$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: BNBR14kF/bXDuNG9TIBbRlhP+S5M6TIU1ljX+TjPbFY= Subject key identifier: 10:0F:DB:45:24:17:EC:CA:03:C1:DB:A0:CE:87:30:09:1F:1F:E8:AD Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 7BD2903008CFEF28EFD2D8A0719B9A0977C0FA20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0589 Signing time: Tue 24 Mar 2026 00:06:35 +0000 Manifest this update: Tue 24 Mar 2026 00:06:35 +0000 Manifest next update: Sat 28 Mar 2026 00:06:35 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: 1kWzEIVWxylJANkpoJZ9lgy3xipzL5tKOkeZY2GNRnw=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 00:06:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:d2:90:30:08:cf:ef:28:ef:d2:d8:a0:71:9b:9a:09:77:c0:fa:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Mar 24 00:06:35 2026 GMT Not After : Mar 28 00:06:35 2026 GMT Subject: serialNumber=a97c53b8882220b4258ce9eb68a749c894ed8753f057008dc37f35f334000f93, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:6d:e3:bf:cf:8e:25:96:e4:fa:ad:21:01:2d: ff:7a:25:90:4e:a3:5e:65:f2:73:cf:f0:64:61:bb: 1e:17:d2:76:70:c5:a4:43:72:73:f6:e1:a4:66:49: 6c:8a:cf:6c:c6:1b:dc:d3:5f:ca:fb:77:8d:f4:ab: f0:39:69:18:6e:6f:b1:f1:ba:cd:9e:71:66:ea:6a: 9e:8a:b8:7f:95:b9:64:40:70:e8:fb:b9:64:0c:cc: af:af:52:5b:0c:0a:4b:09:60:92:fb:b2:92:7f:6b: 3c:3f:10:8e:00:ae:93:13:3a:dc:0c:c7:ce:8b:dc: 48:c9:44:d8:4c:be:68:72:13:a1:be:66:f8:db:ce: d3:85:d9:5f:1a:8f:9a:94:2f:78:41:3b:50:ca:cf: 0b:27:88:e1:96:b0:e1:e4:3c:b1:a8:11:26:df:fb: ec:af:33:66:24:31:99:75:82:0f:f8:27:37:ad:c1: c1:e0:43:74:24:6d:d6:81:c3:c0:ee:c9:09:9f:1b: 00:e3:e0:0a:ab:85:d7:e0:ce:34:c8:cb:1d:c5:71: 2c:2e:d1:17:18:b5:d4:a8:97:00:90:b7:21:03:24: 70:ac:62:db:cc:da:b9:06:2c:29:03:22:91:e8:7a: 2e:22:4c:af:19:c2:80:f3:a6:67:58:ca:c0:76:70: 69:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:0F:DB:45:24:17:EC:CA:03:C1:DB:A0:CE:87:30:09:1F:1F:E8:AD X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:42:91:d3:d9:b1:41:d0:75:5c:41:36:60:23:e5:e2:ac:da: e3:0a:fb:ce:2c:96:0f:47:af:cf:b1:c6:82:2b:84:f4:c6:2b: 90:ca:5d:47:b9:1e:5c:18:bd:8c:07:53:64:20:16:74:df:f3: 8b:2d:0c:36:67:d4:48:d8:fc:69:bc:62:06:c3:5c:dc:be:e5: 55:e5:eb:7e:ac:71:b4:b7:c2:41:bc:af:5e:bd:54:84:ac:09: 79:a9:b6:86:a7:79:fd:13:5f:d6:db:f2:de:b3:8d:a7:1b:64: ea:9f:b5:ba:1d:bf:83:54:94:f2:09:9e:61:90:fd:58:ca:c8: 9f:b6:5a:a0:f4:79:f0:18:f0:9d:71:c8:66:c8:4d:fe:9c:b1: f8:5d:b1:53:ec:d3:dc:ce:ca:68:72:35:34:1c:fe:10:cf:0d: 7c:68:10:c1:f0:32:eb:97:a6:bb:54:9c:64:78:77:a2:87:86: 12:d1:0b:fc:49:d6:f9:23:71:3c:42:b2:81:37:4b:93:3f:6b: 57:65:1f:21:21:2b:fc:8d:0f:3a:aa:20:9d:61:b7:52:89:a3: 1f:ba:5f:46:ec:70:06:29:0f:15:35:9c:3a:2e:bc:6f:8b:56: d3:6e:26:34:75:c5:b2:c3:91:93:e3:74:1b:d6:23:d5:df:fe: ad:56:ee:0b -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUe9KQMAjP7yjv0tigcZuaCXfA+iAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDMyNDAwMDYzNVoX DTI2MDMyODAwMDYzNVowejFJMEcGA1UEBRNAYTk3YzUzYjg4ODIyMjBiNDI1OGNl OWViNjhhNzQ5Yzg5NGVkODc1M2YwNTcwMDhkYzM3ZjM1ZjMzNDAwMGY5MzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkG3jv8+OJZbk+q0hAS3/eiWQTqNe ZfJzz/BkYbseF9J2cMWkQ3Jz9uGkZklsis9sxhvc01/K+3eN9KvwOWkYbm+x8brN nnFm6mqeirh/lblkQHDo+7lkDMyvr1JbDApLCWCS+7KSf2s8PxCOAK6TEzrcDMfO i9xIyUTYTL5ochOhvmb4287ThdlfGo+alC94QTtQys8LJ4jhlrDh5DyxqBEm3/vs rzNmJDGZdYIP+Cc3rcHB4EN0JG3WgcPA7skJnxsA4+AKq4XX4M40yMsdxXEsLtEX GLXUqJcAkLchAyRwrGLbzNq5BiwpAyKR6HouIkyvGcKA86ZnWMrAdnBplQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFBAP20UkF+zKA8HboM6HMAkfH+itMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAAJCkdPZsUHQdVxBNmAj5eKs2uMK+84s lg9Hr8+xxoIrhPTGK5DKXUe5HlwYvYwHU2QgFnTf84stDDZn1EjY/Gm8YgbDXNy+ 5VXl636scbS3wkG8r169VISsCXmptoanef0TX9bb8t6zjacbZOqftbodv4NUlPIJ nmGQ/VjKyJ+2WqD0efAY8J1xyGbITf6csfhdsVPs09zOymhyNTQc/hDPDXxoEMHw MuuXprtUnGR4d6KHhhLRC/xJ1vkjcTxCsoE3S5M/a1dlHyEhK/yNDzqqIJ1ht1KJ ox+6X0bscAYpDxU1nDouvG+LVtNuJjR1xbLDkZPjdBvWI9Xf/q1W7gs= -----END CERTIFICATE-----Generated at Tue Mar 24 15:55:47 2026 by rpki-client