$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: LiU2p0YMVBON95IXdYXcoV22g65Mq0phS4Qmdnm+joU= Subject key identifier: 33:35:E1:24:EF:68:8B:30:16:E2:11:11:4D:B4:E2:B5:F3:09:3C:4D Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 51139E25C8D933D0105FA64B811A1910F3D6AE6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 04AB Signing time: Wed 20 Aug 2025 00:03:13 +0000 Manifest this update: Wed 20 Aug 2025 00:03:13 +0000 Manifest next update: Sun 24 Aug 2025 00:03:13 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: KY+3ez0xt27XvXV4Ptra/fdRkMmp3DQqO0tBL1+GFms=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: tbAbfaC2RuFNWZiog/TRY+SJFGIcDojyat8DSXiGpj4=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: +dgLMbF0Pa9+nV1whtS18K/OYeyEPHxLgt1uJNdX/z8=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: 3VyE6JRW0UlR40apm16JSbBnQS9y3+9Ysu0SHUssPW8=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: 0tdunrsGVZ3WKr4OAoHYFQU5uziBzinewn0h/W+ES+E=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: EPvoRMnGKG5xZf5eimr1MDAtgUNi6zNpYiiPjvtebgQ=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: lg1YUGhW4/UQUdrKyIyy9Kwc8htsOn7PAyEoxCHWx20=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: f5PY2MrxTAvRi+a996gcb3GhB27Fv3w21olKXCI653c=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: amkVtT5O0C2NbJL88E9FOLSqLSjYan3d8UkmnxNtxG4=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: waiHC2uvQ/JWWGj6dv0+Jnvjhmk720UW4x8oKc0eTrA=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: hcBCz8pjSbZBwEsa41ey2guhkl5K7x9KUwBIbfqn6Jc=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: 5Ttu2kLHtleGqXhGp1154M4Fs/n0b2qXFD2eo3KCU0w=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: Xr7nLPSK2ZSyjI0rCOlF0AuSHNbswrAss87oZHF4EXo=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: V/7m5yE+CCJeT/nKdukf9a+x/FN2cTA8qHx6R6yG9Jc=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: kwDtKkjV5R3jmwfsxK9pMTDCxQI0E15H942j4JCKTKo=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: 89Q54azxDN3ASeR/6p4+Ave3WHYO3C21Hbmap/CklK4=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: Kvmc/hqY/vogQCWVl6vkaYesnaU1vHdvynPTnINrqQw=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: Q0EtPntghfx8+ADDUWnuWTFrTDM7wTJyYoojeo1TxHI=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: 42D2MpM7D8MbZHMxL6Bn0db+gMi54+8csOxmsP/LWZU=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: h4ZB/MWEgyJ8LZrf1SxnyFlIxQ+R+CVKJktPaoigBZ4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: dClEonqXxXGeK3AlK7PwDwEIvV/bh31mEliYfQYbDzE=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: 8BZFocgKPkGBJ81xSolcBX4ocQRaTMnybA4zb1BOLOA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 00:03:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:13:9e:25:c8:d9:33:d0:10:5f:a6:4b:81:1a:19:10:f3:d6:ae:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Aug 20 00:03:13 2025 GMT Not After : Aug 24 00:03:13 2025 GMT Subject: