This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: VTOXvut59mbDC0uXIWX15JSZIWsja3yr7qmsea7NtBg= Subject key identifier: 24:88:21:98:27:9C:86:EE:21:13:C5:51:53:C8:10:D7:4F:E0:FE:4A Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 56A8EC939CBF29E439C15B13EC4E4D97B0B03D77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0513 Signing time: Fri 28 Nov 2025 00:02:43 +0000 Manifest this update: Fri 28 Nov 2025 00:02:43 +0000 Manifest next update: Tue 02 Dec 2025 00:02:43 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: IZjqCDuu48x7AjQOOlR475AlABLppx+n0KPWP3mbyaw=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: LMkOhR8oitnpWIWwo+ff7iHTil9wckIVvZSko8EEekQ=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: JGG4dTO8UJf/vYGc8fwxTAOM1h6nEPP82EI/7Dv4FHU=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: jiO598AbfdNEKt8RLBdteQn+HTe7anRDnhBEnaeWySE=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: fe034WnBtuFinRptIYu7rq19OozfzbkZbEFpFjLILHE=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: tvlz6rdf6o1VhTj9MN74UhRyGtkmPrUWF+QfcAN2XXk=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: 77L/bNHp8w4yFCp+OLzg5ldZu/g8b3ZjRhypYKOpX2o=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: 4627E3Mj815EcaXkX3BTu4n4/Fyc8pjeRhwmHUjWB4E=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: IkDmY2VrM+MUCXVE/KGDwQp38xJerke+gZfTRPzKW38=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: 1LQDJZsx6Ih/p1JXbixCJFIni4NstX9kTQqLItMf6Bo=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: uqGyuI64MyoSB2aCcDH4ZYFIVtRIimLKr+qLtdzGGDc=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: YDEb1HZpmKP7sx/WuOw3OFG2ObkpXND2FyRZjfR2dvk=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: iZ5upg9JhYgqzuisO9iMHg6o3uglr67eIAFDAVOMJFQ=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: zj3uaCJ1OVw76COdDaPaPY8yFlOeR+/ReGZ6syX0RDg=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: qeiN2jY48ldTzPZErmuiZOmp5qE9mu9/GnZEk7z/YWM=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: UaHt+4lelzGalTP6o6RTVxgEfhRYbwB09w3EQYZfbmg=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: sbGSBiN+e2Ag51zrXc1UwPae+VvT58VQo1yXZWqJMvI=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: Z9np75TZ9Xp1a9ECxf2+DE3mfvCD/7fxNnuBJSZrfSo=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: 8YU7fg0zlfz3zh4wwfhvDooXzSoHUcM3m57KVGTCELU=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: aXN/Mp7fby5XcX6lsymhb6JcsHglVTPldRt7Y8yfOuw=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: 9OizPigUZE6/PAl/qV5jIptlHQkQvMFcwl8vNkU9a3A=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: 7qFv7/S4ZCYOk7ry4v77f24Y1St+2VgNdsB9gS3rrXk=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Dec 2025 00:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:a8:ec:93:9c:bf:29:e4:39:c1:5b:13:ec:4e:4d:97:b0:b0:3d:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 28 00:02:43 2025 GMT Not After : Dec 2 00:02:43 2025 GMT Subject: serialNumber=be9f00ccdc1013f0f9597e4c0876ee5b77dd54016cd0927cb54e4aa2e7f71f74, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:63:9a:56:07:bd:5a:0c:05:13:0c:27:6d:24: 7f:36:f2:e6:eb:1f:ec:1b:1b:c0:2f:b5:5b:a3:bf: a3:62:60:3e:45:10:0d:f2:ad:ad:6f:e2:0b:51:0b: f0:c0:ff:e3:8d:e4:c1:01:b1:12:f1:f1:b1:c8:88: f0:22:c4:8e:fe:00:10:1a:c4:3f:c1:e6:ef:8e:a8: b1:1a:d0:8f:35:f2:6e:18:b7:3a:f0:af:9e:00:41: e8:f6:72:2c:c8:1a:11:35:a8:af:34:b1:e9:78:25: 5e:96:11:6b:6e:8b:a8:3c:8d:40:bb:d3:7c:4b:f0: 80:98:22:fc:fc:99:c7:ad:d3:4b:60:75:5b:21:f1: b5:08:0f:80:f8:d5:0f:42:d5:4c:5b:ba:7a:0b:29: fd:de:2d:2b:d6:83:e0:35:de:5f:12:f9:82:96:bf: 18:56:d2:46:17:5d:84:c4:77:df:c5:43:42:04:ed: 44:84:17:c6:20:f6:93:e3:6a:9e:12:92:78:e2:6a: fc:3e:cb:48:bf:17:7e:64:b9:03:33:75:0b:f9:0f: cc:b7:fb:2e:a4:c5:2e:79:1e:ac:73:b6:8b:12:8c: b5:ca:fb:f4:a0:fb:7f:18:c7:17:e3:6a:4d:b0:d3: f3:e5:1a:62:e5:56:0c:37:56:87:89:97:9d:cb:46: 25:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:88:21:98:27:9C:86:EE:21:13:C5:51:53:C8:10:D7:4F:E0:FE:4A X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:f3:d3:c1:53:e3:ff:da:10:cd:3c:0b:61:7e:f1:f1:12:11: c9:c5:49:47:68:f5:fe:87:8d:ff:51:bd:9a:56:ba:08:da:b0: 5e:e6:22:93:14:38:f4:30:2d:b5:28:62:f0:43:9e:80:37:c9: a0:16:03:44:e1:3e:2b:d4:c1:5c:b3:0f:3d:60:20:d5:7a:14: e1:f3:c1:f7:b3:95:96:16:12:2c:ef:87:52:06:7c:22:42:76: 71:e2:83:3d:e3:7e:9e:3b:a9:c2:e6:0e:58:b4:07:e3:e2:0a: 54:21:76:6b:1f:fd:52:99:87:31:07:71:3c:81:b4:23:bb:fd: 0f:1f:18:b9:27:05:39:5a:db:c9:7d:d2:9e:59:94:b9:43:58: 1d:15:e0:fd:e5:26:25:d2:ac:ba:55:fd:90:ef:ed:8e:7a:b0: 7f:43:04:b2:a2:0b:c5:4e:8e:fa:2f:36:4c:2b:68:08:b9:71: 37:4f:89:74:f2:ac:37:46:42:d4:e0:6e:cb:38:a9:84:29:19: d5:53:9a:15:7a:00:95:40:0b:db:bc:5a:ac:ee:80:a1:ae:c8: fb:ed:a1:27:49:e8:98:32:e8:33:2b:81:7e:1e:a1:6f:1f:d9: d0:22:34:4c:1e:d2:b2:d8:dd:ff:3f:56:16:8e:6c:60:29:b1: 13:9a:1e:8a -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUVqjsk5y/KeQ5wVsT7E5Nl7CwPXcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTEyODAwMDI0M1oX DTI1MTIwMjAwMDI0M1owejFJMEcGA1UEBRNAYmU5ZjAwY2NkYzEwMTNmMGY5NTk3 ZTRjMDg3NmVlNWI3N2RkNTQwMTZjZDA5MjdjYjU0ZTRhYTJlN2Y3MWY3NDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvmOaVge9WgwFEwwnbSR/NvLm6x/s GxvAL7Vbo7+jYmA+RRAN8q2tb+ILUQvwwP/jjeTBAbES8fGxyIjwIsSO/gAQGsQ/ webvjqixGtCPNfJuGLc68K+eAEHo9nIsyBoRNaivNLHpeCVelhFrbouoPI1Au9N8 S/CAmCL8/JnHrdNLYHVbIfG1CA+A+NUPQtVMW7p6Cyn93i0r1oPgNd5fEvmClr8Y VtJGF12ExHffxUNCBO1EhBfGIPaT42qeEpJ44mr8PstIvxd+ZLkDM3UL+Q/Mt/su pMUueR6sc7aLEoy1yvv0oPt/GMcX42pNsNPz5Rpi5VYMN1aHiZedy0Yl+wIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFCSIIZgnnIbuIRPFUVPIENdP4P5KMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAB3z08FT4//aEM08C2F+8fESEcnFSUdo 9f6Hjf9RvZpWugjasF7mIpMUOPQwLbUoYvBDnoA3yaAWA0ThPivUwVyzDz1gINV6 FOHzwfezlZYWEizvh1IGfCJCdnHigz3jfp47qcLmDli0B+PiClQhdmsf/VKZhzEH cTyBtCO7/Q8fGLknBTla28l90p5ZlLlDWB0V4P3lJiXSrLpV/ZDv7Y56sH9DBLKi C8VOjvovNkwraAi5cTdPiXTyrDdGQtTgbss4qYQpGdVTmhV6AJVAC9u8WqzugKGu yPvtoSdJ6Jgy6DMrgX4eoW8f2dAiNEwe0rLY3f8/VhaObGApsROaHoo= -----END CERTIFICATE-----Generated at Fri Nov 28 20:07:30 2025 by rpki-client