$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: meaq56jlgdmBOPY+WlfCdRLJ79JNFoGlDRVVF6uIh3A= Subject key identifier: 45:D2:2E:C9:33:DB:28:08:52:06:E6:0F:5A:E9:85:F0:6D:EA:6F:57 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 65F7639AD6D0AB488BA17A66DCA98373D468AE91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 04FB Signing time: Thu 06 Nov 2025 00:02:53 +0000 Manifest this update: Thu 06 Nov 2025 00:02:53 +0000 Manifest next update: Mon 10 Nov 2025 00:02:53 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: z1G8lq8NC4ogkuE1vqz8gyy6BCxT6xSZonearuQsSBs=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: VIjnt59TB7BGOdnaiSRXW6ZJQWdAWNQj0darbfG3BwA=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: 250FTgHuto9SJoid1HPvupHDn7UBUGmxCGIhjacP+Xc=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: crdSqTAj7F18b492iiktLFz/OZMkcbxkb5FOS4rguQU=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: 32Xk3d4EJO19C4Fehm7kAjreNUzNLx5RKWRzaIabu7w=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: ibaZp+YjGH5VnNJafebxZIUG/khLXe5POMeNsISNYTE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: vW8hXHGe+eosGjnyK85vNW/30QKnvDmChUh3HJ3mdPI=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: 3E0UzIBtNqbgRSeM6C1RsmZ5yhJBTi7pT11KO15DtNI=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: yjyrnBw41vvDMUdtHNcvyBmhA8s539qhw8H4OkwB5cA=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: NyrvS2tQrRYqi8H9wIQQGaV1jGezPK8RjU38PR8MGYU=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: 3jf21F4EwMQSQt0fNSk0MM+jNDxWR8oVCU+iS20AUhU=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: Ifc/4norLBc4VDP5CUGtSfAa4lVa0x83f/SmdqePbYI=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: D9cw9ToNQZwqPDNLtKM2mhEKabKisLLOjOipREWgByc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: hf+wDgoXo6/O8WXfizibKGp/CFEpdhqNHrijLMJABMs=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 26s/OMmcwWQLpExoQRxdUqhOk4rubcYfXvubjEKCfFA=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: NLyEMar8Nbdt3tCQB3rrOz5Ml4Qv6xXZon+dfPbpswg=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: sKPpAS9zxq4u3F00zpIE53W6iu679gdzmw2+O/AYu64=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: lKKoLe0vbSLn1GYBLLvAGjq7yGPYrO+RjCrgmBCH5K4=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: D8bBPQUOCTEk8pdNz92K1MRwyNVwdAT9TarkZGSGScU=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: 1O+Gtev57+BDwGYGEZYmDoTaYcjZk2GsioCjBQyNFxo=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: aQFRbr+dd4Et86WLB5KvcxGqVS81WwmchY1341uHcOk=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: 8yPh7RFUtDHIOMlg2c13wT8N//u27y/UzlNQTFASLCE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:f7:63:9a:d6:d0:ab:48:8b:a1:7a:66:dc:a9:83:73:d4:68:ae:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 6 00:02:53 2025 GMT Not After : Nov 10 00:02:53 2025 GMT Subject: serialNumber=1564cbea9480a010f7a50b78dfc5d600e6464e30888d97cf2d3f529ca5afda09, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:92:9b:7f:cb:44:31:80:09:4e:47:2e:71:47: a5:97:13:f9:9d:ce:a4:83:b6:75:fc:4d:62:30:a1: 0d:88:24:9a:70:e3:25:5f:67:92:7e:3d:c5:e9:b4: 43:0c:30:7b:f8:17:9a:33:c0:68:ff:d7:29:43:f3: 6c:7d:7c:c8:a3:78:5d:66:7d:a8:31:42:5b:dd:ae: 16:b1:ba:d7:9e:c5:e1:34:22:35:a3:1c:c9:fb:92: 06:78:62:37:10:e0:36:fe:ad:4e:6b:0d:bc:c2:f2: 14:bb:bd:5c:dc:3b:3b:d8:02:88:40:28:0f:db:2d: f8:2c:c5:61:54:14:cb:26:0f:c5:9f:a6:16:6c:80: c9:ac:5e:26:99:91:24:a7:28:f0:24:67:c2:32:2b: 30:71:ac:d6:c7:68:8b:59:a4:e6:8e:0e:93:20:32: 66:87:85:ab:5e:9c:4f:08:d9:49:de:66:1f:a7:30: eb:14:45:49:54:c6:14:d4:e2:fd:8b:54:05:2e:de: 26:50:00:17:bb:2f:6d:0c:b3:87:08:b5:97:9d:90: bf:c1:16:88:ec:a7:3e:20:76:62:a1:ae:df:c8:d5: b8:24:04:ad:3b:1f:0e:3e:6e:34:de:6d:c6:bc:d1: 18:99:94:6f:0f:6a:75:33:6c:0d:c2:d7:ba:14:d0: f2:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D2:2E:C9:33:DB:28:08:52:06:E6:0F:5A:E9:85:F0:6D:EA:6F:57 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:74:84:b2:93:8d:56:df:d5:5e:d1:03:81:60:fb:30:78:43: c2:66:5e:a3:a9:02:5e:55:a5:41:48:82:a4:87:2a:c2:00:45: 91:57:31:c0:73:fd:b3:f2:c7:dd:60:03:37:51:d5:20:d8:89: d5:f9:5c:d7:cb:24:de:83:89:6e:17:f8:85:07:d3:fd:d9:f2: 58:2e:4c:e7:af:3f:dd:f9:2f:a7:d8:98:2f:cc:5a:53:6d:79: 0a:c8:c9:0d:35:d4:03:e9:b5:bf:d9:e2:ff:c4:e9:31:c7:1c: c7:a7:6f:46:99:b7:f7:62:13:d1:1f:c1:48:8c:cb:11:00:78: 30:d1:ba:ba:38:eb:51:24:fd:87:08:a9:41:37:df:7b:61:f6: 6a:76:1f:e8:5e:2a:5d:a5:c0:8f:6a:d2:4f:81:7e:32:b3:60: 14:8f:37:d1:d7:60:43:22:53:b2:89:53:9c:3b:8e:d8:9d:ee: 29:30:27:a7:69:43:cb:f6:45:c5:15:79:72:da:87:b5:21:83: 9a:54:7e:72:db:21:c1:e3:ee:ff:67:0b:f3:a9:d7:cb:7c:1a: ec:b3:f0:ab:d2:24:68:62:13:61:af:1a:61:73:47:09:98:89: 99:60:8c:01:eb:e5:32:66:3d:70:af:0e:0d:94:e8:1f:e2:d0: 75:0e:d8:ed -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUZfdjmtbQq0iLoXpm3KmDc9RorpEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTEwNjAwMDI1M1oX DTI1MTExMDAwMDI1M1owejFJMEcGA1UEBRNAMTU2NGNiZWE5NDgwYTAxMGY3YTUw Yjc4ZGZjNWQ2MDBlNjQ2NGUzMDg4OGQ5N2NmMmQzZjUyOWNhNWFmZGEwOTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoJKbf8tEMYAJTkcucUellxP5nc6k g7Z1/E1iMKENiCSacOMlX2eSfj3F6bRDDDB7+BeaM8Bo/9cpQ/NsfXzIo3hdZn2o MUJb3a4WsbrXnsXhNCI1oxzJ+5IGeGI3EOA2/q1Oaw28wvIUu71c3Ds72AKIQCgP 2y34LMVhVBTLJg/Fn6YWbIDJrF4mmZEkpyjwJGfCMiswcazWx2iLWaTmjg6TIDJm h4WrXpxPCNlJ3mYfpzDrFEVJVMYU1OL9i1QFLt4mUAAXuy9tDLOHCLWXnZC/wRaI 7Kc+IHZioa7fyNW4JAStOx8OPm403m3GvNEYmZRvD2p1M2wNwte6FNDy5wIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFEXSLskz2ygIUgbmD1rphfBt6m9XMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAEd0hLKTjVbf1V7RA4Fg+zB4Q8JmXqOp Al5VpUFIgqSHKsIARZFXMcBz/bPyx91gAzdR1SDYidX5XNfLJN6DiW4X+IUH0/3Z 8lguTOevP935L6fYmC/MWlNteQrIyQ011APptb/Z4v/E6THHHMenb0aZt/diE9Ef wUiMyxEAeDDRuro461Ek/YcIqUE333th9mp2H+heKl2lwI9q0k+BfjKzYBSPN9HX YEMiU7KJU5w7jtid7ikwJ6dpQ8v2RcUVeXLah7Uhg5pUfnLbIcHj7v9nC/Op18t8 Guyz8KvSJGhiE2GvGmFzRwmYiZlgjAHr5TJmPXCvDg2U6B/i0HUO2O0= -----END CERTIFICATE-----Generated at Thu Nov 6 14:32:46 2025 by rpki-client