$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: +Q9biG6bQSJTOS5Q4VpoqI723VENTzYXjHxo9DJVvW0= Subject key identifier: F8:95:DE:A0:28:5C:A9:B3:73:4C:AB:32:7B:C7:4F:55:5F:41:6D:66 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 55B1CCC9BF9E3864BB5E0D15C2BD5BE6BCF6ADE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 059E Signing time: Tue 14 Apr 2026 00:11:36 +0000 Manifest this update: Tue 14 Apr 2026 00:11:36 +0000 Manifest next update: Sat 18 Apr 2026 00:11:36 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: NNijHNd+PWppzBDzPIWBFQ4PXBWtmZUuvjhArT3Do+Y=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 00:11:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:b1:cc:c9:bf:9e:38:64:bb:5e:0d:15:c2:bd:5b:e6:bc:f6:ad:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 14 00:11:36 2026 GMT Not After : Apr 18 00:11:36 2026 GMT Subject: serialNumber=f874c90fc8d17bd1277db846ac445dbe4c46ad5dbf46fb264b657c695593cfbb, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1a:0c:69:e6:c5:e9:22:d1:61:5c:32:d3:ca: 17:f9:f5:cf:29:45:c4:64:10:ef:9b:d1:8d:77:37: 46:6a:5c:c3:25:33:da:b6:01:3d:53:10:69:4c:b5: 8e:e9:93:95:5e:97:e4:ff:c7:6d:29:f5:f1:40:50: d2:ce:a3:d4:6e:bf:e4:07:c0:a3:ea:17:03:f0:17: d6:7e:c2:9c:04:c3:31:82:5f:fb:87:e0:ff:7b:44: 25:a7:b1:74:a0:9d:09:ae:96:e9:62:2d:88:21:01: 75:98:3e:30:4e:8d:27:85:25:a1:53:a3:f8:7b:f3: 68:e6:ed:19:d9:40:a6:cd:b1:dc:98:c2:5d:cd:af: 49:c4:85:b9:ce:3b:66:67:71:78:5b:e2:54:26:cd: c6:92:86:1f:fd:19:c2:2c:4d:de:37:46:3c:73:a4: 3b:5f:63:8c:a9:d4:9b:98:f7:9d:9f:bf:80:09:9c: 02:f4:a3:0b:47:75:19:da:00:fc:a9:90:df:d9:c4: 33:3d:fd:3f:ba:67:25:54:c1:55:2f:b0:68:4b:4e: f2:10:f4:c5:34:32:a9:56:d9:1a:9c:64:60:a3:f5: c1:80:47:e7:7b:4a:2c:d2:f2:1b:6a:9c:2f:82:9d: 67:8f:ac:88:95:36:ca:70:be:ea:1c:c9:7e:43:f5: 7d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:95:DE:A0:28:5C:A9:B3:73:4C:AB:32:7B:C7:4F:55:5F:41:6D:66 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:4e:58:7b:f3:98:63:0c:47:0d:0a:6c:b4:b3:19:37:1d:b0: 5f:c7:b7:08:68:a3:d5:fc:72:2b:ab:5b:75:1d:11:ad:3c:77: 66:ba:a4:34:0c:be:8f:a7:99:8a:50:59:59:d0:32:7e:a8:01: b9:93:b1:eb:6b:44:46:69:09:ad:c2:1a:6e:26:84:76:51:23: c4:45:56:13:95:f3:dc:64:25:f1:27:90:2a:1b:13:1e:5c:f1: 76:ef:02:9c:2d:55:77:a3:45:c5:86:4d:d9:69:e0:7e:58:40: bd:55:e7:8f:7e:07:a3:4d:71:28:a3:c0:d5:c8:3a:82:0e:20: 7e:d5:6c:9c:c6:8c:ff:4d:bd:65:a3:d3:02:03:31:ba:1a:42: de:b7:f1:d0:86:34:77:2f:34:8d:41:11:2c:2e:e7:89:d4:fb: f4:88:1a:fc:6e:d2:f8:25:d3:60:24:8f:d9:30:2f:28:20:76: ff:e6:fc:ef:c9:dd:7c:57:53:f1:51:f2:0b:2f:95:50:3d:01: 5f:c9:8b:14:54:19:1b:80:7b:20:7f:22:ff:b5:40:7c:31:f7: 4b:65:59:c8:ba:95:a1:61:95:b6:7f:b0:60:f6:db:f5:60:50: dc:47:46:ea:93:dc:2f:45:bd:e7:30:fc:0e:66:6c:c6:8c:02: 13:25:95:f1 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUVbHMyb+eOGS7Xg0Vwr1b5rz2regwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDQxNDAwMTEzNloX DTI2MDQxODAwMTEzNlowejFJMEcGA1UEBRNAZjg3NGM5MGZjOGQxN2JkMTI3N2Ri ODQ2YWM0NDVkYmU0YzQ2YWQ1ZGJmNDZmYjI2NGI2NTdjNjk1NTkzY2ZiYjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwxoMaebF6SLRYVwy08oX+fXPKUXE ZBDvm9GNdzdGalzDJTPatgE9UxBpTLWO6ZOVXpfk/8dtKfXxQFDSzqPUbr/kB8Cj 6hcD8BfWfsKcBMMxgl/7h+D/e0Qlp7F0oJ0JrpbpYi2IIQF1mD4wTo0nhSWhU6P4 e/No5u0Z2UCmzbHcmMJdza9JxIW5zjtmZ3F4W+JUJs3GkoYf/RnCLE3eN0Y8c6Q7 X2OMqdSbmPedn7+ACZwC9KMLR3UZ2gD8qZDf2cQzPf0/umclVMFVL7BoS07yEPTF NDKpVtkanGRgo/XBgEfne0os0vIbapwvgp1nj6yIlTbKcL7qHMl+Q/V9kwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFPiV3qAoXKmzc0yrMnvHT1VfQW1mMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAFpOWHvzmGMMRw0KbLSzGTcdsF/Htwho o9X8ciurW3UdEa08d2a6pDQMvo+nmYpQWVnQMn6oAbmTsetrREZpCa3CGm4mhHZR I8RFVhOV89xkJfEnkCobEx5c8XbvApwtVXejRcWGTdlp4H5YQL1V549+B6NNcSij wNXIOoIOIH7VbJzGjP9NvWWj0wIDMboaQt638dCGNHcvNI1BESwu54nU+/SIGvxu 0vgl02Akj9kwLyggdv/m/O/J3XxXU/FR8gsvlVA9AV/JixRUGRuAeyB/Iv+1QHwx 90tlWci6laFhlbZ/sGD22/VgUNxHRuqT3C9Fvecw/A5mbMaMAhMllfE= -----END CERTIFICATE-----Generated at Tue Apr 14 10:50:05 2026 by rpki-client