$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: yDdLFUurJ79ABb0faEk2nwFt3nC39AgsKW8eQb9V3Os= Subject key identifier: 0B:F8:D9:5A:69:D1:FB:39:BA:86:0F:33:85:55:34:6D:FB:12:03:15 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 474650B45BC8DC87B0C6274862E940496622FF64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 058D Signing time: Sat 28 Mar 2026 00:07:54 +0000 Manifest this update: Sat 28 Mar 2026 00:07:54 +0000 Manifest next update: Wed 01 Apr 2026 00:07:54 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: oQ2b4jnY1BNO+Ruj+DznTbMQEWlfhyCsy94h1T6Qg/Q=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:46:50:b4:5b:c8:dc:87:b0:c6:27:48:62:e9:40:49:66:22:ff:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Mar 28 00:07:54 2026 GMT Not After : Apr 1 00:07:54 2026 GMT Subject: serialNumber=6151b6df6ae46d62150195a7bd279e6708a687a9b79d80003fd6173a891a3668, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:2f:d2:bc:31:2e:13:2a:a2:7f:19:25:14:eb: 7c:6f:6c:1f:d6:aa:e7:81:8f:16:ff:7c:93:59:04: be:74:ee:0c:d0:ab:16:51:27:8d:da:7b:06:7c:ef: 46:bf:14:39:45:9c:21:1a:9d:c3:da:7d:c3:96:69: 64:22:fa:47:d1:a1:67:24:24:d1:9c:6c:37:c4:e4: dd:c5:d7:d5:4f:77:8a:81:16:cc:98:10:b1:76:86: 0d:4d:b7:fc:18:3c:12:79:62:50:76:ac:3f:8b:9f: 9b:c5:eb:ba:3d:26:06:cb:19:ed:b4:a3:c2:0e:a6: 21:79:6a:8e:f2:36:3f:e3:4b:52:8f:53:81:ec:86: 4d:a5:80:19:12:36:bc:e3:05:d2:4d:d5:a7:41:22: 41:ec:9c:34:d2:82:52:eb:7c:c9:4d:33:d5:61:c1: e4:21:08:b5:ae:36:53:32:5f:49:c3:5e:39:56:f3: dc:9a:46:28:d3:c9:46:a0:65:50:a0:bb:76:53:98: e0:a1:0e:ec:c0:38:29:7e:9f:64:28:58:f4:95:49: 80:d1:d3:7f:90:03:6b:b9:5f:76:81:a1:cf:5e:fa: ce:9c:c1:b7:31:ec:4b:ec:76:ec:33:61:71:05:d8: 5f:c5:b7:7c:10:cb:4e:48:2f:08:cc:c9:09:6c:dc: 0d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:F8:D9:5A:69:D1:FB:39:BA:86:0F:33:85:55:34:6D:FB:12:03:15 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:26:d3:9f:fe:c3:68:97:39:de:5e:8e:4c:b4:21:66:4a:78: c7:9d:95:b9:29:d6:6e:db:3b:12:a5:c9:22:c7:70:46:94:04: b2:c8:35:d9:44:9a:24:86:22:fe:d3:4c:56:f8:d3:61:63:cb: 7a:f2:17:f7:52:03:a8:a4:b4:95:92:53:14:00:57:28:e7:79: f2:88:79:ef:6f:ca:ae:19:fa:c6:a8:ea:6b:31:c8:94:05:5a: 12:11:35:6c:b8:14:b2:28:8d:e4:d3:c5:a0:66:04:5f:f2:55: e4:94:d3:ad:ad:e6:a0:65:69:11:3a:fc:30:fc:8a:24:86:9b: eb:f8:c7:9c:3c:2e:62:25:3d:bb:cc:39:d1:38:b5:c9:d8:28: 2d:57:1b:5a:e8:5b:d2:ba:d3:77:d8:67:5c:ad:19:d8:73:94: 92:1c:0e:15:cc:76:a9:54:42:de:b7:ae:2e:98:97:92:f6:ce: 31:a1:67:56:06:fd:b7:55:a9:a9:c2:ab:f5:5a:97:a8:aa:e0: f2:80:39:33:2f:84:da:81:8e:a8:68:f3:f1:db:90:df:0f:ef: c1:31:2a:9e:5c:68:75:7a:10:05:67:7e:0f:c0:71:48:27:05: ed:ee:17:53:14:d5:49:eb:c3:e3:f6:82:d1:aa:ee:8b:ad:da: c3:4f:8c:06 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUR0ZQtFvI3IewxidIYulASWYi/2QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDMyODAwMDc1NFoX DTI2MDQwMTAwMDc1NFowejFJMEcGA1UEBRNANjE1MWI2ZGY2YWU0NmQ2MjE1MDE5 NWE3YmQyNzllNjcwOGE2ODdhOWI3OWQ4MDAwM2ZkNjE3M2E4OTFhMzY2ODEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkS/SvDEuEyqifxklFOt8b2wf1qrn gY8W/3yTWQS+dO4M0KsWUSeN2nsGfO9GvxQ5RZwhGp3D2n3DlmlkIvpH0aFnJCTR nGw3xOTdxdfVT3eKgRbMmBCxdoYNTbf8GDwSeWJQdqw/i5+bxeu6PSYGyxnttKPC DqYheWqO8jY/40tSj1OB7IZNpYAZEja84wXSTdWnQSJB7Jw00oJS63zJTTPVYcHk IQi1rjZTMl9Jw145VvPcmkYo08lGoGVQoLt2U5jgoQ7swDgpfp9kKFj0lUmA0dN/ kANruV92gaHPXvrOnMG3MexL7HbsM2FxBdhfxbd8EMtOSC8IzMkJbNwN2wIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFAv42Vpp0fs5uoYPM4VVNG37EgMVMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBADAm05/+w2iXOd5ejky0IWZKeMedlbkp 1m7bOxKlySLHcEaUBLLINdlEmiSGIv7TTFb402Fjy3ryF/dSA6iktJWSUxQAVyjn efKIee9vyq4Z+sao6msxyJQFWhIRNWy4FLIojeTTxaBmBF/yVeSU062t5qBlaRE6 /DD8iiSGm+v4x5w8LmIlPbvMOdE4tcnYKC1XG1roW9K603fYZ1ytGdhzlJIcDhXM dqlUQt63ri6Yl5L2zjGhZ1YG/bdVqanCq/Val6iq4PKAOTMvhNqBjqho8/HbkN8P 78ExKp5caHV6EAVnfg/AcUgnBe3uF1MU1Unrw+P2gtGq7out2sNPjAY= -----END CERTIFICATE-----Generated at Sat Mar 28 21:41:43 2026 by rpki-client