$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: qV1+4NTxKGdVwzOHOqzoz39qpTjidJEzT7o4KaXpTZU= Subject key identifier: 8B:E2:E9:E8:DB:35:ED:0E:C0:FD:F4:98:AB:EF:A1:9F:EA:F1:21:4A Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 4B423C891DA801BB3F248E926769D40EAB5D5860 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0582 Signing time: Tue 17 Mar 2026 00:04:58 +0000 Manifest this update: Tue 17 Mar 2026 00:04:58 +0000 Manifest next update: Sat 21 Mar 2026 00:04:58 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: 37Yu2bhxMTfM1dZGv4k7HibOLQBPNJtGHFfcfI45S6I=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 00:04:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:42:3c:89:1d:a8:01:bb:3f:24:8e:92:67:69:d4:0e:ab:5d:58:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Mar 17 00:04:58 2026 GMT Not After : Mar 21 00:04:58 2026 GMT Subject: serialNumber=b9c0bc0ebffd155c1fcf598b5e310b6cebc280261a2bd66749521db147f5b582, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b6:d2:02:c0:3c:c6:34:bb:37:a5:ce:df:fe: 3c:51:8d:7b:af:aa:4d:f8:78:fe:14:ec:d8:a0:89: 82:c0:34:9e:6d:6a:fd:81:83:95:86:ca:24:d9:79: 00:b5:a7:b2:e9:35:2b:9f:62:a4:e2:22:83:50:88: 5c:ca:c8:fc:69:5d:81:8d:31:57:55:c8:53:30:a9: b4:e3:b3:b1:d7:eb:bc:92:4e:24:02:f4:09:26:67: 31:ea:23:5b:80:c6:cc:e7:7a:8a:7f:30:fc:5b:25: f7:37:58:3a:38:57:bb:94:39:fd:c5:98:87:da:e3: 44:0b:30:ad:f0:1c:d1:53:0e:78:27:4f:5f:7d:e2: 81:9a:e8:7d:ef:80:a3:dd:76:31:d1:60:5b:b4:5e: 91:17:12:7b:32:35:a2:4b:9c:00:46:98:30:54:38: ba:da:b3:bc:85:93:9c:11:99:66:1c:1e:41:8c:a8: 81:44:d1:79:28:5f:57:aa:54:17:6a:2e:45:3e:52: f7:b7:ec:fa:9e:6f:75:94:f1:cc:83:ba:a0:91:53: bb:db:17:db:7e:05:de:13:c7:68:a4:9c:f3:33:17: bb:4a:86:b4:78:f0:98:ad:89:5e:b8:4f:35:31:01: 51:98:79:21:90:9d:47:4f:dc:5b:3d:09:9e:61:51: c0:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:E2:E9:E8:DB:35:ED:0E:C0:FD:F4:98:AB:EF:A1:9F:EA:F1:21:4A X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:fd:bd:5a:92:2b:90:e7:f4:5f:9c:a2:78:0e:62:04:b2:2d: 8b:79:b5:78:3c:49:7f:69:c0:e6:6f:7d:99:c8:af:f6:9b:21: 35:44:32:05:3d:7b:a0:11:9d:ff:70:5f:70:4d:9c:30:4c:a3: 73:fb:34:cd:6c:19:f5:fd:ec:50:2f:00:3a:d7:66:1d:9c:22: 7f:f1:03:a9:7b:22:39:03:bb:86:7d:68:a4:f9:82:a3:5c:81: cf:d6:ff:2d:5b:b5:ea:8d:52:88:f0:26:a8:ba:bf:e4:5d:9e: 92:37:4f:56:29:c3:e1:39:fb:da:f6:ee:36:1a:3c:6a:ac:bf: 5e:6a:41:a0:ae:79:e7:a7:92:27:72:83:02:da:4b:4c:ad:5a: c0:89:06:aa:9d:bd:73:a5:e1:d1:c3:af:6a:9c:82:d5:11:98: 8f:90:50:28:da:a3:61:1e:9c:bf:bd:12:62:d1:66:00:40:3c: f0:e6:b3:c1:65:56:fd:6e:c6:d0:2c:fe:d8:2a:83:ef:93:a8: e4:26:e7:d4:3d:11:e5:21:59:4d:81:7d:58:af:1b:b2:ec:4e: 24:a9:7d:4d:0c:39:c5:31:c8:f9:ef:76:3a:d2:ab:39:49:62: dc:ea:cd:74:05:ef:2b:56:27:c3:37:37:df:2b:54:fe:3d:97: 3c:8e:66:9f -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUS0I8iR2oAbs/JI6SZ2nUDqtdWGAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDMxNzAwMDQ1OFoX DTI2MDMyMTAwMDQ1OFowejFJMEcGA1UEBRNAYjljMGJjMGViZmZkMTU1YzFmY2Y1 OThiNWUzMTBiNmNlYmMyODAyNjFhMmJkNjY3NDk1MjFkYjE0N2Y1YjU4MjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqrbSAsA8xjS7N6XO3/48UY17r6pN +Hj+FOzYoImCwDSebWr9gYOVhsok2XkAtaey6TUrn2Kk4iKDUIhcysj8aV2BjTFX VchTMKm047Ox1+u8kk4kAvQJJmcx6iNbgMbM53qKfzD8WyX3N1g6OFe7lDn9xZiH 2uNECzCt8BzRUw54J09ffeKBmuh974Cj3XYx0WBbtF6RFxJ7MjWiS5wARpgwVDi6 2rO8hZOcEZlmHB5BjKiBRNF5KF9XqlQXai5FPlL3t+z6nm91lPHMg7qgkVO72xfb fgXeE8dopJzzMxe7Soa0ePCYrYleuE81MQFRmHkhkJ1HT9xbPQmeYVHApwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFIvi6ejbNe0OwP30mKvvoZ/q8SFKMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAF/9vVqSK5Dn9F+congOYgSyLYt5tXg8 SX9pwOZvfZnIr/abITVEMgU9e6ARnf9wX3BNnDBMo3P7NM1sGfX97FAvADrXZh2c In/xA6l7IjkDu4Z9aKT5gqNcgc/W/y1bteqNUojwJqi6v+RdnpI3T1Ypw+E5+9r2 7jYaPGqsv15qQaCueeenkidygwLaS0ytWsCJBqqdvXOl4dHDr2qcgtURmI+QUCja o2EenL+9EmLRZgBAPPDms8FlVv1uxtAs/tgqg++TqOQm59Q9EeUhWU2BfVivG7Ls TiSpfU0MOcUxyPnvdjrSqzlJYtzqzXQF7ytWJ8M3N98rVP49lzyOZp8= -----END CERTIFICATE-----Generated at Tue Mar 17 23:57:27 2026 by rpki-client