This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: RjczTKN5ByEYaCQCl2usGZddVCXbPPVlviaNU2HH+sI= Subject key identifier: 64:86:33:07:23:F3:F4:C3:07:A9:52:1F:65:7B:F3:86:7A:C3:B0:65 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 7FAE38EFA1C2210F04C753CF5A2CC41C42A47443 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0521 Signing time: Thu 11 Dec 2025 00:01:53 +0000 Manifest this update: Thu 11 Dec 2025 00:01:53 +0000 Manifest next update: Mon 15 Dec 2025 00:01:53 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: MBCm/wpjWTCynLBAAXlhwqpHi+4pATpa9VJ7w3ENyd0=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: rQbNjdQJC3sJ4bliGCJBeHYXTky9EGpQuTbp2TB71jY=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: W5s2+KsThmK2t/kTEoDyc0qk5t8nWR8Vcr0OHIME7gY=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: KO1QDxN5e1AmDSiUsVabJZAmLI1+NUQqI0Bxqm8oNYg=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: A3EMEtAoLbWvo2+AU4wcz5LV+4FiZiLxrLSRIqLxB1Y=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: CNy33lvFVRD+mSD8JJeY7w+m3uy4j1Q7IRyDV4kVRuc=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: Q0oMp8ZPk9UZcsIR9g6UcmJjZKdMd1/UNJTA2+LxKxw=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: 2kSCvroZg2jUdhJrRXEd6bpE68S4hIOVSrqhsjKg4Rk=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 55JqWeNnPUgIMiCbIulJEhJREuoglf7zd0Hdhdnk7JI=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: nX53gsp63aFe1Zk0fvuz7gf9dNGw1Q0a6vNdlF04HMM=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: ZYZG8cDggGOScTpdb7p8ZIw+Y1ZbbJ0TIUBkEXnJp1Y=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: NebmV0kA/vdDwwxk2EOE4U6J80Xe14LeKDXdwnAwWfU=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: n1kg4tDD9KCpPUv6L5rqRkioae0zUB8A2YrnCFiHVJ0=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: rgmgKkFA/1ZuGJ4QRcU97a/WiPe2lq2P1GX24tqN91U=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: DuZi0/kBsFkmGULcNt4xmJZ4I8aFDcP0+xR9g1RHy40=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: yWi4vmYUMO0k3bGWU58+1DwpumVOkC/H5jR6owzOWJE=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: N/cY7SofU7BQTjSpADixy6DLuAFs/nCWf8HWg3e5lnI=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: mnMvQYdAbSRRbDZHXyfM/f8XdM80z72GugupasAKoQg=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: 8YU7fg0zlfz3zh4wwfhvDooXzSoHUcM3m57KVGTCELU=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: 5cTt1+vhncnDYsyS0iAO+sczddXxNbUExaXXLGjcsik=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: iHgVMCQkVpqqh3egN8945TcYU7izcrnduLWWQD583q4=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: 7qFv7/S4ZCYOk7ry4v77f24Y1St+2VgNdsB9gS3rrXk=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 00:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:ae:38:ef:a1:c2:21:0f:04:c7:53:cf:5a:2c:c4:1c:42:a4:74:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Dec 11 00:01:53 2025 GMT Not After : Dec 15 00:01:53 2025 GMT Subject: serialNumber=1d7228d86c5ad6e5a417d13ce50404d5b62e472919617bb39af5b16b29b4c5c6, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:7d:d6:b7:18:62:41:93:0b:e0:44:32:85:40: 44:1f:f0:f3:4d:dd:7b:26:4d:61:a4:2c:3b:1a:3b: 49:04:1e:d8:08:8f:3e:ab:b9:15:d6:91:c5:a1:05: fe:22:6f:ba:eb:42:c9:07:1a:d6:72:93:43:bb:20: e0:99:e6:07:d2:10:45:aa:47:94:a0:b3:cc:84:61: ca:fa:5e:be:29:93:0a:90:b2:c3:c4:93:ef:28:94: 1a:f1:b6:a5:54:54:84:92:52:ca:50:3f:95:0f:d8: 59:e9:f9:f6:a5:f8:59:41:d4:73:42:10:75:44:1c: 85:23:8a:f0:1a:4d:9f:12:a8:ac:30:c7:fb:fd:7a: 79:7d:38:40:32:18:4d:e9:e6:5e:2e:4a:e2:59:ce: cb:f2:36:fa:2f:75:b0:66:a4:26:40:e0:34:dc:18: a8:25:1f:a9:f1:f5:d0:2c:d2:cb:03:f9:d6:3a:60: de:8f:d5:b3:42:73:96:78:cf:a8:07:1b:a7:44:46: 3d:44:43:d5:53:5d:a8:3c:f8:1f:2d:61:d9:e4:8a: 6b:4f:5e:bc:d7:6c:00:b9:f8:82:b1:ae:18:9f:d5: d8:4c:b7:f2:af:72:58:bb:56:00:90:6c:d5:95:2a: 52:9a:8c:69:2f:29:07:81:85:ee:36:b0:b3:2b:6f: 67:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:86:33:07:23:F3:F4:C3:07:A9:52:1F:65:7B:F3:86:7A:C3:B0:65 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:2a:07:3f:42:b5:a4:14:ab:ea:c0:b5:ca:c4:b3:54:77:67: 73:5a:99:85:ab:f6:6e:20:47:b2:6b:c4:88:7c:e9:e3:24:03: 84:05:83:cb:29:49:5c:05:b6:66:ff:ed:f6:35:7f:fb:aa:02: de:6a:28:a1:dd:5b:6c:a8:f5:49:a9:c1:2e:3a:6c:df:79:3a: cd:e4:3c:73:62:74:4a:3e:f2:17:84:f8:64:53:09:00:e8:5d: 7e:52:af:e3:ae:79:a6:55:51:d6:84:da:d0:1d:e0:9d:de:1d: 75:e3:ba:95:ea:8a:2c:2e:ee:5d:0f:13:ce:28:6a:e6:78:91: ff:83:26:e5:6b:c4:71:94:5f:55:de:00:5d:0a:71:1f:3c:aa: 2f:ed:6f:41:eb:4b:e6:a9:4e:13:9f:30:1a:11:76:16:90:c9: 58:6e:c9:33:56:fb:c1:f6:01:82:0f:22:02:7e:24:a2:b1:74: 65:ea:dd:c2:58:4f:de:b4:b6:69:d7:1d:7b:b9:b6:c4:79:15: c8:d4:87:b4:af:57:18:15:50:b9:c0:0e:bf:9c:04:aa:ef:6a: a6:ca:ec:8e:d8:a7:37:c5:75:2d:3e:01:80:21:d3:d7:f7:dc: b2:95:33:12:0e:e5:ee:b8:7a:04:7b:29:9a:90:21:93:26:ae: 11:9f:85:00 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUf64476HCIQ8Ex1PPWizEHEKkdEMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTIxMTAwMDE1M1oX DTI1MTIxNTAwMDE1M1owejFJMEcGA1UEBRNAMWQ3MjI4ZDg2YzVhZDZlNWE0MTdk MTNjZTUwNDA0ZDViNjJlNDcyOTE5NjE3YmIzOWFmNWIxNmIyOWI0YzVjNjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlX3WtxhiQZML4EQyhUBEH/DzTd17 Jk1hpCw7GjtJBB7YCI8+q7kV1pHFoQX+Im+660LJBxrWcpNDuyDgmeYH0hBFqkeU oLPMhGHK+l6+KZMKkLLDxJPvKJQa8balVFSEklLKUD+VD9hZ6fn2pfhZQdRzQhB1 RByFI4rwGk2fEqisMMf7/Xp5fThAMhhN6eZeLkriWc7L8jb6L3WwZqQmQOA03Bio JR+p8fXQLNLLA/nWOmDej9WzQnOWeM+oBxunREY9REPVU12oPPgfLWHZ5IprT168 12wAufiCsa4Yn9XYTLfyr3JYu1YAkGzVlSpSmoxpLykHgYXuNrCzK29nNwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFGSGMwcj8/TDB6lSH2V784Z6w7BlMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAHAqBz9CtaQUq+rAtcrEs1R3Z3NamYWr 9m4gR7JrxIh86eMkA4QFg8spSVwFtmb/7fY1f/uqAt5qKKHdW2yo9UmpwS46bN95 Os3kPHNidEo+8heE+GRTCQDoXX5Sr+OueaZVUdaE2tAd4J3eHXXjupXqiiwu7l0P E84oauZ4kf+DJuVrxHGUX1XeAF0KcR88qi/tb0HrS+apThOfMBoRdhaQyVhuyTNW +8H2AYIPIgJ+JKKxdGXq3cJYT960tmnXHXu5tsR5FcjUh7SvVxgVULnADr+cBKrv aqbK7I7YpzfFdS0+AYAh09f33LKVMxIO5e64egR7KZqQIZMmrhGfhQA= -----END CERTIFICATE-----Generated at Thu Dec 11 11:02:45 2025 by rpki-client