This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: TMEkOKl0gENC6Ur7cZPK2Zp72ydKZu9EBNa6llWMyaA= Subject key identifier: 88:49:A8:8B:7D:6F:81:4F:15:F1:C0:1F:92:04:85:B6:FA:32:62:65 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 0CACF20C9277C407C708669CD7156741D4EBC5FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05A3 Signing time: Wed 21 Jan 2026 00:15:12 +0000 Manifest this update: Wed 21 Jan 2026 00:15:12 +0000 Manifest next update: Sun 25 Jan 2026 00:15:12 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: 0t/ekaPRmy9Zo+tFSzc7t8QpCvdmUKNAE+FsrGXARbU=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 00:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:ac:f2:0c:92:77:c4:07:c7:08:66:9c:d7:15:67:41:d4:eb:c5:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jan 21 00:15:12 2026 GMT Not After : Jan 25 00:15:12 2026 GMT Subject: serialNumber=5d7d3c6bd52327615d14196be1e1f8655fff3b87f30a3f7b5baaf23d05d3a168, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:96:ab:4c:b3:c3:05:0b:5b:d8:48:6d:d5:ab: 28:c0:df:de:6e:9c:f2:e2:df:93:e3:28:c3:5e:20: c2:39:35:e2:6d:b1:db:a0:95:3d:78:44:e8:dc:75: 61:f8:d1:ff:57:4b:3a:70:d7:7a:62:3a:c0:1d:fa: 75:9b:c9:68:6f:2c:ba:f9:c7:0d:6c:2e:32:1b:37: 96:00:8f:4d:12:ed:86:ca:6f:78:b8:3d:26:bc:55: fb:82:9a:b1:17:e6:46:21:d6:10:af:48:49:47:8c: 8e:b3:d9:59:09:ec:85:7a:cc:ca:bc:7c:6f:94:30: f8:18:41:14:07:b5:a5:1d:c4:b0:47:6e:dd:9e:63: 7e:33:49:27:eb:9c:91:8d:2d:5e:9a:ac:70:dc:87: d6:93:11:b2:a0:6f:aa:00:59:86:d7:1d:9e:5d:47: ff:48:91:37:73:5a:d5:c4:e4:c1:0c:93:f1:ee:c8: c9:ca:23:92:33:16:ce:e6:57:59:72:8a:80:3e:34: f8:90:f3:6b:0d:4f:88:81:2a:07:5d:7a:7a:5f:1c: d1:1e:9f:e9:18:14:b2:23:e1:30:a0:cf:6a:a8:cd: 3d:3a:65:3f:e4:aa:7b:2c:f1:85:ed:ab:03:a3:17: 63:6d:dc:8c:0b:a6:b1:49:e0:46:9a:89:9e:5c:7e: 32:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:49:A8:8B:7D:6F:81:4F:15:F1:C0:1F:92:04:85:B6:FA:32:62:65 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:14:e5:cc:74:13:84:c9:ea:9c:bd:e3:5b:09:64:86:08:53: aa:61:d8:59:31:95:2f:a2:3f:e7:b0:99:ed:3e:11:0a:61:a2: 5a:4d:bb:8f:b3:b2:12:2a:43:8d:fd:51:dd:a6:88:85:8a:53: 67:73:13:64:4f:eb:72:1a:f6:01:29:83:62:c5:40:07:8c:a1: 1d:ab:c5:97:07:f9:ec:1a:5a:01:b4:0f:79:b0:3a:73:1d:48: f1:ae:09:e3:0c:7f:03:0f:eb:77:00:81:3e:cd:79:ce:62:b1: b1:f3:24:c4:f7:18:68:f1:f8:7c:5b:06:93:8f:16:2f:f2:8a: 58:cc:99:34:4a:6d:f3:02:81:7f:39:92:fc:1d:2a:bd:3a:ee: 05:da:32:71:5b:d0:a8:62:f5:ff:e6:8b:fd:47:15:cc:d7:ee: 52:a5:be:e9:c0:91:6a:5a:7a:2c:c2:6c:e4:6f:0b:5a:95:37: 16:c3:19:98:54:d8:f0:40:8a:46:2a:62:cd:b9:da:87:b0:10: 2d:33:d4:10:df:32:77:cf:d5:02:ec:b7:36:69:96:37:5c:1a: 28:fe:8f:ad:b9:22:9c:c5:3a:69:6c:ba:45:dd:24:01:cf:15: cb:22:cc:0d:12:93:e4:97:5e:2d:b6:fb:2f:4c:16:4f:41:c1: 24:49:91:3d -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUDKzyDJJ3xAfHCGac1xVnQdTrxf8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDEyMTAwMTUxMloX DTI2MDEyNTAwMTUxMlowejFJMEcGA1UEBRNANWQ3ZDNjNmJkNTIzMjc2MTVkMTQx OTZiZTFlMWY4NjU1ZmZmM2I4N2YzMGEzZjdiNWJhYWYyM2QwNWQzYTE2ODEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJarTLPDBQtb2Eht1asowN/ebpzy 4t+T4yjDXiDCOTXibbHboJU9eETo3HVh+NH/V0s6cNd6YjrAHfp1m8lobyy6+ccN bC4yGzeWAI9NEu2Gym94uD0mvFX7gpqxF+ZGIdYQr0hJR4yOs9lZCeyFeszKvHxv lDD4GEEUB7WlHcSwR27dnmN+M0kn65yRjS1emqxw3IfWkxGyoG+qAFmG1x2eXUf/ SJE3c1rVxOTBDJPx7sjJyiOSMxbO5ldZcoqAPjT4kPNrDU+IgSoHXXp6XxzRHp/p GBSyI+EwoM9qqM09OmU/5Kp7LPGF7asDoxdjbdyMC6axSeBGmomeXH4yLwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFIhJqIt9b4FPFfHAH5IEhbb6MmJlMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAE4U5cx0E4TJ6py941sJZIYIU6ph2Fkx lS+iP+ewme0+EQpholpNu4+zshIqQ439Ud2miIWKU2dzE2RP63Ia9gEpg2LFQAeM oR2rxZcH+ewaWgG0D3mwOnMdSPGuCeMMfwMP63cAgT7Nec5isbHzJMT3GGjx+Hxb BpOPFi/yiljMmTRKbfMCgX85kvwdKr067gXaMnFb0Khi9f/mi/1HFczX7lKlvunA kWpaeizCbORvC1qVNxbDGZhU2PBAikYqYs252oewEC0z1BDfMnfP1QLstzZpljdc Gij+j625IpzFOmlsukXdJAHPFcsizA0Sk+SXXi22+y9MFk9BwSRJkT0= -----END CERTIFICATE-----Generated at Wed Jan 21 05:57:31 2026 by rpki-client