$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: 6qy8DgHLgnPY/hpNTKT8SrI54y4/lowOfV6QpJY1NTg= Subject key identifier: C2:35:F9:6B:A8:55:69:1F:A6:EA:13:85:D4:B6:E8:23:95:A4:A6:CB Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 21B4AC289E74484D65770C0574EE6251CAF2769F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0596 Signing time: Mon 06 Apr 2026 00:10:07 +0000 Manifest this update: Mon 06 Apr 2026 00:10:07 +0000 Manifest next update: Fri 10 Apr 2026 00:10:07 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: FkjRyMhaalbHO2n0lfkJMAaeGWZHeuPWw6kFEJKi/eg=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 Apr 2026 00:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:b4:ac:28:9e:74:48:4d:65:77:0c:05:74:ee:62:51:ca:f2:76:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 6 00:10:07 2026 GMT Not After : Apr 10 00:10:07 2026 GMT Subject: serialNumber=2a5f515847660c137838b437760803fb0b0864ed5793aebcdaf44c5b5fe8e953, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5b:ab:a6:50:5c:64:ac:59:62:09:53:e4:32: c7:bd:35:8c:62:da:05:39:12:b4:84:b9:e5:c5:7d: 81:15:0a:aa:6c:ff:a0:7f:8b:69:be:fd:e9:ce:62: 0b:dd:3b:3f:2d:4c:b3:5e:b1:9c:b3:3f:45:ce:fb: a9:07:50:29:64:fc:1d:e9:3d:bc:06:eb:7b:5f:06: 84:3e:00:49:11:47:b8:05:12:00:c7:ce:40:7f:87: f9:4a:3e:7e:35:35:19:81:4a:be:ad:41:69:70:40: 9e:9b:6e:3b:1e:99:58:30:8a:3d:f8:b9:62:d9:80: 98:f3:ca:70:48:cf:1c:ac:64:42:a8:5d:65:c2:68: c7:50:b6:f9:99:8c:d2:63:88:ac:0c:c4:a1:f4:72: 38:c6:14:a7:7a:eb:e0:29:66:b9:f4:ab:c6:c9:e3: fd:39:db:2a:f8:4a:48:b7:c5:c8:c5:98:7f:08:0b: 10:51:0f:16:cc:bc:f4:ac:8c:34:1a:12:96:65:82: 3a:a0:4e:f3:f3:86:3d:c8:31:56:2f:78:f1:ba:ce: 67:dc:1c:e6:e1:c4:c0:fc:00:27:fc:0e:56:e3:a5: bc:02:97:67:cf:b0:e2:ec:b8:53:58:06:42:fd:87: 7b:29:41:29:3d:17:fb:58:32:0b:9e:ab:24:4d:2e: d4:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:35:F9:6B:A8:55:69:1F:A6:EA:13:85:D4:B6:E8:23:95:A4:A6:CB X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d1:f2:76:25:e7:bf:ce:b4:40:67:18:d9:aa:e7:45:66:34:07: ce:6c:ec:c7:13:6d:59:5a:ba:4d:92:04:aa:44:aa:ae:49:9e: 53:97:ed:29:be:e2:be:1d:26:a9:56:ac:ec:ad:ab:d9:56:ff: cb:c0:0f:7c:b1:0c:89:4c:0b:5f:c6:e7:f0:dd:da:a9:95:2e: 48:c1:11:be:e6:57:09:a0:d7:1d:12:81:91:41:b8:fb:73:e3: dd:c4:e1:0a:b9:eb:f6:08:5c:2d:80:14:e7:ac:af:c0:88:f3: 97:6b:f2:e5:1b:f5:67:62:84:1d:e7:55:a6:a3:5b:38:0b:2b: e0:6f:58:3f:f5:8b:fa:ab:6a:6a:36:8a:28:2e:43:6e:28:b3: a4:28:10:59:34:15:08:55:9c:30:6d:15:a1:37:32:10:3d:3b: c0:96:78:75:d5:99:bc:03:5f:37:5c:f3:70:2f:a1:b3:2e:59: 67:bf:08:35:9d:3d:12:30:11:d3:35:00:41:ca:b4:77:05:5e: 8a:c9:c2:d7:6e:49:17:10:fb:ea:9a:23:53:bd:22:86:43:3c: c5:94:59:ba:e4:5f:d6:02:8b:e4:5f:58:82:9c:ef:cc:74:31: 5b:1d:9a:d6:90:53:6e:cc:b7:61:94:54:75:07:c9:c3:f7:34: 89:a7:ff:b2 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUIbSsKJ50SE1ldwwFdO5iUcrydp8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDQwNjAwMTAwN1oX DTI2MDQxMDAwMTAwN1owejFJMEcGA1UEBRNAMmE1ZjUxNTg0NzY2MGMxMzc4Mzhi NDM3NzYwODAzZmIwYjA4NjRlZDU3OTNhZWJjZGFmNDRjNWI1ZmU4ZTk1MzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo1urplBcZKxZYglT5DLHvTWMYtoF ORK0hLnlxX2BFQqqbP+gf4tpvv3pzmIL3Ts/LUyzXrGcsz9FzvupB1ApZPwd6T28 But7XwaEPgBJEUe4BRIAx85Af4f5Sj5+NTUZgUq+rUFpcECem247HplYMIo9+Lli 2YCY88pwSM8crGRCqF1lwmjHULb5mYzSY4isDMSh9HI4xhSneuvgKWa59KvGyeP9 Odsq+EpIt8XIxZh/CAsQUQ8WzLz0rIw0GhKWZYI6oE7z84Y9yDFWL3jxus5n3Bzm 4cTA/AAn/A5W46W8Apdnz7Di7LhTWAZC/Yd7KUEpPRf7WDILnqskTS7UFwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFMI1+WuoVWkfpuoThdS26COVpKbLMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBANHydiXnv860QGcY2arnRWY0B85s7McT bVlauk2SBKpEqq5JnlOX7Sm+4r4dJqlWrOytq9lW/8vAD3yxDIlMC1/G5/Dd2qmV LkjBEb7mVwmg1x0SgZFBuPtz493E4Qq56/YIXC2AFOesr8CI85dr8uUb9WdihB3n VaajWzgLK+BvWD/1i/qramo2iiguQ24os6QoEFk0FQhVnDBtFaE3MhA9O8CWeHXV mbwDXzdc83AvobMuWWe/CDWdPRIwEdM1AEHKtHcFXorJwtduSRcQ++qaI1O9IoZD PMWUWbrkX9YCi+RfWIKc78x0MVsdmtaQU27Mt2GUVHUHycP3NImn/7I= -----END CERTIFICATE-----Generated at Mon Apr 6 17:20:03 2026 by rpki-client