serialNumber=6ad1f38848e4f4651135586ce41b4e330f2d4c7425b864fc93cfa13f1ed2f31e, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bd:41:93:20:6a:d9:32:ed:02:b9:7f:f3:e7: 7a:1b:41:f3:2b:ad:34:bb:54:15:e8:57:2b:86:9a: 0d:5e:c3:d9:25:80:f1:03:72:a0:d9:bb:03:6a:95: 2a:ab:21:cc:6d:5e:3d:d5:2a:89:ce:67:51:5e:e0: 72:1d:42:70:01:39:3c:f0:ff:f5:b3:3b:70:76:9b: 2c:b8:a8:e1:48:42:47:5d:d2:ee:83:45:9b:e6:51: 3d:28:78:9c:3e:b6:a4:99:8c:01:74:79:52:dc:1e: e3:7c:ea:b8:d2:03:7c:c2:71:58:cc:59:fa:84:94: b2:ca:01:e4:42:37:a4:d2:2c:e6:43:10:8d:4c:b9: 06:de:b9:db:0e:cf:ed:f7:02:d9:cf:57:a0:84:13: 03:d4:9b:5b:64:8f:25:90:22:90:66:ae:3c:9e:6e: f7:36:a6:01:db:8c:cc:bb:de:4f:90:c9:b7:cd:fe: 91:8e:e4:c0:6f:01:88:c4:20:d9:56:cb:e6:a0:a6: dd:23:c1:c0:02:41:be:ea:ea:80:d4:8e:66:e6:ca: 3a:5c:16:48:e9:dd:8a:13:3b:7d:77:54:ea:e0:cf: 66:b1:12:d6:b8:b6:14:62:ec:0a:37:58:38:35:81: bf:34:1e:b7:ce:34:84:dd:4d:6f:b7:a8:4e:57:fc: 66:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:35:E1:24:EF:68:8B:30:16:E2:11:11:4D:B4:E2:B5:F3:09:3C:4D X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:fa:08:25:cd:da:f4:4e:79:cf:05:72:54:ec:c8:9d:56:3f: 23:2f:fc:94:78:43:44:2e:90:da:cd:8e:85:7a:82:25:48:8e: 76:2b:fd:80:bf:47:4d:8d:48:af:89:71:c9:c6:27:21:d5:79: 59:9a:b0:f5:a8:87:95:5f:09:2f:8c:6d:67:81:11:f8:0b:dc: 94:c6:70:6c:c6:2e:ee:8a:71:76:2f:2d:6d:81:59:54:77:ec: 0f:5c:e3:87:95:17:af:42:6e:f7:5b:a7:c6:8e:5d:75:64:83: e1:c3:6d:68:3a:9a:31:74:0c:e1:ea:92:9d:ee:6c:e8:d3:3a: 79:4c:7c:7b:30:10:2f:f2:e5:3d:d6:95:fd:58:c5:9e:d1:27: 7d:e2:1f:26:4d:c8:cc:e6:d9:b0:6a:45:4f:24:b0:77:3f:5e: 6a:94:94:d5:71:27:03:2d:8c:7b:c3:3d:91:ff:3e:06:ca:01: ca:6f:ff:e6:61:63:5f:be:48:4a:29:17:56:04:e4:a2:0e:7e: 7c:3e:03:17:c9:c8:c1:7e:68:89:00:6c:05:2f:90:0f:e4:f9: 3b:5b:ab:5b:e4:bd:76:13:59:e2:bc:f2:ae:f1:a1:9a:41:dc: 59:f3:30:47:65:d0:2a:1f:e7:f4:24:21:05:29:e6:9b:9f:0f: df:65:70:f5 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUUROeJcjZM9AQX6ZLgRoZEPPWrm8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDgyMDAwMDMxM1oX DTI1MDgyNDAwMDMxM1owejFJMEcGA1UEBRNANmFkMWYzODg0OGU0ZjQ2NTExMzU1 ODZjZTQxYjRlMzMwZjJkNGM3NDI1Yjg2NGZjOTNjZmExM2YxZWQyZjMxZTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuL1BkyBq2TLtArl/8+d6G0HzK600 u1QV6FcrhpoNXsPZJYDxA3Kg2bsDapUqqyHMbV491SqJzmdRXuByHUJwATk88P/1 sztwdpssuKjhSEJHXdLug0Wb5lE9KHicPrakmYwBdHlS3B7jfOq40gN8wnFYzFn6 hJSyygHkQjek0izmQxCNTLkG3rnbDs/t9wLZz1eghBMD1JtbZI8lkCKQZq48nm73 NqYB24zMu95PkMm3zf6RjuTAbwGIxCDZVsvmoKbdI8HAAkG+6uqA1I5m5so6XBZI 6d2KEzt9d1Tq4M9msRLWuLYUYuwKN1g4NYG/NB63zjSE3U1vt6hOV/xmJwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFDM14STvaIswFuIREU204rXzCTxNMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAKz6CCXN2vROec8FclTsyJ1WPyMv/JR4 Q0QukNrNjoV6giVIjnYr/YC/R02NSK+JccnGJyHVeVmasPWoh5VfCS+MbWeBEfgL 3JTGcGzGLu6KcXYvLW2BWVR37A9c44eVF69Cbvdbp8aOXXVkg+HDbWg6mjF0DOHq kp3ubOjTOnlMfHswEC/y5T3Wlf1YxZ7RJ33iHyZNyMzm2bBqRU8ksHc/XmqUlNVx JwMtjHvDPZH/PgbKAcpv/+ZhY1++SEopF1YE5KIOfnw+AxfJyMF+aIkAbAUvkA/k +Ttbq1vkvXYTWeK88q7xoZpB3FnzMEdl0Cof5/QkIQUp5pufD99lcPU= -----END CERTIFICATE-----Generated at Wed Aug 20 13:10:59 2025 by rpki-client