$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: wdo/qk+aPOVLvQy7zvoLF6/Rq/bmXwkOuMyPePJSf7k= Subject key identifier: 9D:B8:6C:B4:FA:F4:B1:BE:12:BD:B0:3D:C7:69:A6:2B:05:9D:CF:90 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 33A2B60015E1EBF58922C0464BE195F62254B9E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0591 Signing time: Wed 01 Apr 2026 00:09:04 +0000 Manifest this update: Wed 01 Apr 2026 00:09:04 +0000 Manifest next update: Sun 05 Apr 2026 00:09:04 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: Ep2nHM16jrhWPaR462YTgmM9uE6a1cJiR/nIT5QDX+4=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 00:09:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:a2:b6:00:15:e1:eb:f5:89:22:c0:46:4b:e1:95:f6:22:54:b9:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 1 00:09:04 2026 GMT Not After : Apr 5 00:09:04 2026 GMT Subject: serialNumber=f816fd9b4524d3f90fa04eb65f230da5509ce845a09cfb76fe9781fe120c8a07, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:03:9c:90:a3:30:3d:3c:e7:47:74:61:a9:61: 8e:39:80:16:7a:ee:cc:4f:0c:b8:4a:d5:a0:61:95: 36:db:cc:fb:70:ae:26:1a:59:74:56:f8:22:22:07: 0e:22:79:e5:75:c9:7f:42:ce:bf:2b:9d:43:18:8d: 93:a3:f0:a0:74:0b:24:66:51:74:32:31:fd:2a:31: 67:6f:65:e5:4f:35:a1:fc:0f:d2:6c:17:fa:6e:65: e5:1f:c1:3c:86:8c:5b:e9:19:e7:b4:42:28:99:cb: 4d:e9:62:b3:08:d9:0e:47:58:b8:f4:3d:a7:62:ac: 7c:ef:e1:76:3e:bb:06:ef:8e:2e:fd:03:06:6b:ba: a1:6e:a1:37:ee:3e:09:16:95:6b:b5:2e:99:96:30: 6f:20:a6:d4:be:c4:88:5c:92:e9:bb:1b:1e:e2:d4: 46:52:2f:95:8c:1a:eb:c7:b4:17:25:6f:2d:5a:01: 8f:99:4c:2d:59:2e:83:df:2a:2f:3c:99:36:84:35: b8:91:2a:ed:0e:3e:d3:f4:a6:4f:57:1f:ce:e4:f6: 65:e9:cf:23:15:c8:b0:9e:28:e9:92:c0:e6:29:5d: 7c:c0:67:05:da:7d:1a:b6:2d:ce:3f:2c:3a:78:1b: ef:99:6d:a8:98:74:3e:22:4d:ff:f8:c8:77:c4:c2: 76:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B8:6C:B4:FA:F4:B1:BE:12:BD:B0:3D:C7:69:A6:2B:05:9D:CF:90 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ea:09:89:83:48:f9:2b:fb:ba:1e:8a:3d:4b:9e:09:3a:41:88: 19:82:5d:3d:e3:da:24:13:46:60:70:90:b1:41:d7:86:33:94: ed:a5:e8:f3:81:31:b4:50:fc:a8:44:34:ed:5d:bf:ee:f4:62: 13:73:6b:50:2e:40:96:85:48:f7:ad:6b:ce:b0:9f:a7:c3:fb: 7d:03:96:fe:a4:fd:f9:49:0b:c8:5c:78:93:dd:1e:74:ac:b7: 63:b5:49:9a:d3:89:f8:f3:79:a3:db:50:8b:8c:30:e7:0f:5f: 5d:0b:9a:ad:9c:ce:14:20:5b:69:06:d8:12:79:e1:18:9d:cc: 80:c7:db:bd:6a:a6:20:f3:64:9e:89:d6:d2:ca:5c:c7:41:c2: 94:4d:34:62:70:54:46:de:2c:32:9c:a7:5a:73:65:e2:f7:16: 5a:f5:5e:49:94:c7:2e:07:13:f4:68:85:64:24:67:04:1c:42: 4b:86:8f:94:2b:e2:aa:33:98:07:1c:f0:69:d7:47:cc:f9:ca: d9:2f:60:b7:62:b3:d0:87:39:a6:e1:04:13:2e:d4:77:58:1a: 99:1d:0b:2f:c3:56:a2:db:6b:9c:4f:74:f3:f2:22:e7:f7:46: 94:10:d4:28:7f:fc:39:97:1a:9e:7b:a1:a0:74:6b:79:de:b8: 02:54:bf:b5 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUM6K2ABXh6/WJIsBGS+GV9iJUueQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDQwMTAwMDkwNFoX DTI2MDQwNTAwMDkwNFowejFJMEcGA1UEBRNAZjgxNmZkOWI0NTI0ZDNmOTBmYTA0 ZWI2NWYyMzBkYTU1MDljZTg0NWEwOWNmYjc2ZmU5NzgxZmUxMjBjOGEwNzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwAOckKMwPTznR3RhqWGOOYAWeu7M Twy4StWgYZU228z7cK4mGll0VvgiIgcOInnldcl/Qs6/K51DGI2To/CgdAskZlF0 MjH9KjFnb2XlTzWh/A/SbBf6bmXlH8E8hoxb6RnntEIomctN6WKzCNkOR1i49D2n Yqx87+F2PrsG744u/QMGa7qhbqE37j4JFpVrtS6ZljBvIKbUvsSIXJLpuxse4tRG Ui+VjBrrx7QXJW8tWgGPmUwtWS6D3yovPJk2hDW4kSrtDj7T9KZPVx/O5PZl6c8j FciwnijpksDmKV18wGcF2n0ati3OPyw6eBvvmW2omHQ+Ik3/+Mh3xMJ2xwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFJ24bLT69LG+Er2wPcdppisFnc+QMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAOoJiYNI+Sv7uh6KPUueCTpBiBmCXT3j 2iQTRmBwkLFB14YzlO2l6POBMbRQ/KhENO1dv+70YhNza1AuQJaFSPeta86wn6fD +30Dlv6k/flJC8hceJPdHnSst2O1SZrTifjzeaPbUIuMMOcPX10Lmq2czhQgW2kG 2BJ54RidzIDH271qpiDzZJ6J1tLKXMdBwpRNNGJwVEbeLDKcp1pzZeL3Flr1XkmU xy4HE/RohWQkZwQcQkuGj5Qr4qozmAcc8GnXR8z5ytkvYLdis9CHOabhBBMu1HdY GpkdCy/DVqLba5xPdPPyIuf3RpQQ1Ch//DmXGp57oaB0a3neuAJUv7U= -----END CERTIFICATE-----Generated at Wed Apr 1 15:21:26 2026 by rpki-client