$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: 7ll5SoG6/xOGdT70xM1kEXE8eyVI1T6I1awNP745K98= Subject key identifier: 82:45:06:91:53:C5:14:79:E1:52:4E:04:9F:30:DB:06:CB:B5:CE:28 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 0446E56F3CC24D29889493E18BE0998E0E34420A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0504 Signing time: Thu 13 Nov 2025 00:01:17 +0000 Manifest this update: Thu 13 Nov 2025 00:01:17 +0000 Manifest next update: Mon 17 Nov 2025 00:01:17 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: IZjqCDuu48x7AjQOOlR475AlABLppx+n0KPWP3mbyaw=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: LMkOhR8oitnpWIWwo+ff7iHTil9wckIVvZSko8EEekQ=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: JGG4dTO8UJf/vYGc8fwxTAOM1h6nEPP82EI/7Dv4FHU=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: jDHBtwMBzYSi4P0fn3XAbSekObMYKY5AXZtkxUVJ6Tg=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: fe034WnBtuFinRptIYu7rq19OozfzbkZbEFpFjLILHE=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: tvlz6rdf6o1VhTj9MN74UhRyGtkmPrUWF+QfcAN2XXk=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: 77L/bNHp8w4yFCp+OLzg5ldZu/g8b3ZjRhypYKOpX2o=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: 4627E3Mj815EcaXkX3BTu4n4/Fyc8pjeRhwmHUjWB4E=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: IkDmY2VrM+MUCXVE/KGDwQp38xJerke+gZfTRPzKW38=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: 1LQDJZsx6Ih/p1JXbixCJFIni4NstX9kTQqLItMf6Bo=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: uqGyuI64MyoSB2aCcDH4ZYFIVtRIimLKr+qLtdzGGDc=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: YDEb1HZpmKP7sx/WuOw3OFG2ObkpXND2FyRZjfR2dvk=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: iZ5upg9JhYgqzuisO9iMHg6o3uglr67eIAFDAVOMJFQ=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: zj3uaCJ1OVw76COdDaPaPY8yFlOeR+/ReGZ6syX0RDg=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: qeiN2jY48ldTzPZErmuiZOmp5qE9mu9/GnZEk7z/YWM=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: UaHt+4lelzGalTP6o6RTVxgEfhRYbwB09w3EQYZfbmg=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: sbGSBiN+e2Ag51zrXc1UwPae+VvT58VQo1yXZWqJMvI=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: Z9np75TZ9Xp1a9ECxf2+DE3mfvCD/7fxNnuBJSZrfSo=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: D8bBPQUOCTEk8pdNz92K1MRwyNVwdAT9TarkZGSGScU=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: aXN/Mp7fby5XcX6lsymhb6JcsHglVTPldRt7Y8yfOuw=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: 9OizPigUZE6/PAl/qV5jIptlHQkQvMFcwl8vNkU9a3A=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: 8yPh7RFUtDHIOMlg2c13wT8N//u27y/UzlNQTFASLCE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Nov 2025 00:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:46:e5:6f:3c:c2:4d:29:88:94:93:e1:8b:e0:99:8e:0e:34:42:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 13 00:01:17 2025 GMT Not After : Nov 17 00:01:17 2025 GMT Subject: serialNumber=fa9e9cd96de72c4619690851ae88dc83726a1ec0bd19ffc3d290b2aa86f4ce9d, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c3:b2:e9:d9:63:86:62:7f:cc:c4:08:50:2b: 5c:a0:5c:73:9d:c2:92:d5:16:9e:df:c7:f5:5d:87: 58:f2:c9:8e:44:8d:a8:d9:df:e7:89:32:ec:f1:33: d7:a2:07:13:3c:92:d5:fa:78:47:e4:cc:32:f9:b3: 73:60:55:1d:e1:68:fa:0b:59:83:d3:0e:60:a3:fc: 67:b0:b4:f3:4b:b5:70:65:76:af:bf:e9:87:cf:6b: a7:91:98:bf:2e:33:38:ea:f9:c1:43:43:81:ea:95: 3f:e8:e2:80:83:b7:a8:b1:8a:a5:2f:7e:51:72:60: 2b:c0:6b:16:c8:58:a4:a4:a5:d9:ff:50:15:a6:67: 5a:2c:bd:cb:de:9f:8a:e1:56:4a:9e:b4:95:eb:39: 71:c8:3a:3c:bc:3f:a7:9c:11:54:64:b1:23:2a:2d: c7:0c:f2:44:16:4a:64:4f:00:08:41:98:5d:bf:a5: dc:6b:d9:d7:74:df:9a:3b:78:0b:55:89:35:af:bb: 25:c9:8c:83:04:1d:2f:57:67:26:25:ab:e1:d8:37: f4:d6:74:aa:18:a7:71:06:b0:3f:1d:7d:da:85:a0: 67:7f:bc:6d:18:45:95:45:3d:8e:d6:8f:3e:0e:b0: df:99:ba:47:dd:fc:c1:01:9a:24:9e:ce:fb:f6:e4: f8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:45:06:91:53:C5:14:79:E1:52:4E:04:9F:30:DB:06:CB:B5:CE:28 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption db:b4:36:d1:20:8e:62:7b:4c:49:65:8c:90:04:6f:66:ae:f8: d9:7e:d0:c6:f5:4c:94:64:e1:9a:e0:8c:f7:77:b9:78:9e:60: 3f:36:a1:0a:81:9d:a4:c0:91:11:35:3a:2c:6b:09:ce:4d:5f: 02:45:d1:7c:5c:99:57:24:57:5c:fa:c3:d4:c3:9b:3d:b7:c7: d7:71:2a:32:fd:33:4e:37:61:63:df:86:da:48:99:55:22:46: 3f:9d:ea:84:6e:b4:cc:57:78:bd:75:5c:39:f6:a2:06:2c:63: 5b:68:ae:8a:b8:46:e2:63:1f:4d:a0:79:cb:4a:88:e4:47:8d: 74:36:2c:aa:b7:b7:40:20:ed:85:53:a5:f9:df:bc:f0:46:01: d1:c1:2f:4c:4f:f6:ac:25:82:a9:82:f7:fa:62:65:df:5b:e2: ca:18:ed:28:63:ae:26:02:a4:bf:21:7c:69:fa:87:2d:38:8e: 49:96:7b:c6:9f:bc:ba:24:1a:a9:cb:06:be:e2:b3:83:18:4f: 02:52:36:81:b6:2c:fa:d8:2f:db:97:20:48:c6:5f:35:8d:5f: 3f:f1:81:b5:96:7d:96:28:98:94:9a:1f:ab:91:d7:93:d2:f6: c7:74:3a:3f:fb:25:dc:ee:99:33:a6:b8:f5:4a:a2:8e:da:64: 1e:38:17:82 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUBEblbzzCTSmIlJPhi+CZjg40QgowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExMzAwMDExN1oX DTI1MTExNzAwMDExN1owejFJMEcGA1UEBRNAZmE5ZTljZDk2ZGU3MmM0NjE5Njkw ODUxYWU4OGRjODM3MjZhMWVjMGJkMTlmZmMzZDI5MGIyYWE4NmY0Y2U5ZDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMOy6dljhmJ/zMQIUCtcoFxzncKS 1Rae38f1XYdY8smORI2o2d/niTLs8TPXogcTPJLV+nhH5Mwy+bNzYFUd4Wj6C1mD 0w5go/xnsLTzS7VwZXavv+mHz2unkZi/LjM46vnBQ0OB6pU/6OKAg7eosYqlL35R cmArwGsWyFikpKXZ/1AVpmdaLL3L3p+K4VZKnrSV6zlxyDo8vD+nnBFUZLEjKi3H DPJEFkpkTwAIQZhdv6Xca9nXdN+aO3gLVYk1r7slyYyDBB0vV2cmJavh2Df01nSq GKdxBrA/HX3ahaBnf7xtGEWVRT2O1o8+DrDfmbpH3fzBAZokns779uT4swIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFIJFBpFTxRR54VJOBJ8w2wbLtc4oMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBANu0NtEgjmJ7TElljJAEb2au+Nl+0Mb1 TJRk4ZrgjPd3uXieYD82oQqBnaTAkRE1OixrCc5NXwJF0XxcmVckV1z6w9TDmz23 x9dxKjL9M043YWPfhtpImVUiRj+d6oRutMxXeL11XDn2ogYsY1toroq4RuJjH02g ectKiORHjXQ2LKq3t0Ag7YVTpfnfvPBGAdHBL0xP9qwlgqmC9/piZd9b4soY7Shj riYCpL8hfGn6hy04jkmWe8afvLokGqnLBr7is4MYTwJSNoG2LPrYL9uXIEjGXzWN Xz/xgbWWfZYomJSaH6uR15PS9sd0Oj/7JdzumTOmuPVKoo7aZB44F4I= -----END CERTIFICATE-----Generated at Thu Nov 13 14:38:00 2025 by rpki-client