This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: Fv6fuAB6Cn5zsWCvAUyrdlWtERI44Gfz2inUsD1emkg= Subject key identifier: EB:9E:AB:40:24:0C:52:B9:9E:E0:31:83:60:DA:9B:34:BD:5B:69:5D Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 2E35D5B5232E53CA84CC4CC45CD51BCEE13548E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 057E Signing time: Mon 15 Dec 2025 00:02:24 +0000 Manifest this update: Mon 15 Dec 2025 00:02:24 +0000 Manifest next update: Fri 19 Dec 2025 00:02:24 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: jZlhfm1OpE6dkDaVKKYCRjMHZlsiqPOxXsF1G8/Bqr4=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Dec 2025 00:02:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:35:d5:b5:23:2e:53:ca:84:cc:4c:c4:5c:d5:1b:ce:e1:35:48:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Dec 15 00:02:24 2025 GMT Not After : Dec 19 00:02:24 2025 GMT Subject: serialNumber=ceb13ca5aedcca38907d32b24c83bac44b8dbf0a05c711acb216ee59a1c9996a, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:6e:1b:c9:f5:84:57:d7:21:ac:17:67:b1:2d: b9:fe:55:7f:a2:28:ce:07:12:44:9b:3b:87:b0:8b: 67:90:4c:c8:39:11:9f:1b:a6:85:94:79:0a:db:a5: 32:87:3b:10:55:25:c5:e6:aa:db:8b:7b:9e:4d:aa: e9:39:e1:0c:62:19:9f:0e:a4:60:fb:9d:e4:fb:c6: 0d:35:48:40:94:d6:fd:78:1c:1e:cd:29:5f:f9:cf: a7:f4:46:79:1e:8e:02:f4:c4:ed:c0:29:f2:11:67: ab:23:4f:11:fe:d4:b8:f3:4f:12:b0:27:e2:9c:3e: a9:46:b3:32:d8:f9:b4:1e:59:25:0f:a1:56:67:ff: f8:02:47:8e:a5:3d:a0:6f:49:e2:94:d7:9a:47:7e: 4d:c6:bb:49:53:32:bf:a1:3e:bf:19:a7:48:ae:3c: 70:ab:52:5e:dc:cb:ad:1c:ba:08:97:98:60:6b:d1: cd:71:c9:1f:12:02:0a:aa:50:2c:c1:43:95:a8:1d: f6:6d:f9:89:ca:96:59:57:aa:c4:1c:73:21:51:d3: e5:7c:e1:de:66:7a:ac:be:0c:1b:77:5c:a7:d8:86: 7e:33:66:d7:6d:f3:98:32:8f:80:20:ba:79:9c:b2: be:9b:5a:dd:a0:c3:56:92:2a:c7:98:04:d9:c1:f9: 02:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:9E:AB:40:24:0C:52:B9:9E:E0:31:83:60:DA:9B:34:BD:5B:69:5D X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:e3:10:e3:e1:7b:3e:40:c9:a0:1e:a2:b7:d6:87:dc:3f:46: 81:76:f1:43:2c:d0:10:bb:bd:83:e9:cf:55:3e:5d:69:c1:f8: 58:d3:ce:f2:f9:2d:e6:3d:ab:c4:d5:cb:07:e5:03:27:f5:c7: f7:f2:14:1a:cb:c9:09:18:b1:e8:0c:6f:21:b9:6c:3e:85:70: 1f:18:5f:5d:89:a7:92:05:af:ab:55:9e:4a:5c:d0:92:ed:79: c9:4b:3c:2b:e4:26:bf:74:1a:bd:23:54:19:7e:00:31:8c:7c: 48:78:bf:9b:81:10:06:bc:77:30:d6:bd:f6:f0:71:0e:5b:f5: 75:3f:f1:23:55:8e:c5:36:32:56:a2:2d:ab:d3:07:67:c9:77: e2:74:71:42:6d:3d:56:c4:23:e3:b6:47:6a:c0:70:d1:3a:fc: fa:d1:4c:80:f2:58:b1:5a:f1:9b:ce:ed:17:86:bc:f3:9a:fe: 39:78:a4:19:6f:1d:3a:a5:09:40:86:02:fb:7b:a4:fc:17:d6: 17:56:a6:01:08:0e:b3:5e:ff:09:b0:71:d5:c9:16:c0:45:c0: c6:ac:77:59:22:cc:ff:0c:7d:b0:2b:14:98:f5:97:7c:86:ae: 1b:f9:1c:44:d0:aa:42:a9:e2:0f:da:4e:99:18:d7:df:12:8e: ff:a8:5b:63 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIULjXVtSMuU8qEzEzEXNUbzuE1SOYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTIxNTAwMDIyNFoX DTI1MTIxOTAwMDIyNFowejFJMEcGA1UEBRNAY2ViMTNjYTVhZWRjY2EzODkwN2Qz MmIyNGM4M2JhYzQ0YjhkYmYwYTA1YzcxMWFjYjIxNmVlNTlhMWM5OTk2YTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm24byfWEV9chrBdnsS25/lV/oijO BxJEmzuHsItnkEzIORGfG6aFlHkK26UyhzsQVSXF5qrbi3ueTarpOeEMYhmfDqRg +53k+8YNNUhAlNb9eBwezSlf+c+n9EZ5Ho4C9MTtwCnyEWerI08R/tS4808SsCfi nD6pRrMy2Pm0HlklD6FWZ//4AkeOpT2gb0nilNeaR35NxrtJUzK/oT6/GadIrjxw q1Je3MutHLoIl5hga9HNcckfEgIKqlAswUOVqB32bfmJypZZV6rEHHMhUdPlfOHe Znqsvgwbd1yn2IZ+M2bXbfOYMo+AILp5nLK+m1rdoMNWkirHmATZwfkCKwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFOueq0AkDFK5nuAxg2DamzS9W2ldMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAALjEOPhez5AyaAeorfWh9w/RoF28UMs 0BC7vYPpz1U+XWnB+FjTzvL5LeY9q8TVywflAyf1x/fyFBrLyQkYsegMbyG5bD6F cB8YX12Jp5IFr6tVnkpc0JLteclLPCvkJr90Gr0jVBl+ADGMfEh4v5uBEAa8dzDW vfbwcQ5b9XU/8SNVjsU2MlaiLavTB2fJd+J0cUJtPVbEI+O2R2rAcNE6/PrRTIDy WLFa8ZvO7ReGvPOa/jl4pBlvHTqlCUCGAvt7pPwX1hdWpgEIDrNe/wmwcdXJFsBF wMasd1kizP8MfbArFJj1l3yGrhv5HETQqkKp4g/aTpkY198Sjv+oW2M= -----END CERTIFICATE-----Generated at Mon Dec 15 14:00:48 2025 by rpki-client