$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: UoIGWNgurS0DOMSBIXri36NIQmb6GXuKOvx9APdNAok= Subject key identifier: 8B:0E:7F:74:F6:E2:B1:44:7D:C7:37:81:B1:52:FF:F3:82:8C:05:3A Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 56773CA4FF9230566D2DF5BE7CE8147153446D66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 059D Signing time: Mon 13 Apr 2026 00:11:20 +0000 Manifest this update: Mon 13 Apr 2026 00:11:20 +0000 Manifest next update: Fri 17 Apr 2026 00:11:20 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: E0Px+nU0ObL70WZtVx9cKTHQOQMY0kpuFBY937ZkxyM=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 00:11:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:77:3c:a4:ff:92:30:56:6d:2d:f5:be:7c:e8:14:71:53:44:6d:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 13 00:11:20 2026 GMT Not After : Apr 17 00:11:20 2026 GMT Subject: serialNumber=a839ef38449f4996025294441e03c525a920cc0a5542ee536afb2f7ba99343c0, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:52:60:4b:bd:39:69:6a:10:6a:08:26:90:d0: 88:6b:21:97:73:c0:e8:fc:f8:a5:1d:f7:20:28:d1: 90:12:0e:1f:ce:28:c7:fa:9e:28:33:3f:80:72:7c: 19:52:c0:8d:57:71:57:ff:71:8a:96:46:49:52:fa: f5:37:46:04:06:08:50:64:9a:17:54:69:4e:04:c4: 91:0c:26:07:78:4c:2d:3c:20:17:eb:86:8a:02:55: d4:8d:00:26:ed:37:58:45:2d:23:75:44:34:2f:42: 34:ef:f3:b1:ce:52:83:68:10:ae:e4:78:1f:d7:2a: ff:11:4e:e9:61:81:e0:06:97:d6:f7:34:11:39:83: 6e:86:98:a4:de:9c:46:5e:62:ac:db:af:32:9d:d6: da:79:fe:02:a7:ef:77:4c:c9:c5:ee:e4:7e:91:c7: 92:c6:ea:74:ca:e9:cd:89:a6:27:b0:8f:d9:6c:8d: cb:72:48:23:0e:97:a5:6e:53:36:ad:d5:a5:dd:f8: 58:9a:a2:39:03:5d:ae:a1:63:b4:0c:e7:91:44:4c: ec:6b:5c:2a:ba:b6:fa:51:44:0c:38:a4:b1:5a:ab: 3f:59:a8:ca:c5:26:b3:a8:42:94:23:13:6f:85:0f: 0f:a1:29:13:3e:a1:62:cf:76:3e:8d:74:0a:42:a7: 7e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:0E:7F:74:F6:E2:B1:44:7D:C7:37:81:B1:52:FF:F3:82:8C:05:3A X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:29:bb:f7:3c:c2:80:ba:d3:b7:26:05:ff:a5:53:a4:dc:68: e8:b5:1c:a0:55:80:a7:d3:e4:eb:60:7c:91:29:96:16:84:98: 25:b1:95:6f:26:e3:a2:b8:b4:19:76:4d:99:f9:da:ad:0b:91: 6c:92:c1:58:8c:a2:a2:ca:f1:cb:25:7c:40:aa:8a:e1:e0:09: 4e:37:83:b6:7d:68:6f:1b:09:7f:4e:92:52:a7:02:e3:b4:93: 91:9a:b0:d0:68:fb:d9:7d:bd:3e:3e:55:63:78:e9:ba:6c:a1: 12:05:51:d6:c8:dc:14:82:2c:0a:06:08:d2:e2:ec:e0:ed:fd: 41:ee:55:3c:69:28:71:21:e2:c0:c6:5e:7e:e6:44:d5:5a:d5: 1e:49:09:40:0a:cd:09:ee:4c:60:9d:e2:88:f1:2d:94:a3:7a: 41:4d:ff:90:69:38:08:d1:3c:8c:29:b6:2f:44:54:31:14:9d: 38:34:71:32:53:59:8b:94:b6:07:41:d2:13:c9:20:c1:13:3d: 07:05:42:37:6f:47:07:54:ec:56:28:24:8c:51:32:0b:0b:2c: 32:75:24:b5:5c:1d:10:4e:d2:b0:43:64:96:7e:cc:39:69:6d: 06:75:13:b5:85:68:ee:8b:2a:92:cd:30:05:ee:00:77:6a:70: 50:45:b1:c6 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUVnc8pP+SMFZtLfW+fOgUcVNEbWYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDQxMzAwMTEyMFoX DTI2MDQxNzAwMTEyMFowejFJMEcGA1UEBRNAYTgzOWVmMzg0NDlmNDk5NjAyNTI5 NDQ0MWUwM2M1MjVhOTIwY2MwYTU1NDJlZTUzNmFmYjJmN2JhOTkzNDNjMDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxlJgS705aWoQaggmkNCIayGXc8Do /PilHfcgKNGQEg4fzijH+p4oMz+AcnwZUsCNV3FX/3GKlkZJUvr1N0YEBghQZJoX VGlOBMSRDCYHeEwtPCAX64aKAlXUjQAm7TdYRS0jdUQ0L0I07/OxzlKDaBCu5Hgf 1yr/EU7pYYHgBpfW9zQROYNuhpik3pxGXmKs268yndbaef4Cp+93TMnF7uR+kceS xup0yunNiaYnsI/ZbI3LckgjDpelblM2rdWl3fhYmqI5A12uoWO0DOeRREzsa1wq urb6UUQMOKSxWqs/WajKxSazqEKUIxNvhQ8PoSkTPqFiz3Y+jXQKQqd+2wIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFIsOf3T24rFEfcc3gbFS//OCjAU6MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBABcpu/c8woC607cmBf+lU6TcaOi1HKBV gKfT5OtgfJEplhaEmCWxlW8m46K4tBl2TZn52q0LkWySwViMoqLK8cslfECqiuHg CU43g7Z9aG8bCX9OklKnAuO0k5GasNBo+9l9vT4+VWN46bpsoRIFUdbI3BSCLAoG CNLi7ODt/UHuVTxpKHEh4sDGXn7mRNVa1R5JCUAKzQnuTGCd4ojxLZSjekFN/5Bp OAjRPIwpti9EVDEUnTg0cTJTWYuUtgdB0hPJIMETPQcFQjdvRwdU7FYoJIxRMgsL LDJ1JLVcHRBO0rBDZJZ+zDlpbQZ1E7WFaO6LKpLNMAXuAHdqcFBFscY= -----END CERTIFICATE-----Generated at Mon Apr 13 22:12:04 2026 by rpki-client