This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: 2h5IpijUi0w/+M8qpfKrTHdrLJMH95SYiUSIBg2yu1Y= Subject key identifier: 2F:B7:0E:1A:51:C8:BF:E3:19:25:99:D1:4B:AB:5C:4D:21:EC:47:1E Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 22DCFD6C3DBD987AC59F43209C130BD9C3885202 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0536 Signing time: Thu 01 Jan 2026 00:11:14 +0000 Manifest this update: Thu 01 Jan 2026 00:11:14 +0000 Manifest next update: Mon 05 Jan 2026 00:11:14 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: MBCm/wpjWTCynLBAAXlhwqpHi+4pATpa9VJ7w3ENyd0=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: rQbNjdQJC3sJ4bliGCJBeHYXTky9EGpQuTbp2TB71jY=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: W5s2+KsThmK2t/kTEoDyc0qk5t8nWR8Vcr0OHIME7gY=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: iVmg9lrgM49w9W2pZ9AJN9gpsvwpLhW/HcWoqHOwcB0=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: A3EMEtAoLbWvo2+AU4wcz5LV+4FiZiLxrLSRIqLxB1Y=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: CNy33lvFVRD+mSD8JJeY7w+m3uy4j1Q7IRyDV4kVRuc=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: Q0oMp8ZPk9UZcsIR9g6UcmJjZKdMd1/UNJTA2+LxKxw=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: 2kSCvroZg2jUdhJrRXEd6bpE68S4hIOVSrqhsjKg4Rk=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 55JqWeNnPUgIMiCbIulJEhJREuoglf7zd0Hdhdnk7JI=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: nX53gsp63aFe1Zk0fvuz7gf9dNGw1Q0a6vNdlF04HMM=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: ZYZG8cDggGOScTpdb7p8ZIw+Y1ZbbJ0TIUBkEXnJp1Y=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: NebmV0kA/vdDwwxk2EOE4U6J80Xe14LeKDXdwnAwWfU=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: n1kg4tDD9KCpPUv6L5rqRkioae0zUB8A2YrnCFiHVJ0=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: rgmgKkFA/1ZuGJ4QRcU97a/WiPe2lq2P1GX24tqN91U=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: DuZi0/kBsFkmGULcNt4xmJZ4I8aFDcP0+xR9g1RHy40=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: yWi4vmYUMO0k3bGWU58+1DwpumVOkC/H5jR6owzOWJE=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: N/cY7SofU7BQTjSpADixy6DLuAFs/nCWf8HWg3e5lnI=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: mnMvQYdAbSRRbDZHXyfM/f8XdM80z72GugupasAKoQg=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: 8YU7fg0zlfz3zh4wwfhvDooXzSoHUcM3m57KVGTCELU=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: 5cTt1+vhncnDYsyS0iAO+sczddXxNbUExaXXLGjcsik=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: iHgVMCQkVpqqh3egN8945TcYU7izcrnduLWWQD583q4=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: 7qFv7/S4ZCYOk7ry4v77f24Y1St+2VgNdsB9gS3rrXk=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 00:11:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:dc:fd:6c:3d:bd:98:7a:c5:9f:43:20:9c:13:0b:d9:c3:88:52:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Jan 1 00:11:14 2026 GMT Not After : Jan 5 00:11:14 2026 GMT Subject: