$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft File: manifest.mft (raw, json) Hash identifier: ntyzP5m8dPwrz0KN/SyJnEBXoUPWZW/K/6D8MlBpb5o= Subject key identifier: 26:79:D7:CB:B0:B0:0E:67:06:A6:41:15:02:95:9F:ED:9B:1D:C2:88 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 49F0FF492C106C33D15D88201518EEC7227AB0B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft Manifest number: 0601 Signing time: Tue 24 Mar 2026 00:06:45 +0000 Manifest this update: Tue 24 Mar 2026 00:06:45 +0000 Manifest next update: Sat 28 Mar 2026 00:06:45 +0000 Files and hashes: 1: 018dea0d-42eb-4d58-8914-636d25ca3b3c.roa (hash: wDwQSZaA/CXa9HEQXPeN2iqIyErBKcTW/xzv+YJpQQU=) 2: 0ae05889-eb6d-414c-88e9-bc293171f532.roa (hash: urVEpMmPnRH8mzYmKVCJs66kbpn4arXE5I9XFifO8go=) 3: 0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa (hash: 5Wvpu1EUFbQ2rRk8l1uTihzhHz3L+QYWLDtPA2URIo4=) 4: 0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa (hash: wU6FqTipFk14DMRQxkaFJeYVNpYPMgNHMmeQNtgK7iU=) 5: 205af9d8-3799-4d38-b1fb-da840e362ff1.roa (hash: sIki4J1mWY0ASOQHnBVnzUT+fhdfbcaTzmfYz+bTL5I=) 6: 2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa (hash: eBYXnsPiaNJ7X/+oy39tXqsNvQTfcMyw+f33irnssgI=) 7: 2720640e-9111-44dd-a0b8-a005f04956a0.roa (hash: NB72BfTxXXhodXcDNywWhKce6VnADsePMdv27msr1gg=) 8: 29fe4454-f7a8-42fd-8c35-77a6d6f8e60f.roa (hash: 1g/b2exq+I3qB/RXcMs0ZssvvBrt8OoZ+OND33Ic4+c=) 9: 2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa (hash: 3kOKuCSjuTMEfbgbUrwk4Xv+N+bW4tX1lejnljxryFk=) 10: 31d36ece-9039-43a2-82a2-03e7d8e7f563.roa (hash: J8rFnBdLgVcMxzYMk6CtIbMEUyLJ1hvUtuqE+pX8XR8=) 11: 33dd31e0-7039-4ff8-aafe-97f7b95b07d0.roa (hash: lA0ytWcRDEfGTUJYK0TCaMBVq02btHKFwXaByMlAs8U=) 12: 3523c675-14b3-4d2d-90e1-e439500ecaca.roa (hash: ZfU0bzl5PVutdfLJJ00+ZQ6pGFIQTfL6zQ6TkRFse+E=) 13: 3537691c-1a10-4699-a8a0-4cec50a35534.roa (hash: UoL3zwbF9QY2vlzWzTeWZt6XlkaFwRbReavcyJ+a3GY=) 14: 453c01e0-c333-4283-987c-be2c8b71798c.roa (hash: 5M2D+DELmZjZoY/81fKF6kdFlo0opBNC5sw+0HIN0iM=) 15: 5484d331-446c-4042-9500-dd3002e6a910.roa (hash: 6JBd7w5bAZl01ZWeNO0N6v5WAR3//vwcGSfSzF0l63U=) 16: 57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa (hash: O/Sr9q+5oHwkAtYjgJdcoRzj29VGrVd0pc5fnkOMvf8=) 17: 62639af2-026a-4677-b13e-0aeb266620d5.roa (hash: vYdJbJqhk/2BzPm/MqESN90hJOlaxoSPWa/pPGUw8G4=) 18: 64aa0337-4cf9-42c7-b236-4cd36e69005e.roa (hash: QTAbwj9bKSMshmcezgtmVncMOBmPUvKRDDwIhv+M5RU=) 19: 788c3900-e4d5-439b-b231-3a69b5354901.roa (hash: hKYOMeBR7eyZkehSw9qPfGnomgSrxeyvGlKnaUJywVI=) 20: 7cba22a5-dc61-4413-aed2-8fb4cc8e3a49.roa (hash: zhYG3cgqdF4X+4X6We3MSJI2B/dmZX3sjASbnyyxG6M=) 21: 7cf17e61-b049-438c-8aaf-2d4714b51857.roa (hash: ALyWeSoBLj0PwykMwWQ6ZX+jvq078L7Ei6b3Vomgui4=) 22: 8bf311e9-d27f-46fa-8f05-2ed6b176b5b9.roa (hash: dfKKqeV/v9gVw3mT52+Aghldwt8JvqfL0eFAy2iunGE=) 23: 90ca90a9-a10a-44e7-82b9-1365746ba55e.crl (hash: k/gVw7lDz87zpe1I2SF5K+pDCCoW40bQD5ALcdKtdP8=) 24: 977f90e2-d257-4dde-9740-b0391458d8ed.roa (hash: guHHuI2vnqS3d6vB/GO54qKXZ5BSJtgPw1d2F9vcg+o=) 25: 9a94ee8c-7029-4ffb-af7f-435e161333de.roa (hash: vb0aobYq1f6AcgIOGZzJjGgTZoYMYueYZUYa8DNriFE=) 