$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft File: manifest.mft (raw, json) Hash identifier: aXlyTsu1HRprWzo0dVqv+shol6Q4sQK3mwceQFmYPP0= Subject key identifier: 54:AD:E8:2B:2F:E3:40:61:27:3D:CC:AC:DD:C2:32:86:35:6E:F0:E8 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 6686CFBCB6A0DDE4D6E657CBE03117DA003ED9AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft Manifest number: 0472 Signing time: Mon 21 Jul 2025 00:01:39 +0000 Manifest this update: Mon 21 Jul 2025 00:01:39 +0000 Manifest next update: Fri 25 Jul 2025 00:01:39 +0000 Files and hashes: 1: 05bc8dbb-c70a-48da-b45b-4448364614ff.roa (hash: ZZs9u1Lh4hvO6JI/dChCfEx6Ns4RMglfTnUllYnU0rs=) 2: 0bf15d3f-c546-4bb6-a764-82165c384d37.roa (hash: pKArkrWQ4QySI7LB9UAqjIdDLsYzJACTioibWL8VTKg=) 3: 0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa (hash: SOh7sC9Y/+Mz281i5SrO8d4TbErrTErvu5IbsGenP5U=) 4: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (hash: QzQ+7K1nErMw0OmTNz2/ZHXa77CFf1ojC7r53TdGCZI=) 5: 3407e5b6-a83d-4668-898f-fdbb23092502.roa (hash: 576XBd2niZBqi+c2pxQktwulHLgv9uOE7PkYzNFlSZg=) 6: 3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa (hash: ncBHQ1ycb3H8nSEbCEY1MHKAf9TYps2Nj80/DAsfglI=) 7: 48a67156-122e-41d4-a2a8-8046cc5ecc41.roa (hash: 3pOXxGSZEvYoqfTtkjXtGDr576xDR6wJpFkXk6Fn/iI=) 8: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (hash: V4UKqeJ2OiPk5beC/z3ShnfrzFPcJXI/DcicdvB37ME=) 9: 6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl (hash: Rp+NhmWUgv0jfj6BBox9ar7rinn6eK9GzI2/knI/zRI=) 10: 74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa (hash: uDXloq2/EA9UvfmbL39nWK2kROceUEcyJ/RTb3BJT6I=) 11: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (hash: e0ZGkyQa53KunMokiQleJm3nzClb25VDDqRpnK196I8=) 12: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (hash: /qij1hgYzlClciu2SIjGQxl+CP5bLqTRsA/vKAvpcFo=) 13: 9b59fbe4-f242-4dbf-9964-15048c3da996.roa (hash: +6ecU/FGQUEooswbGkIM2tz55NAqlNoWM5AOsW6zc7A=) 14: 9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa (hash: 54tprR8cyFwH6wv0bG3h23cBAbKtF1ApE4lnvB7dzcg=) 15: a78b90df-233b-4ec6-89d2-de27ac2dc044.roa (hash: w/32ob1CEx6/ANkxdRzmdn70bFUnBdUr4jGaXQQE6Fg=) 16: b3ba338e-4843-454b-abe5-65f09756225a.roa (hash: uAf7GBDd6n9tKYG1xwby33iivcnyWrXUqe+zQESb2ok=) 17: c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa (hash: zLc/9ugUYkcVfNt6DDJSY6DViFpXJCwNvXhUNFh4Wxo=) 18: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (hash: 4cv3WxV7KgA0orOqwK35cRknLcmTA9ThJV8+7BxLlbg=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 00:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:86:cf:bc:b6:a0:dd:e4:d6:e6:57:cb:e0:31:17:da:00:3e:d9:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Jul 21 00:01:39 2025 GMT Not After : Jul 25 00:01:39 2025 GMT Subject: serialNumber=19009c7669659a021e5fcb856d7c263ee758ef1c1e440c763cd868290cd7a0e7, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:69:57:3a:0d:c2:f4:15:05:bc:c5:02:a8:24: b2:94:6f:ce:f9:d3:68:7e:d2:4f:4f:72:51:05:8c: ff:56:c2:ac:65:3e:ce:84:97:37:80:c5:7c:cc:86: