This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: kjRflLRsTlM25ozj2T5GZ2jpo6UhW+6C9QlFW7nLqO4= Subject key identifier: DA:99:3A:85:53:B3:54:59:92:23:C7:97:A8:6D:5C:A7:AB:CF:EF:1F Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 7B9B380D9C0B94080DFF0BF196BE1E412411D347 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 052B Signing time: Sun 21 Dec 2025 00:09:11 +0000 Manifest this update: Sun 21 Dec 2025 00:09:11 +0000 Manifest next update: Thu 25 Dec 2025 00:09:11 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: MBCm/wpjWTCynLBAAXlhwqpHi+4pATpa9VJ7w3ENyd0=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: rQbNjdQJC3sJ4bliGCJBeHYXTky9EGpQuTbp2TB71jY=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: W5s2+KsThmK2t/kTEoDyc0qk5t8nWR8Vcr0OHIME7gY=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: tRIngy3EOloT6y9yaxcSpQ1CgjHz5xar+xx1dsk+gAU=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: A3EMEtAoLbWvo2+AU4wcz5LV+4FiZiLxrLSRIqLxB1Y=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: CNy33lvFVRD+mSD8JJeY7w+m3uy4j1Q7IRyDV4kVRuc=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: Q0oMp8ZPk9UZcsIR9g6UcmJjZKdMd1/UNJTA2+LxKxw=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: 2kSCvroZg2jUdhJrRXEd6bpE68S4hIOVSrqhsjKg4Rk=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 55JqWeNnPUgIMiCbIulJEhJREuoglf7zd0Hdhdnk7JI=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: nX53gsp63aFe1Zk0fvuz7gf9dNGw1Q0a6vNdlF04HMM=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: ZYZG8cDggGOScTpdb7p8ZIw+Y1ZbbJ0TIUBkEXnJp1Y=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: NebmV0kA/vdDwwxk2EOE4U6J80Xe14LeKDXdwnAwWfU=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: n1kg4tDD9KCpPUv6L5rqRkioae0zUB8A2YrnCFiHVJ0=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: rgmgKkFA/1ZuGJ4QRcU97a/WiPe2lq2P1GX24tqN91U=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: DuZi0/kBsFkmGULcNt4xmJZ4I8aFDcP0+xR9g1RHy40=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: yWi4vmYUMO0k3bGWU58+1DwpumVOkC/H5jR6owzOWJE=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: N/cY7SofU7BQTjSpADixy6DLuAFs/nCWf8HWg3e5lnI=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: mnMvQYdAbSRRbDZHXyfM/f8XdM80z72GugupasAKoQg=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: 8YU7fg0zlfz3zh4wwfhvDooXzSoHUcM3m57KVGTCELU=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: 5cTt1+vhncnDYsyS0iAO+sczddXxNbUExaXXLGjcsik=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: iHgVMCQkVpqqh3egN8945TcYU7izcrnduLWWQD583q4=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: 7qFv7/S4ZCYOk7ry4v77f24Y1St+2VgNdsB9gS3rrXk=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 00:09:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:9b:38:0d:9c:0b:94:08:0d:ff:0b:f1:96:be:1e:41:24:11:d3:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Dec 21 00:09:11 2025 GMT Not After : Dec 25 00:09:11 2025 GMT Subject: serialNumber=4132aeea4458d06174fc2f62991ac59401f281470a9395ec5af061480790deda, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:7a:39:45:14:45:dc:26:c0:4d:ef:b6:39:77: b6:c4:3c:eb:0a:a3:37:4d:2d:6e:61:5c:f4:38:a0: 4b:74:ce:d4:b0:3d:fd:28:f9:5b:f3:e1:b3:80:0a: 87:0e:7c:b0:f7:99:f8:29:92:2c:96:34:fa:04:d3: 22:df:f1:fa:42:22:48:e4:83:da:1b:69:98:0c:ae: f0:ff:4a:75:01:86:4e:52:84:ae:0b:8e:12:46:ce: 85:d2:34:51:1a:e7:29:bd:39:21:43:6d:77:b8:4e: b2:78:94:ce:5c:83:c9:ce:4e:d6:35:b3:0a:07:5c: b5:c2:16:72:43:82:ce:50:93:e5:8b:64:d2:6f:c0: ca:a4:47:77:3b:75:e2:f9:30:ff:8d:f6:ca:03:51: ca:00:01:41:ce:d7:29:55:5d:c8:53:a0:0e:7e:05: 2a:15:12:c7:21:c9:96:41:3d:2f:02:6f:84:ac:98: 65:92:d0:6e:df:6d:0e:6f:89:12:d3:07:64:82:93: a1:7d:b7:d3:04:33:8d:6f:37:5d:1a:18:25:28:cd: 0a:6c:8f:f0:44:84:62:40:5d:50:04:b9:a4:ad:c2: be:bc:24:b3:ef:0f:b9:4c:67:82:c7:ca:56:21:7b: c9:82:b3:21:23:52:37:72:50:ca:ca:eb:54:bf:d0: af:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:99:3A:85:53:B3:54:59:92:23:C7:97:A8:6D:5C:A7:AB:CF:EF:1F X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:45:ed:89:05:a9:cc:d4:5f:9e:c7:32:8c:53:46:fc:00:96: 10:ce:f0:9f:e3:54:a4:69:ed:7f:ac:8b:bc:fe:f5:43:04:19: bc:55:40:88:53:42:ba:08:1c:b9:61:d4:8d:74:b0:b4:7f:01: cb:35:16:06:9c:68:81:aa:a6:dc:f3:59:c2:34:17:54:0e:38: a6:e5:5e:eb:8e:d5:87:74:c6:08:b6:f9:56:9c:ec:ef:c4:db: 08:f6:05:f9:45:72:24:a3:b1:8f:ec:e3:d4:c5:f8:2c:b4:07: 9c:5a:9c:db:a7:6d:00:82:b9:95:ca:5b:e7:09:33:bf:6d:89: fa:70:3a:3c:c9:9d:cb:c2:62:3a:95:6e:b8:9f:f4:38:91:e0: 7e:7e:be:fc:71:34:fb:32:fb:d2:bd:a9:83:ae:72:22:7a:96: 84:c4:92:2f:db:27:b0:64:fc:d7:8e:23:0f:a5:02:c7:69:0c: 0a:54:df:93:c2:99:95:61:37:25:82:85:d7:23:33:3d:20:a3: 08:97:b2:b2:d9:e7:65:53:71:d9:18:ea:45:2f:78:e7:a9:05: c7:d9:93:b6:6c:f8:f5:a3:e7:2e:8a:d0:6d:82:21:5e:f1:66: e7:72:2e:bb:9d:55:fe:5d:62:0a:00:85:9d:1c:59:94:a0:b7: 54:8a:b3:c4 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUe5s4DZwLlAgN/wvxlr4eQSQR00cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTIyMTAwMDkxMVoX DTI1MTIyNTAwMDkxMVowejFJMEcGA1UEBRNANDEzMmFlZWE0NDU4ZDA2MTc0ZmMy ZjYyOTkxYWM1OTQwMWYyODE0NzBhOTM5NWVjNWFmMDYxNDgwNzkwZGVkYTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlHo5RRRF3CbATe+2OXe2xDzrCqM3 TS1uYVz0OKBLdM7UsD39KPlb8+GzgAqHDnyw95n4KZIsljT6BNMi3/H6QiJI5IPa G2mYDK7w/0p1AYZOUoSuC44SRs6F0jRRGucpvTkhQ213uE6yeJTOXIPJzk7WNbMK B1y1whZyQ4LOUJPli2TSb8DKpEd3O3Xi+TD/jfbKA1HKAAFBztcpVV3IU6AOfgUq FRLHIcmWQT0vAm+ErJhlktBu320Ob4kS0wdkgpOhfbfTBDONbzddGhglKM0KbI/w RIRiQF1QBLmkrcK+vCSz7w+5TGeCx8pWIXvJgrMhI1I3clDKyutUv9CvvwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNqZOoVTs1RZkiPHl6htXKerz+8fMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAJpF7YkFqczUX57HMoxTRvwAlhDO8J/j VKRp7X+si7z+9UMEGbxVQIhTQroIHLlh1I10sLR/Acs1FgacaIGqptzzWcI0F1QO OKblXuuO1Yd0xgi2+Vac7O/E2wj2BflFciSjsY/s49TF+Cy0B5xanNunbQCCuZXK W+cJM79tifpwOjzJncvCYjqVbrif9DiR4H5+vvxxNPsy+9K9qYOuciJ6loTEki/b J7Bk/NeOIw+lAsdpDApU35PCmZVhNyWChdcjMz0gowiXsrLZ52VTcdkY6kUveOep BcfZk7Zs+PWj5y6K0G2CIV7xZudyLrudVf5dYgoAhZ0cWZSgt1SKs8Q= -----END CERTIFICATE-----Generated at Sun Dec 21 19:14:41 2025 by rpki-client