$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: tCpgeV6hrwdo4RpkPbc45Z7vnInWcvRVD75ve9YQYhM= Subject key identifier: A2:6A:52:9C:7A:24:57:DB:E8:B7:E5:16:7E:2F:64:23:98:ED:0C:D4 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 767028621507BF26AFC9965FE4DC37D34373B38D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0586 Signing time: Sat 21 Mar 2026 00:06:09 +0000 Manifest this update: Sat 21 Mar 2026 00:06:09 +0000 Manifest next update: Wed 25 Mar 2026 00:06:09 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: mpjzw/8HeVOamNLoxkQ3VoV1rXVd8Uf3cV950/Vskm4=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Mar 2026 00:06:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:70:28:62:15:07:bf:26:af:c9:96:5f:e4:dc:37:d3:43:73:b3:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Mar 21 00:06:09 2026 GMT Not After : Mar 25 00:06:09 2026 GMT Subject: serialNumber=595a1164fae73eefa6eae9914add3744145ec39d7ebeee9a7c21f339b3c37920, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:92:68:57:52:53:53:6b:c7:d8:b5:35:2f:ca: 78:06:8d:4d:23:da:6f:16:a8:0f:d1:c1:f7:27:59: 2d:48:52:9c:09:16:7b:d9:9c:19:e4:31:da:e0:bc: c6:78:11:11:ca:c5:ca:08:0d:4a:8c:b7:40:aa:1f: 97:cf:5e:56:00:e6:93:4f:ac:a7:0d:1f:88:1a:1a: 98:68:7c:78:35:04:5f:a9:3c:80:81:89:01:12:e2: 3e:27:9e:9e:b1:52:12:33:d3:c2:8a:ba:7f:22:40: ed:e9:93:75:9c:ce:7e:1b:69:85:26:05:49:5a:bf: f1:d4:de:93:62:b9:ad:aa:a8:31:8b:f5:08:fd:60: f3:86:83:1f:cb:5e:09:a9:d5:ce:ed:a5:76:96:b3: 65:1e:66:9d:31:40:82:66:b5:28:ea:11:a9:76:d1: 1b:22:4b:02:d4:b4:04:cb:03:b2:98:72:83:53:8a: fe:f3:24:15:ed:16:4d:8d:db:d0:ac:77:76:d1:a2: 8f:c0:0b:c4:29:8a:56:85:6b:e0:9c:37:30:21:21: c8:e0:f3:c0:67:39:d7:32:6e:1d:be:3d:04:28:5d: 6d:ab:b6:1d:33:44:4a:50:4c:59:c6:fe:20:51:e8: d3:c2:35:80:49:ee:d7:61:34:4c:94:89:23:e0:e2: d7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:6A:52:9C:7A:24:57:DB:E8:B7:E5:16:7E:2F:64:23:98:ED:0C:D4 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:0b:b3:93:e8:35:67:d5:77:a9:21:65:c4:66:c6:dc:79:1e: 2d:09:d9:55:df:f4:32:86:fd:28:dc:f9:b2:7f:d4:07:7a:f7: 37:1b:cc:0b:0e:dd:59:84:6b:3f:a1:38:3f:05:b4:6e:cc:7e: c5:6e:96:6f:79:54:4a:58:04:76:87:f9:22:14:55:04:3b:77: 71:e3:7a:65:c0:81:4f:90:05:32:d4:47:ac:ac:e8:01:2b:a0: f3:d5:ed:cc:39:30:d7:a9:72:93:0d:b2:2e:94:43:1d:da:c8: fa:35:ae:0a:d4:30:3b:d7:27:6c:f0:a7:06:e3:ee:ba:38:36: 85:88:f5:12:a0:4b:84:1f:68:7c:1f:2d:e1:52:93:b2:69:0b: ef:e4:85:4c:14:8e:91:39:0e:78:c8:d7:4f:6a:ff:55:3f:a3: df:a1:87:f2:14:22:1d:ec:6d:cc:65:01:d6:b3:f4:91:8d:19: 49:10:39:39:ec:a3:7c:01:7b:69:72:48:17:e6:ff:87:32:f8: 3e:5b:98:43:30:f3:0e:c6:83:c2:78:38:a2:05:86:8a:0e:06: 2a:58:99:6f:a3:34:8d:24:07:a2:a7:18:b2:7b:a7:35:30:16: fa:10:ea:60:33:35:66:0d:ad:f6:8e:f7:59:0c:09:71:3a:d1: f0:f2:67:95 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUdnAoYhUHvyavyZZf5Nw300Nzs40wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDMyMTAwMDYwOVoX DTI2MDMyNTAwMDYwOVowejFJMEcGA1UEBRNANTk1YTExNjRmYWU3M2VlZmE2ZWFl OTkxNGFkZDM3NDQxNDVlYzM5ZDdlYmVlZTlhN2MyMWYzMzliM2MzNzkyMDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZJoV1JTU2vH2LU1L8p4Bo1NI9pv FqgP0cH3J1ktSFKcCRZ72ZwZ5DHa4LzGeBERysXKCA1KjLdAqh+Xz15WAOaTT6yn DR+IGhqYaHx4NQRfqTyAgYkBEuI+J56esVISM9PCirp/IkDt6ZN1nM5+G2mFJgVJ Wr/x1N6TYrmtqqgxi/UI/WDzhoMfy14JqdXO7aV2lrNlHmadMUCCZrUo6hGpdtEb IksC1LQEywOymHKDU4r+8yQV7RZNjdvQrHd20aKPwAvEKYpWhWvgnDcwISHI4PPA ZznXMm4dvj0EKF1tq7YdM0RKUExZxv4gUejTwjWASe7XYTRMlIkj4OLXbwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFKJqUpx6JFfb6LflFn4vZCOY7QzUMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAH8Ls5PoNWfVd6khZcRmxtx5Hi0J2VXf 9DKG/Sjc+bJ/1Ad69zcbzAsO3VmEaz+hOD8FtG7MfsVulm95VEpYBHaH+SIUVQQ7 d3HjemXAgU+QBTLUR6ys6AEroPPV7cw5MNepcpMNsi6UQx3ayPo1rgrUMDvXJ2zw pwbj7ro4NoWI9RKgS4QfaHwfLeFSk7JpC+/khUwUjpE5DnjI109q/1U/o9+hh/IU Ih3sbcxlAdaz9JGNGUkQOTnso3wBe2lySBfm/4cy+D5bmEMw8w7Gg8J4OKIFhooO BipYmW+jNI0kB6KnGLJ7pzUwFvoQ6mAzNWYNrfaO91kMCXE60fDyZ5U= -----END CERTIFICATE-----Generated at Sat Mar 21 14:31:08 2026 by rpki-client