This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: XJgb7PMlSATx/UWpEpHxRB/GmsBGG6+bF+BqVDQSU1I= Subject key identifier: 03:6B:8C:27:42:A7:7D:EC:68:B7:B9:BF:EE:C4:15:ED:16:2D:6C:5E Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 3BA68500323FCDD0445B576247BB8C0FCED06996 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0585 Signing time: Mon 22 Dec 2025 00:09:39 +0000 Manifest this update: Mon 22 Dec 2025 00:09:39 +0000 Manifest next update: Fri 26 Dec 2025 00:09:39 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: yDDnBeqCVfhOqBeRv8peXbn+o7/qwXd2bz6LUN9e0jk=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: cQc2HrAbBAfe1GL6X0izbfHrnYW3gH/cqRPzedsr7F8=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:09:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:a6:85:00:32:3f:cd:d0:44:5b:57:62:47:bb:8c:0f:ce:d0:69:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Dec 22 00:09:39 2025 GMT Not After : Dec 26 00:09:39 2025 GMT Subject: serialNumber=07037ab812393e79ce5adc2bee5d53f100736821d6f6f5b24c5e73e40d3edf41, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:4e:31:d3:e2:b8:84:f6:6c:ec:4d:b1:0d:17: 06:72:2d:df:ca:64:27:b8:95:af:6b:6c:b7:65:7c: ed:93:b4:1e:70:5b:93:18:e5:dc:b5:6a:2e:0e:c2: 17:2a:54:4f:b7:66:0b:60:dc:fa:8a:09:58:dc:0d: 54:9f:5f:4b:bf:e6:aa:a1:4a:25:56:cb:60:ac:6d: c0:b4:4e:3a:f2:23:bb:15:44:08:67:c3:e2:ee:b9: 0d:f3:01:da:5d:33:c0:ae:67:61:3a:a8:65:44:18: 0e:ec:27:70:37:f1:ff:47:5b:4e:76:48:a7:b0:33: 9d:2e:63:7e:ee:b0:f6:60:fb:c6:fa:c1:a4:07:40: d0:59:d4:d1:c3:ee:42:07:76:fd:ac:08:08:2a:ac: 9c:c5:01:62:03:b7:aa:ba:ff:78:96:6d:2f:4c:eb: 19:5e:f7:5e:de:f8:38:55:bd:1e:ff:97:2a:09:c8: 34:8c:19:7f:0a:b3:b0:be:e2:1f:9a:f5:11:a0:4b: c8:d1:40:7a:19:3c:08:cd:e2:4a:a7:c9:3d:ae:67: c6:b6:df:4c:ea:34:92:72:b3:e4:e1:b9:0b:e9:f1: 4b:98:34:91:de:6d:5b:e8:90:a6:53:96:f8:e8:09: 4d:32:ce:8a:35:95:e8:f0:b8:3c:5f:8a:97:f1:77: 61:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:6B:8C:27:42:A7:7D:EC:68:B7:B9:BF:EE:C4:15:ED:16:2D:6C:5E X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:d9:3b:c3:f3:a1:c9:83:2a:32:18:c8:28:bf:e2:d8:36:25: 76:7a:4c:6d:1c:50:d2:0c:e2:35:bc:cb:82:7d:cf:9b:39:fb: fb:7a:62:b5:98:a6:75:83:5d:73:28:36:63:69:aa:71:bb:b3: 44:56:d0:ee:22:f4:b9:f0:09:b5:6a:73:f3:4c:61:50:02:25: bd:83:3a:01:68:a0:93:bb:fb:65:6b:64:9a:1d:9f:92:19:69: 6e:2d:c4:61:d5:55:9d:6f:3a:72:9c:ad:55:75:72:b2:e9:39: 90:b2:54:c8:d7:bd:b0:44:84:31:d2:d8:c6:75:f4:2d:b4:c5: cc:e1:c8:36:f9:3b:54:e9:97:10:f1:8e:a4:a6:46:6f:35:bc: 39:78:e4:4e:f8:4b:9a:46:4e:e4:00:e4:45:32:33:dd:aa:06: 4d:d9:0a:71:a3:a0:b0:69:29:60:0b:9a:26:cd:cf:57:0a:96: ab:b1:17:01:d1:d6:76:bc:25:1d:a8:b7:63:95:6d:b8:c9:bc: 91:12:d2:ff:46:12:d7:6a:79:f3:0c:24:57:26:e5:46:c4:d0: fe:58:8c:de:96:16:04:43:ed:00:0f:b8:af:4d:6e:66:30:24: f1:59:f2:2f:05:e1:2f:ae:e2:6a:d9:9a:49:c2:74:4b:f8:5e: 21:4d:3a:59 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUO6aFADI/zdBEW1diR7uMD87QaZYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTIyMjAwMDkzOVoX DTI1MTIyNjAwMDkzOVowejFJMEcGA1UEBRNAMDcwMzdhYjgxMjM5M2U3OWNlNWFk YzJiZWU1ZDUzZjEwMDczNjgyMWQ2ZjZmNWIyNGM1ZTczZTQwZDNlZGY0MTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2E4x0+K4hPZs7E2xDRcGci3fymQn uJWva2y3ZXztk7QecFuTGOXctWouDsIXKlRPt2YLYNz6iglY3A1Un19Lv+aqoUol VstgrG3AtE468iO7FUQIZ8Pi7rkN8wHaXTPArmdhOqhlRBgO7CdwN/H/R1tOdkin sDOdLmN+7rD2YPvG+sGkB0DQWdTRw+5CB3b9rAgIKqycxQFiA7equv94lm0vTOsZ Xvde3vg4Vb0e/5cqCcg0jBl/CrOwvuIfmvURoEvI0UB6GTwIzeJKp8k9rmfGtt9M 6jSScrPk4bkL6fFLmDSR3m1b6JCmU5b46AlNMs6KNZXo8Lg8X4qX8XdhWQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFANrjCdCp33saLe5v+7EFe0WLWxeMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAHrZO8PzocmDKjIYyCi/4tg2JXZ6TG0c UNIM4jW8y4J9z5s5+/t6YrWYpnWDXXMoNmNpqnG7s0RW0O4i9LnwCbVqc/NMYVAC Jb2DOgFooJO7+2VrZJodn5IZaW4txGHVVZ1vOnKcrVV1crLpOZCyVMjXvbBEhDHS 2MZ19C20xczhyDb5O1TplxDxjqSmRm81vDl45E74S5pGTuQA5EUyM92qBk3ZCnGj oLBpKWALmibNz1cKlquxFwHR1na8JR2ot2OVbbjJvJES0v9GEtdqefMMJFcm5UbE 0P5YjN6WFgRD7QAPuK9NbmYwJPFZ8i8F4S+u4mrZmknCdEv4XiFNOlk= -----END CERTIFICATE-----Generated at Mon Dec 22 01:02:26 2025 by rpki-client