$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: lMtAbDHKU+lpCiuXcXeD5EGioyGcbJ1MI692O530AXY= Subject key identifier: B2:3E:D5:50:C8:84:17:BB:48:F3:08:A6:DA:70:C8:0C:7F:0E:88:A7 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 580A09D586F1B866E04FCB3360A115FBCC49DB0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0507 Signing time: Sun 16 Nov 2025 00:01:51 +0000 Manifest this update: Sun 16 Nov 2025 00:01:51 +0000 Manifest next update: Thu 20 Nov 2025 00:01:51 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: IZjqCDuu48x7AjQOOlR475AlABLppx+n0KPWP3mbyaw=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: LMkOhR8oitnpWIWwo+ff7iHTil9wckIVvZSko8EEekQ=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: JGG4dTO8UJf/vYGc8fwxTAOM1h6nEPP82EI/7Dv4FHU=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: qPVE53px9O0QNm4U0lkbfNuwfqeKxwW5K9ct1nJNgW4=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: fe034WnBtuFinRptIYu7rq19OozfzbkZbEFpFjLILHE=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: tvlz6rdf6o1VhTj9MN74UhRyGtkmPrUWF+QfcAN2XXk=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: 77L/bNHp8w4yFCp+OLzg5ldZu/g8b3ZjRhypYKOpX2o=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: 4627E3Mj815EcaXkX3BTu4n4/Fyc8pjeRhwmHUjWB4E=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: IkDmY2VrM+MUCXVE/KGDwQp38xJerke+gZfTRPzKW38=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: 1LQDJZsx6Ih/p1JXbixCJFIni4NstX9kTQqLItMf6Bo=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: uqGyuI64MyoSB2aCcDH4ZYFIVtRIimLKr+qLtdzGGDc=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: YDEb1HZpmKP7sx/WuOw3OFG2ObkpXND2FyRZjfR2dvk=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: iZ5upg9JhYgqzuisO9iMHg6o3uglr67eIAFDAVOMJFQ=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: zj3uaCJ1OVw76COdDaPaPY8yFlOeR+/ReGZ6syX0RDg=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: qeiN2jY48ldTzPZErmuiZOmp5qE9mu9/GnZEk7z/YWM=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: UaHt+4lelzGalTP6o6RTVxgEfhRYbwB09w3EQYZfbmg=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: sbGSBiN+e2Ag51zrXc1UwPae+VvT58VQo1yXZWqJMvI=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: Z9np75TZ9Xp1a9ECxf2+DE3mfvCD/7fxNnuBJSZrfSo=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: D8bBPQUOCTEk8pdNz92K1MRwyNVwdAT9TarkZGSGScU=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: aXN/Mp7fby5XcX6lsymhb6JcsHglVTPldRt7Y8yfOuw=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: 9OizPigUZE6/PAl/qV5jIptlHQkQvMFcwl8vNkU9a3A=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: 8yPh7RFUtDHIOMlg2c13wT8N//u27y/UzlNQTFASLCE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Nov 2025 00:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:0a:09:d5:86:f1:b8:66:e0:4f:cb:33:60:a1:15:fb:cc:49:db:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 16 00:01:51 2025 GMT Not After : Nov 20 00:01:51 2025 GMT Subject: serialNumber=d65442710fceca2ab3999f646cda3abb2676a8dc04e56fc30acd46f6216ab16d, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:ac:f1:df:1f:af:3a:c3:9a:33:f0:1c:63:6e: db:e3:2f:00:42:23:f2:82:16:cd:bd:2c:ec:bb:a2: 99:7d:d6:44:08:47:d2:57:3f:d8:de:33:5f:52:29: e9:40:fc:6b:52:81:4a:47:af:da:6b:bc:16:36:28: 0b:41:b4:00:7f:2e:3b:22:d5:da:4f:f7:9c:92:a8: ca:d5:3c:4c:e9:19:97:e0:81:34:1b:a8:f1:12:71: 7a:c5:11:6d:f0:9d:4d:4c:d4:c7:57:62:89:2e:e1: 3d:e6:fe:a1:02:22:c1:32:29:db:55:d2:8a:0a:b3: 48:6d:0b:b7:37:57:60:c8:e7:ed:76:2f:23:ac:ce: 14:b7:a5:be:ae:45:03:72:dd:ac:c7:23:b2:9c:42: 2d:25:50:7c:59:69:d3:44:25:c5:da:c6:4e:b7:87: e3:be:2e:32:0a:20:58:3d:e1:51:a5:a9:94:0d:04: 98:7c:ba:98:28:e8:65:e7:a0:ae:7b:c8:56:56:4c: 1d:db:8e:ef:d1:ab:57:b0:23:9a:a1:63:58:89:c2: 1c:8c:b2:d3:c1:bb:4e:c5:6c:fe:ee:43:08:38:0a: 0c:17:c6:51:36:b2:78:03:7f:a6:f5:e1:54:8b:cb: 5f:bb:25:9f:3a:d7:b9:93:ec:d9:ca:b3:06:fa:17: 7f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:3E:D5:50:C8:84:17:BB:48:F3:08:A6:DA:70:C8:0C:7F:0E:88:A7 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:1b:32:3f:f1:ee:a4:26:15:c2:1d:ec:75:71:8e:73:2f:c9: f3:75:6a:2f:f7:02:a5:c3:b0:89:0e:66:c0:57:f4:d1:10:b5: 10:b6:98:6f:0d:7b:cc:53:cf:24:f7:df:fb:cd:13:07:68:05: c0:88:66:95:5a:34:f1:57:c6:bc:fc:57:e7:84:68:58:9e:5f: 03:4e:20:e3:60:ba:96:7a:3a:f2:83:67:8e:d7:75:1e:01:5c: ac:07:11:01:91:dc:3b:3c:23:0f:83:13:66:e7:78:97:bd:8b: ed:bf:7c:19:ba:fb:55:8c:dd:39:79:a2:b1:cf:24:5b:13:91: 94:28:0a:59:65:df:2d:54:50:58:f8:2a:79:cc:d0:41:7c:a4: af:4e:7c:aa:64:d6:bc:70:49:33:80:23:b1:30:f5:cd:37:3a: 1b:73:d0:ba:95:83:1e:e2:68:48:89:29:e7:11:9e:f9:23:02: cc:04:e3:a3:d2:ac:84:69:ab:ef:00:74:d5:e1:27:32:63:0f: e2:e0:51:40:d3:38:2c:9f:ef:ba:9e:e1:63:f2:68:3a:d0:64: 78:80:69:91:39:a4:de:da:e3:17:73:f7:67:f5:a4:d0:fa:45: 80:23:68:41:86:32:01:78:db:db:38:09:68:bd:41:a1:19:16: d5:ee:65:54 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUWAoJ1YbxuGbgT8szYKEV+8xJ2w0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExNjAwMDE1MVoX DTI1MTEyMDAwMDE1MVowejFJMEcGA1UEBRNAZDY1NDQyNzEwZmNlY2EyYWIzOTk5 ZjY0NmNkYTNhYmIyNjc2YThkYzA0ZTU2ZmMzMGFjZDQ2ZjYyMTZhYjE2ZDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA66zx3x+vOsOaM/AcY27b4y8AQiPy ghbNvSzsu6KZfdZECEfSVz/Y3jNfUinpQPxrUoFKR6/aa7wWNigLQbQAfy47ItXa T/eckqjK1TxM6RmX4IE0G6jxEnF6xRFt8J1NTNTHV2KJLuE95v6hAiLBMinbVdKK CrNIbQu3N1dgyOftdi8jrM4Ut6W+rkUDct2sxyOynEItJVB8WWnTRCXF2sZOt4fj vi4yCiBYPeFRpamUDQSYfLqYKOhl56Cue8hWVkwd247v0atXsCOaoWNYicIcjLLT wbtOxWz+7kMIOAoMF8ZRNrJ4A3+m9eFUi8tfuyWfOte5k+zZyrMG+hd/CwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFLI+1VDIhBe7SPMIptpwyAx/DoinMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAFIbMj/x7qQmFcId7HVxjnMvyfN1ai/3 AqXDsIkOZsBX9NEQtRC2mG8Ne8xTzyT33/vNEwdoBcCIZpVaNPFXxrz8V+eEaFie XwNOIONgupZ6OvKDZ47XdR4BXKwHEQGR3Ds8Iw+DE2bneJe9i+2/fBm6+1WM3Tl5 orHPJFsTkZQoClll3y1UUFj4KnnM0EF8pK9OfKpk1rxwSTOAI7Ew9c03Ohtz0LqV gx7iaEiJKecRnvkjAswE46PSrIRpq+8AdNXhJzJjD+LgUUDTOCyf77qe4WPyaDrQ ZHiAaZE5pN7a4xdz92f1pND6RYAjaEGGMgF429s4CWi9QaEZFtXuZVQ= -----END CERTIFICATE-----Generated at Sun Nov 16 15:44:54 2025 by rpki-client