This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: bbVHAWTNU7KIOODscuwQvVE8+psl2jvXXxsTQ6Ontig= Subject key identifier: 98:63:28:23:BC:E2:53:CB:BD:77:99:09:E2:6F:F6:B4:CA:E4:41:DA Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 29B7C07E4D16556F05799EDBC21FE731DF3BEB9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 052E Signing time: Wed 24 Dec 2025 00:09:45 +0000 Manifest this update: Wed 24 Dec 2025 00:09:45 +0000 Manifest next update: Sun 28 Dec 2025 00:09:45 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: MBCm/wpjWTCynLBAAXlhwqpHi+4pATpa9VJ7w3ENyd0=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: rQbNjdQJC3sJ4bliGCJBeHYXTky9EGpQuTbp2TB71jY=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: W5s2+KsThmK2t/kTEoDyc0qk5t8nWR8Vcr0OHIME7gY=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: lKLNHVxR7IPAvcsiq8W5UFgAixH5W9d/P75Fc5odfnw=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: A3EMEtAoLbWvo2+AU4wcz5LV+4FiZiLxrLSRIqLxB1Y=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: CNy33lvFVRD+mSD8JJeY7w+m3uy4j1Q7IRyDV4kVRuc=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: Q0oMp8ZPk9UZcsIR9g6UcmJjZKdMd1/UNJTA2+LxKxw=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: 2kSCvroZg2jUdhJrRXEd6bpE68S4hIOVSrqhsjKg4Rk=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 55JqWeNnPUgIMiCbIulJEhJREuoglf7zd0Hdhdnk7JI=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: nX53gsp63aFe1Zk0fvuz7gf9dNGw1Q0a6vNdlF04HMM=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: ZYZG8cDggGOScTpdb7p8ZIw+Y1ZbbJ0TIUBkEXnJp1Y=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: NebmV0kA/vdDwwxk2EOE4U6J80Xe14LeKDXdwnAwWfU=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: n1kg4tDD9KCpPUv6L5rqRkioae0zUB8A2YrnCFiHVJ0=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: rgmgKkFA/1ZuGJ4QRcU97a/WiPe2lq2P1GX24tqN91U=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: DuZi0/kBsFkmGULcNt4xmJZ4I8aFDcP0+xR9g1RHy40=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: yWi4vmYUMO0k3bGWU58+1DwpumVOkC/H5jR6owzOWJE=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: N/cY7SofU7BQTjSpADixy6DLuAFs/nCWf8HWg3e5lnI=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: mnMvQYdAbSRRbDZHXyfM/f8XdM80z72GugupasAKoQg=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: 8YU7fg0zlfz3zh4wwfhvDooXzSoHUcM3m57KVGTCELU=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: 5cTt1+vhncnDYsyS0iAO+sczddXxNbUExaXXLGjcsik=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: iHgVMCQkVpqqh3egN8945TcYU7izcrnduLWWQD583q4=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: 7qFv7/S4ZCYOk7ry4v77f24Y1St+2VgNdsB9gS3rrXk=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:09:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:b7:c0:7e:4d:16:55:6f:05:79:9e:db:c2:1f:e7:31:df:3b:eb:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Dec 24 00:09:45 2025 GMT Not After : Dec 28 00:09:45 2025 GMT Subject: serialNumber=f3864169a2f17952a2286cd9d6cd3e994b3c423751a4676fe24a2806f52293b0, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ea:b6:4c:f3:c6:6e:aa:6d:ac:36:b1:dc:b3: ff:fc:de:d1:f6:c2:16:53:af:bf:83:45:f9:ef:c0: 5e:8c:0f:ea:29:22:f7:1c:c6:ae:20:a0:db:df:8d: 56:77:91:30:22:b5:e0:14:8e:19:19:c7:f6:8f:00: fb:60:4f:84:5f:5a:ad:cd:2e:74:9d:f0:f6:1b:21: 7e:0d:67:c7:88:be:50:44:af:b0:77:47:e7:8c:a8: f9:41:5b:51:f4:62:b7:b0:f6:48:fa:73:e3:d7:06: d4:ce:4f:e8:18:a4:ef:aa:50:bb:5f:98:97:b1:1b: 6b:39:ee:ed:59:42:59:12:ec:ae:3e:c6:a0:c5:34: 7f:12:9e:3f:be:19:06:fb:33:8d:5e:f9:fd:68:af: e9:e9:98:3b:34:25:51:4f:bb:22:7e:3e:7b:52:ba: a8:07:09:de:a6:a8:eb:b2:a7:fa:bf:8c:1c:68:9d: a9:72:15:ef:33:e1:c8:ac:15:10:1e:48:13:70:17: 3f:ee:c3:9d:53:67:96:39:60:a2:ec:42:45:b1:d8: 5a:3e:d6:49:2f:e4:bc:3a:d8:ee:31:39:8a:84:2f: 98:5c:1f:76:01:55:93:9b:30:fa:51:c4:15:6e:31: 58:13:e1:d9:49:d7:3c:7f:8e:13:44:a1:f0:a8:20: 13:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:63:28:23:BC:E2:53:CB:BD:77:99:09:E2:6F:F6:B4:CA:E4:41:DA X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:7f:ec:9c:a4:ea:b1:0f:89:83:d1:71:68:b7:4c:2a:18:64: ad:59:6f:a3:b7:59:85:00:e9:13:5c:57:e5:f9:7c:bf:4c:56: f8:43:23:4d:84:3e:82:38:e8:dc:c4:28:c9:93:d5:cc:85:5b: f7:b5:ff:35:d7:cc:fe:c1:b6:f3:91:49:b0:68:95:ab:82:c4: 4b:fc:24:ea:4c:28:67:9f:a6:fb:0f:03:3e:81:7e:84:6f:2d: 23:0d:cf:1e:57:cd:b1:33:37:b1:0e:53:ec:6b:79:12:a2:b5: 14:e4:21:e4:b1:e0:ff:3f:4a:c9:48:52:63:e4:bb:66:a4:94: 97:ad:d1:af:7b:7a:c3:e9:21:6f:1a:99:59:a2:d1:e4:c2:f5: 2f:5a:32:2a:5b:d7:9d:3d:6f:b4:80:5b:f3:c7:b6:75:d3:9d: 68:43:90:2d:7b:d6:97:2f:84:e0:be:86:b4:9e:71:c7:ab:b7: 40:e7:33:04:5b:f0:ff:72:c6:a5:ec:4a:ed:ec:34:21:3f:bd: e2:96:6d:b4:ce:93:5a:af:b7:0c:f6:e1:d1:9e:6a:f6:05:cc: 09:3b:b4:c0:e6:bb:5f:07:cc:0f:22:1d:fb:90:73:87:6c:aa: f9:53:65:aa:3e:70:06:d1:0e:6c:4b:50:75:98:d3:2b:8a:87: a8:8f:d2:07 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUKbfAfk0WVW8FeZ7bwh/nMd87650wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTIyNDAwMDk0NVoX DTI1MTIyODAwMDk0NVowejFJMEcGA1UEBRNAZjM4NjQxNjlhMmYxNzk1MmEyMjg2 Y2Q5ZDZjZDNlOTk0YjNjNDIzNzUxYTQ2NzZmZTI0YTI4MDZmNTIyOTNiMDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2+q2TPPGbqptrDax3LP//N7R9sIW U6+/g0X578BejA/qKSL3HMauIKDb341Wd5EwIrXgFI4ZGcf2jwD7YE+EX1qtzS50 nfD2GyF+DWfHiL5QRK+wd0fnjKj5QVtR9GK3sPZI+nPj1wbUzk/oGKTvqlC7X5iX sRtrOe7tWUJZEuyuPsagxTR/Ep4/vhkG+zONXvn9aK/p6Zg7NCVRT7sifj57Urqo Bwnepqjrsqf6v4wcaJ2pchXvM+HIrBUQHkgTcBc/7sOdU2eWOWCi7EJFsdhaPtZJ L+S8OtjuMTmKhC+YXB92AVWTmzD6UcQVbjFYE+HZSdc8f44TRKHwqCATiQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFJhjKCO84lPLvXeZCeJv9rTK5EHaMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAKt/7Jyk6rEPiYPRcWi3TCoYZK1Zb6O3 WYUA6RNcV+X5fL9MVvhDI02EPoI46NzEKMmT1cyFW/e1/zXXzP7BtvORSbBolauC xEv8JOpMKGefpvsPAz6BfoRvLSMNzx5XzbEzN7EOU+xreRKitRTkIeSx4P8/SslI UmPku2aklJet0a97esPpIW8amVmi0eTC9S9aMipb1509b7SAW/PHtnXTnWhDkC17 1pcvhOC+hrSeccert0DnMwRb8P9yxqXsSu3sNCE/veKWbbTOk1qvtwz24dGeavYF zAk7tMDmu18HzA8iHfuQc4dsqvlTZao+cAbRDmxLUHWY0yuKh6iP0gc= -----END CERTIFICATE-----Generated at Wed Dec 24 09:07:55 2025 by rpki-client