$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: Er0BVNjy+5hE7I9Ts10Ae8RueiwKyyu3SQROEYy4qGk= Subject key identifier: F0:99:CD:1E:7E:F2:6C:A1:7F:1A:A2:52:E2:5C:21:16:32:D4:B4:21 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 16E04D21C15158A6E7D6F7FEE909C29F399ADE1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 058F Signing time: Mon 30 Mar 2026 00:08:36 +0000 Manifest this update: Mon 30 Mar 2026 00:08:36 +0000 Manifest next update: Fri 03 Apr 2026 00:08:36 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: LPddfX/yW0VdxxN6Y9XxmZDULjS/aAYT4B066BtFowc=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 00:08:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:e0:4d:21:c1:51:58:a6:e7:d6:f7:fe:e9:09:c2:9f:39:9a:de:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Mar 30 00:08:36 2026 GMT Not After : Apr 3 00:08:36 2026 GMT Subject: serialNumber=98a7ab070a492701989c562d324f493b1da1af9ee076c3668417e987317079cf, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:dc:18:c5:e4:e1:ff:fd:5c:c5:44:0d:df:4a: 20:82:a3:ef:b9:db:3d:7e:ed:c6:bc:d6:42:8a:3b: ce:2e:4c:84:fe:c2:3b:18:7d:94:1a:e1:d3:f4:80: 9f:69:4a:b6:73:2e:ab:f5:83:db:2d:3c:e0:e3:9b: a3:ba:0f:b3:97:6c:05:44:f2:30:48:20:59:b8:bd: fe:5d:76:9e:4f:b1:25:5d:04:39:52:ed:fc:36:2c: 65:43:ea:0a:1d:e2:d6:cc:bf:08:c4:d6:77:f1:1c: 89:7d:a8:ba:8e:10:a5:6b:d3:ff:64:47:5b:20:e9: 73:f4:cc:2f:53:0d:1b:f8:9c:30:77:94:ce:d4:4f: c6:05:1c:a3:64:4b:a5:eb:60:43:5d:96:d3:a4:67: 45:11:2e:72:56:8f:32:b6:a5:8d:92:24:2b:66:50: 72:81:14:87:63:a1:89:5e:7d:62:ba:e6:55:b8:06: 3a:a6:eb:82:da:7f:34:7c:0a:34:23:2a:ab:15:46: a0:e3:fb:8e:15:a4:87:1f:9b:9c:7e:f9:b1:d6:0c: 82:6c:4f:cb:e7:f2:22:28:2b:26:b2:c6:af:99:2b: 17:a1:f9:fd:2c:f8:33:ec:94:ce:a3:18:d0:59:1a: b4:1a:bc:88:43:35:68:30:e5:cf:3d:5a:8f:11:bc: 1b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:99:CD:1E:7E:F2:6C:A1:7F:1A:A2:52:E2:5C:21:16:32:D4:B4:21 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:07:ae:46:20:c8:ee:2b:d3:2f:31:02:92:e8:bf:31:82:5d: d2:f2:36:bc:99:d9:03:6d:c1:f8:45:d9:bd:18:c4:26:da:cc: 17:69:5f:f4:e5:df:bf:be:71:97:99:a8:f1:d4:76:7d:16:3d: f9:df:37:30:ed:ab:ff:fc:15:0b:e8:2c:24:51:da:60:ff:3a: b7:3c:a2:ed:fc:d9:52:ea:aa:2e:1c:ff:47:88:a2:63:86:43: 2f:2a:8f:70:4e:81:17:36:ff:0e:36:e6:49:2b:29:73:f2:6e: 3c:73:bc:be:d5:13:00:20:91:d0:f4:70:b5:b1:5a:3a:a3:de: ba:4e:80:0a:cd:d1:48:26:c1:15:8f:29:d5:e4:d4:ec:bb:6e: f1:b3:19:4b:0b:69:aa:c4:24:32:30:0f:50:5d:77:24:79:bf: c0:8b:2a:0d:48:53:51:63:4c:d7:9c:f0:f6:d9:18:74:39:6f: e6:b7:62:2a:b6:0f:ce:02:88:80:ad:cc:4c:6a:19:20:c0:1c: cc:86:74:dd:87:63:34:a2:4f:4a:19:8d:93:10:1c:0c:3c:d5: 7e:5d:04:b1:a3:3b:33:72:2c:f6:10:ab:cb:b2:6b:ed:18:e0: 01:fc:1a:81:07:a5:4a:0f:09:7d:e4:b3:7a:5b:7b:fa:63:7d: 74:6e:b8:c8 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUFuBNIcFRWKbn1vf+6QnCnzma3hwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDMzMDAwMDgzNloX DTI2MDQwMzAwMDgzNlowejFJMEcGA1UEBRNAOThhN2FiMDcwYTQ5MjcwMTk4OWM1 NjJkMzI0ZjQ5M2IxZGExYWY5ZWUwNzZjMzY2ODQxN2U5ODczMTcwNzljZjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1dwYxeTh//1cxUQN30oggqPvuds9 fu3GvNZCijvOLkyE/sI7GH2UGuHT9ICfaUq2cy6r9YPbLTzg45ujug+zl2wFRPIw SCBZuL3+XXaeT7ElXQQ5Uu38NixlQ+oKHeLWzL8IxNZ38RyJfai6jhCla9P/ZEdb IOlz9MwvUw0b+Jwwd5TO1E/GBRyjZEul62BDXZbTpGdFES5yVo8ytqWNkiQrZlBy gRSHY6GJXn1iuuZVuAY6puuC2n80fAo0IyqrFUag4/uOFaSHH5ucfvmx1gyCbE/L 5/IiKCsmssavmSsXofn9LPgz7JTOoxjQWRq0GryIQzVoMOXPPVqPEbwbMQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFPCZzR5+8myhfxqiUuJcIRYy1LQhMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBACMHrkYgyO4r0y8xApLovzGCXdLyNryZ 2QNtwfhF2b0YxCbazBdpX/Tl37++cZeZqPHUdn0WPfnfNzDtq//8FQvoLCRR2mD/ Orc8ou382VLqqi4c/0eIomOGQy8qj3BOgRc2/w425kkrKXPybjxzvL7VEwAgkdD0 cLWxWjqj3rpOgArN0UgmwRWPKdXk1Oy7bvGzGUsLaarEJDIwD1BddyR5v8CLKg1I U1FjTNec8PbZGHQ5b+a3Yiq2D84CiICtzExqGSDAHMyGdN2HYzSiT0oZjZMQHAw8 1X5dBLGjOzNyLPYQq8uya+0Y4AH8GoEHpUoPCX3ks3pbe/pjfXRuuMg= -----END CERTIFICATE-----Generated at Mon Mar 30 07:25:16 2026 by rpki-client