This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: 2xMmsW68bSgEGjdq4Vry9Dr0qZK66MEUzHhQ8EVf3l8= Subject key identifier: 29:B4:73:FE:86:7B:F3:FF:5A:6C:0C:9A:EF:2B:3A:EC:9B:88:BD:61 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 40B60F53342797EA9C639B1EDA3B68F3977408B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 057A Signing time: Thu 11 Dec 2025 00:01:38 +0000 Manifest this update: Thu 11 Dec 2025 00:01:38 +0000 Manifest next update: Mon 15 Dec 2025 00:01:38 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: OIXpAA9e6ZGOjlL9oMYhr/VzraycHoXFSJ6Pn4+lO7M=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 00:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:b6:0f:53:34:27:97:ea:9c:63:9b:1e:da:3b:68:f3:97:74:08:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Dec 11 00:01:38 2025 GMT Not After : Dec 15 00:01:38 2025 GMT Subject: serialNumber=48ceefe7c6f481d9d93f956ed57d342502ef58e86ed35a3592e2183c71567a14, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:30:a4:27:71:4c:50:b4:bb:29:75:b2:a3:18: 5a:e0:a4:95:01:6c:ce:03:3e:8a:2f:55:d5:10:8e: 29:ad:1d:4c:6d:74:09:2a:74:97:6b:d4:8f:9e:57: c0:9f:4a:34:0e:47:43:7e:5b:78:8c:3f:6e:66:15: be:2b:fe:5f:14:4e:42:87:fb:71:74:39:36:bf:2f: e1:8d:a5:8f:8b:c0:4c:09:6b:e7:38:99:ff:22:5d: c8:ad:00:46:9e:2a:ad:f8:5a:eb:f9:4f:e7:6f:d7: 22:6e:4e:02:69:36:d9:dd:7b:e6:95:99:bf:46:96: db:5b:33:d3:7b:b8:49:0b:5c:91:e5:e7:9c:46:8a: 94:98:38:f1:52:b0:2e:91:bf:51:d8:80:12:01:c4: 3a:38:55:a4:70:ff:25:54:73:d9:75:15:e1:17:b0: 5d:da:3b:49:bb:ae:e0:1c:19:ff:43:84:34:35:f8: df:9d:02:ac:37:fa:6f:7f:1a:a5:d0:64:c4:da:85: 03:6f:07:35:ef:ba:5c:df:64:28:1a:4b:32:a5:fb: 66:e6:16:6a:75:66:46:5a:60:e3:91:2e:61:4f:fa: 1a:98:7c:17:d2:d0:56:a4:f0:23:b4:3a:5c:fa:51: 18:18:19:69:89:cc:7f:53:00:2d:d9:28:e6:8f:5a: f9:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B4:73:FE:86:7B:F3:FF:5A:6C:0C:9A:EF:2B:3A:EC:9B:88:BD:61 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:c1:88:40:89:ee:bd:70:d1:4b:11:8e:da:07:c1:0a:c1:3f: dc:18:51:2d:c9:70:6a:61:93:c6:07:62:9a:fd:74:c0:a1:56: ff:7a:5e:72:f3:4d:64:03:09:21:25:89:ef:e5:7f:99:a0:1f: f8:84:e7:91:cf:33:10:00:9e:99:79:e2:f3:86:f5:8c:5b:54: 70:df:55:16:1c:44:76:81:70:f0:ad:cb:26:92:ad:6d:0b:dd: 54:2a:3c:bc:6d:7f:5e:a3:c2:ae:bb:89:84:b6:ad:e1:a0:85: 93:ea:64:67:db:29:55:0f:09:f4:a6:a4:8e:e1:4c:61:d0:d5: fe:ec:42:ec:55:e5:34:b5:df:b2:c2:41:fe:41:02:88:17:16: 5c:32:72:b7:8d:d4:62:d9:4a:8f:01:4a:0f:70:f4:0b:2c:f5: 0f:42:31:ea:38:e2:96:26:b7:4a:ac:2b:05:1f:50:ee:6d:ec: 97:6e:7e:d2:07:10:a1:a9:06:d7:21:9e:6a:01:2c:87:fe:c7: cc:ba:4b:db:0b:4a:50:d0:84:9d:1b:d8:7e:56:20:9c:42:e2: d6:df:89:42:d9:19:1f:68:e2:89:96:df:0f:31:2a:6d:92:68: 0f:36:9a:b1:29:6f:93:05:99:b6:74:6d:07:f7:c1:de:e2:22: 64:e1:7d:8e -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUQLYPUzQnl+qcY5se2jto85d0CLAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTIxMTAwMDEzOFoX DTI1MTIxNTAwMDEzOFowejFJMEcGA1UEBRNANDhjZWVmZTdjNmY0ODFkOWQ5M2Y5 NTZlZDU3ZDM0MjUwMmVmNThlODZlZDM1YTM1OTJlMjE4M2M3MTU2N2ExNDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjCkJ3FMULS7KXWyoxha4KSVAWzO Az6KL1XVEI4prR1MbXQJKnSXa9SPnlfAn0o0DkdDflt4jD9uZhW+K/5fFE5Ch/tx dDk2vy/hjaWPi8BMCWvnOJn/Il3IrQBGniqt+Frr+U/nb9cibk4CaTbZ3XvmlZm/ RpbbWzPTe7hJC1yR5eecRoqUmDjxUrAukb9R2IASAcQ6OFWkcP8lVHPZdRXhF7Bd 2jtJu67gHBn/Q4Q0NfjfnQKsN/pvfxql0GTE2oUDbwc177pc32QoGksypftm5hZq dWZGWmDjkS5hT/oamHwX0tBWpPAjtDpc+lEYGBlpicx/UwAt2Sjmj1r5LQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFCm0c/6Ge/P/WmwMmu8rOuybiL1hMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBABXBiECJ7r1w0UsRjtoHwQrBP9wYUS3J cGphk8YHYpr9dMChVv96XnLzTWQDCSElie/lf5mgH/iE55HPMxAAnpl54vOG9Yxb VHDfVRYcRHaBcPCtyyaSrW0L3VQqPLxtf16jwq67iYS2reGghZPqZGfbKVUPCfSm pI7hTGHQ1f7sQuxV5TS137LCQf5BAogXFlwycreN1GLZSo8BSg9w9Ass9Q9CMeo4 4pYmt0qsKwUfUO5t7JduftIHEKGpBtchnmoBLIf+x8y6S9sLSlDQhJ0b2H5WIJxC 4tbfiULZGR9o4omW3w8xKm2SaA82mrEpb5MFmbZ0bQf3wd7iImThfY4= -----END CERTIFICATE-----Generated at Thu Dec 11 09:29:59 2025 by rpki-client