$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: iyOYLfLVZy5P+dlzMTRFLrqbWnT0jV51NhviZleyN1Q= Subject key identifier: A1:21:C3:E6:6E:09:D3:82:F3:6D:FC:58:CA:B2:9D:A5:F6:BB:03:5A Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 786B3825A911E1182CBE1BFF0DF33240F6D4EDD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0597 Signing time: Tue 07 Apr 2026 00:10:23 +0000 Manifest this update: Tue 07 Apr 2026 00:10:23 +0000 Manifest next update: Sat 11 Apr 2026 00:10:23 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: SCnyevt8JWl5rLEL68QwGmnw3EuqDH3wA2o9aj+44Cs=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 00:10:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:6b:38:25:a9:11:e1:18:2c:be:1b:ff:0d:f3:32:40:f6:d4:ed:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 7 00:10:23 2026 GMT Not After : Apr 11 00:10:23 2026 GMT Subject: serialNumber=2d15b88b68f52249c4d57d9131225c721508dabe1e7bb729935c1d79d7793508, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:cf:79:29:66:e4:74:22:2c:78:c6:7b:11:8e: ad:1b:12:5d:8f:c7:45:d9:c4:e8:d9:53:8c:f3:26: eb:07:f0:69:b4:c9:a0:47:38:1d:4d:99:13:0e:de: 59:61:a1:af:bf:e2:c2:a4:23:4a:8a:5f:22:b9:d7: 30:69:86:13:cb:30:e7:10:d5:41:9e:c6:94:d5:2d: 46:85:4d:d1:8f:fa:7d:e4:fe:38:a9:e8:a2:3b:5d: 29:37:e4:a5:e6:65:fe:05:11:6f:23:a1:e7:94:d2: 47:1b:bb:08:83:7a:98:b6:65:5e:c9:60:a6:9c:de: 5d:d2:f0:f4:12:2e:6c:4b:4c:a2:d9:3a:3f:e3:7b: 4e:48:30:a5:43:52:3b:64:91:35:4f:62:2d:74:18: b2:32:1c:c7:64:27:65:05:62:10:c5:68:0a:80:71: 93:fa:db:d2:8d:e2:28:ff:fd:44:65:e6:3a:23:8e: 7e:b5:49:81:bf:22:f8:ea:33:35:e4:d0:b9:17:61: 31:6e:e3:e5:4d:55:e6:2c:3e:a2:d0:e9:90:38:9e: 3d:95:e6:b0:91:ca:d7:ff:76:19:ad:8f:75:62:79: c7:16:d2:c4:ee:d4:64:59:ed:83:91:ae:f3:58:47: 7a:dc:6f:97:57:91:75:98:be:11:15:26:a6:de:04: c3:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:21:C3:E6:6E:09:D3:82:F3:6D:FC:58:CA:B2:9D:A5:F6:BB:03:5A X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:da:5f:a1:f5:a5:2a:80:66:7d:bb:9e:1a:70:14:fb:ec:57: 72:c5:86:9d:d5:17:cd:2c:74:b2:b2:46:b4:23:d3:75:7d:ba: 8d:f3:b2:df:00:a8:28:61:49:ac:43:16:e1:86:f7:dc:34:b8: 9c:f1:20:93:9a:48:07:db:62:48:80:50:66:b3:b8:5a:bd:6a: 7d:38:be:91:d3:b8:d3:dc:22:c4:bb:76:cf:c9:cc:f6:51:d7: 26:5e:9b:28:fc:f0:80:25:19:05:4c:35:ff:fa:13:64:cb:6e: 2a:7e:06:65:d7:a6:a9:8c:36:73:ea:9f:1b:64:2a:d2:8a:85: b2:1f:33:3b:63:5c:1d:cc:eb:c0:da:f9:09:7b:bf:77:b5:bf: cd:d8:ee:18:04:a6:d1:15:db:3b:aa:16:fe:31:62:bf:2d:a2: 37:c0:5d:3f:c2:e0:c7:6e:07:83:b5:45:62:b9:15:ec:cb:e4: cd:db:b5:4b:fd:ba:f6:c2:6a:7c:97:8c:dc:80:72:a5:30:e8: fe:c4:20:c5:ba:e3:23:30:e3:f0:1c:dd:af:e0:3e:80:4b:63: 94:85:68:de:71:92:93:8b:d1:79:d8:0d:f3:dc:56:11:29:5f: ac:94:33:a3:bd:d9:32:56:63:b2:f2:18:13:96:d4:d4:30:8e: 00:83:a9:d6 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUeGs4JakR4Rgsvhv/DfMyQPbU7dQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDQwNzAwMTAyM1oX DTI2MDQxMTAwMTAyM1owejFJMEcGA1UEBRNAMmQxNWI4OGI2OGY1MjI0OWM0ZDU3 ZDkxMzEyMjVjNzIxNTA4ZGFiZTFlN2JiNzI5OTM1YzFkNzlkNzc5MzUwODEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5895KWbkdCIseMZ7EY6tGxJdj8dF 2cTo2VOM8ybrB/BptMmgRzgdTZkTDt5ZYaGvv+LCpCNKil8iudcwaYYTyzDnENVB nsaU1S1GhU3Rj/p95P44qeiiO10pN+Sl5mX+BRFvI6HnlNJHG7sIg3qYtmVeyWCm nN5d0vD0Ei5sS0yi2To/43tOSDClQ1I7ZJE1T2ItdBiyMhzHZCdlBWIQxWgKgHGT +tvSjeIo//1EZeY6I45+tUmBvyL46jM15NC5F2ExbuPlTVXmLD6i0OmQOJ49leaw kcrX/3YZrY91YnnHFtLE7tRkWe2Dka7zWEd63G+XV5F1mL4RFSam3gTDhQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFKEhw+ZuCdOC8238WMqynaX2uwNaMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAHbaX6H1pSqAZn27nhpwFPvsV3LFhp3V F80sdLKyRrQj03V9uo3zst8AqChhSaxDFuGG99w0uJzxIJOaSAfbYkiAUGazuFq9 an04vpHTuNPcIsS7ds/JzPZR1yZemyj88IAlGQVMNf/6E2TLbip+BmXXpqmMNnPq nxtkKtKKhbIfMztjXB3M68Da+Ql7v3e1v83Y7hgEptEV2zuqFv4xYr8tojfAXT/C 4MduB4O1RWK5FezL5M3btUv9uvbCanyXjNyAcqUw6P7EIMW64yMw4/Ac3a/gPoBL Y5SFaN5xkpOL0XnYDfPcVhEpX6yUM6O92TJWY7LyGBOW1NQwjgCDqdY= -----END CERTIFICATE-----Generated at Tue Apr 7 23:49:58 2026 by rpki-client