$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: YgYJCQP92/RuJXATa6piBT2DLI9CWtjY+T8HsFtNZ8Q= Subject key identifier: 67:56:D1:5F:1D:33:86:9E:5E:30:80:73:6E:3D:6B:D7:F6:29:85:D1 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 541A48804CDD5FC256D416F90CBE85AD2F63E637 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0508 Signing time: Mon 17 Nov 2025 00:02:03 +0000 Manifest this update: Mon 17 Nov 2025 00:02:03 +0000 Manifest next update: Fri 21 Nov 2025 00:02:03 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: IZjqCDuu48x7AjQOOlR475AlABLppx+n0KPWP3mbyaw=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: LMkOhR8oitnpWIWwo+ff7iHTil9wckIVvZSko8EEekQ=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: JGG4dTO8UJf/vYGc8fwxTAOM1h6nEPP82EI/7Dv4FHU=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: wI7sOPzQ6Zax+/UMS6hJmv/qnuaU2skw7+RGz7EXw34=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: fe034WnBtuFinRptIYu7rq19OozfzbkZbEFpFjLILHE=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: tvlz6rdf6o1VhTj9MN74UhRyGtkmPrUWF+QfcAN2XXk=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: 77L/bNHp8w4yFCp+OLzg5ldZu/g8b3ZjRhypYKOpX2o=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: 4627E3Mj815EcaXkX3BTu4n4/Fyc8pjeRhwmHUjWB4E=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: IkDmY2VrM+MUCXVE/KGDwQp38xJerke+gZfTRPzKW38=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: 1LQDJZsx6Ih/p1JXbixCJFIni4NstX9kTQqLItMf6Bo=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: uqGyuI64MyoSB2aCcDH4ZYFIVtRIimLKr+qLtdzGGDc=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: YDEb1HZpmKP7sx/WuOw3OFG2ObkpXND2FyRZjfR2dvk=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: iZ5upg9JhYgqzuisO9iMHg6o3uglr67eIAFDAVOMJFQ=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: zj3uaCJ1OVw76COdDaPaPY8yFlOeR+/ReGZ6syX0RDg=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: qeiN2jY48ldTzPZErmuiZOmp5qE9mu9/GnZEk7z/YWM=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: UaHt+4lelzGalTP6o6RTVxgEfhRYbwB09w3EQYZfbmg=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: sbGSBiN+e2Ag51zrXc1UwPae+VvT58VQo1yXZWqJMvI=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: Z9np75TZ9Xp1a9ECxf2+DE3mfvCD/7fxNnuBJSZrfSo=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: D8bBPQUOCTEk8pdNz92K1MRwyNVwdAT9TarkZGSGScU=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: aXN/Mp7fby5XcX6lsymhb6JcsHglVTPldRt7Y8yfOuw=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: 9OizPigUZE6/PAl/qV5jIptlHQkQvMFcwl8vNkU9a3A=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: 8yPh7RFUtDHIOMlg2c13wT8N//u27y/UzlNQTFASLCE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Nov 2025 00:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:1a:48:80:4c:dd:5f:c2:56:d4:16:f9:0c:be:85:ad:2f:63:e6:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 17 00:02:03 2025 GMT Not After : Nov 21 00:02:03 2025 GMT Subject: