This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: XWb/QTeUBkzViPQ1VG6hPAHldHc8b1scwmuuVdCM1PU= Subject key identifier: D0:BF:A1:3A:E7:88:07:99:77:57:92:2C:D6:A6:F9:1B:66:9D:A1:E4 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 23EDF69EAB423FBB60CA43E29B07C539057265D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05A6 Signing time: Sat 24 Jan 2026 00:15:52 +0000 Manifest this update: Sat 24 Jan 2026 00:15:52 +0000 Manifest next update: Wed 28 Jan 2026 00:15:52 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: Rmo0uTixomvEFdcMzIl1wwkm8gTXb2anR3qcXarLqoI=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 00:15:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:ed:f6:9e:ab:42:3f:bb:60:ca:43:e2:9b:07:c5:39:05:72:65:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jan 24 00:15:52 2026 GMT Not After : Jan 28 00:15:52 2026 GMT Subject: serialNumber=1c4d2a935b85b446808110d400ae451fc43a55b2750e48f65e6d4bda5b4daec1, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ac:d5:e8:df:d2:75:b2:4a:3d:3f:3a:66:dd: 02:ce:48:9d:40:dd:e7:76:3f:9f:d2:2b:01:75:d3: ea:03:8c:cb:90:9b:5e:35:7f:3f:27:5d:a5:ed:a7: 9e:ba:7d:ac:04:4f:f3:0a:10:42:72:79:42:28:e9: c3:e9:c4:67:93:7e:8d:92:69:6b:62:fd:df:96:ac: ee:96:54:8a:2a:05:ba:e7:4c:a6:83:0d:cd:e6:bb: 45:58:82:b4:6d:34:c5:df:dc:f4:0d:e9:17:02:27: e6:09:6f:1b:50:f9:da:54:17:bd:68:ad:b6:81:86: 70:06:af:0d:f8:34:b8:2e:85:3a:d2:46:cf:4f:1b: be:30:a0:05:9d:3e:00:e0:96:b0:d2:da:be:ef:80: 3f:d2:50:65:86:96:87:63:69:41:5c:0e:28:ce:32: 5c:cc:2d:b1:86:b8:ff:d9:74:07:e4:50:1d:7a:1e: 01:6b:7e:ac:05:80:6c:7d:f1:0f:54:ef:60:4b:e3: 4c:10:a9:18:21:ab:d6:86:45:39:ed:25:c5:93:2f: 47:a3:78:c2:4d:a2:03:e3:00:3e:36:e3:00:eb:21: c4:8c:f1:1a:e4:92:64:e6:e2:c0:26:38:86:f4:bf: ed:0c:1f:86:62:e2:94:ee:c6:4a:9d:e7:47:b1:bc: e4:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:BF:A1:3A:E7:88:07:99:77:57:92:2C:D6:A6:F9:1B:66:9D:A1:E4 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:43:4d:a3:0c:4c:ef:c6:0b:53:2d:3a:25:a8:3d:2d:f1:82: 61:bf:df:71:27:d6:58:38:df:74:8f:76:cf:69:de:ce:1e:fe: 87:dd:ec:66:93:9f:8c:61:ff:17:c4:89:88:33:c9:53:d7:71: fb:68:d5:8a:1c:a5:ed:12:90:28:ee:3d:24:6b:fe:12:09:dc: 2d:f9:35:04:5e:06:23:e9:ff:50:39:f1:55:32:0b:0e:a1:b3: d3:30:ec:a9:ab:2e:0b:1a:70:ec:a4:ef:95:1c:be:f4:9a:41: 8e:be:bf:1e:27:27:7e:3f:ea:ee:c7:98:f3:7f:c9:91:02:32: 03:81:fb:37:81:0a:24:66:82:91:f3:d7:38:fe:0e:22:2e:9e: 39:a3:61:59:a2:06:70:b8:58:61:32:17:f7:72:a2:da:46:b2: 42:06:6e:27:52:13:b7:6a:bd:b3:8d:2e:43:59:9b:84:d6:d5: 37:03:1b:8a:b9:ad:55:60:32:b3:ed:0b:b2:c8:74:68:b4:90: 28:a4:61:93:df:3b:05:c9:68:cd:de:1c:f0:cf:59:97:28:76: ea:09:bd:3a:37:2f:21:2a:08:72:4f:50:36:b0:bd:2a:31:f4: 43:af:93:4b:6b:0a:d9:10:64:8f:76:af:09:03:bd:23:8e:59: 64:57:e1:1b -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUI+32nqtCP7tgykPimwfFOQVyZdYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDEyNDAwMTU1MloX DTI2MDEyODAwMTU1MlowejFJMEcGA1UEBRNAMWM0ZDJhOTM1Yjg1YjQ0NjgwODEx MGQ0MDBhZTQ1MWZjNDNhNTViMjc1MGU0OGY2NWU2ZDRiZGE1YjRkYWVjMTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsKzV6N/SdbJKPT86Zt0CzkidQN3n dj+f0isBddPqA4zLkJteNX8/J12l7aeeun2sBE/zChBCcnlCKOnD6cRnk36Nkmlr Yv3flqzullSKKgW650ymgw3N5rtFWIK0bTTF39z0DekXAifmCW8bUPnaVBe9aK22 gYZwBq8N+DS4LoU60kbPTxu+MKAFnT4A4Jaw0tq+74A/0lBlhpaHY2lBXA4ozjJc zC2xhrj/2XQH5FAdeh4Ba36sBYBsffEPVO9gS+NMEKkYIavWhkU57SXFky9Ho3jC TaID4wA+NuMA6yHEjPEa5JJk5uLAJjiG9L/tDB+GYuKU7sZKnedHsbzkEwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNC/oTrniAeZd1eSLNam+RtmnaHkMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGVDTaMMTO/GC1MtOiWoPS3xgmG/33En 1lg433SPds9p3s4e/ofd7GaTn4xh/xfEiYgzyVPXcfto1Yocpe0SkCjuPSRr/hIJ 3C35NQReBiPp/1A58VUyCw6hs9Mw7KmrLgsacOyk75UcvvSaQY6+vx4nJ34/6u7H mPN/yZECMgOB+zeBCiRmgpHz1zj+DiIunjmjYVmiBnC4WGEyF/dyotpGskIGbidS E7dqvbONLkNZm4TW1TcDG4q5rVVgMrPtC7LIdGi0kCikYZPfOwXJaM3eHPDPWZco duoJvTo3LyEqCHJPUDawvSox9EOvk0trCtkQZI92rwkDvSOOWWRX4Rs= -----END CERTIFICATE-----Generated at Sat Jan 24 06:04:21 2026 by rpki-client