This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft File: manifest.mft (raw, json) Hash identifier: s+on3E1gYOVgH0LHZwTllf6u2RtEyFMiF74MsrGwcSU= Subject key identifier: A1:B1:C6:8D:A4:6D:DA:05:5B:3E:A7:42:23:55:33:99:C2:D1:B8:B4 Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 151A4F3AAEEF386B367DE35FF182C72F4B6F091C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft Manifest number: 0522 Signing time: Sat 06 Dec 2025 00:21:48 +0000 Manifest this update: Sat 06 Dec 2025 00:21:48 +0000 Manifest next update: Wed 10 Dec 2025 00:21:48 +0000 Files and hashes: 1: 2e40ee0b-9aa9-4919-a079-9712212e127c.roa (hash: qLO88qp7c2s4Z3DM/v7ca2RqAiy3+QgoqShI6F87ae4=) 2: 32bf2c39-b536-43d0-b557-f68d8ee64091.roa (hash: hzCGH9Q4CLNRrJO5f/N6TRDpEwXwCSmryCh/GNlDLIY=) 3: 3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa (hash: SJqKkWWRvucxATk3ukMocmr0mgKOOzXgxD5oqLLbpSM=) 4: 40956690-3661-49f2-8ebc-2fa5a47a98ad.roa (hash: df0WO5nBVD1WRYWhXcC+5AJouUOuXNqdiOLK0rbzD1E=) 5: 4cb3e9f9-46a2-41eb-a4b7-75b53d791f33.roa (hash: 2BkwM3/1wtjpywMtwN4/FnHeiGyHBVHGkqADTb78Vho=) 6: 55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa (hash: GkRsbQCpmBeLyYx0QPwZLpcXKrxPpMMh1htebP7epe8=) 7: 565f9740-389f-45ac-956e-b96e19889315.roa (hash: zkt/uWV4awZGVartbifogB/keUxqxjGfhH88Z7gL9/Y=) 8: 840736df-cd98-4b5b-a4f2-5615993fc74d.roa (hash: onFuUkONqK94T3a48Pkkw7Zj3Q2Ixpu+wEOZPWkUe5Y=) 9: 9d703748-f446-47a1-b0a7-5e3357f2e0d2.roa (hash: yHhTo2zzTs16il8tTHrPT+IjNjDaqMzdbXx4MKJFj8Q=) 10: a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl (hash: vPph6t10o8YPvGGLKWJj2utTHtk0hL3kqmYNUW9atG4=) 11: b51d6a60-7601-45c2-8839-f2002dfa8409.roa (hash: Fs+4+GueFglWpfh7cWu79LMoO4jnwwFYswhH/hBBpRg=) 12: c18b0845-fc95-41d6-b476-af4e1e466849.roa (hash: tUfvO1tfzBNVYGTeoObhXIC/xwxMuE3Y0IbH2s5grG4=) 13: e5ffe65e-7287-4628-8759-7c141866ee12.roa (hash: vrOZ6fYSEHIvtLwk17aBzKsCW/DW0euoAv5ObsTTTxY=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:1a:4f:3a:ae:ef:38:6b:36:7d:e3:5f:f1:82:c7:2f:4b:6f:09:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Dec 6 00:21:48 2025 GMT Not After : Dec 10 00:21:48 2025 GMT Subject: serialNumber=ee4a4c39e9ee9ebcdec6720461a9c15b125a4a34800e9ab03d877ad027a708bc, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:4c:ed:74:ef:28:5b:fe:57:27:07:8d:6a:6b: 4f:5d:cc:dc:d4:70:2a:7b:b0:95:f2:31:2c:68:57: ee:14:8f:85:05:d7:a4:a0:f3:c3:88:a2:bc:bf:17: ca:eb:f4:0c:f3:71:11:99:cd:79:37:b1:e8:6f:87: ec:18:f0:ac:2e:53:8c:9f:ec:18:1c:5e:25:5a:a0: 13:48:22:e7:42:74:01:6e:5f:cf:1a:51:92:63:08: 58:36:fe:34:73:b1:6d:7a:1b:dc:b0:25:fb:6a:cb: 14:f6:88:aa:3d:51:47:ab:51:75:b9:5d:3e:40:95: ac:f7:10:0f:c0:07:71:d9:26:7c:9c:46:2e:c0:b9: 83:10:77:56:06:e0:0d:6a:e5:90:2a:5f:6b:c1:e4: