$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: GuZWjYB0hJxlKjf+5lY3hAtKffXZ03SWc80GFi2f4sQ= Subject key identifier: D1:52:69:64:E9:BA:AA:DE:5F:CC:A4:78:76:52:AA:80:96:5E:1E:E4 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 0FD5F176023E5858D073AAD41033C36C37E5CC6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0575 Signing time: Wed 04 Mar 2026 00:02:22 +0000 Manifest this update: Wed 04 Mar 2026 00:02:22 +0000 Manifest next update: Sun 08 Mar 2026 00:02:22 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: Au7oXK6kGV2bu47RO1bcgBonhh35CdLcw34aK+2AvQU=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 00:02:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:d5:f1:76:02:3e:58:58:d0:73:aa:d4:10:33:c3:6c:37:e5:cc:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Mar 4 00:02:22 2026 GMT Not After : Mar 8 00:02:22 2026 GMT Subject: serialNumber=ec95057ab42aea4912f87a80a0fd3710d5acea0eea41c01422199f663d5dd1dd, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b2:39:45:9f:01:8c:d8:82:1f:02:6c:86:cc: e1:77:2f:22:24:42:37:ae:98:07:49:02:73:7a:a0: 3b:63:b3:ee:81:a0:18:f8:6f:99:f7:ea:02:36:68: f9:dc:9e:92:51:24:2e:a7:e5:56:65:91:3e:a9:94: 93:36:fc:57:e2:ae:d5:2e:e3:b6:de:f4:a7:a0:1d: 89:a6:1a:fd:15:a4:47:98:db:a8:87:c9:84:a2:df: 07:e3:6d:57:ca:e9:75:ca:17:cd:19:42:b8:13:a8: 36:61:0b:22:a8:51:b2:73:f6:a6:13:95:f4:dc:fa: a8:5f:84:33:79:89:b6:58:66:74:77:7f:ca:eb:f8: f4:00:03:1e:e9:d2:f8:41:70:63:70:6c:f8:f7:76: b2:a0:b0:88:11:27:5a:30:50:18:45:82:d9:a4:36: 6d:ba:4a:1a:40:a8:3f:c2:a7:06:90:35:f0:61:b4: 9d:d5:a4:36:c3:82:27:3e:c5:fb:4e:9d:b9:f3:ca: 01:b0:c9:ff:48:60:0e:80:c5:8f:9a:13:16:e2:2e: 07:bc:6f:79:70:87:7f:65:31:83:12:ac:d4:39:eb: 0f:7e:27:2a:7a:c8:21:22:98:3d:06:3e:00:75:02: 4f:c9:96:6d:aa:17:b5:71:99:c5:14:3e:1a:70:28: e5:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:52:69:64:E9:BA:AA:DE:5F:CC:A4:78:76:52:AA:80:96:5E:1E:E4 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:54:08:8e:22:6b:9b:8b:96:de:9a:dc:3b:c1:eb:ed:2f:2a: 94:80:ec:c7:91:64:03:06:37:fb:eb:47:8b:68:4b:56:46:d9: 73:fe:45:5a:20:e4:00:a6:36:ee:53:09:c0:58:53:9c:42:b8: 8a:66:dc:1d:b0:5e:5d:0e:4f:d5:9a:de:29:c3:d3:6b:61:9b: b1:cc:49:8e:a1:cb:26:79:f2:8d:f7:96:c1:96:b3:ca:20:79: 4d:f9:22:2c:17:01:6e:1f:b1:67:88:10:d5:05:05:9f:cf:78: 82:8f:34:54:a8:76:df:88:83:76:0d:43:22:03:a3:e7:cc:c0: e9:62:3f:55:a4:01:0c:33:f9:ab:a4:ff:2e:a0:fa:c8:78:79: 6a:fe:24:b0:16:53:c7:a5:5f:53:ee:cf:9f:4c:85:dd:bb:48: 08:71:e8:cc:ab:d4:54:a9:8c:3f:a1:cd:1c:3a:ca:b7:a7:66: 62:7c:a3:31:35:79:54:3d:3b:bc:0a:22:47:00:d5:b7:54:cc: 7e:a6:c0:83:dd:a0:00:f3:25:ab:94:4d:1e:d2:3d:34:2d:80: 0c:8e:8e:13:c9:1a:a2:b4:87:56:25:34:d3:1e:41:5a:59:6a: 42:e2:87:f9:0a:72:6f:6d:09:1a:33:5a:e9:ed:65:0c:59:4b: ef:64:4e:42 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUD9XxdgI+WFjQc6rUEDPDbDflzG4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDMwNDAwMDIyMloX DTI2MDMwODAwMDIyMlowejFJMEcGA1UEBRNAZWM5NTA1N2FiNDJhZWE0OTEyZjg3 YTgwYTBmZDM3MTBkNWFjZWEwZWVhNDFjMDE0MjIxOTlmNjYzZDVkZDFkZDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsrI5RZ8BjNiCHwJshszhdy8iJEI3 rpgHSQJzeqA7Y7PugaAY+G+Z9+oCNmj53J6SUSQup+VWZZE+qZSTNvxX4q7VLuO2 3vSnoB2Jphr9FaRHmNuoh8mEot8H421Xyul1yhfNGUK4E6g2YQsiqFGyc/amE5X0 3PqoX4QzeYm2WGZ0d3/K6/j0AAMe6dL4QXBjcGz493ayoLCIESdaMFAYRYLZpDZt ukoaQKg/wqcGkDXwYbSd1aQ2w4InPsX7Tp2588oBsMn/SGAOgMWPmhMW4i4HvG95 cId/ZTGDEqzUOesPficqesghIpg9Bj4AdQJPyZZtqhe1cZnFFD4acCjlRwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNFSaWTpuqreX8ykeHZSqoCWXh7kMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAKRUCI4ia5uLlt6a3DvB6+0vKpSA7MeR ZAMGN/vrR4toS1ZG2XP+RVog5ACmNu5TCcBYU5xCuIpm3B2wXl0OT9Wa3inD02th m7HMSY6hyyZ58o33lsGWs8ogeU35IiwXAW4fsWeIENUFBZ/PeIKPNFSodt+Ig3YN QyIDo+fMwOliP1WkAQwz+auk/y6g+sh4eWr+JLAWU8elX1Puz59Mhd27SAhx6Myr 1FSpjD+hzRw6yrenZmJ8ozE1eVQ9O7wKIkcA1bdUzH6mwIPdoADzJauUTR7SPTQt gAyOjhPJGqK0h1YlNNMeQVpZakLih/kKcm9tCRozWuntZQxZS+9kTkI= -----END CERTIFICATE-----Generated at Wed Mar 4 15:23:35 2026 by rpki-client