$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: cuFRPfDWgYWSh21Pd/9Mk7xN1wJUh9/SVl0PshhChvc= Subject key identifier: A1:EF:27:25:CB:D2:80:34:4E:88:F1:CE:D2:98:34:E0:56:AB:74:78 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 60C854A4152A2295CFD2632D59918AA3A3E95BA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 05A0 Signing time: Thu 16 Apr 2026 00:11:51 +0000 Manifest this update: Thu 16 Apr 2026 00:11:51 +0000 Manifest next update: Mon 20 Apr 2026 00:11:51 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: IT8jfsxhSR9A6MACvXdz+5reYxac5uiqaWW4sHhztNI=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 00:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:c8:54:a4:15:2a:22:95:cf:d2:63:2d:59:91:8a:a3:a3:e9:5b:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 16 00:11:51 2026 GMT Not After : Apr 20 00:11:51 2026 GMT Subject: serialNumber=83b21bbe7f840c8dbd21f083fb059a6bd8cecb6282c9b5161b00af64287a9caa, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:bc:70:f7:4b:3d:f6:48:c6:fc:a4:d4:ef:02: 25:d6:2d:3e:22:d8:45:95:d5:09:a4:97:a4:5f:63: 45:f7:f0:60:d4:5e:08:82:19:a2:f4:24:aa:9c:73: 64:83:6f:f6:37:11:69:e2:28:7a:8a:49:4d:8e:a4: 17:b7:d3:65:96:73:c6:c6:68:83:51:2f:d4:5b:1d: 15:98:d5:90:86:40:21:c5:6c:cf:8b:fd:a7:79:cd: 3d:02:e1:01:d9:50:c1:0c:a2:53:9c:ac:3c:22:2c: 54:70:50:07:b7:09:bb:d0:c7:96:06:b4:14:5d:4a: 3c:3d:d2:c4:33:f0:6b:4e:6c:5a:09:c6:45:b2:18: 3f:ef:9b:77:0e:89:6e:2a:99:dd:4f:06:23:72:1c: d7:71:3a:5f:e5:fa:b4:3d:80:a9:0d:06:98:4d:fb: 9f:a9:52:c7:9e:e0:34:20:4c:d2:27:d1:75:52:51: de:1e:ad:7d:5e:b5:cd:3d:51:93:1c:6c:e9:08:84: 4c:f0:28:ff:5e:7a:f7:84:ca:fd:27:b2:1f:d0:ee: 0e:d9:45:60:0a:e3:bc:dd:3c:e6:0e:e4:92:78:24: 5c:7c:b9:60:26:1c:be:44:c3:d6:3d:c6:d5:81:38: a5:47:10:a6:b2:61:b9:08:a7:1e:1d:4d:ce:03:0f: 89:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:EF:27:25:CB:D2:80:34:4E:88:F1:CE:D2:98:34:E0:56:AB:74:78 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:6b:49:d7:bb:74:8f:00:2b:ab:01:50:22:ae:b3:da:96:0d: 1e:f4:70:91:74:1e:d8:b0:08:2c:7b:8a:90:44:d7:69:c1:4a: b7:d5:13:a6:e9:72:b4:f5:45:30:fd:ab:40:b3:b2:0f:a9:c0: de:4d:05:72:90:a5:1a:7c:56:6b:a2:39:f0:94:07:5e:de:a1: aa:86:de:b5:27:55:f9:8e:62:ed:78:b8:f1:1b:95:0e:a3:86: 60:ce:83:c0:50:6c:8d:d4:81:54:9b:ff:e9:b5:50:76:f4:a3: 72:e2:bb:e8:e7:33:ab:02:30:82:1d:63:fc:01:bd:72:d7:11: aa:52:34:6e:31:b7:19:e8:6c:bd:87:83:cb:95:ed:20:4e:e0: ad:d9:ba:ff:30:95:de:57:b3:52:9a:c4:3b:99:00:a6:a2:f8: b9:89:d3:1d:6e:44:c8:88:c0:e2:4a:bd:c1:52:3d:d3:ab:bd: 0c:b9:8e:b5:50:b7:25:02:6e:1f:25:98:de:20:dc:e3:71:e9: fa:33:b2:d4:e2:e6:51:4c:93:88:d8:13:2e:ea:7a:75:ea:13: e3:a8:d4:b3:15:e1:9a:01:39:2d:b8:90:a8:c3:d4:ce:64:b7: 46:8b:d5:b3:ba:45:87:ed:18:c9:c4:13:53:8f:86:0f:9c:56: 6d:65:57:36 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUYMhUpBUqIpXP0mMtWZGKo6PpW6AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDQxNjAwMTE1MVoX DTI2MDQyMDAwMTE1MVowejFJMEcGA1UEBRNAODNiMjFiYmU3Zjg0MGM4ZGJkMjFm MDgzZmIwNTlhNmJkOGNlY2I2MjgyYzliNTE2MWIwMGFmNjQyODdhOWNhYTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvLxw90s99kjG/KTU7wIl1i0+IthF ldUJpJekX2NF9/Bg1F4Ighmi9CSqnHNkg2/2NxFp4ih6iklNjqQXt9NllnPGxmiD US/UWx0VmNWQhkAhxWzPi/2nec09AuEB2VDBDKJTnKw8IixUcFAHtwm70MeWBrQU XUo8PdLEM/BrTmxaCcZFshg/75t3DoluKpndTwYjchzXcTpf5fq0PYCpDQaYTfuf qVLHnuA0IEzSJ9F1UlHeHq19XrXNPVGTHGzpCIRM8Cj/Xnr3hMr9J7If0O4O2UVg CuO83TzmDuSSeCRcfLlgJhy+RMPWPcbVgTilRxCmsmG5CKceHU3OAw+JjwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFKHvJyXL0oA0TojxztKYNOBWq3R4MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAAZrSde7dI8AK6sBUCKus9qWDR70cJF0 HtiwCCx7ipBE12nBSrfVE6bpcrT1RTD9q0Czsg+pwN5NBXKQpRp8VmuiOfCUB17e oaqG3rUnVfmOYu14uPEblQ6jhmDOg8BQbI3UgVSb/+m1UHb0o3Liu+jnM6sCMIId Y/wBvXLXEapSNG4xtxnobL2Hg8uV7SBO4K3Zuv8wld5Xs1KaxDuZAKai+LmJ0x1u RMiIwOJKvcFSPdOrvQy5jrVQtyUCbh8lmN4g3ONx6fozstTi5lFMk4jYEy7qenXq E+Oo1LMV4ZoBOS24kKjD1M5kt0aL1bO6RYftGMnEE1OPhg+cVm1lVzY= -----END CERTIFICATE-----Generated at Fri Apr 17 00:56:28 2026 by rpki-client