This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: PxS4/VUSmcWKwBloK55OijbCozjyPUs3biFQ6E5n6sE= Subject key identifier: F4:46:0B:63:A2:84:4E:03:FD:17:03:88:FA:53:51:96:32:12:B8:EB Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 30DCE1C10ECCACA88F4302A5CBC207D6EFEFA88C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0534 Signing time: Tue 30 Dec 2025 00:10:59 +0000 Manifest this update: Tue 30 Dec 2025 00:10:59 +0000 Manifest next update: Sat 03 Jan 2026 00:10:59 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: MBCm/wpjWTCynLBAAXlhwqpHi+4pATpa9VJ7w3ENyd0=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: rQbNjdQJC3sJ4bliGCJBeHYXTky9EGpQuTbp2TB71jY=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: W5s2+KsThmK2t/kTEoDyc0qk5t8nWR8Vcr0OHIME7gY=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: lKzw6ppcbuU21xDHk2tU+LbL7Z1W4iCfETh+z6ZqtIc=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: A3EMEtAoLbWvo2+AU4wcz5LV+4FiZiLxrLSRIqLxB1Y=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: CNy33lvFVRD+mSD8JJeY7w+m3uy4j1Q7IRyDV4kVRuc=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: Q0oMp8ZPk9UZcsIR9g6UcmJjZKdMd1/UNJTA2+LxKxw=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: 2kSCvroZg2jUdhJrRXEd6bpE68S4hIOVSrqhsjKg4Rk=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 55JqWeNnPUgIMiCbIulJEhJREuoglf7zd0Hdhdnk7JI=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: nX53gsp63aFe1Zk0fvuz7gf9dNGw1Q0a6vNdlF04HMM=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: ZYZG8cDggGOScTpdb7p8ZIw+Y1ZbbJ0TIUBkEXnJp1Y=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: NebmV0kA/vdDwwxk2EOE4U6J80Xe14LeKDXdwnAwWfU=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: n1kg4tDD9KCpPUv6L5rqRkioae0zUB8A2YrnCFiHVJ0=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: rgmgKkFA/1ZuGJ4QRcU97a/WiPe2lq2P1GX24tqN91U=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: DuZi0/kBsFkmGULcNt4xmJZ4I8aFDcP0+xR9g1RHy40=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: yWi4vmYUMO0k3bGWU58+1DwpumVOkC/H5jR6owzOWJE=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: N/cY7SofU7BQTjSpADixy6DLuAFs/nCWf8HWg3e5lnI=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: mnMvQYdAbSRRbDZHXyfM/f8XdM80z72GugupasAKoQg=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: 8YU7fg0zlfz3zh4wwfhvDooXzSoHUcM3m57KVGTCELU=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: 5cTt1+vhncnDYsyS0iAO+sczddXxNbUExaXXLGjcsik=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: iHgVMCQkVpqqh3egN8945TcYU7izcrnduLWWQD583q4=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: 7qFv7/S4ZCYOk7ry4v77f24Y1St+2VgNdsB9gS3rrXk=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 00:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:dc:e1:c1:0e:cc:ac:a8:8f:43:02:a5:cb:c2:07:d6:ef:ef:a8:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Dec 30 00:10:59 2025 GMT Not After : Jan 3 00:10:59 2026 GMT Subject: serialNumber=90451564afbcf5e4f6711a125956593efda2793b51fa6ba97a7c69d7f70041df, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4c:c5:2e:90:8b:03:39:2e:69:ae:85:88:d0: b7:dc:36:ca:72:5b:78:5b:7d:40:43:78:65:49:c4: 65:3c:c2:fc:a3:e4:c2:89:9a:1d:9d:ff:01:d1:8a: 99:a1:4c:b0:c7:78:58:d2:e6:24:80:40:db:49:63: b8:0d:36:07:35:f1:f1:88:99:54:3e:73:3a:05:95: 27:ae:16:4d:5b:6e:58:bb:47:48:a5:e2:fd:af:30: 59:9a:58:34:21:55:82:94:4b:98:e4:c1:c8:a3:f2: 2e:04:47:0e:bf:57:f0:85:f0:52:88:ac:a4:b9:07: 17:ee:ec:64:b7:97:11:a3:79:d8:81:bd:4d:74:16: 76:39:16:34:38:98:99:90:88:95:08:15:aa:2d:4e: 93:65:f5:b7:81:77:b6:cf:2b:0e:63:4e:53:29:d6: 80:69:f9:1d:bb:c9:41:fd:62:a6:27:ff:04:34:90: 0b:ba:b6:10:b7:43:4f:c3:63:38:cc:60:1d:5c:c2: bf:2f:65:25:10:59:a6:1f:22:57:91:c3:a0:3e:be: 7f:05:c2:d6:9f:d5:29:3f:be:8e:1c:dd:d0:9a:e2: da:05:4e:c3:71:7e:b1:89:52:9e:b0:90:0d:26:23: 3b:47:40:75:4a:65:be:53:9a:af:71:7c:9f:53:8b: 1f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:46:0B:63:A2:84:4E:03:FD:17:03:88:FA:53:51:96:32:12:B8:EB X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c2:56:45:6e:f4:87:a8:be:af:9b:39:0a:4c:40:f2:3c:40:88: 8e:3d:23:aa:31:c7:c8:98:bb:d6:96:7f:5e:74:83:67:71:6c: 46:48:ec:20:ca:a1:5a:e8:51:36:b1:8d:ce:d2:be:9d:cd:e3: 51:ac:c2:44:ea:d8:8f:eb:0c:14:93:35:44:36:31:a7:29:01: c3:80:de:74:79:47:d2:15:95:1e:6a:3f:e6:02:b1:2c:96:2e: 69:1f:40:ae:d1:20:04:2e:a6:3a:12:f4:2c:6e:2d:99:06:3e: 8d:b6:77:88:8d:53:0a:b0:26:3f:31:a9:b5:2e:08:50:62:79: 87:7e:39:c7:2a:50:40:1f:72:ae:97:c9:08:ac:91:22:75:3d: e7:59:8f:85:a9:32:60:8d:fd:5c:5e:28:38:e8:ba:9b:35:e0: 5b:e4:90:61:35:83:a0:67:b0:d0:4b:71:01:46:07:e2:c5:48: 1b:9d:78:8a:b0:70:85:1e:64:cf:23:14:28:6a:29:87:07:4d: 90:e5:4f:72:3f:ef:7c:50:64:9b:fa:2e:2c:db:41:cc:0c:64: 0a:61:f9:d6:17:ed:bc:d0:43:31:27:ce:a8:e3:c2:b5:33:1a: 3f:56:73:07:46:5f:46:78:81:ed:23:8f:2b:db:21:a1:91:25: 5a:a7:8e:ab -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUMNzhwQ7MrKiPQwKly8IH1u/vqIwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTIzMDAwMTA1OVoX DTI2MDEwMzAwMTA1OVowejFJMEcGA1UEBRNAOTA0NTE1NjRhZmJjZjVlNGY2NzEx YTEyNTk1NjU5M2VmZGEyNzkzYjUxZmE2YmE5N2E3YzY5ZDdmNzAwNDFkZjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwEzFLpCLAzkuaa6FiNC33DbKclt4 W31AQ3hlScRlPML8o+TCiZodnf8B0YqZoUywx3hY0uYkgEDbSWO4DTYHNfHxiJlU PnM6BZUnrhZNW25Yu0dIpeL9rzBZmlg0IVWClEuY5MHIo/IuBEcOv1fwhfBSiKyk uQcX7uxkt5cRo3nYgb1NdBZ2ORY0OJiZkIiVCBWqLU6TZfW3gXe2zysOY05TKdaA afkdu8lB/WKmJ/8ENJALurYQt0NPw2M4zGAdXMK/L2UlEFmmHyJXkcOgPr5/BcLW n9UpP76OHN3QmuLaBU7DcX6xiVKesJANJiM7R0B1SmW+U5qvcXyfU4sfUQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFPRGC2OihE4D/RcDiPpTUZYyErjrMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAMJWRW70h6i+r5s5CkxA8jxAiI49I6ox x8iYu9aWf150g2dxbEZI7CDKoVroUTaxjc7Svp3N41GswkTq2I/rDBSTNUQ2Macp AcOA3nR5R9IVlR5qP+YCsSyWLmkfQK7RIAQupjoS9CxuLZkGPo22d4iNUwqwJj8x qbUuCFBieYd+OccqUEAfcq6XyQiskSJ1PedZj4WpMmCN/VxeKDjoups14FvkkGE1 g6BnsNBLcQFGB+LFSBudeIqwcIUeZM8jFChqKYcHTZDlT3I/73xQZJv6LizbQcwM ZAph+dYX7bzQQzEnzqjjwrUzGj9WcwdGX0Z4ge0jjyvbIaGRJVqnjqs= -----END CERTIFICATE-----Generated at Tue Dec 30 20:10:45 2025 by rpki-client