This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: Z+DlwrogmFgp0kXlwyleo3E+OPB5/VNLOosoy0GlUeI= Subject key identifier: 29:38:4D:35:C4:16:45:D7:D4:4A:5B:8C:46:FF:9C:36:AE:FC:84:22 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 14D15DCDA9EE19C1D6D75CFE7A3A91AA8644DB8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0597 Signing time: Fri 09 Jan 2026 00:13:06 +0000 Manifest this update: Fri 09 Jan 2026 00:13:06 +0000 Manifest next update: Tue 13 Jan 2026 00:13:06 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: eny9W74tMAO2RO6EjMmnf3onhuHWXIt1/bxg1HO9PyI=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 Jan 2026 00:13:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:d1:5d:cd:a9:ee:19:c1:d6:d7:5c:fe:7a:3a:91:aa:86:44:db:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jan 9 00:13:06 2026 GMT Not After : Jan 13 00:13:06 2026 GMT Subject: serialNumber=9f6b6f3c19dfe039c9c12f4e6f92eb9782cb071fcd8e504f9654ad5b80662530, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:78:0a:3a:4a:32:32:6f:93:58:70:30:c8:54: 94:0a:db:68:d6:96:68:c5:5e:10:60:3b:3e:94:d5: a7:f6:b0:2b:21:c5:ae:50:7a:98:c3:17:e6:67:fe: 1e:17:40:32:45:4f:7a:53:8c:95:9f:84:d5:90:54: 07:fd:2e:a9:fe:39:01:22:1c:22:92:f1:48:30:73: a5:85:81:1d:91:7f:c9:74:69:99:b0:11:96:6b:ab: 56:dd:e5:8c:3c:25:e4:37:be:c8:bf:c9:e1:17:dc: bf:23:8f:10:5b:84:6b:70:2b:2c:ec:0e:62:c6:00: 27:d6:a7:44:17:c4:ad:41:f9:64:b6:5e:9e:15:9c: 22:67:51:fd:d5:21:48:ad:c7:a9:49:60:a7:ec:fd: cf:8e:24:e5:02:13:5c:f1:65:61:d9:91:1b:05:16: d1:6b:90:68:88:88:bc:d0:20:90:8c:bd:0b:78:2a: 7f:8d:d0:28:12:16:7b:a5:63:07:f1:82:91:66:54: af:eb:ff:92:35:65:5f:4d:fa:89:95:ee:d9:7d:d7: fb:a3:09:fd:9c:17:f9:76:26:5a:7b:0e:ab:97:bb: c1:35:39:e6:80:1a:22:91:4e:21:56:a0:ad:e0:e5: a5:df:a8:24:e5:e2:98:ca:79:ac:d4:8a:a1:19:12: fe:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:38:4D:35:C4:16:45:D7:D4:4A:5B:8C:46:FF:9C:36:AE:FC:84:22 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:17:12:41:cb:61:e0:95:12:c3:75:51:e6:4b:8d:0c:1b:23: 9f:ff:3c:e7:ac:e0:26:d9:f6:3e:5b:8d:87:a7:c8:c4:1a:8c: 22:a4:78:18:5b:62:91:68:b0:fc:68:b0:f2:ae:40:d2:30:5c: fd:5b:d9:af:12:bf:15:62:64:60:32:a4:c4:6a:f2:65:3a:24: 7f:58:58:3b:e3:98:4d:8a:98:80:a3:10:c9:fb:85:c7:62:8e: cc:02:15:7c:69:d0:c4:75:6c:c1:98:28:96:2b:c1:9c:6d:cd: 63:5f:7d:6b:5c:76:ce:68:ad:38:2e:24:53:c6:8b:89:88:f5: e8:e7:d1:1f:45:f4:d1:9b:31:fc:06:97:12:cb:c8:0d:08:70: de:6d:ec:b5:68:96:f5:d3:8e:bf:11:09:19:fe:11:e4:bc:8d: f3:64:f4:e2:31:ea:a2:d3:24:38:d0:1c:a1:33:52:9c:66:80: 83:df:72:f9:e6:19:ca:a1:5d:54:a6:7a:ab:68:f2:21:50:81: 66:68:48:46:06:00:05:51:fa:6a:36:03:3c:84:ad:cb:ee:b9: f5:02:06:29:1a:35:38:16:27:b3:38:8c:c1:73:2d:64:f3:23: ee:b4:b6:a0:cb:d1:21:fc:e9:9c:4f:76:11:f7:c1:fa:81:e3: 2c:bc:dc:55 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUFNFdzanuGcHW11z+ejqRqoZE244wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDEwOTAwMTMwNloX DTI2MDExMzAwMTMwNlowejFJMEcGA1UEBRNAOWY2YjZmM2MxOWRmZTAzOWM5YzEy ZjRlNmY5MmViOTc4MmNiMDcxZmNkOGU1MDRmOTY1NGFkNWI4MDY2MjUzMDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyHgKOkoyMm+TWHAwyFSUCtto1pZo xV4QYDs+lNWn9rArIcWuUHqYwxfmZ/4eF0AyRU96U4yVn4TVkFQH/S6p/jkBIhwi kvFIMHOlhYEdkX/JdGmZsBGWa6tW3eWMPCXkN77Iv8nhF9y/I48QW4RrcCss7A5i xgAn1qdEF8StQflktl6eFZwiZ1H91SFIrcepSWCn7P3PjiTlAhNc8WVh2ZEbBRbR a5BoiIi80CCQjL0LeCp/jdAoEhZ7pWMH8YKRZlSv6/+SNWVfTfqJle7Zfdf7own9 nBf5diZaew6rl7vBNTnmgBoikU4hVqCt4OWl36gk5eKYynms1IqhGRL+QQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFCk4TTXEFkXX1EpbjEb/nDau/IQiMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBABMXEkHLYeCVEsN1UeZLjQwbI5//POes 4CbZ9j5bjYenyMQajCKkeBhbYpFosPxosPKuQNIwXP1b2a8SvxViZGAypMRq8mU6 JH9YWDvjmE2KmICjEMn7hcdijswCFXxp0MR1bMGYKJYrwZxtzWNffWtcds5orTgu JFPGi4mI9ejn0R9F9NGbMfwGlxLLyA0IcN5t7LVolvXTjr8RCRn+EeS8jfNk9OIx 6qLTJDjQHKEzUpxmgIPfcvnmGcqhXVSmeqto8iFQgWZoSEYGAAVR+mo2AzyErcvu ufUCBikaNTgWJ7M4jMFzLWTzI+60tqDL0SH86ZxPdhH3wfqB4yy83FU= -----END CERTIFICATE-----Generated at Fri Jan 9 02:47:36 2026 by rpki-client