$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: CM6ll91YdcrnlrHErtIj9lJv2baXJjDlVDkOhyd5OuA= Subject key identifier: 2B:C1:1D:16:FF:33:4E:63:DD:CC:2C:C1:91:30:F4:F0:85:62:21:E1 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 71F6F1A6DE1C1D3D17AB820CBFDB3B626A848C1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 05AC Signing time: Tue 28 Apr 2026 00:00:49 +0000 Manifest this update: Tue 28 Apr 2026 00:00:49 +0000 Manifest next update: Sat 02 May 2026 00:00:49 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: 8EehjqRIVEd0s/SOV/BJG8CqMWeSlS9FLbBRSmLrgdw=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: kIQquhGVEcAvabpPXVXZt+As4t5sh2W4yCXCsbRhSVc=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: yfq8iFfIcDeAU+un+cEPlZiZth6uF29SsXYSk1FGweo=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 02 May 2026 00:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:f6:f1:a6:de:1c:1d:3d:17:ab:82:0c:bf:db:3b:62:6a:84:8c:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 28 00:00:49 2026 GMT Not After : May 2 00:00:49 2026 GMT Subject: serialNumber=3d0a2eea30d8f8bcbc80f818aabc2cb41e1f8fe9886ad01d13fc5d59a6282dd9, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c2:b4:18:d8:4f:1c:3e:46:1d:3b:52:20:4e: a6:f8:fc:ae:1a:e6:1c:52:d5:90:16:f1:a5:c2:2e: f8:c4:d4:eb:5e:9b:c0:10:57:3c:93:d3:3f:d6:95: bf:15:e0:88:4e:8a:f4:c9:a1:4d:6c:2a:83:c2:bd: 34:71:ec:1b:30:8f:87:37:9e:36:b6:1f:56:d9:59: 5c:08:ef:b9:d7:f7:c7:28:ab:bf:a3:26:db:40:71: ae:9e:be:fb:09:a4:1d:b4:6c:9c:c9:7b:74:6d:85: f2:eb:e3:42:d8:ae:59:f8:27:43:33:2f:ba:3a:99: 22:8b:98:b7:86:c1:ee:41:10:87:72:45:2e:94:4f: 3f:d8:35:5d:1d:be:48:e3:a0:79:a2:16:ec:70:69: d5:66:f2:7e:ff:41:88:89:e8:76:f3:08:69:f0:a2: c2:b1:4f:07:e6:16:70:93:c9:78:f0:2f:5b:d2:50: 86:15:99:42:da:3e:77:6a:49:3f:65:43:bd:6d:44: f0:b6:7f:d6:52:7f:74:03:19:0c:38:c9:4d:46:4b: 4e:2a:98:dd:83:31:ba:67:d9:cb:26:5e:0c:ca:7d: ce:5a:07:91:a4:ba:91:e7:21:17:55:73:a6:e4:f3: 84:79:f0:cd:ed:19:e6:83:8d:03:2c:c6:ff:58:37: 07:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:C1:1D:16:FF:33:4E:63:DD:CC:2C:C1:91:30:F4:F0:85:62:21:E1 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:b3:57:92:48:b8:ae:78:0e:15:55:cd:0a:c2:27:15:de:86: d7:f3:07:9b:50:cf:b4:fd:1c:76:d5:a8:84:1d:44:c9:70:fa: e4:d9:ea:9b:06:f2:8a:a2:b7:2d:fc:d3:dc:dc:e7:51:0a:3d: 8b:7d:d5:8e:2e:07:0c:fe:df:84:eb:a8:47:53:04:0c:96:2b: b4:f9:92:29:86:24:d8:6d:ab:6e:99:df:69:36:27:dc:26:27: 8c:f5:fb:bb:a3:22:28:10:1b:79:9c:55:15:64:60:86:e6:76: fd:65:59:91:ee:3b:20:eb:3e:f5:b9:55:03:18:e2:e9:d2:58: f3:57:d4:af:b4:ff:76:96:1d:f5:b6:3f:b4:38:df:e3:ca:4b: ea:b6:4c:6e:1b:f1:a3:0d:0f:a6:06:47:4d:d9:86:41:08:1d: 46:3a:51:47:ea:63:ec:41:73:04:eb:44:76:d3:49:6e:48:97: 4b:3b:6b:65:e0:b0:d1:d3:32:94:d9:78:93:ee:4d:1f:ca:73: ce:1a:c2:fb:cd:3d:09:54:c9:c6:12:69:62:f8:71:67:c9:40: 16:2c:c3:60:2a:fa:18:85:91:d8:ca:21:fb:43:5c:ac:e4:6b: 60:e1:5c:56:77:a7:7b:e0:1f:30:ca:ba:d3:13:05:67:fd:43: 43:5d:b7:e8 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUcfbxpt4cHT0Xq4IMv9s7YmqEjB4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDQyODAwMDA0OVoX DTI2MDUwMjAwMDA0OVowejFJMEcGA1UEBRNAM2QwYTJlZWEzMGQ4ZjhiY2JjODBm ODE4YWFiYzJjYjQxZTFmOGZlOTg4NmFkMDFkMTNmYzVkNTlhNjI4MmRkOTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1cK0GNhPHD5GHTtSIE6m+PyuGuYc UtWQFvGlwi74xNTrXpvAEFc8k9M/1pW/FeCITor0yaFNbCqDwr00cewbMI+HN542 th9W2VlcCO+51/fHKKu/oybbQHGunr77CaQdtGycyXt0bYXy6+NC2K5Z+CdDMy+6 Opkii5i3hsHuQRCHckUulE8/2DVdHb5I46B5ohbscGnVZvJ+/0GIieh28whp8KLC sU8H5hZwk8l48C9b0lCGFZlC2j53akk/ZUO9bUTwtn/WUn90AxkMOMlNRktOKpjd gzG6Z9nLJl4Myn3OWgeRpLqR5yEXVXOm5POEefDN7Rnmg40DLMb/WDcHtQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFCvBHRb/M05j3cwswZEw9PCFYiHhMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAEKzV5JIuK54DhVVzQrCJxXehtfzB5tQ z7T9HHbVqIQdRMlw+uTZ6psG8oqity3809zc51EKPYt91Y4uBwz+34TrqEdTBAyW K7T5kimGJNhtq26Z32k2J9wmJ4z1+7ujIigQG3mcVRVkYIbmdv1lWZHuOyDrPvW5 VQMY4unSWPNX1K+0/3aWHfW2P7Q43+PKS+q2TG4b8aMND6YGR03ZhkEIHUY6UUfq Y+xBcwTrRHbTSW5Il0s7a2XgsNHTMpTZeJPuTR/Kc84awvvNPQlUycYSaWL4cWfJ QBYsw2Aq+hiFkdjKIftDXKzka2DhXFZ3p3vgHzDKutMTBWf9Q0Ndt+g= -----END CERTIFICATE-----Generated at Tue Apr 28 23:53:35 2026 by rpki-client