This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: oUviPhl7Vlh/PH62cafaobjdqEsgmxtP87j0+LiF9Gw= Subject key identifier: B4:62:97:09:11:ED:25:4C:BF:F0:19:D1:03:0C:73:5C:14:AD:B4:B5 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 3AA12712CB4D4B3F968F69E2A58BA5E1C3181CB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 057F Signing time: Tue 16 Dec 2025 00:02:37 +0000 Manifest this update: Tue 16 Dec 2025 00:02:37 +0000 Manifest next update: Sat 20 Dec 2025 00:02:37 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: axTS5PycNDTTHaI6xXZNRNMdctAQpA1fv+2gjwwmd2s=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 00:02:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:a1:27:12:cb:4d:4b:3f:96:8f:69:e2:a5:8b:a5:e1:c3:18:1c:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Dec 16 00:02:37 2025 GMT Not After : Dec 20 00:02:37 2025 GMT Subject: serialNumber=b9d6b16b259e5d424f1192c59be22b032e1730994ed11909d5d15199cc661ce5, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b5:de:ba:3e:bd:d9:88:34:73:a7:a1:3e:4c: 32:58:58:ee:88:7c:65:9d:24:eb:8b:cd:f5:99:be: 1a:ed:71:df:5e:ce:23:96:b1:7f:67:07:a3:f3:17: 54:55:09:1d:d7:8f:49:a7:2d:3f:4a:3e:10:73:e0: 60:33:cb:dc:6b:4c:8b:67:e5:30:89:52:7f:0a:81: d2:70:19:36:98:a3:6d:32:41:49:52:ac:40:24:3c: 09:47:3f:78:74:c4:ef:86:6b:6c:a3:61:18:a1:aa: af:9f:f3:c0:be:18:e4:53:22:c6:95:15:35:13:5f: 56:9f:5f:9d:6a:cb:39:1d:fd:ef:71:5c:47:ad:f2: f8:78:b1:2d:99:22:74:01:f3:b9:83:66:d6:d9:d6: bd:d4:b9:b9:50:76:5f:db:f4:e3:69:b1:46:29:e7: fe:da:5f:80:01:96:b3:1e:df:2d:5a:0d:9a:db:00: 98:59:4d:ca:a5:8b:f3:2e:16:f5:46:c4:41:a5:be: 17:b4:e1:41:2f:35:1d:cc:85:f2:44:05:a9:00:12: 88:c7:71:b4:54:33:40:1e:c0:f4:cf:26:ee:f1:bb: 57:a3:73:72:47:c8:6f:5b:71:75:95:c8:a5:7a:fa: 77:a0:63:00:fa:6c:86:77:95:fc:08:f5:7b:95:43: aa:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:62:97:09:11:ED:25:4C:BF:F0:19:D1:03:0C:73:5C:14:AD:B4:B5 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:0a:05:c8:a2:df:48:31:1d:6d:28:b6:8e:35:3d:5b:16:0f: e1:16:3e:67:30:a1:26:9d:b1:02:23:53:f8:27:9b:2d:8c:10: 53:99:9a:59:e3:6b:1e:01:ac:5c:c8:70:3a:0c:a3:8a:15:5a: d5:8d:89:ce:04:48:75:31:70:53:25:e3:84:ff:27:97:65:11: 6d:fd:c0:35:66:84:c9:2f:b0:89:d7:6a:96:59:2c:b8:96:84: 9f:28:74:3f:47:7d:66:5a:8c:89:63:12:56:4b:f3:0a:02:f3: 53:80:54:c7:fe:6a:8c:d0:2d:97:d0:f1:26:4c:88:aa:7c:84: 6f:88:f7:e7:ce:ea:73:2d:89:4a:9a:b3:84:a8:44:13:66:cb: 95:aa:85:d0:c9:20:81:a4:e5:b1:8e:b8:92:68:68:4d:f6:b6: 2f:5f:25:e5:4d:cd:70:86:77:bf:77:f1:ff:25:0c:8f:3b:b8: e0:72:9d:3a:8d:ae:3d:50:8d:ff:37:7a:19:6c:a9:3b:6d:e4: da:a2:c1:41:b6:4d:45:25:95:91:ac:29:74:c7:44:b6:7c:2c: 66:72:9e:94:98:23:98:b6:ac:92:54:e9:5e:0c:c9:93:20:b1: 6e:eb:a1:dc:b7:20:4e:14:1b:49:34:23:43:3c:01:36:27:6b: 3e:a3:d0:ba -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUOqEnEstNSz+Wj2nipYul4cMYHLYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTIxNjAwMDIzN1oX DTI1MTIyMDAwMDIzN1owejFJMEcGA1UEBRNAYjlkNmIxNmIyNTllNWQ0MjRmMTE5 MmM1OWJlMjJiMDMyZTE3MzA5OTRlZDExOTA5ZDVkMTUxOTljYzY2MWNlNTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA07Xeuj692Yg0c6ehPkwyWFjuiHxl nSTri831mb4a7XHfXs4jlrF/Zwej8xdUVQkd149Jpy0/Sj4Qc+BgM8vca0yLZ+Uw iVJ/CoHScBk2mKNtMkFJUqxAJDwJRz94dMTvhmtso2EYoaqvn/PAvhjkUyLGlRU1 E19Wn1+dass5Hf3vcVxHrfL4eLEtmSJ0AfO5g2bW2da91Lm5UHZf2/TjabFGKef+ 2l+AAZazHt8tWg2a2wCYWU3KpYvzLhb1RsRBpb4XtOFBLzUdzIXyRAWpABKIx3G0 VDNAHsD0zybu8btXo3NyR8hvW3F1lcilevp3oGMA+myGd5X8CPV7lUOq3QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFLRilwkR7SVMv/AZ0QMMc1wUrbS1MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAHwKBcii30gxHW0oto41PVsWD+EWPmcw oSadsQIjU/gnmy2MEFOZmlnjax4BrFzIcDoMo4oVWtWNic4ESHUxcFMl44T/J5dl EW39wDVmhMkvsInXapZZLLiWhJ8odD9HfWZajIljElZL8woC81OAVMf+aozQLZfQ 8SZMiKp8hG+I9+fO6nMtiUqas4SoRBNmy5WqhdDJIIGk5bGOuJJoaE32ti9fJeVN zXCGd7938f8lDI87uOBynTqNrj1Qjf83ehlsqTtt5NqiwUG2TUUllZGsKXTHRLZ8 LGZynpSYI5i2rJJU6V4MyZMgsW7rody3IE4UG0k0I0M8ATYnaz6j0Lo= -----END CERTIFICATE-----Generated at Tue Dec 16 10:57:43 2025 by rpki-client