This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: fF7I+6XzdAINCv8eswDaerfKvOdvELVJQ+7j9wyyV2E= Subject key identifier: 43:21:58:7A:35:E0:62:F6:55:DC:66:A8:8C:E8:D4:DD:4F:C9:E9:E3 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 6DBAA336E97C9502D34598EA6F740531898AAE7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 052F Signing time: Thu 25 Dec 2025 00:10:00 +0000 Manifest this update: Thu 25 Dec 2025 00:10:00 +0000 Manifest next update: Mon 29 Dec 2025 00:10:00 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: MBCm/wpjWTCynLBAAXlhwqpHi+4pATpa9VJ7w3ENyd0=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: rQbNjdQJC3sJ4bliGCJBeHYXTky9EGpQuTbp2TB71jY=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: W5s2+KsThmK2t/kTEoDyc0qk5t8nWR8Vcr0OHIME7gY=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: x5LLJCOzEP/8J1ux+G9SgKQqBPRhs4EhT/clFzSpHN8=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: A3EMEtAoLbWvo2+AU4wcz5LV+4FiZiLxrLSRIqLxB1Y=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: CNy33lvFVRD+mSD8JJeY7w+m3uy4j1Q7IRyDV4kVRuc=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: Q0oMp8ZPk9UZcsIR9g6UcmJjZKdMd1/UNJTA2+LxKxw=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: 2kSCvroZg2jUdhJrRXEd6bpE68S4hIOVSrqhsjKg4Rk=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 55JqWeNnPUgIMiCbIulJEhJREuoglf7zd0Hdhdnk7JI=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: nX53gsp63aFe1Zk0fvuz7gf9dNGw1Q0a6vNdlF04HMM=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: ZYZG8cDggGOScTpdb7p8ZIw+Y1ZbbJ0TIUBkEXnJp1Y=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: NebmV0kA/vdDwwxk2EOE4U6J80Xe14LeKDXdwnAwWfU=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: n1kg4tDD9KCpPUv6L5rqRkioae0zUB8A2YrnCFiHVJ0=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: rgmgKkFA/1ZuGJ4QRcU97a/WiPe2lq2P1GX24tqN91U=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: DuZi0/kBsFkmGULcNt4xmJZ4I8aFDcP0+xR9g1RHy40=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: yWi4vmYUMO0k3bGWU58+1DwpumVOkC/H5jR6owzOWJE=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: N/cY7SofU7BQTjSpADixy6DLuAFs/nCWf8HWg3e5lnI=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: mnMvQYdAbSRRbDZHXyfM/f8XdM80z72GugupasAKoQg=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: 8YU7fg0zlfz3zh4wwfhvDooXzSoHUcM3m57KVGTCELU=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: 5cTt1+vhncnDYsyS0iAO+sczddXxNbUExaXXLGjcsik=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: iHgVMCQkVpqqh3egN8945TcYU7izcrnduLWWQD583q4=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: 7qFv7/S4ZCYOk7ry4v77f24Y1St+2VgNdsB9gS3rrXk=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 00:10:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:ba:a3:36:e9:7c:95:02:d3:45:98:ea:6f:74:05:31:89:8a:ae:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Dec 25 00:10:00 2025 GMT Not After : Dec 29 00:10:00 2025 GMT Subject: serialNumber=d46970aae8efbfcc19cf125fec9a14dce0315db9761589aae1753d6feb22cb61, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e4:3b:35:60:73:f8:40:3a:9a:a6:ee:4c:e6: af:e0:8c:38:ae:ff:8c:15:f7:59:d2:91:8c:d7:50: ff:3f:9e:f1:58:3b:9d:3e:8b:68:8f:cf:cd:90:6d: 00:33:0a:1f:c4:4d:14:5f:f5:36:a4:da:78:a7:7f: 1b:2d:d0:f6:46:e5:4e:94:9d:cc:f6:1e:23:f6:c3: fb:07:8d:15:3f:fb:cf:54:f0:eb:19:ca:13:d8:c7: 9f:bc:75:13:7a:ec:d3:61:3f:47:7c:1d:da:a4:44: 6e:85:b3:dc:ab:14:23:69:3d:c3:15:6d:44:5e:78: 59:e0:9f:55:f6:5f:9b:09:12:e6:a5:e6:0b:e5:33: f1:15:86:23:09:4b:e3:08:c3:dc:42:cd:26:c7:3c: 31:1d:fb:f1:75:64:6b:93:b8:0c:8a:10:7b:e6:0a: 29:a4:60:9f:cf:f3:bb:37:61:e1:26:34:57:eb:c2: df:74:14:b1:7a:49:96:57:ae:e6:fa:97:33:1e:ca: 4e:d4:8d:bc:89:b6:01:a1:52:86:37:da:05:9b:e1: 75:9c:44:ae:fe:1c:75:15:99:40:0c:3d:5a:85:e0: 1f:57:87:c3:da:bc:22:a7:fc:66:b7:06:32:3b:be: e7:b6:80:48:6c:09:be:f0:e9:55:9b:87:a4:be:cd: 08:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:21:58:7A:35:E0:62:F6:55:DC:66:A8:8C:E8:D4:DD:4F:C9:E9:E3 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:78:25:7f:ca:6d:c5:83:e3:e0:5d:ae:c7:9e:cb:ec:7a:4c: 7b:7d:3e:af:c0:d9:e9:ab:21:de:aa:a3:bd:dc:e5:cc:8d:8d: 21:82:a1:ad:81:fb:47:e7:07:f6:d0:07:eb:8a:d3:0a:e8:c4: 14:8f:bb:5e:4a:37:fe:2e:fa:c9:85:90:96:f0:d1:4d:54:5e: fd:1c:6e:64:84:0a:e4:49:58:13:09:97:08:1d:37:79:fa:27: 56:e4:d3:ab:6e:52:3d:21:e5:c9:90:57:a8:a9:72:83:82:dd: 2e:ba:3d:7e:fc:12:17:30:88:ff:2c:25:a7:c8:a8:1a:07:53: 9b:2e:91:89:0f:56:50:98:11:3e:a3:3b:2c:bc:41:58:ae:5d: b4:7b:ee:75:53:2f:6d:f2:90:b6:ab:68:4b:e7:2a:a9:76:25: c6:6e:eb:07:02:10:09:fa:c9:10:0e:28:3d:3a:70:e8:a9:d2: ad:45:11:d0:5a:a0:c3:c5:f4:5d:63:c5:c1:ed:c8:33:29:77: 8f:c9:b9:a8:60:ad:2a:f9:d8:5c:f8:7e:59:b0:23:fa:bc:e9: 49:56:9e:95:85:78:82:5f:39:e9:e6:b3:92:40:49:d9:b4:86: a1:d5:46:24:d0:2c:4b:04:55:25:48:bd:d4:54:dd:72:17:64: d0:d5:a3:c6 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUbbqjNul8lQLTRZjqb3QFMYmKrnswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTIyNTAwMTAwMFoX DTI1MTIyOTAwMTAwMFowejFJMEcGA1UEBRNAZDQ2OTcwYWFlOGVmYmZjYzE5Y2Yx MjVmZWM5YTE0ZGNlMDMxNWRiOTc2MTU4OWFhZTE3NTNkNmZlYjIyY2I2MTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvOQ7NWBz+EA6mqbuTOav4Iw4rv+M FfdZ0pGM11D/P57xWDudPotoj8/NkG0AMwofxE0UX/U2pNp4p38bLdD2RuVOlJ3M 9h4j9sP7B40VP/vPVPDrGcoT2MefvHUTeuzTYT9HfB3apERuhbPcqxQjaT3DFW1E XnhZ4J9V9l+bCRLmpeYL5TPxFYYjCUvjCMPcQs0mxzwxHfvxdWRrk7gMihB75gop pGCfz/O7N2HhJjRX68LfdBSxekmWV67m+pczHspO1I28ibYBoVKGN9oFm+F1nESu /hx1FZlADD1aheAfV4fD2rwip/xmtwYyO77ntoBIbAm+8OlVm4ekvs0ITQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFEMhWHo14GL2VdxmqIzo1N1PyenjMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAFR4JX/KbcWD4+Bdrseey+x6THt9Pq/A 2emrId6qo73c5cyNjSGCoa2B+0fnB/bQB+uK0wroxBSPu15KN/4u+smFkJbw0U1U Xv0cbmSECuRJWBMJlwgdN3n6J1bk06tuUj0h5cmQV6ipcoOC3S66PX78EhcwiP8s JafIqBoHU5sukYkPVlCYET6jOyy8QViuXbR77nVTL23ykLaraEvnKql2JcZu6wcC EAn6yRAOKD06cOip0q1FEdBaoMPF9F1jxcHtyDMpd4/JuahgrSr52Fz4flmwI/q8 6UlWnpWFeIJfOenms5JASdm0hqHVRiTQLEsEVSVIvdRU3XIXZNDVo8Y= -----END CERTIFICATE-----Generated at Thu Dec 25 17:59:55 2025 by rpki-client