$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: FMXqa7WkArduHetq9uc+NvhhuFHuu5Iw5TexQcA0rbg= Subject key identifier: 6B:55:72:E3:51:71:82:C1:0C:8F:0E:A7:F9:26:54:5B:B9:46:93:A3 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 3A5783DDB55E5CAAD931245251906B42E6BC47F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 05A4 Signing time: Mon 20 Apr 2026 00:13:14 +0000 Manifest this update: Mon 20 Apr 2026 00:13:14 +0000 Manifest next update: Fri 24 Apr 2026 00:13:14 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: YrsaK54EqaE/M6An3X2Fsr2OPSTUkJPvwZkswMMWkZk=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:13:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:57:83:dd:b5:5e:5c:aa:d9:31:24:52:51:90:6b:42:e6:bc:47:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 20 00:13:14 2026 GMT Not After : Apr 24 00:13:14 2026 GMT Subject: serialNumber=713a9641068f1856878368e6cc32721e9cc592f26108c5ef0da124127daa87be, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b5:74:e5:29:e5:e2:98:07:9c:83:f4:6d:0d: e2:0d:8e:81:24:55:a1:dd:80:27:7c:e2:41:31:ed: 71:e6:54:86:c1:32:d8:2c:d5:e0:c3:3e:ba:d6:0c: 08:ed:0f:5a:bb:4c:90:12:6e:f9:10:4a:a1:b0:9c: e8:46:8e:4f:a0:ef:78:77:06:8e:92:86:1e:21:47: 56:be:dd:f6:e1:bc:54:c2:cb:05:ab:43:1e:7d:22: 08:1f:79:b4:d8:59:f1:c5:ff:f8:1b:32:8c:bc:b0: f8:bd:55:96:de:f7:45:fd:72:0f:26:f8:5f:7a:41: c8:be:70:3a:10:01:f0:1f:be:dc:f0:ab:fb:d0:d2: 66:b2:07:e2:7c:4f:de:8a:f2:01:ee:93:b0:67:1c: 15:1d:aa:c3:cf:51:d4:e9:b9:d0:bb:db:05:aa:fe: 5e:c4:42:64:56:70:c9:d9:81:13:c4:be:74:fa:9f: 7a:89:99:99:79:f9:24:a2:a0:84:af:91:f4:eb:ba: 21:a9:39:1e:6b:17:eb:90:83:f7:61:55:3f:1a:e5: cb:f8:56:ee:06:65:7d:88:ea:58:07:02:ac:db:a8: 9b:7e:5c:22:38:d6:60:ec:4f:2a:0c:4e:25:59:ec: 77:bd:38:4c:03:bc:f9:0f:56:e1:5d:4f:f7:21:47: 06:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:55:72:E3:51:71:82:C1:0C:8F:0E:A7:F9:26:54:5B:B9:46:93:A3 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:58:03:ab:2c:d7:11:d1:da:b4:6d:ee:3e:e3:ff:ce:8b:b4: 3a:72:6e:53:0c:cf:21:a0:10:f8:cd:10:bb:94:5f:30:b9:97: 31:2e:2b:d1:bc:a5:cf:23:4b:21:b0:16:fd:f9:d6:fc:67:fc: 5b:04:df:a4:97:52:b1:76:6e:ae:cf:80:4b:f9:c1:66:02:06: 25:60:47:6c:ea:e5:bd:06:c2:8f:80:a1:d7:10:8f:23:56:55: f6:1c:5d:f7:eb:4e:26:90:45:3a:e1:56:ed:dd:69:85:fd:b4: 2f:6d:c8:8d:05:61:be:d1:b7:3e:f0:cd:cf:83:69:78:29:9f: 8d:15:7e:1d:98:82:7f:08:55:4a:33:a1:db:a5:3a:cd:3e:02: e5:ac:53:1a:1f:fe:d0:f7:59:34:c8:70:b1:d8:27:0e:ad:33: 2f:91:ed:97:c0:12:bb:9f:83:5e:0a:87:d8:72:68:d0:0e:53: b4:ba:a5:38:d5:3c:b7:f8:de:5f:b7:fe:06:b4:53:fd:dc:d0: 0b:c6:30:9f:92:a6:37:d7:25:76:15:09:bc:db:59:e3:a1:71: db:1e:4f:37:5e:24:70:61:b1:62:f0:36:3d:50:0c:23:69:49: a1:e5:0d:85:a4:5b:10:d2:f0:af:55:1f:a9:9f:72:e5:aa:75: f8:b2:13:5d -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUOleD3bVeXKrZMSRSUZBrQua8R/QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDQyMDAwMTMxNFoX DTI2MDQyNDAwMTMxNFowejFJMEcGA1UEBRNANzEzYTk2NDEwNjhmMTg1Njg3ODM2 OGU2Y2MzMjcyMWU5Y2M1OTJmMjYxMDhjNWVmMGRhMTI0MTI3ZGFhODdiZTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwrV05Snl4pgHnIP0bQ3iDY6BJFWh 3YAnfOJBMe1x5lSGwTLYLNXgwz661gwI7Q9au0yQEm75EEqhsJzoRo5PoO94dwaO koYeIUdWvt324bxUwssFq0MefSIIH3m02Fnxxf/4GzKMvLD4vVWW3vdF/XIPJvhf ekHIvnA6EAHwH77c8Kv70NJmsgfifE/eivIB7pOwZxwVHarDz1HU6bnQu9sFqv5e xEJkVnDJ2YETxL50+p96iZmZefkkoqCEr5H067ohqTkeaxfrkIP3YVU/GuXL+Fbu BmV9iOpYBwKs26ibflwiONZg7E8qDE4lWex3vThMA7z5D1bhXU/3IUcGvQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFGtVcuNRcYLBDI8Op/kmVFu5RpOjMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAFxYA6ss1xHR2rRt7j7j/86LtDpyblMM zyGgEPjNELuUXzC5lzEuK9G8pc8jSyGwFv351vxn/FsE36SXUrF2bq7PgEv5wWYC BiVgR2zq5b0Gwo+AodcQjyNWVfYcXffrTiaQRTrhVu3daYX9tC9tyI0FYb7Rtz7w zc+DaXgpn40Vfh2Ygn8IVUozodulOs0+AuWsUxof/tD3WTTIcLHYJw6tMy+R7ZfA Erufg14Kh9hyaNAOU7S6pTjVPLf43l+3/ga0U/3c0AvGMJ+SpjfXJXYVCbzbWeOh cdseTzdeJHBhsWLwNj1QDCNpSaHlDYWkWxDS8K9VH6mfcuWqdfiyE10= -----END CERTIFICATE-----Generated at Mon Apr 20 18:40:44 2026 by rpki-client