$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft File: manifest.mft (raw, json) Hash identifier: NfKGqpNhh5AIopNVMpBHI6r6+kZUm9Px1hOObhl1Cho= Subject key identifier: B4:CC:D1:0A:AE:1D:CB:1E:F9:F2:F3:A6:01:A4:27:69:29:95:08:06 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 451378BC0EBCC7223A6926FAAD9D865589ECB1CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft Manifest number: 057D Signing time: Sun 16 Nov 2025 00:01:56 +0000 Manifest this update: Sun 16 Nov 2025 00:01:56 +0000 Manifest next update: Thu 20 Nov 2025 00:01:56 +0000 Files and hashes: 1: 018dea0d-42eb-4d58-8914-636d25ca3b3c.roa (hash: rOHRjbuO7Hy8Ko9nb8Xpc6Saw20VIu6KULwXvpCtrcM=) 2: 0ae05889-eb6d-414c-88e9-bc293171f532.roa (hash: gi+qYv5X3J/oBTbwQMncRVHjonv1zBD+j4YfbPGaogU=) 3: 0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa (hash: /b8BElOP89IBbECpp5wrclf6rGJx+WApXJHrxduRLNE=) 4: 0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa (hash: 2CQIyj2mOYB3W5uiPzeF9M1KLI18tWhFad/KxNC477M=) 5: 205af9d8-3799-4d38-b1fb-da840e362ff1.roa (hash: 1CmYpE+ak58Qjs5uHUXmqVAtng2HYCHp2VMqCnJBRGA=) 6: 2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa (hash: ZWC9600BvTzKsv2HM9BFvgBEj4gFPGZx2Vq5nEaumP0=) 7: 2720640e-9111-44dd-a0b8-a005f04956a0.roa (hash: fmEu3UMPK10xFALr3YaQy1jVMgnoczez2qDI3YJLqeY=) 8: 29fe4454-f7a8-42fd-8c35-77a6d6f8e60f.roa (hash: cocaKlKfG3S05FeULSta2hzddlnuVKm2o6Z7VqoRjJ4=) 9: 2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa (hash: tmAhAdUVvQd1wabAzqg0kx3naNuL07eK+QgqmcpKC34=) 10: 31d36ece-9039-43a2-82a2-03e7d8e7f563.roa (hash: 5e2LLFNXF7SJEiI/T7uTGlwILEXkM0XIb4CE2bXxJxk=) 11: 33dd31e0-7039-4ff8-aafe-97f7b95b07d0.roa (hash: 5j48OuxAbqWh7ijxJvj4Ss4lgH+lV7qdOhWE51DJN9A=) 12: 3523c675-14b3-4d2d-90e1-e439500ecaca.roa (hash: m//VKu/cU1PtqARRaywv6aEPE3QLD9rYQa72HFUn7Wc=) 13: 3537691c-1a10-4699-a8a0-4cec50a35534.roa (hash: Abmvj/dhAaJKtrmU5QjDE67HpkCI7vEuA8xdT0KGqfw=) 14: 453c01e0-c333-4283-987c-be2c8b71798c.roa (hash: zx8kFOwG+2MvATOkdHTWVxxtXFlpTccmPRyVyXhvoSc=) 15: 5484d331-446c-4042-9500-dd3002e6a910.roa (hash: kzgy/MXZ6YaDpWkVnktbmLfOu+eBsMNnRoSPOkoNmf8=) 16: 57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa (hash: qpRU+oKLfGKMAho3sukY7muDlyvS976mSkqo0maIzFA=) 17: 62639af2-026a-4677-b13e-0aeb266620d5.roa (hash: G8O0iM9ZTSBhquB2OQvJTJVd6+oJZUecvFrIGEP6Aco=) 18: 64aa0337-4cf9-42c7-b236-4cd36e69005e.roa (hash: xgMkFUgKMCAGhMSzwNttd+MgPjXe8b0H82anTRTBFSo=) 19: 788c3900-e4d5-439b-b231-3a69b5354901.roa (hash: XCS591sDshyNHvFlkYGa0/giEMhbZ/S/oyd4R9BKpFM=) 20: 7cba22a5-dc61-4413-aed2-8fb4cc8e3a49.roa (hash: QYvcIZoAmSaHgxwYpiFJPj7SKxKJmkMoFKKlcHR5pao=) 21: 7cf17e61-b049-438c-8aaf-2d4714b51857.roa (hash: TCqFsNrU+Jvbz+wET5QUXDpeVbx8dBDuZ3/tvUi3RU8=) 22: 8bf311e9-d27f-46fa-8f05-2ed6b176b5b9.roa (hash: bxw2Dfnx+UCV0yJ4F+9B+j5FxZQBZOUAmtYNvCchqcY=) 23: 90ca90a9-a10a-44e7-82b9-1365746ba55e.crl (hash: sTzxS1upvlkxwUWjpFMNOOrMwYZW9Q9Yxxuqv91M44g=) 24: 977f90e2-d257-4dde-9740-b0391458d8ed.roa (hash: 2BL+EcIjQ/HBc9DolaUEJXZhMBX0tiObH+AwCU/0q8E=) 25: 9a94ee8c-7029-4ffb-af7f-435e161333de.roa (hash: 3i3JYt3okbA7ZYjsaY0Xac/tSdiNF9LeTZ1xj+IK6v4=) 26: a3080b31-8684-4ce8-b4e6-33db63d13627.roa (hash: 6CiWiOOjCzdam//3N9o+ppW+FasN3z0azhzjE5RMtxM=) 27: a3f80673-8b1b-4af1-ae60-e74663f3df69.roa (hash: 85USFsqEMBod0bN06wcE03tX8+QKAgWRaxIJJgW4WhQ=) 28: ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa (hash: kHbw+UinKhVPx4U/DgEwN0gdQJ1QsMaAqFAm2CN1zEI=) 29: b0c38f03-3ced-484e-aa5b-7b06f125ad74.roa (hash: 5qddWceiwiaJoFDKpaH78y6Q2NL6xY2X9aiUtp56r5M=) 30: baa1273d-7883-4b5d-8e1c-23ebac490846.roa (hash: 2YRaEZhHlHgRxONWFHGn7TNPIfhuhyhuHn+S8Bm5BGs=) 31: c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa (hash: ulVQAO4v28PKoVp488T0EY3WDJZZc3iirhxubMUYG44=) 32: c759ed47-7de1-4858-b207-c77b1f7d2c35.roa (hash: knzIDRc9OIWPv8+BmixTR1I4VaxCAZspEd9KELX4tOE=) 33: c7b491e4-76ae-4305-8132-a670b41c66fd.roa (hash: 5c5EEL86uizBaBmDLNfWg9UJEySnl0K35R4CtIeIXUc=) 34: c886fdcc-d9c4-485a-a941-7aa2c7d093e3.roa (hash: 65usu+gMPjioUmNf4awLvolBnbxF6Ds9wcYaZWhZvaU=) 35: c9f7dbd2-1c7e-42e8-a7f9-00bd76e70248.roa (hash: QseDkVwJMcZhZsTyiyCW14dnlDqcpG2HW+azNRv2Rzw=) 36: efdcb43b-2f19-4107-a0a3-c55daccb2714.roa (hash: iZndZsy8Nh7XGf58JkbyLkggGz4qxloDAKOTfT7mO7E=) 37: f54cd21d-ebef-4509-8295-1f7547d0d717.roa (hash: g025LHQ+dWUFN5B87T44kjbJ5v/NNAMVhnp4mmsDbu4=) 38: fcc4293c-b24f-4fac-9395-546f748b3b13.roa (hash: VqizH8nSH4M3Eap701XPPBCXcClnkjme0T3z9MCgsvw=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Nov 2025 00:01:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:13:78:bc:0e:bc:c7:22:3a:69:26:fa:ad:9d:86:55:89:ec:b1:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Nov 16 00:01:56 2025 GMT Not After : Nov 20 00:01:56 2025 GMT Subject: serialNumber=770472ea0ba6b89be0405e355b9c4e43f27151c8a0e1a895126ae6d87083608d, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:22:55:79:d0:01:a5:b1:05:cf:57:c3:2b:26: a0:48:7e:81:67:9a:0f:cf:a8:68:4b:8c:d6:a9:c3: e6:07:68:9c:b0:b2:ba:ea:2c:98:bf:48:02:08:20: 61:9f:23:d1:20:4a:bd:45:8b:8b:d5:00:c4:09:cd: c1:59:4a:65:90:48:17:b5:6e:16:e7:03:68:a9:e9: f5:2f:1a:24:b0:3c:e7:84:03:6e:f0:ec:d6:f0:cc: 5c:b9:3d:7e:ca:16:ed:2a:eb:4b:b9:bf:6f:67:8a: 37:85:d6:36:eb:14:57:73:43:33:34:6e:38:55:b2: ad:42:85:64:18:7c:9b:df:33:23:16:ce:77:6c:d1: a2:ac:9b:36:d6:a4:32:dd:81:d3:bf:de:ce:4e:4d: 1c:1b:5b:40:9b:88:3f:37:6f:bb:d9:fb:1c:e0:e2: 