This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: k5bV6+12o3mZn1nC3kikCKd6Bgb6OiqiaOzia7yLxKM= Subject key identifier: D0:33:82:8E:DC:4E:CD:EE:97:1E:97:09:C8:B2:62:9B:8F:73:71:CA Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 44DE39B1CA1EB19A72457EAB9BC2989853A046F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0586 Signing time: Tue 23 Dec 2025 00:09:57 +0000 Manifest this update: Tue 23 Dec 2025 00:09:57 +0000 Manifest next update: Sat 27 Dec 2025 00:09:57 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: CJ/8YM35j4FHejOrMhyc6N39AfOIJaiV0Q2Ti/88I8o=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 00:09:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:de:39:b1:ca:1e:b1:9a:72:45:7e:ab:9b:c2:98:98:53:a0:46:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Dec 23 00:09:57 2025 GMT Not After : Dec 27 00:09:57 2025 GMT Subject: serialNumber=1c687e2281ca5e6d8f6d704ebe3f40d5379a79d5cc00c9443b79cf34dd74da4f, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:08:6d:df:d0:09:92:49:68:51:48:8f:4f:7b: f8:72:e9:54:03:21:57:b6:48:92:01:e5:53:47:8d: eb:a7:15:88:3a:4c:89:c9:c9:50:d9:a9:43:06:92: dd:ca:6b:c9:32:55:42:0f:c9:49:47:cc:48:d9:77: 5c:d6:f9:9e:b6:d5:24:6a:a1:01:36:6d:3a:6e:07: 8d:96:a3:53:a4:b9:88:44:6d:db:28:c3:aa:f4:83: 9e:98:41:eb:20:42:8e:76:b3:60:d2:3f:7d:a3:65: 03:08:fe:18:89:09:ac:75:53:b9:9b:1f:47:cc:e8: 7b:1a:b7:9f:60:fe:81:ff:ef:16:bd:4f:12:2d:79: b4:bc:13:f6:7a:1b:f8:15:0c:3e:98:11:bc:dc:69: de:cb:34:b6:e7:8f:97:a7:62:94:d0:f8:b7:70:c7: db:39:48:42:63:c6:b3:18:5c:24:fe:70:f9:5c:ac: e0:78:b8:ca:1d:fb:91:c3:00:49:d2:fd:a4:b6:a4: 5d:4a:12:56:71:a8:36:2f:c9:c7:23:f6:89:cb:2e: 98:57:52:69:4d:64:b6:03:5d:2d:d4:70:ca:78:42: 0f:a7:3b:d3:ec:70:23:3f:47:d6:81:4d:3f:4e:7f: 12:fe:e0:32:c6:0d:ee:af:e9:3d:35:ed:a6:4e:9a: b9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:33:82:8E:DC:4E:CD:EE:97:1E:97:09:C8:B2:62:9B:8F:73:71:CA X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:9f:3c:09:81:21:c3:69:07:9a:89:fb:d2:4f:6d:4f:06:21: fa:b9:f8:75:59:74:33:e8:10:0b:83:e1:c4:f6:e9:e4:6f:ca: b4:93:b0:2b:36:7c:d8:71:d2:5c:96:4b:63:ed:bc:c6:6a:52: 4d:7b:dd:6b:8b:6d:ff:47:14:51:4d:55:47:e9:ba:5a:3a:27: 23:2f:b9:32:d4:8c:b9:e9:f8:8d:7b:da:4b:4f:d5:bd:fd:d2: 99:29:00:eb:c9:9e:56:e0:a9:a1:60:0a:5b:a7:73:97:36:ca: af:fa:87:48:e9:7d:63:7a:97:a9:e6:b8:f8:91:02:06:8d:14: d3:ef:3d:f6:9d:b4:79:7e:2f:db:b0:30:e3:bc:93:08:10:1c: 02:a8:00:01:bb:52:2b:bc:b3:a3:ce:47:42:36:ff:78:91:e3: d1:04:ee:d4:65:dd:77:38:0b:82:33:22:9f:9b:0c:cd:fd:f9: bf:53:ad:5e:97:91:78:c5:df:14:69:c3:7c:4f:f2:fd:25:6b: 2b:7c:b0:18:c7:42:45:37:9d:00:f6:6a:a6:2a:ee:35:37:00: 10:e7:12:8d:6e:3a:30:a8:15:9d:79:fe:83:b3:d9:76:6d:9d: 69:08:7c:83:fb:5c:79:a4:2b:0e:27:d9:61:43:7e:0b:6a:6e: c6:68:27:c3 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIURN45scoesZpyRX6rm8KYmFOgRvIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTIyMzAwMDk1N1oX DTI1MTIyNzAwMDk1N1owejFJMEcGA1UEBRNAMWM2ODdlMjI4MWNhNWU2ZDhmNmQ3 MDRlYmUzZjQwZDUzNzlhNzlkNWNjMDBjOTQ0M2I3OWNmMzRkZDc0ZGE0ZjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuAht39AJkkloUUiPT3v4culUAyFX tkiSAeVTR43rpxWIOkyJyclQ2alDBpLdymvJMlVCD8lJR8xI2Xdc1vmettUkaqEB Nm06bgeNlqNTpLmIRG3bKMOq9IOemEHrIEKOdrNg0j99o2UDCP4YiQmsdVO5mx9H zOh7GrefYP6B/+8WvU8SLXm0vBP2ehv4FQw+mBG83GneyzS254+Xp2KU0Pi3cMfb OUhCY8azGFwk/nD5XKzgeLjKHfuRwwBJ0v2ktqRdShJWcag2L8nHI/aJyy6YV1Jp TWS2A10t1HDKeEIPpzvT7HAjP0fWgU0/Tn8S/uAyxg3ur+k9Ne2mTpq54wIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNAzgo7cTs3ulx6XCciyYpuPc3HKMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAAufPAmBIcNpB5qJ+9JPbU8GIfq5+HVZ dDPoEAuD4cT26eRvyrSTsCs2fNhx0lyWS2PtvMZqUk173WuLbf9HFFFNVUfpulo6 JyMvuTLUjLnp+I172ktP1b390pkpAOvJnlbgqaFgClunc5c2yq/6h0jpfWN6l6nm uPiRAgaNFNPvPfadtHl+L9uwMOO8kwgQHAKoAAG7Uiu8s6POR0I2/3iR49EE7tRl 3Xc4C4IzIp+bDM39+b9TrV6XkXjF3xRpw3xP8v0layt8sBjHQkU3nQD2aqYq7jU3 ABDnEo1uOjCoFZ15/oOz2XZtnWkIfIP7XHmkKw4n2WFDfgtqbsZoJ8M= -----END CERTIFICATE-----Generated at Tue Dec 23 08:22:07 2025 by rpki-client