This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: uVZ1fyAsRqsp0+lvpxXpSshKvlYbmbMgq9cvP1A4jJE= Subject key identifier: B9:99:6E:AF:9F:92:6E:B6:5F:53:B7:2E:49:95:A4:47:AE:0F:1C:D6 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 47659D04D9DB9CA7CEB40BB2AE3B692D5A8AF1A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05A7 Signing time: Sun 25 Jan 2026 00:15:59 +0000 Manifest this update: Sun 25 Jan 2026 00:15:59 +0000 Manifest next update: Thu 29 Jan 2026 00:15:59 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: dw2z75bnrJl3EYlorA74xzb2RpdlH7CPYuJOkWtNRKo=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 29 Jan 2026 00:15:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:65:9d:04:d9:db:9c:a7:ce:b4:0b:b2:ae:3b:69:2d:5a:8a:f1:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jan 25 00:15:59 2026 GMT Not After : Jan 29 00:15:59 2026 GMT Subject: serialNumber=becd7830b52ca330bde6fa5c7d0bd21e2368784129808d9f399ac8db985026da, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:ab:72:f6:ce:71:d3:2f:7d:8b:7f:65:46:93: 3f:51:07:2e:ca:2b:cf:6d:39:d6:15:8d:ee:c7:cf: 27:0e:7c:4b:ba:fa:e2:93:6d:54:9e:57:f3:51:41: 69:cc:1d:a1:c9:64:29:43:78:d7:d7:75:93:96:9a: 15:3d:b1:e4:5c:fb:50:75:71:a4:50:25:55:e9:95: 71:c0:03:d0:b9:14:9b:3a:57:f1:f4:79:15:29:87: bf:fc:f2:4a:9d:80:02:34:f7:10:18:a1:d3:91:d6: 0c:65:11:0a:60:f9:ec:6b:94:9d:35:c5:34:f1:85: 08:31:46:e1:b4:0f:72:7d:64:13:e4:2b:c9:56:d0: 60:e6:9a:8d:d6:73:85:c3:1c:d7:e8:fc:04:c2:3e: 1a:91:8a:72:b9:de:c8:65:ed:2c:dd:0a:89:d3:fa: ff:a1:54:a7:65:53:6c:f7:f4:e9:a8:94:d1:25:c5: a8:81:81:c6:0c:c8:b4:70:78:99:ee:87:84:77:d3: 91:eb:65:11:85:0b:3c:a4:7a:4f:3d:71:ad:d6:69: 90:cd:7d:1f:d9:2d:55:a5:3f:c7:2d:c6:78:02:6a: 98:2c:b2:c5:bd:fb:da:0c:53:3e:10:23:46:14:24: d6:24:0c:27:53:b2:00:bb:ed:f6:2d:93:48:d9:c4: a5:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:99:6E:AF:9F:92:6E:B6:5F:53:B7:2E:49:95:A4:47:AE:0F:1C:D6 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:4e:b3:5c:1b:e2:35:ee:2f:5c:16:f7:56:87:64:ec:b9:1b: 58:d0:52:7e:b0:53:38:ec:ee:51:6a:13:8e:c3:7e:4d:73:67: e7:0c:c9:31:bb:7f:10:a7:c1:d2:a1:87:50:23:77:51:fc:1e: 00:41:f6:c6:77:34:77:e1:ed:7b:02:ec:6c:51:6f:25:2c:a6: 39:7e:b0:a1:5f:6e:4e:db:16:ac:6f:b2:e7:5d:6f:ee:c6:30: 02:bb:c6:94:57:4b:ba:29:1a:b3:d4:f3:d7:3d:93:53:49:34: 91:0e:df:36:a2:4a:88:df:56:09:76:05:32:78:f2:a8:c9:d9: 73:be:c0:53:60:6c:fa:f3:da:5f:65:d9:70:45:d3:e1:a3:aa: 9d:ee:5a:84:65:62:31:43:a3:11:c8:62:d1:a7:e8:e6:63:76: c4:f9:1c:be:0c:86:8a:01:80:63:ff:61:5c:a4:9d:78:b3:0d: db:67:78:00:0a:60:b4:de:5c:81:15:40:15:1b:ac:fb:e9:40: 7e:86:68:cc:1a:03:ba:01:76:a0:91:da:f9:9e:19:50:15:8f: cf:eb:c7:13:1f:7b:55:6e:3c:9f:19:bc:49:a6:d8:b2:eb:5c: 2d:13:19:7b:50:02:db:84:c2:4d:16:24:3f:d6:da:22:1d:22: 90:2a:17:5f -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUR2WdBNnbnKfOtAuyrjtpLVqK8agwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDEyNTAwMTU1OVoX DTI2MDEyOTAwMTU1OVowejFJMEcGA1UEBRNAYmVjZDc4MzBiNTJjYTMzMGJkZTZm YTVjN2QwYmQyMWUyMzY4Nzg0MTI5ODA4ZDlmMzk5YWM4ZGI5ODUwMjZkYTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg6ty9s5x0y99i39lRpM/UQcuyivP bTnWFY3ux88nDnxLuvrik21UnlfzUUFpzB2hyWQpQ3jX13WTlpoVPbHkXPtQdXGk UCVV6ZVxwAPQuRSbOlfx9HkVKYe//PJKnYACNPcQGKHTkdYMZREKYPnsa5SdNcU0 8YUIMUbhtA9yfWQT5CvJVtBg5pqN1nOFwxzX6PwEwj4akYpyud7IZe0s3QqJ0/r/ oVSnZVNs9/TpqJTRJcWogYHGDMi0cHiZ7oeEd9OR62URhQs8pHpPPXGt1mmQzX0f 2S1VpT/HLcZ4AmqYLLLFvfvaDFM+ECNGFCTWJAwnU7IAu+32LZNI2cSlnQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFLmZbq+fkm62X1O3LkmVpEeuDxzWMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAIBOs1wb4jXuL1wW91aHZOy5G1jQUn6w Uzjs7lFqE47Dfk1zZ+cMyTG7fxCnwdKhh1Ajd1H8HgBB9sZ3NHfh7XsC7GxRbyUs pjl+sKFfbk7bFqxvsuddb+7GMAK7xpRXS7opGrPU89c9k1NJNJEO3zaiSojfVgl2 BTJ48qjJ2XO+wFNgbPrz2l9l2XBF0+Gjqp3uWoRlYjFDoxHIYtGn6OZjdsT5HL4M hooBgGP/YVyknXizDdtneAAKYLTeXIEVQBUbrPvpQH6GaMwaA7oBdqCR2vmeGVAV j8/rxxMfe1VuPJ8ZvEmm2LLrXC0TGXtQAtuEwk0WJD/W2iIdIpAqF18= -----END CERTIFICATE-----Generated at Sun Jan 25 14:06:02 2026 by rpki-client