This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: S1UECVz8Z+nLjPLP1LVWJkvzq1Aw7IVh9groiLyel8M= Subject key identifier: 34:53:91:B9:B1:7A:64:A9:6F:36:CB:E2:43:55:A4:25:4E:F5:83:4D Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 06E94C5BFA5B75E85C131754CBAF314E55F0A2A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0594 Signing time: Tue 06 Jan 2026 00:12:29 +0000 Manifest this update: Tue 06 Jan 2026 00:12:29 +0000 Manifest next update: Sat 10 Jan 2026 00:12:29 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: QhB5VBtYLBAhXwvIGFWRtjUCxMisNCN8CKVsc5pzQ3Y=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 Jan 2026 00:12:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:e9:4c:5b:fa:5b:75:e8:5c:13:17:54:cb:af:31:4e:55:f0:a2:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jan 6 00:12:29 2026 GMT Not After : Jan 10 00:12:29 2026 GMT Subject: serialNumber=24a48a7ac87fcfa7e2b29b387205fe864b3d1c1720967cf793da8d75d91ab2ed, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:27:b3:b2:4b:37:87:ec:eb:8a:30:ba:f3:e5: 2c:c8:8c:3f:78:ca:12:52:09:ea:4d:36:ff:9b:88: 38:db:1e:c0:10:85:8a:ec:65:62:12:c7:cb:e1:31: 3c:5c:4d:b2:7d:55:d4:51:77:12:a9:df:a2:a2:4d: 17:93:33:de:6e:ff:ee:70:88:d3:be:31:c3:27:1a: c9:2d:cf:ac:89:44:c9:6b:4d:35:c3:48:bc:e8:31: 85:58:20:01:aa:c4:37:ee:9d:d4:26:02:69:83:47: 5e:0e:38:2c:28:03:09:e9:fd:c7:a0:24:b2:66:0d: ab:06:2d:38:8b:ee:20:6b:b6:20:73:54:65:58:15: b2:86:7c:93:5d:28:db:a8:06:15:39:c4:81:af:6c: e2:ec:a8:c8:a9:98:89:c4:d3:ab:fa:b8:79:63:fb: 3d:98:85:ba:af:46:b8:28:0d:84:a1:8d:f7:c9:9b: 2c:da:c2:73:c7:84:97:d1:e4:91:07:46:fe:0e:30: 47:34:7b:4d:de:6c:7a:86:91:7c:4f:ca:d7:51:68: e4:70:4e:45:dc:3d:63:da:1a:cc:11:a5:7c:e0:43: 90:d1:5e:81:be:d1:40:64:3c:72:92:b7:99:fa:15: 57:c4:7a:2a:de:d7:c2:5c:00:5d:cd:9a:e6:64:7d: cd:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:53:91:B9:B1:7A:64:A9:6F:36:CB:E2:43:55:A4:25:4E:F5:83:4D X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:1c:31:a6:80:7f:e2:8e:99:d2:c1:f4:cd:96:07:8d:8e:f2: 6e:dd:dc:b4:c9:24:51:27:ba:ca:5c:32:d2:39:89:87:2a:15: 5b:ab:89:90:4f:76:8b:b3:89:f9:f5:6a:29:4e:fa:ec:36:d1: 54:67:92:ff:7f:e6:19:1a:0d:c1:e9:12:9a:0b:db:75:5b:3c: b6:1e:e5:c0:ec:8c:b8:23:c5:03:6c:90:91:05:47:53:3a:4a: 2d:a4:d8:57:b6:b6:b6:4b:30:82:af:83:5f:b9:83:5b:d6:36: f3:57:e1:a4:82:3d:df:04:7b:7b:ef:98:4c:3d:9a:a0:b1:27: 84:fc:0e:1b:85:90:e3:07:67:7d:61:17:d7:fb:e5:e8:73:76: 96:93:21:60:f9:e2:ae:94:78:c0:29:7d:9b:3e:4c:60:64:16: 77:bc:ed:ae:af:ca:b0:df:e9:31:75:14:fc:94:89:3b:3b:86: e2:ca:d1:e1:2c:93:ab:97:22:55:38:4f:df:7e:64:94:9d:bc: 29:97:f8:ca:e2:c0:7e:bc:b7:5a:9c:ba:6d:8f:bd:ff:df:51: ad:9e:32:63:df:f7:eb:bb:3b:eb:66:50:a2:1d:b8:05:8d:4e: cd:6f:56:bd:61:36:a7:87:dd:2e:4d:75:f4:75:d1:25:2b:ac: a6:52:3c:f7 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUBulMW/pbdehcExdUy68xTlXwoqkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDEwNjAwMTIyOVoX DTI2MDExMDAwMTIyOVowejFJMEcGA1UEBRNAMjRhNDhhN2FjODdmY2ZhN2UyYjI5 YjM4NzIwNWZlODY0YjNkMWMxNzIwOTY3Y2Y3OTNkYThkNzVkOTFhYjJlZDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Sezsks3h+zrijC68+UsyIw/eMoS UgnqTTb/m4g42x7AEIWK7GViEsfL4TE8XE2yfVXUUXcSqd+iok0XkzPebv/ucIjT vjHDJxrJLc+siUTJa001w0i86DGFWCABqsQ37p3UJgJpg0deDjgsKAMJ6f3HoCSy Zg2rBi04i+4ga7Ygc1RlWBWyhnyTXSjbqAYVOcSBr2zi7KjIqZiJxNOr+rh5Y/s9 mIW6r0a4KA2EoY33yZss2sJzx4SX0eSRB0b+DjBHNHtN3mx6hpF8T8rXUWjkcE5F 3D1j2hrMEaV84EOQ0V6BvtFAZDxykreZ+hVXxHoq3tfCXABdzZrmZH3NOwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFDRTkbmxemSpbzbL4kNVpCVO9YNNMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAFkcMaaAf+KOmdLB9M2WB42O8m7d3LTJ JFEnuspcMtI5iYcqFVuriZBPdouzifn1ailO+uw20VRnkv9/5hkaDcHpEpoL23Vb PLYe5cDsjLgjxQNskJEFR1M6Si2k2Fe2trZLMIKvg1+5g1vWNvNX4aSCPd8Ee3vv mEw9mqCxJ4T8DhuFkOMHZ31hF9f75ehzdpaTIWD54q6UeMApfZs+TGBkFne87a6v yrDf6TF1FPyUiTs7huLK0eEsk6uXIlU4T99+ZJSdvCmX+MriwH68t1qcum2Pvf/f Ua2eMmPf9+u7O+tmUKIduAWNTs1vVr1hNqeH3S5NdfR10SUrrKZSPPc= -----END CERTIFICATE-----Generated at Wed Jan 7 01:11:56 2026 by rpki-client