$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: Vw+A29h2tPvpaHRr5ycBEZieYFIRpKN2T4HH11DL47Q= Subject key identifier: DD:7D:2B:87:03:C5:91:D2:23:EC:A6:54:74:7E:02:A3:32:0B:75:B3 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 1B2C6A17668A39284F869CFC22D36AD1338D42F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0590 Signing time: Tue 31 Mar 2026 00:08:44 +0000 Manifest this update: Tue 31 Mar 2026 00:08:44 +0000 Manifest next update: Sat 04 Apr 2026 00:08:44 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: 7ou9DMNZJLfxOH8uyCiIWBDoV/OjvEUGOD11Ki6JcW8=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 00:08:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:2c:6a:17:66:8a:39:28:4f:86:9c:fc:22:d3:6a:d1:33:8d:42:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Mar 31 00:08:44 2026 GMT Not After : Apr 4 00:08:44 2026 GMT Subject: serialNumber=c3576c5db54b990658e061455aed56b838177b71156da552757f80d7898e638d, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a1:b9:35:ee:2c:c3:e5:2e:5d:51:83:cd:40: ee:36:63:98:48:b0:c5:3d:52:a9:18:12:d9:b3:38: 64:36:5d:23:9d:59:b2:3f:05:85:42:74:e8:9b:34: c2:c8:2d:af:aa:ee:3e:4e:f1:39:d5:5d:e6:fe:f6: 92:e4:9b:98:de:6f:8c:d4:d0:83:f5:b7:92:2a:91: de:bd:26:7b:50:b9:a9:ea:8c:b7:ca:6f:ea:aa:3a: 50:45:30:42:c3:81:76:8d:6d:cc:95:3c:76:03:32: f3:9c:6d:a7:1c:2d:2e:32:e1:71:57:4e:7c:4a:4b: 95:4c:85:ba:e1:78:90:f2:09:e5:b0:e5:68:40:ff: ea:0a:e5:08:f2:25:dc:94:d3:61:c6:3b:2c:d9:f0: ba:03:60:af:ed:81:6c:4c:53:85:3f:e4:a7:34:10: 1e:fd:eb:83:4d:69:46:e3:c8:68:f1:62:27:83:65: 84:ff:b1:b2:2e:1d:47:0f:db:3d:85:07:ac:c0:df: ea:2f:90:f2:ab:4f:a5:22:1d:d9:2d:03:30:b9:65: c2:b8:e6:a9:da:d3:0b:cd:b2:43:6a:3c:88:b6:06: 0b:0a:a0:2e:2d:ef:d8:aa:77:ec:68:61:0c:2c:45: e9:fd:78:91:35:a4:fb:f3:59:34:58:a0:f3:1c:63: cb:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:7D:2B:87:03:C5:91:D2:23:EC:A6:54:74:7E:02:A3:32:0B:75:B3 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption de:55:dc:1b:d2:41:f7:87:be:d5:62:da:8c:b2:8e:f5:8b:8f: 5f:4c:74:f1:c7:96:4b:ec:aa:9e:21:1a:3a:35:40:54:40:18: 0c:73:30:af:83:40:c5:3b:00:4d:c9:6a:62:51:c5:ec:df:35: 94:28:4f:b8:a0:0d:65:c6:dd:a3:e1:c3:1f:d7:33:2f:c1:03: c1:96:8f:de:18:88:2e:08:b7:9e:02:b8:7a:d6:5f:64:e3:c2: 52:71:2e:80:6b:5a:64:da:80:2a:11:d4:be:60:29:cb:0c:d8: 5c:74:32:a6:4e:16:26:69:e6:a6:6e:a2:b2:cd:49:0d:c7:15: 57:a6:1b:e9:eb:12:16:2c:c6:b1:61:19:32:e7:01:1c:ce:24: 15:66:a6:e8:7b:18:69:37:64:60:20:db:d9:f5:4f:04:42:ce: 37:6f:ee:09:6f:80:40:16:3e:77:98:85:34:37:07:d6:be:0a: 81:33:62:7f:49:2d:0b:86:59:95:5a:5a:57:1a:cf:56:61:1f: 88:87:d3:b3:1b:4f:3d:08:dc:f7:80:6e:ba:6f:2b:e0:86:5a: 43:8f:94:6d:0b:d5:f0:85:8c:97:e4:3c:13:74:eb:97:21:7f: 2e:fc:28:51:2f:e4:2f:42:4f:51:7f:b3:69:c0:09:95:73:1b: 21:fc:0e:49 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUGyxqF2aKOShPhpz8ItNq0TONQvkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDMzMTAwMDg0NFoX DTI2MDQwNDAwMDg0NFowejFJMEcGA1UEBRNAYzM1NzZjNWRiNTRiOTkwNjU4ZTA2 MTQ1NWFlZDU2YjgzODE3N2I3MTE1NmRhNTUyNzU3ZjgwZDc4OThlNjM4ZDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr6G5Ne4sw+UuXVGDzUDuNmOYSLDF PVKpGBLZszhkNl0jnVmyPwWFQnTomzTCyC2vqu4+TvE51V3m/vaS5JuY3m+M1NCD 9beSKpHevSZ7ULmp6oy3ym/qqjpQRTBCw4F2jW3MlTx2AzLznG2nHC0uMuFxV058 SkuVTIW64XiQ8gnlsOVoQP/qCuUI8iXclNNhxjss2fC6A2Cv7YFsTFOFP+SnNBAe /euDTWlG48ho8WIng2WE/7GyLh1HD9s9hQeswN/qL5Dyq0+lIh3ZLQMwuWXCuOap 2tMLzbJDajyItgYLCqAuLe/YqnfsaGEMLEXp/XiRNaT781k0WKDzHGPLhwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFN19K4cDxZHSI+ymVHR+AqMyC3WzMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAN5V3BvSQfeHvtVi2oyyjvWLj19MdPHH lkvsqp4hGjo1QFRAGAxzMK+DQMU7AE3JamJRxezfNZQoT7igDWXG3aPhwx/XMy/B A8GWj94YiC4It54CuHrWX2TjwlJxLoBrWmTagCoR1L5gKcsM2Fx0MqZOFiZp5qZu orLNSQ3HFVemG+nrEhYsxrFhGTLnARzOJBVmpuh7GGk3ZGAg29n1TwRCzjdv7glv gEAWPneYhTQ3B9a+CoEzYn9JLQuGWZVaWlcaz1ZhH4iH07MbTz0I3PeAbrpvK+CG WkOPlG0L1fCFjJfkPBN065chfy78KFEv5C9CT1F/s2nACZVzGyH8Dkk= -----END CERTIFICATE-----Generated at Tue Mar 31 23:37:02 2026 by rpki-client