhbaMUNshyIR6vF8S4K+Pg929 tSnq+CK07xK/koHy5Cu9KJJ57Ob2m5JgSQKXP+R3+tIQHmOqCwErD1DnW7naaqN4 PXtbRhCkhFt94qXnzwyh1ZEz5IrTEZUikuAs4p4oydwIuzRrDZbW15M/rNHoXa/u tG7ZMmTRh1YZWvZjY3IYr8s+SYy44eQzPspnLLIBvlcK7ygnewVG5vcPESrb03Nh LtdNXS6T5vS4X8RElUZ2fjx05RTJ6GQly1Zle0HJaqLGkvRUO3DOXwHCGPoFHEyT Sjixk5Wa6ZTjk6IhQPJj0rgfSuntH2k8BeAYxrW+Iwr8Uvtta97ISKeszQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFI8ET7M7RUYsZdiUyHbwbA3CdGScMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGM8VEhCTyCAFd1ncSnEznqI0IqtOUz5 R0F6K+dOSj6F3VOLvkVIZSqQrSsHgsO9gpFC4qjjcURUB4TmmH2bdsM13qGxa57B Aq80clI/F/KONEnEYDmjz78G/tuE7m1T2L5/gNmqhh6k1W9nLs46qIKa8t9arneV VJd0IHmVvRHs0E3VGbrXy2UhjDddbQkBcZcWCP9UXjSA4QuJmgmVCGr9ds3g4vY9 ze2hLA9VGlVcUT2p2I9dsr6UfwVWYa8KcY4xh8bU504a6yQrZaFNg63WjSYqpDdg nXt6amwCCioo8IBN3LfIyx2o4eQ/N5gbJ1Kc/KeyCs+az/rkNIY8VxM= -----END CERTIFICATE-----Generated at Thu Dec 25 17:00:27 2025 by rpki-client