78:13:00:1f:10:36:ea:0e:3c:69:14:f6:fc:ea:20: c2:9a:b1:68:04:b4:5b:dd:fb:4d:40:9e:50:9b:c7: 24:db:42:ea:8f:dc:04:5f:cc:9c:0a:51:cc:8f:02: 86:75:73:aa:0e:7a:99:08:c9:9b:c3:e4:1d:04:11: 5f:36:0b:86:f5:52:47:3e:ea:07:f6:24:f1:bc:e6: d2:d7:68:ef:87:c2:d4:8a:f1:f3:8f:cb:1b:1b:7f: 96:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:CC:D1:0A:AE:1D:CB:1E:F9:F2:F3:A6:01:A4:27:69:29:95:08:06 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b4:6e:d8:e8:4a:69:d5:3e:c0:83:5d:56:a9:a6:a7:32:dd:02: f6:c2:b1:be:33:e1:12:8f:30:f9:c2:63:a1:4b:0e:65:2d:cf: dc:b6:12:a2:62:5b:71:d9:a6:56:f3:38:7f:78:8f:11:e2:1c: ac:ca:22:12:a3:f1:d4:45:97:cc:63:83:59:6b:bf:e7:97:9e: 54:19:3f:aa:cc:75:09:f4:94:19:74:44:0e:ef:ba:c2:a0:09: 05:a9:a2:7c:b8:12:d5:f6:5f:ec:27:cf:91:4c:b6:0f:ba:06: 12:d6:39:dd:b5:bd:ce:75:98:cb:e2:ee:fb:b2:85:ec:1d:59: 4b:b6:08:1f:af:f3:d7:34:e2:7f:24:58:ad:28:76:21:ad:df: 25:fa:fe:c6:42:ae:47:87:54:d3:ba:8c:98:7a:f4:f1:91:cf: 68:cc:2f:cf:92:5e:bd:0b:e1:08:a8:ff:17:42:d5:c2:16:d3: 1f:2e:1b:fa:8e:f6:29:ad:9d:e0:6f:18:42:93:0e:cd:8f:e8: 5d:f8:81:b9:c4:3a:02:69:4c:9a:23:dd:fa:5c:e4:90:38:f3: 92:fe:40:8b:f5:8e:c8:ed:45:98:5b:2d:bc:74:d7:ab:a0:86: 5e:ab:98:00:91:a9:d2:e9:a6:2a:df:b6:8a:95:c3:a9:9a:f0: ce:27:a2:7c -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIURRN4vA68xyI6aSb6rZ2GVYnssc0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTExNjAwMDE1NloX DTI1MTEyMDAwMDE1NlowejFJMEcGA1UEBRNANzcwNDcyZWEwYmE2Yjg5YmUwNDA1 ZTM1NWI5YzRlNDNmMjcxNTFjOGEwZTFhODk1MTI2YWU2ZDg3MDgzNjA4ZDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsyJVedABpbEFz1fDKyagSH6BZ5oP z6hoS4zWqcPmB2icsLK66iyYv0gCCCBhnyPRIEq9RYuL1QDECc3BWUplkEgXtW4W 5wNoqen1LxoksDznhANu8OzW8MxcuT1+yhbtKutLub9vZ4o3hdY26xRXc0MzNG44 VbKtQoVkGHyb3zMjFs53bNGirJs21qQy3YHTv97OTk0cG1tAm4g/N2+72fsc4OJ4 EwAfEDbqDjxpFPb86iDCmrFoBLRb3ftNQJ5Qm8ck20Lqj9wEX8ycClHMjwKGdXOq DnqZCMmbw+QdBBFfNguG9VJHPuoH9iTxvObS12jvh8LUivHzj8sbG3+WnwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFLTM0QquHcse+fLzpgGkJ2kplQgGMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJiY2JiODVhZTYvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYzNjZDdjMjQtMTJj Yi00YWJjLThmZDItNWUyYmNiYjg1YWU2LzkwY2E5MGE5LWExMGEtNDRlNy04MmI5 LTEzNjU3NDZiYTU1ZS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBALRu2OhKadU+wINdVqmmpzLdAvbCsb4z 4RKPMPnCY6FLDmUtz9y2EqJiW3HZplbzOH94jxHiHKzKIhKj8dRFl8xjg1lrv+eX nlQZP6rMdQn0lBl0RA7vusKgCQWpony4EtX2X+wnz5FMtg+6BhLWOd21vc51mMvi 7vuyhewdWUu2CB+v89c04n8kWK0odiGt3yX6/sZCrkeHVNO6jJh69PGRz2jML8+S Xr0L4Qio/xdC1cIW0x8uG/qO9imtneBvGEKTDs2P6F34gbnEOgJpTJoj3fpc5JA4 85L+QIv1jsjtRZhbLbx016ughl6rmACRqdLppirftoqVw6ma8M4nonw= -----END CERTIFICATE-----Generated at Sun Nov 16 11:54:42 2025 by rpki-client