serialNumber=4b846e12f37d0f1e1bb338c1c87805b9d52ce3947455b29471411e75f96ab018, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c9:aa:3f:15:0e:d1:0c:0c:0e:84:28:3a:0d: 32:53:45:00:c5:f8:b6:e9:bb:e1:a9:7c:d7:44:81: dc:48:0f:57:e8:3e:59:43:7f:7d:c5:ca:a9:76:8d: ce:51:80:2b:d0:3f:e5:4c:3c:89:b9:97:e2:32:45: 1b:d3:88:cf:d2:3e:b4:29:88:f0:a6:40:d0:f5:85: f8:ba:bc:b4:05:46:32:3f:dd:82:0d:e1:f7:73:e3: ff:62:88:41:cd:74:b2:f6:71:70:1c:a3:b2:7e:67: 8e:53:93:dd:4b:29:75:03:27:39:3c:7c:a0:ce:ed: 87:21:73:34:bc:e3:d8:9f:de:2c:15:89:f0:f0:f5: c0:5c:6b:cb:92:f5:19:43:89:be:57:df:ca:0b:b7: 65:03:d1:17:85:aa:f1:a7:e3:41:4d:98:ea:1a:e8: 8e:54:a8:78:ba:4d:24:16:88:b3:c9:c2:d9:28:d7: 22:55:d7:0e:d0:41:2c:0d:2e:65:77:91:af:5a:83: 72:af:28:8d:f2:cc:93:4c:f3:ee:5a:8d:c6:d5:f8: a9:8f:f9:39:f8:cd:fb:63:1f:40:2b:90:7a:0b:fb: 6b:a9:cf:61:b7:a0:82:7a:6f:ac:86:c4:54:ea:e2: 39:95:0a:6b:20:ef:2b:c4:4b:d8:f9:ab:11:48:50: 1e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:56:D1:5F:1D:33:86:9E:5E:30:80:73:6E:3D:6B:D7:F6:29:85:D1 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c6:2f:b2:17:1c:a6:16:c4:d8:e9:f5:fc:f1:e6:44:54:61:f2: 68:90:64:06:3f:7e:31:40:a6:42:7c:38:f8:50:31:d1:75:1f: b4:6d:e9:00:b4:5f:a7:87:d4:b5:60:9e:e9:44:2b:96:e2:e8: 27:2e:67:6b:24:8a:6d:3b:33:fa:a4:dd:63:2f:7a:ca:74:a9: d2:99:55:81:6b:52:ff:31:f0:f8:93:74:89:de:e3:48:bf:e8: 26:52:78:b5:43:d0:01:0c:8a:3b:2b:12:21:7a:df:9e:47:38: 69:85:0c:5c:e0:cf:91:f4:7a:64:2e:e1:0d:97:cb:5d:1a:be: 95:a1:a6:cf:43:fc:57:7d:fb:16:4e:c0:2f:c6:2a:17:e2:4e: ec:b4:af:83:8c:26:b0:af:97:37:61:48:fe:49:a7:46:a3:aa: 6f:b4:61:7a:4d:4f:9c:d7:e5:16:c5:fe:55:c4:80:8a:3c:08: 29:57:7a:17:b8:24:a6:c3:4a:d1:92:b4:51:a2:16:25:c5:8c: a0:ab:d3:a4:d2:7e:ab:e8:3d:ef:a3:9b:95:17:80:06:98:b5: 94:bc:0c:af:95:d2:52:8f:2a:de:f6:e3:80:a1:52:cd:81:10: 83:c8:83:c8:bf:15:84:b3:85:3b:08:e7:d8:5b:3d:81:33:57: 07:5d:a7:5c -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUVBpIgEzdX8JW1Bb5DL6FrS9j5jcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExNzAwMDIwM1oX DTI1MTEyMTAwMDIwM1owejFJMEcGA1UEBRNANGI4NDZlMTJmMzdkMGYxZTFiYjMz OGMxYzg3ODA1YjlkNTJjZTM5NDc0NTViMjk0NzE0MTFlNzVmOTZhYjAxODEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwMmqPxUO0QwMDoQoOg0yU0UAxfi2 6bvhqXzXRIHcSA9X6D5ZQ399xcqpdo3OUYAr0D/lTDyJuZfiMkUb04jP0j60KYjw pkDQ9YX4ury0BUYyP92CDeH3c+P/YohBzXSy9nFwHKOyfmeOU5PdSyl1Ayc5PHyg zu2HIXM0vOPYn94sFYnw8PXAXGvLkvUZQ4m+V9/KC7dlA9EXharxp+NBTZjqGuiO VKh4uk0kFoizycLZKNciVdcO0EEsDS5ld5GvWoNyryiN8syTTPPuWo3G1fipj/k5 +M37Yx9AK5B6C/trqc9ht6CCem+shsRU6uI5lQprIO8rxEvY+asRSFAe5wIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFGdW0V8dM4aeXjCAc249a9f2KYXRMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAMYvshccphbE2On1/PHmRFRh8miQZAY/ fjFApkJ8OPhQMdF1H7Rt6QC0X6eH1LVgnulEK5bi6CcuZ2skim07M/qk3WMvesp0 qdKZVYFrUv8x8PiTdIne40i/6CZSeLVD0AEMijsrEiF6355HOGmFDFzgz5H0emQu 4Q2Xy10avpWhps9D/Fd9+xZOwC/GKhfiTuy0r4OMJrCvlzdhSP5Jp0ajqm+0YXpN T5zX5RbF/lXEgIo8CClXehe4JKbDStGStFGiFiXFjKCr06TSfqvoPe+jm5UXgAaY tZS8DK+V0lKPKt7244ChUs2BEIPIg8i/FYSzhTsI59hbPYEzVwddp1w= -----END CERTIFICATE-----Generated at Mon Nov 17 18:37:18 2025 by rpki-client