$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: 7cK0XlORhNi6gZtOauUSDAlYin46CUCPNwDv4yKl3fY= Subject key identifier: 6A:7E:9A:86:95:F2:F3:30:E5:1E:2E:81:06:2F:ED:17:86:B6:1F:0C Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 273EE189080F59E1EC65DD8475A520935191A647 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 05A8 Signing time: Fri 24 Apr 2026 00:14:31 +0000 Manifest this update: Fri 24 Apr 2026 00:14:31 +0000 Manifest next update: Tue 28 Apr 2026 00:14:31 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: 6xB5VuQOkJIm7zgas3+Wysd/iBY2pAAiQMH+KTFe40k=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 00:14:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:3e:e1:89:08:0f:59:e1:ec:65:dd:84:75:a5:20:93:51:91:a6:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 24 00:14:31 2026 GMT Not After : Apr 28 00:14:31 2026 GMT Subject: serialNumber=396823148aa2a766579faa0ce3b8882325294d6750ea9a80369b5305630d68f3, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:92:db:e9:b5:f4:97:f1:40:ae:c1:5f:03:24: c1:67:f3:b1:bf:30:83:2b:f1:4a:91:29:88:00:91: c2:2e:72:f6:d6:39:9b:3f:a7:2e:71:5c:fb:40:1a: e8:4c:01:53:da:00:f1:57:13:e1:83:16:29:d1:e3: 5a:68:89:e8:bd:63:fb:84:47:17:4f:53:d0:77:f7: 22:4c:dd:ca:7e:88:a4:07:8b:d9:92:28:57:3b:31: c6:db:9a:c0:5a:4e:10:aa:46:c2:6d:6b:96:ae:c8: c9:c0:95:eb:e9:63:e5:8e:a4:13:d8:6f:e5:d8:f3: 65:99:f9:50:01:0c:89:9f:c4:78:8d:4f:45:4a:1b: 6b:ef:20:5f:b0:c5:30:80:b7:cf:b6:85:eb:25:c0: f1:cc:ba:10:9c:45:a1:d2:a0:e2:2b:2e:04:24:27: 3f:31:53:d7:87:f1:23:54:a0:37:d3:86:a0:b1:40: f9:44:fa:46:3e:5d:ab:67:30:9d:68:f2:c5:a7:b3: fd:2c:69:9f:0e:e7:15:d2:e3:2b:44:87:40:2f:c6: ac:69:9a:ee:a2:a6:59:37:6e:7c:e4:67:88:e3:d2: c7:80:92:6f:40:db:38:9f:14:f8:8a:eb:75:2c:db: 79:e8:88:1d:ed:69:e5:04:5b:d4:ea:d9:35:85:b1: 28:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:7E:9A:86:95:F2:F3:30:E5:1E:2E:81:06:2F:ED:17:86:B6:1F:0C X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:b1:16:d9:ac:db:2f:72:45:3b:17:9c:f5:12:a2:3a:9e:77: f9:79:48:46:a1:00:89:97:71:fe:61:c3:2b:3e:f4:62:22:dd: cb:de:ec:b4:97:6c:4b:d2:ec:56:08:90:80:a4:c3:2e:98:56: d3:93:17:1b:8c:88:a3:53:b1:9e:31:34:c4:18:b8:22:a5:07: 03:3e:99:bd:34:d4:5c:dd:1d:95:4a:da:a5:dc:78:67:24:d5: ae:8f:2b:37:bf:4a:45:9c:31:16:62:35:2a:90:32:48:ea:10: 38:d7:58:e7:b7:2c:8c:d1:32:87:26:2b:d5:6d:b2:f7:3b:37: 07:a7:59:87:7c:8d:1d:70:86:47:83:a5:8c:64:e0:a1:0a:0c: 7a:ef:3f:4a:69:d7:9d:31:82:31:1c:55:bd:d7:58:a2:6c:0c: 6d:b5:2e:4b:71:db:6f:4f:6e:75:61:e6:fc:34:a4:69:e8:9f: d2:50:ca:85:eb:35:92:75:d6:7e:01:1b:c8:e3:9d:66:68:44: 84:bb:9e:32:3e:a9:1a:93:08:3d:fe:28:14:19:cb:2a:5b:06: 8c:d1:cd:b6:55:e8:1f:f1:0e:12:52:a7:b9:b5:98:1d:d9:5f: 3d:d6:4a:8e:95:7a:07:fd:ec:a4:bf:c0:7c:8a:4e:48:1d:a1: 40:01:55:94 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUJz7hiQgPWeHsZd2EdaUgk1GRpkcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDQyNDAwMTQzMVoX DTI2MDQyODAwMTQzMVowejFJMEcGA1UEBRNAMzk2ODIzMTQ4YWEyYTc2NjU3OWZh YTBjZTNiODg4MjMyNTI5NGQ2NzUwZWE5YTgwMzY5YjUzMDU2MzBkNjhmMzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp5Lb6bX0l/FArsFfAyTBZ/OxvzCD K/FKkSmIAJHCLnL21jmbP6cucVz7QBroTAFT2gDxVxPhgxYp0eNaaInovWP7hEcX T1PQd/ciTN3KfoikB4vZkihXOzHG25rAWk4QqkbCbWuWrsjJwJXr6WPljqQT2G/l 2PNlmflQAQyJn8R4jU9FShtr7yBfsMUwgLfPtoXrJcDxzLoQnEWh0qDiKy4EJCc/ MVPXh/EjVKA304agsUD5RPpGPl2rZzCdaPLFp7P9LGmfDucV0uMrRIdAL8asaZru oqZZN2585GeI49LHgJJvQNs4nxT4iut1LNt56Igd7WnlBFvU6tk1hbEo9wIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFGp+moaV8vMw5R4ugQYv7ReGth8MMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAHexFtms2y9yRTsXnPUSojqed/l5SEah AImXcf5hwys+9GIi3cve7LSXbEvS7FYIkICkwy6YVtOTFxuMiKNTsZ4xNMQYuCKl BwM+mb001FzdHZVK2qXceGck1a6PKze/SkWcMRZiNSqQMkjqEDjXWOe3LIzRMocm K9Vtsvc7NwenWYd8jR1whkeDpYxk4KEKDHrvP0pp150xgjEcVb3XWKJsDG21Lktx 229PbnVh5vw0pGnon9JQyoXrNZJ11n4BG8jjnWZoRIS7njI+qRqTCD3+KBQZyypb BozRzbZV6B/xDhJSp7m1mB3ZXz3WSo6Vegf97KS/wHyKTkgdoUABVZQ= -----END CERTIFICATE-----Generated at Fri Apr 24 23:25:09 2026 by rpki-client