This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: 0nv/fFoIfukGBmqIsBJ6EmI04r/yQ6B7E2UJ4jeOBG0= Subject key identifier: AF:E8:8B:30:B3:2A:32:9F:F4:C7:0C:62:2C:E5:8B:40:E2:EF:BC:A8 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 316EBC34444ABAA80082AF5BE29A776417C14C32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 059A Signing time: Mon 12 Jan 2026 00:13:38 +0000 Manifest this update: Mon 12 Jan 2026 00:13:38 +0000 Manifest next update: Fri 16 Jan 2026 00:13:38 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: Ks4LSExQSq8JgA2LbJ01VoXa3azY6N5G6hZP6UotHLs=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 Jan 2026 00:13:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:6e:bc:34:44:4a:ba:a8:00:82:af:5b:e2:9a:77:64:17:c1:4c:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jan 12 00:13:38 2026 GMT Not After : Jan 16 00:13:38 2026 GMT Subject: serialNumber=ab97248eb90aff5144897fb189381b8631d1997c575b58febede24977f048c29, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:26:53:f3:10:9d:5c:ae:72:66:1e:31:20:53: ad:5a:9e:b4:fb:b8:48:10:f3:0f:08:72:12:d0:70: 53:49:20:90:0b:ba:ba:16:8b:53:9c:e4:3d:c5:3a: 97:72:fd:d1:5a:c6:e6:2e:5d:dd:a3:a9:80:0a:7a: b2:5a:f1:22:99:99:3a:a1:9e:75:e7:7a:d3:70:7c: 0a:48:b2:9f:01:79:b1:4b:f3:38:6e:57:72:8e:f3: a5:bc:0c:97:46:c1:f1:4f:17:dc:2e:5c:35:39:b4: bf:83:97:ad:b4:92:66:d6:07:69:b2:53:da:6a:00: 16:a4:3f:d7:7d:34:09:80:61:d7:c0:cd:df:6d:5d: ab:49:04:d4:30:cc:b6:be:63:18:65:43:a7:d4:3c: 18:b3:fe:2d:02:81:64:69:f1:ff:a8:d4:25:00:b3: 7a:be:74:42:68:65:58:fb:34:be:08:2c:6f:63:e1: eb:8a:35:c2:7c:36:ce:5b:d7:44:a6:e5:02:08:22: 94:0f:da:d0:e3:76:ce:f1:90:1a:51:0c:99:f2:dd: 84:11:95:11:d5:5b:bf:87:9e:d6:47:19:d0:f8:8a: c0:a2:cf:fe:eb:b9:bf:05:96:21:24:22:2d:f2:c3: c8:a9:45:1d:8a:67:52:55:85:10:fb:2b:a9:52:e3: 75:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:E8:8B:30:B3:2A:32:9F:F4:C7:0C:62:2C:E5:8B:40:E2:EF:BC:A8 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:7b:7e:c6:db:70:2f:b1:3e:c4:97:6c:28:fb:56:78:c2:37: 3a:b1:ac:28:b7:f1:41:07:79:65:66:8a:4f:de:3f:84:fa:8f: 7b:58:c1:a6:c2:e7:ec:93:72:b2:5e:6e:3b:fa:76:0a:1d:15: 18:9b:c7:f7:51:ca:3b:a7:a2:21:ca:e0:39:43:e3:62:e7:b0: 67:90:dc:dd:d6:46:c5:15:29:1c:1a:a0:6f:54:3b:24:d9:da: d3:7f:54:dc:55:ee:7b:92:61:e4:6c:91:15:26:2e:60:13:1e: 6d:3b:31:41:d8:eb:97:d7:e3:c9:41:d1:b6:39:21:5e:02:3c: 26:44:6d:2d:af:9c:b5:de:08:22:48:cc:48:14:98:e7:97:52: d1:9b:1f:9a:c8:1e:82:67:36:de:9d:64:ce:6e:f6:cc:9b:8b: 7e:b6:3d:dd:b7:f2:38:95:87:3e:f6:a4:89:ce:2f:29:1e:0b: a2:1c:5d:95:a5:e5:22:12:1c:51:e0:4b:89:c3:e3:dc:3a:83: d5:7a:53:38:85:29:08:7a:71:0d:d1:c2:f1:38:e1:5d:df:ec: 9a:8c:dc:1d:41:bb:19:3e:7d:92:a9:f6:46:57:41:1c:f0:c4: 07:6e:f7:57:b0:22:32:a1:40:36:f1:e9:de:6b:62:21:8b:32: 04:e6:9b:38 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUMW68NERKuqgAgq9b4pp3ZBfBTDIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDExMjAwMTMzOFoX DTI2MDExNjAwMTMzOFowejFJMEcGA1UEBRNAYWI5NzI0OGViOTBhZmY1MTQ0ODk3 ZmIxODkzODFiODYzMWQxOTk3YzU3NWI1OGZlYmVkZTI0OTc3ZjA0OGMyOTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6iZT8xCdXK5yZh4xIFOtWp60+7hI EPMPCHIS0HBTSSCQC7q6FotTnOQ9xTqXcv3RWsbmLl3do6mACnqyWvEimZk6oZ51 53rTcHwKSLKfAXmxS/M4bldyjvOlvAyXRsHxTxfcLlw1ObS/g5ettJJm1gdpslPa agAWpD/XfTQJgGHXwM3fbV2rSQTUMMy2vmMYZUOn1DwYs/4tAoFkafH/qNQlALN6 vnRCaGVY+zS+CCxvY+HrijXCfDbOW9dEpuUCCCKUD9rQ43bO8ZAaUQyZ8t2EEZUR 1Vu/h57WRxnQ+IrAos/+67m/BZYhJCIt8sPIqUUdimdSVYUQ+yupUuN1aQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFK/oizCzKjKf9McMYizli0Di77yoMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBACt7fsbbcC+xPsSXbCj7VnjCNzqxrCi3 8UEHeWVmik/eP4T6j3tYwabC5+yTcrJebjv6dgodFRibx/dRyjunoiHK4DlD42Ln sGeQ3N3WRsUVKRwaoG9UOyTZ2tN/VNxV7nuSYeRskRUmLmATHm07MUHY65fX48lB 0bY5IV4CPCZEbS2vnLXeCCJIzEgUmOeXUtGbH5rIHoJnNt6dZM5u9sybi362Pd23 8jiVhz72pInOLykeC6IcXZWl5SISHFHgS4nD49w6g9V6UziFKQh6cQ3RwvE44V3f 7JqM3B1Buxk+fZKp9kZXQRzwxAdu91ewIjKhQDbx6d5rYiGLMgTmmzg= -----END CERTIFICATE-----Generated at Mon Jan 12 13:01:27 2026 by rpki-client