d6:5e:5e:5a:7f:1a:7c:30:8a:dc:84:63:dc:a1:d8: 51:28:f1:35:32:32:ce:d0:72:02:7d:1d:9c:a6:a0: 39:5a:dc:44:19:fe:88:1c:5b:94:98:55:9e:21:9c: 02:d3:21:de:4b:26:d3:8f:e0:e2:a7:01:0e:f4:43: ca:e0:99:a7:80:7d:5c:3b:80:a7:a3:61:98:50:eb: c5:66:9e:bf:ca:02:54:84:3d:b1:ee:70:d1:4b:77: d3:a5:00:33:ad:fe:4e:97:0c:8b:9d:6a:88:e6:9b: 6d:25:a6:58:73:e5:14:b6:ba:1c:0e:c0:7b:bf:ca: 33:cc:d0:ff:2e:40:fd:cf:69:d0:e7:9f:e4:c3:82: 33:e6:41:ff:85:46:40:65:21:3e:e3:7b:e0:3d:19: ec:3f:56:f9:46:82:47:67:60:f4:e2:46:6a:6d:21: 52:fc:c8:8c:02:f4:8b:2f:da:a2:32:af:14:15:94: 54:3d:97:a2:1b:35:bc:bc:e0:46:2c:16:58:c9:e4: f7:dd:5a:c1:bc:23:38:0f:9f:f8:7c:67:0e:22:94: 9a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:AD:E8:2B:2F:E3:40:61:27:3D:CC:AC:DD:C2:32:86:35:6E:F0:E8 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:aa:79:89:12:35:40:e4:03:d6:37:e4:ce:16:31:06:a6:6c: 2f:c9:d7:c1:a4:69:89:71:a0:69:38:ca:a6:8f:2f:4f:51:23: 52:d2:c2:8b:48:19:13:28:c8:71:ba:d8:77:6e:2d:f4:22:3e: bb:0d:95:24:59:08:42:a7:df:cd:23:cb:25:79:00:27:6a:93: 22:66:5b:97:cb:a9:70:25:77:1c:95:cb:a0:9c:e5:48:bf:7f: 96:73:08:ff:40:b2:ac:8b:33:0b:a6:8a:81:65:6d:85:37:c4: 85:9a:7d:d3:e1:a2:3c:ff:5d:1f:7c:f2:9e:23:37:4c:c8:78: 6a:f5:40:48:ba:98:d1:1d:5b:7b:e0:89:30:90:6d:9c:3d:89: 35:0f:3a:03:f6:e1:5b:3d:9b:8f:9b:61:07:c6:98:80:ac:7e: 32:d0:69:8e:ce:18:0b:e3:13:7c:3d:b4:81:e3:ff:f4:12:83: 09:88:4c:ac:3c:68:af:24:2a:4b:36:e1:45:d0:d2:b1:71:07: 23:83:71:cc:26:a2:1f:32:8b:e9:2b:15:d4:34:c5:63:d6:a2: c3:7a:55:2b:37:1b:19:6e:41:48:04:37:0b:c1:51:f7:39:12: 1f:55:ca:56:29:36:30:da:ea:49:b2:c0:e2:c4:c5:23:76:f2: db:fe:11:54 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUZobPvLag3eTW5lfL4DEX2gA+2a4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDcyMTAwMDEzOVoX DTI1MDcyNTAwMDEzOVowejFJMEcGA1UEBRNAMTkwMDljNzY2OTY1OWEwMjFlNWZj Yjg1NmQ3YzI2M2VlNzU4ZWYxYzFlNDQwYzc2M2NkODY4MjkwY2Q3YTBlNzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlWlXOg3C9BUFvMUCqCSylG/O+dNo ftJPT3JRBYz/VsKsZT7OhJc3gMV8zIbWXl5afxp8MIrchGPcodhRKPE1MjLO0HIC fR2cpqA5WtxEGf6IHFuUmFWeIZwC0yHeSybTj+DipwEO9EPK4JmngH1cO4Cno2GY UOvFZp6/ygJUhD2x7nDRS3fTpQAzrf5OlwyLnWqI5pttJaZYc+UUtrocDsB7v8oz zND/LkD9z2nQ55/kw4Iz5kH/hUZAZSE+43vgPRnsP1b5RoJHZ2D04kZqbSFS/MiM AvSLL9qiMq8UFZRUPZeiGzW8vOBGLBZYyeT33VrBvCM4D5/4fGcOIpSaxwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFFSt6Csv40BhJz3MrN3CMoY1bvDoMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4ZTVkYmQyMTkvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZGI5YTM3MmEtMDli Yy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5LzZlY2IzY2NhLTQ4OGQtNDNiOS1hNTBi LWQzN2MwYzU1YTllMS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAKyqeYkSNUDkA9Y35M4WMQambC/J18Gk aYlxoGk4yqaPL09RI1LSwotIGRMoyHG62HduLfQiPrsNlSRZCEKn380jyyV5ACdq kyJmW5fLqXAldxyVy6Cc5Ui/f5ZzCP9AsqyLMwumioFlbYU3xIWafdPhojz/XR98 8p4jN0zIeGr1QEi6mNEdW3vgiTCQbZw9iTUPOgP24Vs9m4+bYQfGmICsfjLQaY7O GAvjE3w9tIHj//QSgwmITKw8aK8kKks24UXQ0rFxByODccwmoh8yi+krFdQ0xWPW osN6VSs3GxluQUgENwvBUfc5Eh9VylYpNjDa6kmywOLExSN28tv+EVQ= -----END CERTIFICATE-----Generated at Mon Jul 21 15:12:48 2025 by rpki-client