$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: d3A6Q6OWQddRMje39KTL/aCgbqwo7WWn/qMvs0LRi6A= Subject key identifier: 5A:AD:47:9D:C2:D3:CD:B1:2B:CA:31:32:9A:88:93:D9:92:DA:CC:D2 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 2F227D0F8A34D50EFF106D823881773963546F06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0594 Signing time: Sat 04 Apr 2026 00:09:37 +0000 Manifest this update: Sat 04 Apr 2026 00:09:37 +0000 Manifest next update: Wed 08 Apr 2026 00:09:37 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: BP0knpVlL/nHAkryx7h1oGjcdzDn3sbyOJN01Iss5OE=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 Apr 2026 00:09:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:22:7d:0f:8a:34:d5:0e:ff:10:6d:82:38:81:77:39:63:54:6f:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 4 00:09:37 2026 GMT Not After : Apr 8 00:09:37 2026 GMT Subject: serialNumber=f412efef0d63b55c00b26b6146750b1ef75eaf92b4bfb62f7f98ee62dd8bacda, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:51:2f:81:ab:60:b0:a7:20:3d:53:0f:9e:1f: cf:31:fb:b7:d2:f3:09:7a:29:41:5f:58:8b:c3:47: c7:60:c9:86:aa:4b:90:36:99:1c:15:f2:78:3d:75: 21:12:d6:b5:4e:a0:7d:dd:67:32:da:53:33:81:87: e3:96:6e:3e:9c:13:1a:01:ba:75:cb:9c:55:93:e8: 45:9f:d1:83:57:09:63:0d:7d:bf:5b:97:40:7c:22: 07:a7:7d:f3:81:53:a8:09:6a:11:d7:08:61:0a:48: 75:d5:ff:4a:3e:8a:07:d3:d9:78:c3:e2:b3:29:81: c1:a4:cb:62:2f:b2:53:f4:bb:87:b2:47:be:3f:f0: c4:34:d2:c9:46:52:da:d7:13:96:53:74:08:49:df: 98:2c:39:3e:15:47:60:82:6f:c7:aa:13:75:b8:f3: 90:bf:7e:34:25:d1:63:57:49:14:7a:50:4c:eb:d8: 91:72:77:75:33:cb:35:0d:a3:2f:08:73:94:7a:36: f2:46:6b:d4:81:de:62:0c:48:6f:c1:eb:9e:b2:ea: 25:e7:27:71:ef:b9:71:93:84:0d:09:07:bf:6f:68: 61:c3:5a:d6:f6:a0:b8:73:a2:41:61:cd:b8:36:70: 6a:85:61:30:4d:84:09:29:d2:ad:a3:43:9e:8b:2d: 25:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:AD:47:9D:C2:D3:CD:B1:2B:CA:31:32:9A:88:93:D9:92:DA:CC:D2 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:5a:75:73:cf:0a:3f:18:62:ba:9f:87:cb:e0:df:40:a7:87: ab:eb:88:a4:5f:0b:f5:54:b5:09:9a:6f:41:15:49:a8:e9:33: 17:a8:e8:41:57:db:76:a1:6a:32:0a:43:e1:82:c3:12:78:39: aa:ef:98:f7:86:56:f1:a3:5e:50:ae:f0:9c:24:ff:4f:d2:f7: d6:1b:90:86:f8:4a:d8:e0:a9:11:e2:5a:0b:be:d1:45:94:34: dc:6d:49:b2:5c:7c:59:e3:40:b9:35:b8:f9:fd:ab:65:5b:51: cf:75:08:cf:d8:d4:ce:ce:cd:04:53:a3:e6:a4:b9:e5:1e:18: a7:05:73:a8:6a:74:07:d3:88:3d:52:8c:05:4d:2c:df:18:1a: 84:55:e2:6b:f9:85:71:8a:16:10:7d:47:14:c3:5d:f4:78:c9: a8:d5:0b:a6:d8:28:e5:1f:5a:aa:97:83:af:24:8d:f7:ef:22: 16:fc:a9:76:71:db:de:80:0e:a6:90:73:11:57:95:41:7a:2d: 7d:26:8d:52:b3:81:67:d4:13:53:d0:7f:d8:06:9c:04:10:4d: 42:9c:09:93:db:dd:7e:41:8c:ef:3e:45:be:da:10:0f:51:fa: 01:49:fa:5d:b1:9e:b7:5c:5f:f4:2b:37:06:79:a1:64:41:ee: 2a:fd:bc:09 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIULyJ9D4o01Q7/EG2COIF3OWNUbwYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDQwNDAwMDkzN1oX DTI2MDQwODAwMDkzN1owejFJMEcGA1UEBRNAZjQxMmVmZWYwZDYzYjU1YzAwYjI2 YjYxNDY3NTBiMWVmNzVlYWY5MmI0YmZiNjJmN2Y5OGVlNjJkZDhiYWNkYTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo1EvgatgsKcgPVMPnh/PMfu30vMJ eilBX1iLw0fHYMmGqkuQNpkcFfJ4PXUhEta1TqB93Wcy2lMzgYfjlm4+nBMaAbp1 y5xVk+hFn9GDVwljDX2/W5dAfCIHp33zgVOoCWoR1whhCkh11f9KPooH09l4w+Kz KYHBpMtiL7JT9LuHske+P/DENNLJRlLa1xOWU3QISd+YLDk+FUdggm/HqhN1uPOQ v340JdFjV0kUelBM69iRcnd1M8s1DaMvCHOUejbyRmvUgd5iDEhvweuesuol5ydx 77lxk4QNCQe/b2hhw1rW9qC4c6JBYc24NnBqhWEwTYQJKdKto0Oeiy0l6QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFFqtR53C082xK8oxMpqIk9mS2szSMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAAJadXPPCj8YYrqfh8vg30Cnh6vriKRf C/VUtQmab0EVSajpMxeo6EFX23ahajIKQ+GCwxJ4OarvmPeGVvGjXlCu8Jwk/0/S 99YbkIb4StjgqRHiWgu+0UWUNNxtSbJcfFnjQLk1uPn9q2VbUc91CM/Y1M7OzQRT o+akueUeGKcFc6hqdAfTiD1SjAVNLN8YGoRV4mv5hXGKFhB9RxTDXfR4yajVC6bY KOUfWqqXg68kjffvIhb8qXZx296ADqaQcxFXlUF6LX0mjVKzgWfUE1PQf9gGnAQQ TUKcCZPb3X5BjO8+Rb7aEA9R+gFJ+l2xnrdcX/QrNwZ5oWRB7ir9vAk= -----END CERTIFICATE-----Generated at Sat Apr 4 23:27:51 2026 by rpki-client