$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: IOCN1v7PcBlREKFyIxmivXAdQrHzVl29JSlaoeqOLVY= Subject key identifier: 27:52:12:2F:39:46:D1:CE:E5:8A:66:0A:63:DE:01:CB:31:A4:AE:B6 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 53574899F9932CFEDE281BE7A37733141B8BAE36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0560 Signing time: Sat 15 Nov 2025 00:01:15 +0000 Manifest this update: Sat 15 Nov 2025 00:01:15 +0000 Manifest next update: Wed 19 Nov 2025 00:01:15 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: acPEHYifBQ1gKj0pDEyVueldbPj1TMAiHUjEMaO2L+E=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: w+4+bxo/lRwC2hOG9Edn/+79C2GPpMAPhWdMbwG/9JU=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: 2XLb7h6yISDftQlUB4TcpfpywHo5glEYW1SGISdeDoA=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: wcYYwgkTAd9Q2xT1BuIAMuJob/FJA9RrYdGr+wpFwVw=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: zwcPWnYArAZVLpt/G7O+elUyq5aa8j+XVNVGlvHcIz4=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: EWyZQ0kD4O1likOe4tykuIu5kk0yH0Zz9dIOCoYFR6g=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Nov 2025 00:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:57:48:99:f9:93:2c:fe:de:28:1b:e7:a3:77:33:14:1b:8b:ae:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Nov 15 00:01:15 2025 GMT Not After : Nov 19 00:01:15 2025 GMT Subject: serialNumber=6b36a59dc76724c48421017e46582f76ae55fa3b1d9eed016f92f5ba8602a9da, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:05:9f:67:90:ef:21:28:79:c5:75:1d:0e:c0: be:b7:d0:c2:0c:f9:ce:de:42:f9:ec:0c:1f:2a:59: 32:fe:4c:39:ea:62:a2:7b:93:4d:8a:e9:41:9a:9d: a0:1d:ef:8b:f0:4e:3a:61:56:f8:47:8c:49:63:b1: 13:af:2a:d0:71:ba:92:3d:c3:56:71:96:51:37:53: 54:f0:28:2b:c8:54:ef:0e:e0:bf:33:a2:86:1d:f3: a0:85:a7:4a:71:73:d3:85:69:3c:85:f6:cf:19:ed: 69:15:83:46:29:85:f8:63:e5:86:5a:67:89:fd:42: 83:80:79:42:ac:bb:dc:6e:2f:45:8c:4a:48:5c:76: b1:e6:3e:a6:88:17:b6:46:d2:64:8e:bb:43:fc:fe: 40:f4:7c:f1:e6:ff:5b:b8:eb:04:cf:49:38:f0:23: 97:aa:e0:e9:81:82:1a:98:fe:2e:5b:99:58:c6:0e: 76:b8:fb:91:48:4f:fc:c4:22:05:d0:a7:b9:2d:bf: b3:8f:78:17:c8:5e:3b:1d:48:81:a6:27:3b:7e:0b: d7:d6:09:8d:c3:8d:9b:78:37:da:98:47:2d:c2:55: 55:93:60:8b:c2:6b:9e:c0:3c:ef:81:e1:e2:34:63: 83:7d:6c:b8:f1:00:d8:e7:42:a4:93:f7:a7:d9:e5: 70:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:52:12:2F:39:46:D1:CE:E5:8A:66:0A:63:DE:01:CB:31:A4:AE:B6 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:8c:ae:84:e6:3b:1e:5d:41:ca:08:00:ba:0b:71:53:e6:06: ae:e5:a1:66:e8:e2:76:a3:f6:d2:6d:76:fd:ef:e7:e3:35:c4: 11:7c:51:e1:fd:da:9b:7b:49:8f:55:b6:e2:c0:5d:e8:02:ff: f7:b3:81:6a:f7:51:f8:45:d3:03:c8:fe:46:2f:05:71:fd:ef: 4c:11:65:b4:28:6c:54:55:a8:56:8a:1e:18:5d:cd:2d:e6:56: 2a:f5:88:ad:97:7a:ae:a2:c8:07:60:34:6e:30:0f:5b:2c:5d: 4c:cc:23:d2:c8:2e:85:a6:2b:63:b1:e6:4f:d6:01:f8:2a:6c: 86:a6:88:30:a3:96:ee:3f:b5:3c:1d:24:c4:fd:88:e4:3e:c9: 0a:b8:05:5b:21:49:44:37:9f:ca:75:f5:f2:7d:b8:6c:4f:b7: 5f:a0:a7:3c:92:11:7c:0a:28:78:73:5d:e3:51:9d:8d:99:a8: 08:7e:c1:a2:3b:05:0b:91:18:47:7c:68:78:29:72:c8:73:71: 78:ca:60:29:7e:4d:5f:4f:27:50:a9:f1:7a:d8:96:97:8b:8b: 0e:30:ce:c0:57:a8:1f:0a:76:15:71:8e:71:81:46:2c:81:ab: c1:89:ca:16:dd:53:7a:92:8b:8d:a9:6e:ff:e9:d7:ac:93:1b: b9:79:63:5b -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUU1dImfmTLP7eKBvno3czFBuLrjYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTExNTAwMDExNVoX DTI1MTExOTAwMDExNVowejFJMEcGA1UEBRNANmIzNmE1OWRjNzY3MjRjNDg0MjEw MTdlNDY1ODJmNzZhZTU1ZmEzYjFkOWVlZDAxNmY5MmY1YmE4NjAyYTlkYTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3AWfZ5DvISh5xXUdDsC+t9DCDPnO 3kL57AwfKlky/kw56mKie5NNiulBmp2gHe+L8E46YVb4R4xJY7ETryrQcbqSPcNW cZZRN1NU8CgryFTvDuC/M6KGHfOghadKcXPThWk8hfbPGe1pFYNGKYX4Y+WGWmeJ /UKDgHlCrLvcbi9FjEpIXHax5j6miBe2RtJkjrtD/P5A9Hzx5v9buOsEz0k48COX quDpgYIamP4uW5lYxg52uPuRSE/8xCIF0Ke5Lb+zj3gXyF47HUiBpic7fgvX1gmN w42beDfamEctwlVVk2CLwmuewDzvgeHiNGODfWy48QDY50Kkk/en2eVwyQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFCdSEi85RtHO5YpmCmPeAcsxpK62MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAHuMroTmOx5dQcoIALoLcVPmBq7loWbo 4naj9tJtdv3v5+M1xBF8UeH92pt7SY9VtuLAXegC//ezgWr3UfhF0wPI/kYvBXH9 70wRZbQobFRVqFaKHhhdzS3mVir1iK2Xeq6iyAdgNG4wD1ssXUzMI9LILoWmK2Ox 5k/WAfgqbIamiDCjlu4/tTwdJMT9iOQ+yQq4BVshSUQ3n8p19fJ9uGxPt1+gpzyS EXwKKHhzXeNRnY2ZqAh+waI7BQuRGEd8aHgpcshzcXjKYCl+TV9PJ1Cp8XrYlpeL iw4wzsBXqB8KdhVxjnGBRiyBq8GJyhbdU3qSi42pbv/p16yTG7l5Y1s= -----END CERTIFICATE-----Generated at Sat Nov 15 11:53:53 2025 by rpki-client