This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: gcZi0bONwDpE9iRAVu3cGBcHaDVJg0ss4bugZIv2IHQ= Subject key identifier: 7F:A4:7A:5F:6D:37:4C:4E:23:CA:71:3A:E2:AD:B9:01:9E:34:A6:F2 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 65E6BB0D203F5E439366D0CBFF90392798CA0103 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0583 Signing time: Sat 20 Dec 2025 00:09:15 +0000 Manifest this update: Sat 20 Dec 2025 00:09:15 +0000 Manifest next update: Wed 24 Dec 2025 00:09:15 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: XJglWHGftG6c1a7cz7YPPm3rlP8MiXDSXJKj5OvIlNU=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 00:09:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:e6:bb:0d:20:3f:5e:43:93:66:d0:cb:ff:90:39:27:98:ca:01:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Dec 20 00:09:15 2025 GMT Not After : Dec 24 00:09:15 2025 GMT Subject: serialNumber=fba9f1db77bd29c0d681d79c8d79575360a4b71f1455ac4e0c2f4724602531f3, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:fc:53:e8:70:97:49:4c:c3:a3:99:3a:d8:47: bf:f4:b9:50:e6:da:5d:95:74:dd:ab:78:1d:a8:a0: 7a:bb:18:03:10:18:d0:95:71:33:07:24:62:0c:ba: c0:92:b8:8c:ca:49:d7:10:e9:e8:63:20:88:38:74: 8d:28:de:6d:9a:f4:da:14:c8:a8:9d:14:1e:07:32: 53:23:04:4f:31:8e:8b:4f:2a:b1:22:d8:3a:fc:7a: b2:29:10:8f:30:7c:90:47:10:2f:32:87:cb:9c:27: 73:cb:6e:4e:09:cd:86:ca:b0:e1:d4:66:e1:ca:e9: ce:35:76:2a:2f:d0:fc:14:8f:81:b3:79:75:a0:37: f4:06:8b:20:9d:93:64:73:93:ed:9f:47:8a:16:17: 93:c5:55:bf:ba:fd:bc:c4:ec:d8:da:6c:99:6f:72: 1f:94:c1:a0:7e:3c:1a:a2:ef:a4:bb:dd:71:d0:ac: c8:95:25:15:6e:3b:6a:56:cd:6f:54:79:fa:63:74: c7:17:06:a0:5d:cb:d8:da:7d:90:a4:6e:ae:16:2a: f8:7b:f7:62:41:7c:cc:d0:43:66:c0:35:c9:1c:eb: 49:97:49:91:ab:e0:ca:88:fe:a7:10:e1:04:66:1e: 2a:51:8d:1b:d4:9f:06:34:b1:29:c3:da:a4:81:44: 48:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:A4:7A:5F:6D:37:4C:4E:23:CA:71:3A:E2:AD:B9:01:9E:34:A6:F2 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:7c:cb:ab:b6:e4:88:64:05:2f:51:41:03:9c:bb:3e:14:d7: af:49:90:c3:c6:f3:09:12:1f:1b:e5:25:1c:bc:a8:3d:58:d4: c0:16:c1:ad:cd:89:fc:81:6a:d1:28:9b:88:ba:d0:c8:c2:2e: ca:55:86:21:e0:ec:f5:49:92:59:de:b8:ad:92:49:b7:77:8d: 73:00:1c:88:b4:78:0c:cb:a8:38:e1:3a:2c:14:5b:1c:17:cd: 77:7a:29:3a:39:3f:4c:cb:85:55:67:2e:7d:4e:19:b3:23:75: 9f:a8:b2:81:a8:8a:e0:39:d9:1e:4e:b3:37:4b:ed:83:dd:a8: 74:71:80:35:05:eb:6e:75:a9:f7:7a:62:1a:ff:b1:d1:e1:c2: 07:1b:4b:37:95:58:48:18:50:b0:2f:a5:6d:86:e6:ad:75:63: 18:6e:ae:5e:08:12:6a:a5:a1:fa:da:15:6f:58:47:f8:fe:4f: 62:75:8d:b5:9c:93:e6:ea:5b:9f:09:12:54:7f:e2:69:c3:74: 0d:9e:ca:fd:68:ef:86:d5:a5:81:22:25:d0:44:ed:7f:92:65: a2:e8:58:e7:8d:9c:05:15:6e:98:58:9a:ad:04:96:af:39:71: 96:aa:11:a4:e6:a1:61:67:67:93:db:ac:50:e1:7c:29:a3:68: 02:5a:61:ce -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUZea7DSA/XkOTZtDL/5A5J5jKAQMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTIyMDAwMDkxNVoX DTI1MTIyNDAwMDkxNVowejFJMEcGA1UEBRNAZmJhOWYxZGI3N2JkMjljMGQ2ODFk NzljOGQ3OTU3NTM2MGE0YjcxZjE0NTVhYzRlMGMyZjQ3MjQ2MDI1MzFmMzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6PxT6HCXSUzDo5k62Ee/9LlQ5tpd lXTdq3gdqKB6uxgDEBjQlXEzByRiDLrAkriMyknXEOnoYyCIOHSNKN5tmvTaFMio nRQeBzJTIwRPMY6LTyqxItg6/HqyKRCPMHyQRxAvMofLnCdzy25OCc2GyrDh1Gbh yunONXYqL9D8FI+Bs3l1oDf0BosgnZNkc5Ptn0eKFheTxVW/uv28xOzY2myZb3If lMGgfjwaou+ku91x0KzIlSUVbjtqVs1vVHn6Y3THFwagXcvY2n2QpG6uFir4e/di QXzM0ENmwDXJHOtJl0mRq+DKiP6nEOEEZh4qUY0b1J8GNLEpw9qkgURIuwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFH+kel9tN0xOI8pxOuKtuQGeNKbyMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBADd8y6u25IhkBS9RQQOcuz4U169JkMPG 8wkSHxvlJRy8qD1Y1MAWwa3NifyBatEom4i60MjCLspVhiHg7PVJklneuK2SSbd3 jXMAHIi0eAzLqDjhOiwUWxwXzXd6KTo5P0zLhVVnLn1OGbMjdZ+osoGoiuA52R5O szdL7YPdqHRxgDUF6251qfd6Yhr/sdHhwgcbSzeVWEgYULAvpW2G5q11Yxhurl4I EmqlofraFW9YR/j+T2J1jbWck+bqW58JElR/4mnDdA2eyv1o74bVpYEiJdBE7X+S ZaLoWOeNnAUVbphYmq0Elq85cZaqEaTmoWFnZ5PbrFDhfCmjaAJaYc4= -----END CERTIFICATE-----Generated at Sat Dec 20 01:19:38 2025 by rpki-client