This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: PaXpVHsUj3f/o3K5jRWYqDmvpcEgwxrjk4lbZKUMZp0= Subject key identifier: 1E:FF:59:74:A1:C8:9A:2B:C0:5B:3A:C1:37:16:4F:47:A0:39:0C:C0 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 37C7E9AC9289BAB06D599CDA786EE41DD20EE971 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 056B Signing time: Wed 26 Nov 2025 00:02:28 +0000 Manifest this update: Wed 26 Nov 2025 00:02:28 +0000 Manifest next update: Sun 30 Nov 2025 00:02:28 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: Tyr42qzf5a38th218ScGSJe46IX+ZpKFGebNvDuUGYM=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: w+4+bxo/lRwC2hOG9Edn/+79C2GPpMAPhWdMbwG/9JU=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 30 Nov 2025 00:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:c7:e9:ac:92:89:ba:b0:6d:59:9c:da:78:6e:e4:1d:d2:0e:e9:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Nov 26 00:02:28 2025 GMT Not After : Nov 30 00:02:28 2025 GMT Subject: serialNumber=cbe2e0bfa59c14c0ab07a015035016135bf2d3e497debd03123286bad09426f2, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:15:ce:44:52:74:0f:12:0f:24:21:07:e7:4f: 6b:d7:96:0a:67:8f:5c:43:fa:90:2b:15:39:1b:c7: 88:82:03:d0:6f:2e:78:ea:3c:67:8e:b9:11:70:45: 86:79:ac:eb:99:18:e7:63:2f:78:44:0d:87:f0:9d: 67:9f:90:91:2c:29:bf:0a:0d:60:0c:d0:83:7c:5c: c8:ce:cd:69:96:a2:8e:15:86:a6:95:7e:45:f7:71: a4:0c:94:5a:49:4a:32:6d:35:5b:2a:35:93:f2:fe: 5b:01:cc:cb:9c:99:e5:b3:15:37:90:35:5d:32:66: 55:0c:5b:ea:28:68:5c:f8:56:55:44:7c:dc:a1:bc: fe:08:62:f9:25:ac:a1:39:64:d2:d4:94:83:01:02: 00:51:d4:4a:8f:95:d5:89:c0:7d:cb:42:5d:0a:1d: bb:2f:48:4a:05:16:5b:20:65:51:99:f0:59:c9:bf: 91:68:4a:cf:d6:51:a1:ed:82:6f:2e:f3:f5:65:34: 0e:39:38:79:7c:02:3a:a0:b1:c6:41:73:72:35:31: 4f:95:75:81:09:c3:b2:bc:28:ac:e2:ae:aa:de:2c: 25:8b:37:4e:89:9c:b3:38:fe:e5:f1:40:2c:e4:4c: 3b:5c:82:66:1f:20:df:d4:14:96:b0:93:37:45:cb: 54:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:FF:59:74:A1:C8:9A:2B:C0:5B:3A:C1:37:16:4F:47:A0:39:0C:C0 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:78:3b:f2:38:e4:6d:5b:fc:7c:99:60:1b:33:52:59:cd:c2: ba:d5:d8:ab:da:57:e3:79:26:c9:50:48:a9:4b:8f:90:83:67: 27:28:82:90:36:78:3b:10:d7:12:f1:77:3e:3a:c6:86:a6:fd: 01:b2:66:c0:38:73:5e:3d:25:17:1e:1a:57:32:b5:2e:94:ef: 2a:fd:08:78:af:5e:f0:26:ba:a3:6f:45:9d:4f:39:6d:25:94: 83:07:77:49:f1:89:f4:50:88:23:0c:dc:13:e1:6b:56:2c:a2: 35:a6:bf:23:de:cb:bb:11:c8:6f:ef:81:e8:b4:35:a1:bb:85: ff:36:1d:3b:16:24:14:b8:61:ee:db:2c:ce:aa:41:f0:7e:bd: 0c:da:72:51:de:c3:4b:e6:74:03:94:12:68:d1:c1:38:24:42: 22:45:f1:1b:7c:5d:ee:55:fc:d8:4c:e5:84:16:ea:e7:5c:6f: 01:43:7d:ed:f1:0a:ab:24:ab:a7:ea:d2:64:3e:cc:73:91:d0: 08:1d:9d:9e:2a:1f:87:10:e5:4a:57:23:41:ac:ea:8d:84:93: 68:bf:15:55:08:d4:42:da:90:d3:9d:cc:30:1e:ed:0b:47:86: fd:52:4b:f5:5c:af:74:e2:34:a6:2c:fb:67:d5:15:28:c0:c8: a4:26:63:4b -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUN8fprJKJurBtWZzaeG7kHdIO6XEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTEyNjAwMDIyOFoX DTI1MTEzMDAwMDIyOFowejFJMEcGA1UEBRNAY2JlMmUwYmZhNTljMTRjMGFiMDdh MDE1MDM1MDE2MTM1YmYyZDNlNDk3ZGViZDAzMTIzMjg2YmFkMDk0MjZmMjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAphXORFJ0DxIPJCEH509r15YKZ49c Q/qQKxU5G8eIggPQby546jxnjrkRcEWGeazrmRjnYy94RA2H8J1nn5CRLCm/Cg1g DNCDfFzIzs1plqKOFYamlX5F93GkDJRaSUoybTVbKjWT8v5bAczLnJnlsxU3kDVd MmZVDFvqKGhc+FZVRHzcobz+CGL5JayhOWTS1JSDAQIAUdRKj5XVicB9y0JdCh27 L0hKBRZbIGVRmfBZyb+RaErP1lGh7YJvLvP1ZTQOOTh5fAI6oLHGQXNyNTFPlXWB CcOyvCis4q6q3iwlizdOiZyzOP7l8UAs5Ew7XIJmHyDf1BSWsJM3RctU8QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFB7/WXShyJorwFs6wTcWT0egOQzAMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBACJ4O/I45G1b/HyZYBszUlnNwrrV2Kva V+N5JslQSKlLj5CDZycogpA2eDsQ1xLxdz46xoam/QGyZsA4c149JRceGlcytS6U 7yr9CHivXvAmuqNvRZ1POW0llIMHd0nxifRQiCMM3BPha1YsojWmvyPey7sRyG/v gei0NaG7hf82HTsWJBS4Ye7bLM6qQfB+vQzaclHew0vmdAOUEmjRwTgkQiJF8Rt8 Xe5V/NhM5YQW6udcbwFDfe3xCqskq6fq0mQ+zHOR0AgdnZ4qH4cQ5UpXI0Gs6o2E k2i/FVUI1ELakNOdzDAe7QtHhv1SS/Vcr3TiNKYs+2fVFSjAyKQmY0s= -----END CERTIFICATE-----Generated at Wed Nov 26 12:33:06 2025 by rpki-client