$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: 6WAmQY1s29vGvThyEjbitK0PABh2r19ADtJda/7gfV8= Subject key identifier: A5:F3:23:45:BC:8C:93:FC:69:C1:C2:AB:FB:2A:B1:83:E7:16:0F:37 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 3644116064A050C13F11BDD5D81DF468AE3BAC8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 05A6 Signing time: Wed 22 Apr 2026 00:13:52 +0000 Manifest this update: Wed 22 Apr 2026 00:13:52 +0000 Manifest next update: Sun 26 Apr 2026 00:13:52 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: SCi+Si41HSFCnzVXFyT14oSDotulYfAk/uBou10XQjI=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 00:13:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:44:11:60:64:a0:50:c1:3f:11:bd:d5:d8:1d:f4:68:ae:3b:ac:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 22 00:13:52 2026 GMT Not After : Apr 26 00:13:52 2026 GMT Subject: serialNumber=80ec1ff57c285e034262152e38b0d82b41c17bc2f813ff36316913baf65e7079, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:97:1f:98:b8:f4:22:80:c3:05:d4:9b:41:9e: 2c:e9:2b:e1:87:f3:97:7e:4b:15:79:47:1d:69:d6: ed:8f:1f:bf:19:f5:7a:5b:44:2c:b0:57:db:cc:3a: db:12:07:7c:3d:d6:bf:23:80:5c:05:bd:fd:82:c0: 2e:33:1f:1d:48:1f:74:7d:e7:27:43:3c:ba:23:1a: 2e:e8:a5:f8:90:15:2d:b2:79:95:3d:5c:d3:39:0e: b3:12:16:80:20:4a:64:51:86:70:b2:2f:4c:c4:42: ab:06:f6:7a:3b:28:71:36:2a:6e:72:bc:f8:7c:1d: f2:fa:6f:d0:19:c3:61:6a:08:0f:c9:49:5e:99:be: 73:3c:2c:b7:53:ab:e1:94:df:43:e9:0d:2a:79:92: d0:98:64:c7:3f:c8:92:f1:e9:f4:55:e6:2c:a9:1b: d1:9b:6c:7b:d8:e9:09:38:0e:74:9c:b5:68:8c:e5: 01:5c:64:dc:77:a5:5b:3a:b2:da:c8:8c:98:54:3b: 6b:99:7c:34:de:9e:38:17:32:35:b8:a8:7e:93:0a: 37:0b:0a:5a:1f:4b:f4:cb:7c:f0:16:49:65:99:43: 02:2c:39:94:9a:1a:a9:02:22:8a:4d:41:61:16:e3: af:ad:ba:d6:5c:a0:e6:18:3b:5b:7c:9a:66:e2:fa: bf:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:F3:23:45:BC:8C:93:FC:69:C1:C2:AB:FB:2A:B1:83:E7:16:0F:37 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:0d:82:0c:5d:7b:20:8d:21:e2:7c:fa:d8:a9:3f:5e:7b:06: d9:28:4f:02:ec:91:95:8d:9d:7f:6d:b9:7a:73:48:a8:e0:15: 46:1d:5b:2d:c2:2a:4d:97:99:9f:4f:a5:77:53:7d:5d:ff:f2: cb:f6:a7:73:e1:b0:a5:38:b1:76:5e:e3:78:5a:3c:5c:d3:3b: f1:2a:b2:eb:a3:eb:24:26:6f:35:61:d9:d3:7b:10:c5:94:cc: 75:9b:2e:a6:ab:73:3a:e0:f6:52:69:4c:09:bf:3d:e2:e7:7d: 6d:a1:e0:7a:9f:eb:95:d1:86:b2:d6:fe:74:92:7f:3f:88:7d: 29:3c:96:16:ab:70:9d:3a:8a:e1:e3:b1:71:ee:86:8a:35:1d: bf:4b:b9:5a:49:18:f4:b1:e9:23:99:7b:12:58:ac:37:ba:84: 0d:69:76:b5:08:fe:87:46:c4:7c:13:80:31:b4:65:34:5d:69: 34:70:ea:84:cb:f9:e1:98:33:be:8b:63:7f:e9:84:6e:35:b8: 7f:b1:ad:f9:e5:d7:a2:00:21:44:6c:95:0e:12:1c:07:38:06: 12:f9:66:52:5e:03:68:d8:f6:f6:2b:7f:78:f7:43:22:45:20: 03:57:28:9e:af:51:ba:82:d4:67:bf:1c:64:00:d8:20:83:cd: 94:cd:a5:77 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUNkQRYGSgUME/Eb3V2B30aK47rIwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDQyMjAwMTM1MloX DTI2MDQyNjAwMTM1MlowejFJMEcGA1UEBRNAODBlYzFmZjU3YzI4NWUwMzQyNjIx NTJlMzhiMGQ4MmI0MWMxN2JjMmY4MTNmZjM2MzE2OTEzYmFmNjVlNzA3OTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJcfmLj0IoDDBdSbQZ4s6Svhh/OX fksVeUcdadbtjx+/GfV6W0QssFfbzDrbEgd8Pda/I4BcBb39gsAuMx8dSB90fecn Qzy6Ixou6KX4kBUtsnmVPVzTOQ6zEhaAIEpkUYZwsi9MxEKrBvZ6OyhxNipucrz4 fB3y+m/QGcNhaggPyUlemb5zPCy3U6vhlN9D6Q0qeZLQmGTHP8iS8en0VeYsqRvR m2x72OkJOA50nLVojOUBXGTcd6VbOrLayIyYVDtrmXw03p44FzI1uKh+kwo3Cwpa H0v0y3zwFkllmUMCLDmUmhqpAiKKTUFhFuOvrbrWXKDmGDtbfJpm4vq/uwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFKXzI0W8jJP8acHCq/sqsYPnFg83MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAHgNggxdeyCNIeJ8+tipP157BtkoTwLs kZWNnX9tuXpzSKjgFUYdWy3CKk2XmZ9PpXdTfV3/8sv2p3PhsKU4sXZe43haPFzT O/Eqsuuj6yQmbzVh2dN7EMWUzHWbLqarczrg9lJpTAm/PeLnfW2h4Hqf65XRhrLW /nSSfz+IfSk8lharcJ06iuHjsXHuhoo1Hb9LuVpJGPSx6SOZexJYrDe6hA1pdrUI /odGxHwTgDG0ZTRdaTRw6oTL+eGYM76LY3/phG41uH+xrfnl16IAIURslQ4SHAc4 BhL5ZlJeA2jY9vYrf3j3QyJFIANXKJ6vUbqC1Ge/HGQA2CCDzZTNpXc= -----END CERTIFICATE-----Generated at Wed Apr 22 07:05:34 2026 by rpki-client