$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: WcBGI60c/8WznrR1s7VtoN73kYQZ/+1GLmppqxjj66U= Subject key identifier: 53:EA:A6:64:A9:96:E1:33:E1:20:91:EE:17:D7:64:AA:FE:5C:A3:0E Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 1C5E1AD9F198530878530EB24DB0FF781FC4F38C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0593 Signing time: Fri 03 Apr 2026 00:09:29 +0000 Manifest this update: Fri 03 Apr 2026 00:09:29 +0000 Manifest next update: Tue 07 Apr 2026 00:09:29 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: ip8SZSVAKgf2FX7V3RJTzXFk8I3ifLLICg88pqLHRnQ=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 Apr 2026 00:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:5e:1a:d9:f1:98:53:08:78:53:0e:b2:4d:b0:ff:78:1f:c4:f3:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 3 00:09:29 2026 GMT Not After : Apr 7 00:09:29 2026 GMT Subject: serialNumber=b7100738d5d5a820dcb624a64aa00099a41675eb1b19f50bde0fc6e9ddb9d717, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:99:74:2e:03:00:e5:5b:0c:0f:7e:9a:50:0d: bd:09:7e:4b:fc:46:ca:c2:56:6e:87:d5:d4:8f:de: d2:c6:a8:cf:37:65:73:f2:e2:29:36:e5:3f:a7:0d: 16:f9:31:a4:e1:f6:f6:a7:e0:e6:98:c3:5c:02:fa: f0:36:6b:d0:9c:f6:f4:6c:8e:61:f4:2a:b2:91:bf: b6:fe:33:fd:f3:9d:bb:be:59:2a:ce:6c:5f:ff:be: a2:d1:ae:ba:e0:60:40:d2:c9:18:72:b8:63:e5:f5: 61:65:b2:23:12:25:d9:ff:8c:82:69:e5:3e:3e:63: 40:04:1f:ed:93:ed:c8:13:ac:40:59:74:12:cd:50: 1f:6d:b8:d0:41:1a:81:6c:7a:cc:e9:69:bc:80:10: 21:0d:1b:48:c2:58:84:47:40:e4:4b:a7:01:f9:dc: 1a:d6:40:83:61:19:8e:b8:28:72:b6:0d:e8:67:9c: 51:78:f3:29:8b:c0:9d:44:82:26:22:dc:b6:8a:a2: 1c:d1:58:96:5f:f0:c8:9b:b9:71:99:67:49:27:50: 30:eb:a8:98:f5:a5:7e:bb:68:d9:59:79:7e:12:a7: 43:87:25:f8:fe:ee:72:70:36:dd:a1:a6:f5:a9:82: e9:90:cd:6a:ca:dc:f1:8c:50:82:df:43:8f:71:ba: 6b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:EA:A6:64:A9:96:E1:33:E1:20:91:EE:17:D7:64:AA:FE:5C:A3:0E X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:9a:84:de:1c:72:cd:d3:fb:0e:8a:c3:32:ea:35:7b:3c:50: e2:de:0d:a5:50:bf:6c:88:6f:85:19:cd:62:e1:cc:64:77:5f: b6:64:cf:9d:76:23:59:1c:d7:db:a1:77:74:3a:55:9b:7c:4e: e6:05:54:35:ef:39:4c:a0:94:20:66:86:f6:79:d9:f4:89:8a: 15:63:e1:4e:3f:ac:54:cf:8d:fb:17:07:8f:8a:fe:11:c9:d8: be:f6:03:2e:35:b3:f9:d7:3a:c6:eb:65:ad:54:33:f9:58:3f: 38:a4:4f:2b:ca:3b:d8:44:fd:c5:5c:68:30:7b:12:50:03:e2: 24:3f:3f:6e:5e:07:d4:6a:fe:88:85:82:03:18:e1:5c:b1:36: 3c:df:c7:74:5d:22:84:9b:f9:59:19:a1:6b:87:76:63:6d:a5: f5:ad:4b:d0:37:ee:48:0c:dc:9f:fa:33:a4:5f:34:78:3f:4b: 47:3a:b6:40:a1:05:6b:20:2b:37:03:ca:4e:27:b7:ef:e1:bc: 9c:02:a3:64:48:65:f6:4e:bb:3d:89:fd:07:fe:38:e7:75:b4: ad:09:73:a9:78:26:91:47:a9:58:3c:b8:18:d2:93:c3:93:71: 88:51:9b:8e:93:f6:6a:77:22:d2:26:5a:2f:c4:66:6c:d5:ff: 03:1b:bc:25 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUHF4a2fGYUwh4Uw6yTbD/eB/E84wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDQwMzAwMDkyOVoX DTI2MDQwNzAwMDkyOVowejFJMEcGA1UEBRNAYjcxMDA3MzhkNWQ1YTgyMGRjYjYy NGE2NGFhMDAwOTlhNDE2NzVlYjFiMTlmNTBiZGUwZmM2ZTlkZGI5ZDcxNzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Jl0LgMA5VsMD36aUA29CX5L/EbK wlZuh9XUj97SxqjPN2Vz8uIpNuU/pw0W+TGk4fb2p+DmmMNcAvrwNmvQnPb0bI5h 9Cqykb+2/jP98527vlkqzmxf/76i0a664GBA0skYcrhj5fVhZbIjEiXZ/4yCaeU+ PmNABB/tk+3IE6xAWXQSzVAfbbjQQRqBbHrM6Wm8gBAhDRtIwliER0DkS6cB+dwa 1kCDYRmOuChytg3oZ5xRePMpi8CdRIImIty2iqIc0ViWX/DIm7lxmWdJJ1Aw66iY 9aV+u2jZWXl+EqdDhyX4/u5ycDbdoab1qYLpkM1qytzxjFCC30OPcbprLQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFFPqpmSpluEz4SCR7hfXZKr+XKMOMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGuahN4ccs3T+w6KwzLqNXs8UOLeDaVQ v2yIb4UZzWLhzGR3X7Zkz512I1kc19uhd3Q6VZt8TuYFVDXvOUyglCBmhvZ52fSJ ihVj4U4/rFTPjfsXB4+K/hHJ2L72Ay41s/nXOsbrZa1UM/lYPzikTyvKO9hE/cVc aDB7ElAD4iQ/P25eB9Rq/oiFggMY4VyxNjzfx3RdIoSb+VkZoWuHdmNtpfWtS9A3 7kgM3J/6M6RfNHg/S0c6tkChBWsgKzcDyk4nt+/hvJwCo2RIZfZOuz2J/Qf+OOd1 tK0Jc6l4JpFHqVg8uBjSk8OTcYhRm46T9mp3ItImWi/EZmzV/wMbvCU= -----END CERTIFICATE-----Generated at Fri Apr 3 17:54:58 2026 by rpki-client