This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: ChVv9pgAvr4nsVPaTRMKplIPZsodwvPu2zwmzjopDWA= Subject key identifier: C5:BA:FA:13:C6:E1:36:20:ED:EB:B2:E8:5B:3E:33:8D:BB:FB:FB:71 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 7CBC1B2376439E25EABA39A03E5121C11ED016F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05A0 Signing time: Sun 18 Jan 2026 00:14:45 +0000 Manifest this update: Sun 18 Jan 2026 00:14:45 +0000 Manifest next update: Thu 22 Jan 2026 00:14:45 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: 4HXw2/b4odVleJpnUkcZYQvrnjmPolRlPpcoESngHiI=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 Jan 2026 00:14:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:bc:1b:23:76:43:9e:25:ea:ba:39:a0:3e:51:21:c1:1e:d0:16:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jan 18 00:14:45 2026 GMT Not After : Jan 22 00:14:45 2026 GMT Subject: serialNumber=8821f9178cfea1ed79c67d964a5a308f1322fabc3a6fed370d6e694e1950b871, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8d:9e:51:76:01:f6:45:ca:b3:4f:24:10:de: cc:91:56:48:68:63:17:64:61:98:d4:9a:0c:aa:ca: 32:88:a0:df:10:46:83:34:d0:07:9e:d9:34:20:fa: 09:1b:10:21:c0:41:36:90:b0:81:b7:22:48:3f:3d: 76:96:8a:dd:21:54:cb:48:91:8d:76:7d:0f:8e:85: f6:3c:bf:5a:9e:d5:18:a8:90:a0:38:92:c9:2a:1c: a9:b1:3c:ec:1a:f3:2e:fe:f5:d8:8c:45:91:f0:cf: 06:09:0f:76:9d:fb:f7:98:20:b0:54:cf:68:8d:af: ca:db:73:d8:65:79:4c:ce:89:60:05:72:73:b4:dc: 75:df:23:eb:1f:fd:b1:d0:df:e9:34:5b:5c:39:d0: 9b:94:18:25:a4:6d:36:98:4c:b9:8b:0a:0a:97:60: 74:52:89:fc:41:87:51:29:d0:09:04:93:f0:22:61: 60:e3:94:f2:b8:06:c1:23:b6:49:c3:ba:a8:45:bf: cd:78:56:78:ec:ce:fb:d8:d0:56:f9:79:44:e1:03: 4b:f3:c3:a8:b7:17:72:43:ad:5d:96:7e:80:9f:7c: 49:bd:b3:1d:26:cf:db:9d:65:12:3c:d7:a7:14:90: 92:cd:6c:7d:7f:53:eb:cc:ed:b8:40:e2:fd:53:47: 13:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:BA:FA:13:C6:E1:36:20:ED:EB:B2:E8:5B:3E:33:8D:BB:FB:FB:71 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:52:7c:7a:ba:f9:e3:27:4a:f9:a9:08:f6:bd:0a:d9:0a:f7: 27:d4:22:7e:dd:bb:99:df:c4:7f:eb:d0:a5:2f:34:7e:36:eb: b8:cf:ce:2b:20:e1:f9:53:f2:3f:08:e6:b3:a2:e3:39:f2:bb: 31:26:a8:b4:d8:58:39:af:2d:fe:b8:aa:c6:2f:ee:3b:96:b1: ba:fe:1c:61:2f:0a:68:e9:8e:7c:49:36:ab:de:c5:5d:10:68: d6:9e:3e:06:81:f5:61:83:8a:3e:03:d8:d9:8a:3c:29:9b:86: 1b:22:24:fb:14:16:b7:03:2e:47:e8:40:c5:34:d1:a0:0f:9d: 48:dd:ca:8f:01:55:21:6f:7f:c1:b6:e3:c7:6e:71:81:7d:be: 09:93:13:c7:71:f0:33:00:94:eb:2e:00:22:f9:2d:90:c7:b8: f3:8a:6c:21:1b:07:05:79:40:91:85:ae:51:83:70:cd:7b:60: cb:58:17:b5:c0:30:84:33:2e:29:e1:b1:7c:f2:96:6f:d1:62: 05:76:dd:12:54:f2:76:fc:52:66:18:16:72:0f:7d:e1:4c:24: 56:02:f9:6a:00:7a:fb:ad:62:94:f7:b9:66:ad:f3:0f:f9:76: a0:78:0f:df:74:84:5e:91:99:51:52:5d:f5:2e:5b:bb:9f:4c: 11:0b:30:45 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUfLwbI3ZDniXqujmgPlEhwR7QFvAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDExODAwMTQ0NVoX DTI2MDEyMjAwMTQ0NVowejFJMEcGA1UEBRNAODgyMWY5MTc4Y2ZlYTFlZDc5YzY3 ZDk2NGE1YTMwOGYxMzIyZmFiYzNhNmZlZDM3MGQ2ZTY5NGUxOTUwYjg3MTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsY2eUXYB9kXKs08kEN7MkVZIaGMX ZGGY1JoMqsoyiKDfEEaDNNAHntk0IPoJGxAhwEE2kLCBtyJIPz12lordIVTLSJGN dn0PjoX2PL9antUYqJCgOJLJKhypsTzsGvMu/vXYjEWR8M8GCQ92nfv3mCCwVM9o ja/K23PYZXlMzolgBXJztNx13yPrH/2x0N/pNFtcOdCblBglpG02mEy5iwoKl2B0 Uon8QYdRKdAJBJPwImFg45TyuAbBI7ZJw7qoRb/NeFZ47M772NBW+XlE4QNL88Oo txdyQ61dln6An3xJvbMdJs/bnWUSPNenFJCSzWx9f1PrzO24QOL9U0cTJwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFMW6+hPG4TYg7euy6Fs+M427+/txMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAHxSfHq6+eMnSvmpCPa9CtkK9yfUIn7d u5nfxH/r0KUvNH4267jPzisg4flT8j8I5rOi4znyuzEmqLTYWDmvLf64qsYv7juW sbr+HGEvCmjpjnxJNqvexV0QaNaePgaB9WGDij4D2NmKPCmbhhsiJPsUFrcDLkfo QMU00aAPnUjdyo8BVSFvf8G248ducYF9vgmTE8dx8DMAlOsuACL5LZDHuPOKbCEb BwV5QJGFrlGDcM17YMtYF7XAMIQzLinhsXzylm/RYgV23RJU8nb8UmYYFnIPfeFM JFYC+WoAevutYpT3uWat8w/5dqB4D990hF6RmVFSXfUuW7ufTBELMEU= -----END CERTIFICATE-----Generated at Sun Jan 18 03:56:38 2026 by rpki-client