This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: G08DX2VXpY2aoctEt+IWZX40SmTLn/wCLMgoxhlLr78= Subject key identifier: 76:05:A5:85:25:40:D6:46:53:0B:1E:71:CA:E1:31:57:04:52:1B:63 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 41E589DB6C82C00027016DA15EFC79461CF74F30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0575 Signing time: Sat 06 Dec 2025 00:04:21 +0000 Manifest this update: Sat 06 Dec 2025 00:04:21 +0000 Manifest next update: Wed 10 Dec 2025 00:04:21 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: 1rmNtWJjJcuePsSU/msgVungwakrJ44mztXYiFVxCWw=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: w+4+bxo/lRwC2hOG9Edn/+79C2GPpMAPhWdMbwG/9JU=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:04:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:e5:89:db:6c:82:c0:00:27:01:6d:a1:5e:fc:79:46:1c:f7:4f:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Dec 6 00:04:21 2025 GMT Not After : Dec 10 00:04:21 2025 GMT Subject: serialNumber=e23afc5c1256fcfafdf8456e6c72831cc71a1de97bb4ffe52273f4bcce2c1c3e, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:61:bc:eb:16:0c:74:8a:e8:a2:c1:da:cf:de: 95:7d:4a:45:f7:98:14:8c:14:89:8e:2c:6f:55:c3: c6:ad:eb:85:cb:76:09:12:46:2f:05:ea:c4:57:bc: b1:a3:e5:30:2c:da:7c:4a:cf:c3:8a:b4:ce:e2:66: 67:e5:e2:1e:4b:ec:88:25:1e:25:47:02:43:b9:e5: 4e:be:09:cc:14:77:45:12:df:aa:56:84:a9:50:c1: 9a:71:9e:6a:a8:4f:d4:f0:73:7a:ad:da:4e:63:03: a4:19:69:02:14:82:63:bd:73:3f:a9:92:ff:79:52: b6:8c:61:fe:d6:dc:48:4d:82:a6:ff:e9:96:44:d6: 8a:6e:ed:62:f7:ab:38:1f:16:12:86:cd:02:91:7c: e3:7c:9b:64:64:f9:d5:01:77:76:6d:bd:bf:57:9c: 5f:1c:9c:85:eb:fe:89:8f:41:cf:c9:b2:7e:6b:6c: 2c:93:b6:67:5f:78:a8:cd:a6:06:a7:72:15:9a:1e: bd:8a:ee:19:13:9d:0e:60:5b:2c:38:b7:c9:34:74: 1f:5a:c1:e8:c5:28:6f:4c:59:65:24:2e:2d:f2:15: d3:e8:5b:a0:ca:db:5e:1c:70:dc:ff:6e:2b:c9:4c: e6:fa:ab:e2:42:f8:41:b3:4b:5f:08:9a:ce:c3:c1: 1d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:05:A5:85:25:40:D6:46:53:0B:1E:71:CA:E1:31:57:04:52:1B:63 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:b0:ba:f6:ae:c9:60:4d:c7:5d:c5:9c:c7:8b:8b:0c:b0:41: 24:5b:50:58:73:9e:e6:16:ea:ac:34:31:a6:4f:52:76:8f:9b: d4:60:a1:77:cd:80:2c:f1:f7:f3:cb:00:31:4c:65:61:ed:3c: 54:14:57:50:a1:41:9e:f5:37:be:54:47:64:84:ec:04:ee:47: 87:ff:ab:6f:48:15:d2:c7:48:71:ab:c9:b3:35:b2:6e:98:7a: 84:2a:21:80:ed:81:d1:64:f5:25:b9:8e:18:a2:38:ba:30:85: c4:3b:91:48:e8:3a:ae:f0:44:09:d3:7e:60:9c:03:f0:78:f6: 75:c7:4d:28:d5:e7:90:7a:b6:16:dd:3e:94:7c:b0:0f:e0:8e: b6:2f:cf:4b:77:9e:6e:a4:6e:cd:28:2b:bf:b7:ee:43:b8:e7: f6:b2:00:36:ee:22:3b:b7:45:23:61:96:52:22:fc:a8:30:5a: d7:f6:7a:99:16:ea:22:1e:d2:8e:f1:39:aa:93:e9:83:74:06: 6a:77:48:15:2b:9c:ed:ea:d7:f9:1a:e0:c9:05:82:69:d7:0e: cb:1f:f0:89:58:a0:59:a2:da:6b:ef:6f:5e:b5:25:39:39:58: 16:05:ff:a9:b7:42:8f:97:ac:d9:8b:05:0c:94:b9:e2:de:c5: 99:ac:6e:74 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUQeWJ22yCwAAnAW2hXvx5Rhz3TzAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTIwNjAwMDQyMVoX DTI1MTIxMDAwMDQyMVowejFJMEcGA1UEBRNAZTIzYWZjNWMxMjU2ZmNmYWZkZjg0 NTZlNmM3MjgzMWNjNzFhMWRlOTdiYjRmZmU1MjI3M2Y0YmNjZTJjMWMzZTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnGG86xYMdIroosHaz96VfUpF95gU jBSJjixvVcPGreuFy3YJEkYvBerEV7yxo+UwLNp8Ss/DirTO4mZn5eIeS+yIJR4l RwJDueVOvgnMFHdFEt+qVoSpUMGacZ5qqE/U8HN6rdpOYwOkGWkCFIJjvXM/qZL/ eVK2jGH+1txITYKm/+mWRNaKbu1i96s4HxYShs0CkXzjfJtkZPnVAXd2bb2/V5xf HJyF6/6Jj0HPybJ+a2wsk7ZnX3iozaYGp3IVmh69iu4ZE50OYFssOLfJNHQfWsHo xShvTFllJC4t8hXT6FugytteHHDc/24ryUzm+qviQvhBs0tfCJrOw8EdAQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFHYFpYUlQNZGUwseccrhMVcEUhtjMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBABewuvauyWBNx13FnMeLiwywQSRbUFhz nuYW6qw0MaZPUnaPm9RgoXfNgCzx9/PLADFMZWHtPFQUV1ChQZ71N75UR2SE7ATu R4f/q29IFdLHSHGrybM1sm6YeoQqIYDtgdFk9SW5jhiiOLowhcQ7kUjoOq7wRAnT fmCcA/B49nXHTSjV55B6thbdPpR8sA/gjrYvz0t3nm6kbs0oK7+37kO45/ayADbu Iju3RSNhllIi/KgwWtf2epkW6iIe0o7xOaqT6YN0Bmp3SBUrnO3q1/ka4MkFgmnX Dssf8IlYoFmi2mvvb161JTk5WBYF/6m3Qo+XrNmLBQyUueLexZmsbnQ= -----END CERTIFICATE-----Generated at Sat Dec 6 16:22:15 2025 by rpki-client