$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: bxi8aipRdFp/BxMNJVmNAkl6481mlamyuTLiTUhf4iM= Subject key identifier: 2C:EB:50:BD:9D:61:33:38:BD:56:F1:D4:AB:C5:F7:F9:35:3A:4B:99 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 6971FC9F215EBDCD4F8FF88EC6A6EA492B155F6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 058C Signing time: Fri 27 Mar 2026 00:07:41 +0000 Manifest this update: Fri 27 Mar 2026 00:07:41 +0000 Manifest next update: Tue 31 Mar 2026 00:07:41 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: H4FRlXW3o5co2YD6Znu9gVAlL2Z7r3g1CtoTNzg/t6A=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 00:07:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:71:fc:9f:21:5e:bd:cd:4f:8f:f8:8e:c6:a6:ea:49:2b:15:5f:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Mar 27 00:07:41 2026 GMT Not After : Mar 31 00:07:41 2026 GMT Subject: serialNumber=f3e1905d84f6d01b641ead0dddc4f9bf25eea7ec5e9d480a737ce5c3ea9ef97d, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b3:0d:84:29:59:d9:e0:8c:12:20:60:94:a6: 5e:17:2e:40:43:54:2a:00:59:2e:af:2e:6d:14:63: 78:f0:fa:99:bb:84:6d:42:0b:21:aa:3e:e1:68:fa: 4d:04:f0:f0:9e:0b:3f:0f:6a:da:7f:cd:5e:ac:34: fe:5a:ab:ff:3f:00:5b:f7:5a:52:87:69:ca:bf:a2: 77:de:97:9b:3f:9b:df:7c:3a:49:e2:e9:14:00:e9: 95:01:1c:70:57:a0:8b:8f:1b:07:ee:c9:32:d4:33: 61:a7:96:ce:b3:e6:6d:d5:b8:a7:76:53:68:2f:e4: 2d:6a:cd:42:fa:1b:4b:13:79:61:b8:11:33:65:7f: 64:62:28:56:bf:b2:39:cc:e5:e6:3d:fb:12:7a:95: 24:88:94:03:d2:f1:bf:a4:9e:5e:27:e9:7c:3a:fd: 9a:98:73:3f:7a:d2:2c:23:4c:66:e9:2b:24:68:1a: 57:74:68:22:a4:64:d2:ce:86:a1:80:e9:e9:d2:a5: 03:6a:1c:73:22:63:b9:0e:c6:22:e3:a6:9d:88:b0: d4:ec:c1:b7:9a:dc:26:c1:7a:6b:cc:ff:39:62:d2: 7b:d4:c6:ae:2d:0c:49:d1:1a:e5:3c:fd:4b:fa:bb: 37:b6:92:9f:c4:a8:56:fb:82:e9:5d:13:94:0b:c4: 0a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:EB:50:BD:9D:61:33:38:BD:56:F1:D4:AB:C5:F7:F9:35:3A:4B:99 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:27:49:b5:b2:ab:b4:45:f8:e1:29:68:c2:17:a5:88:1b:2e: 7c:72:56:ba:1e:4d:43:55:23:e5:c9:6b:3f:d5:f2:9d:f9:ca: fe:bf:42:a3:d8:2d:17:e2:3f:9e:0f:5a:c2:dd:83:b3:a1:4e: a8:24:84:af:ed:ee:ee:2d:b9:6c:a6:ac:59:35:21:95:50:7b: 39:15:18:21:8a:2c:95:e5:6f:a1:dc:c9:85:ca:b4:8e:c2:b4: 87:48:ea:4a:65:0c:44:b0:c9:a8:9d:27:5d:53:57:80:ac:5e: 7a:cd:0d:61:97:87:73:e6:5f:dc:88:c4:e3:47:e9:ae:65:0a: 12:7c:d6:53:9b:24:12:24:76:42:02:b2:9d:87:c0:1d:87:cb: 63:a3:2c:e4:18:78:59:bf:8a:c4:c6:ec:d2:42:a9:ee:f2:81: 5d:98:72:9a:06:6b:ec:26:88:02:23:98:14:1e:53:68:67:ef: 9b:a6:6a:a7:61:d1:57:09:6c:9f:36:ed:1f:62:dc:dc:90:9d: 88:16:7b:f0:fd:44:cf:1e:5e:a0:94:96:bd:d7:1c:6c:2f:85: 48:dc:c0:e9:85:09:2e:f2:75:66:57:c9:a8:69:15:4f:06:6f: 37:91:ce:e1:d2:b8:98:b3:77:01:29:c2:46:6c:97:3d:28:57: c2:85:26:9d -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUaXH8nyFevc1Pj/iOxqbqSSsVX28wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDMyNzAwMDc0MVoX DTI2MDMzMTAwMDc0MVowejFJMEcGA1UEBRNAZjNlMTkwNWQ4NGY2ZDAxYjY0MWVh ZDBkZGRjNGY5YmYyNWVlYTdlYzVlOWQ0ODBhNzM3Y2U1YzNlYTllZjk3ZDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqbMNhClZ2eCMEiBglKZeFy5AQ1Qq AFkury5tFGN48PqZu4RtQgshqj7haPpNBPDwngs/D2raf81erDT+Wqv/PwBb91pS h2nKv6J33pebP5vffDpJ4ukUAOmVARxwV6CLjxsH7sky1DNhp5bOs+Zt1bindlNo L+Qtas1C+htLE3lhuBEzZX9kYihWv7I5zOXmPfsSepUkiJQD0vG/pJ5eJ+l8Ov2a mHM/etIsI0xm6SskaBpXdGgipGTSzoahgOnp0qUDahxzImO5DsYi46adiLDU7MG3 mtwmwXprzP85YtJ71MauLQxJ0RrlPP1L+rs3tpKfxKhW+4LpXROUC8QKSwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFCzrUL2dYTM4vVbx1KvF9/k1OkuZMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAD0nSbWyq7RF+OEpaMIXpYgbLnxyVroe TUNVI+XJaz/V8p35yv6/QqPYLRfiP54PWsLdg7OhTqgkhK/t7u4tuWymrFk1IZVQ ezkVGCGKLJXlb6HcyYXKtI7CtIdI6kplDESwyaidJ11TV4CsXnrNDWGXh3PmX9yI xONH6a5lChJ81lObJBIkdkICsp2HwB2Hy2OjLOQYeFm/isTG7NJCqe7ygV2YcpoG a+wmiAIjmBQeU2hn75umaqdh0VcJbJ827R9i3NyQnYgWe/D9RM8eXqCUlr3XHGwv hUjcwOmFCS7ydWZXyahpFU8GbzeRzuHSuJizdwEpwkZslz0oV8KFJp0= -----END CERTIFICATE-----Generated at Fri Mar 27 17:19:13 2026 by rpki-client