e0:ed:c1:6f:06:cc:f0:89:c6:83:18:0b:63:80:4b: 39:f7:11:3a:f2:a9:98:98:72:b6:7e:e0:f9:9d:29: 66:a0:7e:d4:75:ea:0f:79:36:13:4f:11:75:9c:c6: 3c:03:24:3b:c5:3d:c1:86:b9:a7:c1:26:db:36:9f: 97:6c:9f:a3:03:40:38:64:78:23:09:c4:29:7b:3c: 89:ae:d8:17:ad:3a:19:04:63:81:37:ef:2e:07:c6: 34:a9:93:af:3d:c0:69:f1:aa:df:d0:55:80:82:41: c6:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:B1:C6:8D:A4:6D:DA:05:5B:3E:A7:42:23:55:33:99:C2:D1:B8:B4 X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:5f:1f:fd:b3:8b:58:68:84:90:4c:0e:a3:cd:88:44:fe:74: df:e3:af:ba:10:8b:f7:94:dd:92:1d:c3:10:33:2f:d8:31:d6: a5:48:7c:f1:85:a4:ff:be:a0:e6:f5:17:b8:fe:e1:cd:4b:d8: 04:23:b5:9a:e7:c5:dc:8c:6e:52:e3:cb:77:eb:3f:59:2a:46: 06:79:bb:7f:3a:39:a1:e1:9e:77:9e:88:e6:df:66:50:da:e1: f5:9c:17:2a:b5:1e:7d:6a:8b:84:28:6e:e9:cf:f7:67:eb:10: 70:fc:13:56:4f:be:58:c4:90:d8:c6:d5:d6:c4:97:ef:64:69: ae:35:68:07:8e:ae:3a:f6:91:8e:73:29:95:c8:ce:ad:42:82: 6e:91:df:9d:af:ab:a2:68:0e:db:77:28:ec:a0:ff:f7:72:e1: 27:77:dd:a7:f8:e2:0e:2c:d1:c5:24:a1:de:aa:3f:e9:ac:1b: 71:4b:ae:c2:c9:62:36:38:82:9f:5c:c1:6a:43:d8:82:80:27: 31:1c:7a:7f:13:5b:df:39:d0:a2:58:c5:63:37:a5:a3:38:31: 86:d3:35:62:53:1f:ed:6c:3e:c8:39:7e:f7:a8:b4:ce:43:6d: f8:e3:20:39:4c:4d:5f:90:b9:ef:11:72:ec:eb:a1:65:b5:14: 95:db:8d:97 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUFRpPOq7vOGs2feNf8YLHL0tvCRwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI1MTIwNjAwMjE0OFoX DTI1MTIxMDAwMjE0OFowejFJMEcGA1UEBRNAZWU0YTRjMzllOWVlOWViY2RlYzY3 MjA0NjFhOWMxNWIxMjVhNGEzNDgwMGU5YWIwM2Q4NzdhZDAyN2E3MDhiYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6UztdO8oW/5XJweNamtPXczc1HAq e7CV8jEsaFfuFI+FBdekoPPDiKK8vxfK6/QM83ERmc15N7Hob4fsGPCsLlOMn+wY HF4lWqATSCLnQnQBbl/PGlGSYwhYNv40c7FtehvcsCX7assU9oiqPVFHq1F1uV0+ QJWs9xAPwAdx2SZ8nEYuwLmDEHdWBuANauWQKl9rweTg7cFvBszwicaDGAtjgEs5 9xE68qmYmHK2fuD5nSlmoH7UdeoPeTYTTxF1nMY8AyQ7xT3BhrmnwSbbNp+XbJ+j A0A4ZHgjCcQpezyJrtgXrToZBGOBN+8uB8Y0qZOvPcBp8arf0FWAgkHGGQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFKGxxo2kbdoFWz6nQiNVM5nC0bi0MB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMDhjMmYyNjQtMjNm OS00OWZiLTlkNDMtZjhiNTBiZWM5MjYxL2E1YjAxYmRkLWNkZWItNGNmYy04Yzkz LTdlNzBjNWUwOTMwNi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAFtfH/2zi1hohJBMDqPNiET+dN/jr7oQ i/eU3ZIdwxAzL9gx1qVIfPGFpP++oOb1F7j+4c1L2AQjtZrnxdyMblLjy3frP1kq RgZ5u386OaHhnneeiObfZlDa4fWcFyq1Hn1qi4QobunP92frEHD8E1ZPvljEkNjG 1dbEl+9kaa41aAeOrjr2kY5zKZXIzq1Cgm6R352vq6JoDtt3KOyg//dy4Sd33af4 4g4s0cUkod6qP+msG3FLrsLJYjY4gp9cwWpD2IKAJzEcen8TW9850KJYxWM3paM4 MYbTNWJTH+1sPsg5fveotM5DbfjjIDlMTV+Que8RcuzroWW1FJXbjZc= -----END CERTIFICATE-----Generated at Sat Dec 6 11:48:54 2025 by rpki-client