$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: aci5U/awSqYmY5bHX1D5cCtk9hbCWo9DhiERSlM36Is= Subject key identifier: 40:C5:F0:7E:5A:BD:CE:37:0C:DA:20:05:74:3D:D7:5F:21:1D:3C:97 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 6D2527390A9E2081CB31E032F9A4381ED91CC689 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 04E8 Signing time: Sat 18 Oct 2025 00:00:07 +0000 Manifest this update: Sat 18 Oct 2025 00:00:07 +0000 Manifest next update: Wed 22 Oct 2025 00:00:07 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: z1G8lq8NC4ogkuE1vqz8gyy6BCxT6xSZonearuQsSBs=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: VIjnt59TB7BGOdnaiSRXW6ZJQWdAWNQj0darbfG3BwA=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: 250FTgHuto9SJoid1HPvupHDn7UBUGmxCGIhjacP+Xc=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: UuqzVHNCLltqT0GED/VQEmfOAndlX+zK/Gw5+/l7lZ4=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: 32Xk3d4EJO19C4Fehm7kAjreNUzNLx5RKWRzaIabu7w=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: ibaZp+YjGH5VnNJafebxZIUG/khLXe5POMeNsISNYTE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: vW8hXHGe+eosGjnyK85vNW/30QKnvDmChUh3HJ3mdPI=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: 3E0UzIBtNqbgRSeM6C1RsmZ5yhJBTi7pT11KO15DtNI=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: yjyrnBw41vvDMUdtHNcvyBmhA8s539qhw8H4OkwB5cA=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: NyrvS2tQrRYqi8H9wIQQGaV1jGezPK8RjU38PR8MGYU=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: 3jf21F4EwMQSQt0fNSk0MM+jNDxWR8oVCU+iS20AUhU=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: Ifc/4norLBc4VDP5CUGtSfAa4lVa0x83f/SmdqePbYI=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: D9cw9ToNQZwqPDNLtKM2mhEKabKisLLOjOipREWgByc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: hf+wDgoXo6/O8WXfizibKGp/CFEpdhqNHrijLMJABMs=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 26s/OMmcwWQLpExoQRxdUqhOk4rubcYfXvubjEKCfFA=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: NLyEMar8Nbdt3tCQB3rrOz5Ml4Qv6xXZon+dfPbpswg=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: sKPpAS9zxq4u3F00zpIE53W6iu679gdzmw2+O/AYu64=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: lKKoLe0vbSLn1GYBLLvAGjq7yGPYrO+RjCrgmBCH5K4=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: zgw1gADDD2VRjNIGI30UlXvCJlMvy1Rc5dfChKjDH+8=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: 1O+Gtev57+BDwGYGEZYmDoTaYcjZk2GsioCjBQyNFxo=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: aQFRbr+dd4Et86WLB5KvcxGqVS81WwmchY1341uHcOk=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: YWCFEoQJdKZwxxiiaZDGsmtfIPNCHJy0waaA5H0NDrQ=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 00:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:25:27:39:0a:9e:20:81:cb:31:e0:32:f9:a4:38:1e:d9:1c:c6:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Oct 18 00:00:07 2025 GMT Not After : Oct 22 00:00:07 2025 GMT Subject: serialNumber=ad3a7065342866999db8294c6777e3ff4f88c96ba249ff048856835360c7c6b1, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1a:96:c1:5f:6e:31:62:39:1a:13:4a:0a:00: ac:94:d0:b2:14:ae:b6:9e:1b:da:b6:4c:9b:a2:1f: 4e:e6:4e:61:eb:77:fa:e6:ab:5e:71:97:f9:96:80: 1e:51:e0:92:bc:7b:25:bd:e6:1c:1d:08:54:d6:95: fb:a6:83:06:8a:b5:f7:5f:10:09:34:21:30:fd:76: 30:db:cf:f9:31:ea:c0:5f:3a:86:8a:68:d6:a8:1c: 7a:a9:29:58:91:6c:a3:c9:92:d9:bb:d6:a4:e7:ec: 88:b4:9d:be:cf:3d:4f:7b:b4:07:dd:c2:43:de:06: 7f:d8:1f:78:cf:85:9e:24:9f:db:81:3a:fe:ed:67: 1b:11:f7:42:da:89:dd:07:3c:45:62:ab:08:f6:82: 52:f6:dc:53:aa:05:56:9a:6d:e1:08:e1:14:08:b4: 6f:f4:f4:1f:a6:ac:69:42:dc:6a:c6:ab:e5:85:d3: 28:6b:32:81:b8:e9:03:2e:0d:4a:74:93:f5:15:85: 71:c4:14:dc:a9:6e:9c:62:21:24:68:d2:dc:77:1e: 0a:31:d9:53:b8:da:e8:56:a0:52:4b:a7:64:2b:e4: 13:e3:0f:91:2d:63:c8:35:93:99:18:65:e6:82:37: f2:b2:2a:47:40:07:ab:29:bc:3b:7b:6c:21:5c:44: 1b:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:C5:F0:7E:5A:BD:CE:37:0C:DA:20:05:74:3D:D7:5F:21:1D:3C:97 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:dd:de:62:41:7f:fa:36:13:9d:92:f4:18:12:3f:ad:42:98: b4:ea:bd:9c:7d:39:87:fb:49:6f:1a:a5:02:03:bb:19:89:6f: 05:3a:46:1f:8e:96:a0:ce:d1:fb:65:36:ad:00:9e:6e:18:47: 8b:97:f5:27:4b:97:ff:d6:33:4f:33:3c:08:d3:2c:dd:3d:e6: b0:8d:fb:3c:8e:3b:5e:22:6a:8a:5b:c6:a2:50:ef:ef:8e:14: 27:9f:9e:78:df:fc:5d:1d:df:70:02:1a:1f:b8:0a:77:7e:7a: ea:6c:b0:86:3d:f9:73:8e:e4:b3:13:05:22:0f:a2:35:e2:0a: c9:d1:44:00:52:c8:e3:a0:f8:f6:1a:59:34:4b:72:cb:dc:60: 22:64:01:45:e3:73:16:81:2b:7f:04:1c:64:fc:09:8f:29:55: 45:a3:91:fa:45:62:94:25:f7:57:89:b3:55:cc:ec:02:ca:c3: 29:43:61:32:62:ce:fd:3d:ca:a4:95:61:da:b4:38:ff:cb:53: 16:9a:e8:b6:9a:45:2b:dd:5e:d4:9d:87:31:bd:28:e0:1b:f5: 37:fe:0b:f1:0b:32:f6:72:2f:b9:13:52:7a:69:f1:2a:a2:b2: 98:c6:8d:b5:1f:e7:f7:b4:6d:87:59:6f:e4:96:cb:25:ab:8d: c4:a5:51:aa -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUbSUnOQqeIIHLMeAy+aQ4HtkcxokwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTAxODAwMDAwN1oX DTI1MTAyMjAwMDAwN1owejFJMEcGA1UEBRNAYWQzYTcwNjUzNDI4NjY5OTlkYjgy OTRjNjc3N2UzZmY0Zjg4Yzk2YmEyNDlmZjA0ODg1NjgzNTM2MGM3YzZiMTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwxqWwV9uMWI5GhNKCgCslNCyFK62 nhvatkyboh9O5k5h63f65qtecZf5loAeUeCSvHslveYcHQhU1pX7poMGirX3XxAJ NCEw/XYw28/5MerAXzqGimjWqBx6qSlYkWyjyZLZu9ak5+yItJ2+zz1Pe7QH3cJD 3gZ/2B94z4WeJJ/bgTr+7WcbEfdC2ondBzxFYqsI9oJS9txTqgVWmm3hCOEUCLRv 9PQfpqxpQtxqxqvlhdMoazKBuOkDLg1KdJP1FYVxxBTcqW6cYiEkaNLcdx4KMdlT uNroVqBSS6dkK+QT4w+RLWPINZOZGGXmgjfysipHQAerKbw7e2whXEQbcwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFEDF8H5avc43DNogBXQ9118hHTyXMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAI3d3mJBf/o2E52S9BgSP61CmLTqvZx9 OYf7SW8apQIDuxmJbwU6Rh+OlqDO0ftlNq0Anm4YR4uX9SdLl//WM08zPAjTLN09 5rCN+zyOO14iaopbxqJQ7++OFCefnnjf/F0d33ACGh+4Cnd+eupssIY9+XOO5LMT BSIPojXiCsnRRABSyOOg+PYaWTRLcsvcYCJkAUXjcxaBK38EHGT8CY8pVUWjkfpF YpQl91eJs1XM7ALKwylDYTJizv09yqSVYdq0OP/LUxaa6LaaRSvdXtSdhzG9KOAb 9Tf+C/ELMvZyL7kTUnpp8SqispjGjbUf5/e0bYdZb+SWyyWrjcSlUao= -----END CERTIFICATE-----Generated at Sat Oct 18 11:58:47 2025 by rpki-client