serialNumber=20dbcf992c9db16808c129c25a4187dddc12f41413426e5fec0376365cf1152d, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c6:66:34:56:58:56:07:0e:67:da:9a:ba:a0: 55:16:22:36:a6:91:fa:43:da:d0:f5:a3:0b:9c:cd: 6c:77:36:85:35:24:23:59:35:55:60:4a:36:a5:75: 23:d7:0a:0a:79:04:cf:ab:95:ed:2d:a2:c5:b1:59: ec:ad:3d:8b:9c:7f:46:02:f2:ba:87:06:b1:f1:f3: 84:56:3c:d0:55:87:d0:5b:6f:ff:39:08:23:b1:96: 43:46:fd:36:f5:60:fe:85:45:b0:cd:f4:d9:4d:c7: 24:44:24:22:b1:99:bb:06:0e:d0:1d:20:88:d5:36: 9b:eb:8b:02:de:eb:3f:4d:b2:0d:35:45:d2:b6:8f: 26:2c:6c:41:e2:da:b4:57:41:a7:8a:c9:c8:be:1b: f9:91:e1:e1:02:79:ea:e4:42:84:9e:51:bf:7f:4e: ed:a9:7f:8a:10:f0:f7:a7:15:6c:ee:4b:e0:52:52: f1:0d:75:27:b5:93:58:17:c3:1c:2f:79:82:68:ec: 64:10:bf:54:19:41:2c:23:98:d2:f6:9c:17:a7:b2: 4c:77:3e:ad:28:05:ec:57:b2:e6:22:6e:2b:7e:47: 2e:38:42:dc:75:d0:7d:9d:5c:04:62:fd:aa:15:9b: 05:a6:c9:a7:ba:e9:ce:f0:45:68:15:b4:47:e1:98: 6d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:B7:0E:1A:51:C8:BF:E3:19:25:99:D1:4B:AB:5C:4D:21:EC:47:1E X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:07:71:8d:8e:8b:fd:09:87:cc:3c:ae:dc:d0:e8:16:a4:d1: 4d:b9:96:ff:f7:cd:f8:57:fb:d3:6b:0b:68:4d:c0:d7:c1:de: 7a:88:2a:28:91:96:d6:e6:5a:68:d8:f6:64:14:0f:aa:bd:c0: 83:b7:69:cb:4c:1b:2e:8f:2f:47:98:ed:e2:c0:d1:92:06:3b: 10:65:bd:f8:4f:da:94:58:c7:e1:57:64:1c:c1:d5:0e:94:00: fe:8f:58:75:70:2e:37:4b:1d:8a:00:18:4b:05:78:e0:93:db: 6c:70:ce:93:a6:d5:97:b3:cf:43:6c:1a:09:f1:7f:77:6a:06: bf:52:42:07:80:72:38:ba:2e:65:a9:49:a3:be:13:c7:cd:7e: c5:5e:cb:06:e3:9b:1f:f9:cb:18:8e:d6:9f:f0:49:9f:31:af: d6:33:c7:fb:f9:94:0a:01:90:2f:41:8d:04:65:cc:e8:fa:f2: ca:55:40:44:d8:7c:bd:49:38:2f:be:aa:56:13:7f:b1:36:e1: b5:5b:64:5e:c8:4b:0a:02:33:b5:ca:25:7f:b2:62:e2:9b:30: d0:b7:0f:88:db:c5:bf:b2:11:8a:ff:fb:0d:18:3f:40:21:e2: 17:13:12:3a:c1:44:59:83:e8:ef:81:0e:f7:76:3c:1f:ce:48: 9b:d3:aa:3c -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUItz9bD29mHrFn0MgnBML2cOIUgIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDEwMTAwMTExNFoX DTI2MDEwNTAwMTExNFowejFJMEcGA1UEBRNAMjBkYmNmOTkyYzlkYjE2ODA4YzEy OWMyNWE0MTg3ZGRkYzEyZjQxNDEzNDI2ZTVmZWMwMzc2MzY1Y2YxMTUyZDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxcZmNFZYVgcOZ9qauqBVFiI2ppH6 Q9rQ9aMLnM1sdzaFNSQjWTVVYEo2pXUj1woKeQTPq5XtLaLFsVnsrT2LnH9GAvK6 hwax8fOEVjzQVYfQW2//OQgjsZZDRv029WD+hUWwzfTZTcckRCQisZm7Bg7QHSCI 1Tab64sC3us/TbINNUXSto8mLGxB4tq0V0GnisnIvhv5keHhAnnq5EKEnlG/f07t qX+KEPD3pxVs7kvgUlLxDXUntZNYF8McL3mCaOxkEL9UGUEsI5jS9pwXp7JMdz6t KAXsV7LmIm4rfkcuOELcddB9nVwEYv2qFZsFpsmnuunO8EVoFbRH4ZhtxwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFC+3DhpRyL/jGSWZ0UurXE0h7EceMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAD4HcY2Oi/0Jh8w8rtzQ6Bak0U25lv/3 zfhX+9NrC2hNwNfB3nqIKiiRltbmWmjY9mQUD6q9wIO3actMGy6PL0eY7eLA0ZIG OxBlvfhP2pRYx+FXZBzB1Q6UAP6PWHVwLjdLHYoAGEsFeOCT22xwzpOm1Zezz0Ns Ggnxf3dqBr9SQgeAcji6LmWpSaO+E8fNfsVeywbjmx/5yxiO1p/wSZ8xr9Yzx/v5 lAoBkC9BjQRlzOj68spVQETYfL1JOC++qlYTf7E24bVbZF7ISwoCM7XKJX+yYuKb MNC3D4jbxb+yEYr/+w0YP0Ah4hcTEjrBRFmD6O+BDvd2PB/OSJvTqjw= -----END CERTIFICATE-----Generated at Thu Jan 1 01:23:01 2026 by rpki-client