$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: 5hpAPjyMJ/uwgJ8Y2Fni+81A4Z1eNbuo/N9BfchnSYw= Subject key identifier: 9A:A3:DB:14:7D:57:96:42:9B:EC:D9:34:BD:31:4A:E4:99:4C:15:6A Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 2D25E7B54B825DE3CD741188FADEEFDDD9D4B9FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 04C6 Signing time: Tue 16 Sep 2025 00:00:05 +0000 Manifest this update: Tue 16 Sep 2025 00:00:05 +0000 Manifest next update: Sat 20 Sep 2025 00:00:05 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: FM6gDGkweLNjr+7a0cwqwKIrU1at/64ISQp5SjSgnkA=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: aWxQiVghK+t2ruMJnXG30kiuqj0CVLOoGzLhqB8c7oM=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: wfY/Rj5bbhOmil9AccqF2jPgGkKMPcQicPPrqXP9oC8=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: ZzNo5zpgiH5NrCANRDMQ9ftKMWeamCg+SXdbGo+e6l4=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: ZEq1KUgC/U1ho58B87SjqJ2czMaqCVHuegjmXIyAuqg=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: +jMD4ji/8ddISNa1sN/f453g50UMC/iLAyaCFMapAnA=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: 4tgwcY4jH4nGZvSWZ/Bgk2Vs6ncBSex95rQ13KHKgCw=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: +g/K7Nmhu7VZEvCxYEkGB+udnN2BUnxlsdkNhz+y3Kk=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 6OznL0Rdr6hHG30lwnVqN9Znh3aHn6aCfuaA7pjfIkg=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: XVKsE2envM3vjQ7FZj1rT56ToPjM3q4KYMOs8KN60ns=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: K0AXkwUIb0WmckHqf1y4O3THB4evuCmxYtCLMCJaL8I=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: QU1dGLwbPdel0eSyHI7D/fGpFDZ2gIk3lhE7Or/8FUc=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: 77aokiCVInZ4LOtvKey2C8x5OIoJa6GtVRPUoue8raI=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: qwtP/cC0qlLpA+qDLsiEuvcospEYIBBuhQp2YeTweWA=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: RK+r76Bqi2+BWC/HZY0lAqitf+qs0YKvHA0cvtgdsds=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: 0Xq8Nx106KW7+yqt3GMsg6e7hTwluHFAnKP1kcy/MJI=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: Ph9zfzdW81kbgCl96ZhAODXD5Y8yl/u8cwbRys3KBF0=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: eYxC765zEFQHy+A3RtiDHbeZ/nerihMInrmBwgBeWA0=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: OsrWujb1EMsX+Act7TXon9Gq/LRONqufyklCdCzew4Q=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: mPriRpYBQ0oRZK428ScMpZZPGPukmuw3kF0Ol9BBZqs=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: V3m73iTcDjY0AfzOonXfFWKlAscRzOySzJW3lvwR+m4=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: RByv4EVQGeNq1glNv1w/MkedeZ7C3SCHEdnUDoNPtmo=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Sep 2025 00:00:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:25:e7:b5:4b:82:5d:e3:cd:74:11:88:fa:de:ef:dd:d9:d4:b9:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Sep 16 00:00:05 2025 GMT Not After : Sep 20 00:00:05 2025 GMT Subject: serialNumber=dac964e876565f26edc402f4d58b9c2c7ce59e31595df1d103f2561173c0a92a, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:90:d5:0c:ce:37:27:50:e5:9c:49:60:87:99: 49:5c:46:b1:e4:54:8e:66:15:b7:43:95:49:ab:22: f1:23:d9:9b:ac:a6:8e:f6:13:8d:a6:38:93:e0:25: ba:21:b9:bc:6e:45:44:14:66:aa:a0:be:66:15:48: 2a:04:d0:cc:ce:56:75:95:34:91:c7:5e:f0:fa:17: f5:99:4d:40:34:08:51:5d:97:eb:3d:0b:10:1f:74: a8:6d:33:da:f2:97:28:35:87:28:37:6f:5d:99:ba: 28:aa:3f:dd:3c:7d:da:54:98:9e:af:7a:e7:ea:49: 28:10:3b:a4:20:4c:16:0a:d4:d0:be:88:aa:b9:68: 0e:88:6e:bf:35:25:89:aa:8f:83:78:31:d5:f7:56: 25:33:03:b4:63:33:d6:fd:89:d9:d9:f2:82:de:4a: e2:22:f3:0c:e5:e4:a1:3e:a7:75:c5:a7:4e:a2:60: 49:85:ab:2f:34:75:b2:a8:12:b2:a5:9e:33:f8:7b: ec:ae:e8:36:60:23:19:e2:9a:ed:ef:11:62:07:06: 1f:a3:7d:44:6b:f3:ff:cb:51:cf:62:77:db:13:92: ed:fe:8d:9f:bb:90:81:ac:83:f0:7b:b2:9f:1d:38: ae:64:d5:16:ae:99:0a:78:a6:a4:bb:3a:c3:6c:67: c3:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A3:DB:14:7D:57:96:42:9B:EC:D9:34:BD:31:4A:E4:99:4C:15:6A X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d6:6a:e6:4e:bb:b0:d2:f1:78:d0:71:e4:8b:6d:70:fa:b3:14: 9b:1c:c6:4d:95:d3:9a:35:d7:16:62:52:d6:19:8d:70:0e:61: 8b:bf:ec:8b:96:81:98:dd:e7:c7:a0:77:45:18:ab:23:21:18: 91:1d:8b:b2:85:03:53:36:8b:4f:4e:e8:5e:74:65:6c:e4:ec: 39:61:1d:83:5c:52:3c:c3:d4:cc:2f:6f:51:c0:20:84:c7:0a: 7c:b3:cc:ce:15:7e:b6:1e:b2:bf:da:ab:88:18:69:2d:78:73: 6c:a8:ad:c0:50:27:d7:9a:fb:2e:50:b5:34:e3:5c:52:5f:bc: e7:0f:cc:b8:cd:95:94:38:fe:3d:cb:71:7d:c7:f4:3a:43:22: 20:15:3d:e0:96:88:a2:62:02:7b:df:f8:68:77:94:36:71:41: 84:2d:4c:4f:58:d9:5b:ca:c3:f4:1c:a1:36:cd:3d:aa:fe:17: ea:e2:38:4f:01:8a:11:3c:72:25:c9:3b:04:4a:50:46:3a:e0: 41:d3:13:b2:ed:a5:f6:73:30:a9:ac:0e:a8:e7:07:a9:01:0f: aa:c3:5e:23:ef:b8:af:88:0d:f4:a6:05:89:7b:0e:85:f8:3b: 78:e9:da:a7:5b:58:46:c8:e7:7e:3d:9e:9f:6b:2e:c4:68:9a: 26:3d:5a:21 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIULSXntUuCXePNdBGI+t7v3dnUufswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDkxNjAwMDAwNVoX DTI1MDkyMDAwMDAwNVowejFJMEcGA1UEBRNAZGFjOTY0ZTg3NjU2NWYyNmVkYzQw MmY0ZDU4YjljMmM3Y2U1OWUzMTU5NWRmMWQxMDNmMjU2MTE3M2MwYTkyYTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw5DVDM43J1DlnElgh5lJXEax5FSO ZhW3Q5VJqyLxI9mbrKaO9hONpjiT4CW6Ibm8bkVEFGaqoL5mFUgqBNDMzlZ1lTSR x17w+hf1mU1ANAhRXZfrPQsQH3SobTPa8pcoNYcoN29dmbooqj/dPH3aVJier3rn 6kkoEDukIEwWCtTQvoiquWgOiG6/NSWJqo+DeDHV91YlMwO0YzPW/YnZ2fKC3kri IvMM5eShPqd1xadOomBJhasvNHWyqBKypZ4z+Hvsrug2YCMZ4prt7xFiBwYfo31E a/P/y1HPYnfbE5Lt/o2fu5CBrIPwe7KfHTiuZNUWrpkKeKakuzrDbGfDzwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFJqj2xR9V5ZCm+zZNL0xSuSZTBVqMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBANZq5k67sNLxeNBx5IttcPqzFJscxk2V 05o11xZiUtYZjXAOYYu/7IuWgZjd58egd0UYqyMhGJEdi7KFA1M2i09O6F50ZWzk 7DlhHYNcUjzD1Mwvb1HAIITHCnyzzM4VfrYesr/aq4gYaS14c2yorcBQJ9ea+y5Q tTTjXFJfvOcPzLjNlZQ4/j3LcX3H9DpDIiAVPeCWiKJiAnvf+Gh3lDZxQYQtTE9Y 2VvKw/QcoTbNPar+F+riOE8BihE8ciXJOwRKUEY64EHTE7LtpfZzMKmsDqjnB6kB D6rDXiPvuK+IDfSmBYl7DoX4O3jp2qdbWEbI5349np9rLsRomiY9WiE= -----END CERTIFICATE-----Generated at Tue Sep 16 07:54:21 2025 by rpki-client