26: a3080b31-8684-4ce8-b4e6-33db63d13627.roa (hash: d4l5dS+FJ9joHCn2URycSGDGBtCqE1BrEAcEV04w7NU=) 27: a3f80673-8b1b-4af1-ae60-e74663f3df69.roa (hash: 56sn6loSYaeAuvJodjDjTzV/Fg/+hpKC56eFdC/EiaI=) 28: ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa (hash: 1MembfXo4C5517htGigZMQmGzirdM2MgND3eHm6b9jc=) 29: b0c38f03-3ced-484e-aa5b-7b06f125ad74.roa (hash: ZPaEiaIkqGArvOAxR9VbcVb1eSAYufI7NDFB9bKQ8bk=) 30: baa1273d-7883-4b5d-8e1c-23ebac490846.roa (hash: ATmRMyAShm6xcm/3HjDls/+48GPwhYODyWuwcLwRQno=) 31: c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa (hash: 1uP3FKWkPE64DzLoC/zN+FUFAyE7osVEBX2K8XosX10=) 32: c759ed47-7de1-4858-b207-c77b1f7d2c35.roa (hash: hWpgEnmXOc/6/7mqwc9NiKA+nSpuSSnXqyeXu6O6CZM=) 33: c7b491e4-76ae-4305-8132-a670b41c66fd.roa (hash: VNm8BO5G4UpCqlTPLOKRN7+G7VVLHsbqSItK1D2s/ug=) 34: c886fdcc-d9c4-485a-a941-7aa2c7d093e3.roa (hash: xsNOVi4fgFpQS9WUgRZKKMqXRAxa2V19EH/9Hbo8VX4=) 35: c9f7dbd2-1c7e-42e8-a7f9-00bd76e70248.roa (hash: W268L1gIcFJyPanN7dTzXmIYsacZu4SL/8p8l9TcFRQ=) 36: efdcb43b-2f19-4107-a0a3-c55daccb2714.roa (hash: Z+y0yPllh7bVL6ZwuGJwbGOyHyExdJ40mQne4FTsEp0=) 37: f54cd21d-ebef-4509-8295-1f7547d0d717.roa (hash: IArcZ7IFEnaNHN6NLfxKu5ltJwhY3XEHKKnmT07Ng7E=) 38: fcc4293c-b24f-4fac-9395-546f748b3b13.roa (hash: GDiHw+97fWK0jHE27n8V1gR14keeSvWwqEVlXirYVeY=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 00:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:f0:ff:49:2c:10:6c:33:d1:5d:88:20:15:18:ee:c7:22:7a:b0:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Mar 24 00:06:45 2026 GMT Not After : Mar 28 00:06:45 2026 GMT Subject: serialNumber=0bc3298ccee0222cd967437dd7aeb456fab002270cffbf79ccab593fe422be89, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:7e:aa:f2:2c:64:11:96:54:f5:5a:ae:d0:52: 66:27:7c:be:64:5e:61:3a:e8:10:15:11:cd:e9:28: f9:70:7d:26:d6:c3:7c:3d:58:dd:33:f8:43:a2:73: e1:81:d7:06:3a:2f:83:10:69:91:02:2b:42:0a:d6: 22:1c:b5:7a:7a:ec:84:0e:ae:83:1d:80:ce:6b:37: f1:37:56:d8:d0:f1:d9:3b:b3:68:ac:5e:f9:9b:3a: 67:24:8b:c0:a3:23:2b:e6:a7:f2:ff:d8:42:ea:c2: 42:c2:8b:11:fa:b6:a2:cf:df:ef:13:9e:f4:77:df: 20:d0:13:d8:81:25:43:f6:9e:2b:4b:4d:77:b1:b3: 07:93:7c:ed:09:9b:83:f9:8c:2d:1a:9f:89:b4:35: 79:b3:df:cc:ff:84:53:4f:9b:6d:94:9f:0c:68:1b: 24:96:97:25:c5:60:0c:54:19:fa:c4:83:97:6e:2a: 77:64:71:2e:89:f1:c9:43:2e:b8:cf:a4:34:48:5f: 25:1f:3b:29:be:5b:7b:50:a5:6a:15:51:85:78:d5: 54:77:ff:b3:3c:20:b1:01:bc:b4:38:88:a9:50:f3: f7:51:1f:ad:c7:0c:05:80:89:4f:bc:e4:51:c7:44: 90:12:f2:66:6a:73:be:a7:1b:31:2e:6d:bf:8e:ac: ac:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:79:D7:CB:B0:B0:0E:67:06:A6:41:15:02:95:9F:ED:9B:1D:C2:88 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:1d:1c:30:9a:f5:2f:19:fd:80:16:8a:3a:40:9e:f6:67:f8: ff:e6:d9:1b:92:e3:3a:39:9e:75:4f:55:5d:dd:b1:de:08:b9: 68:e0:9c:4b:d5:14:38:d6:82:4d:66:7e:b5:8a:36:dd:5c:80: ec:75:40:09:d8:59:db:85:97:70:af:09:59:76:7b:c7:e4:ef: ed:a4:fc:ee:28:ba:bc:5c:23:a8:7c:dc:8b:ad:1c:17:cf:13: 02:a3:60:5b:37:cc:a0:09:33:87:c5:53:88:c4:3f:a0:e9:2f: f3:da:03:40:bc:9f:d4:62:d5:da:c4:45:19:6b:17:c7:78:f2: 1f:b5:24:82:c7:6f:4c:3c:c4:7a:25:11:cf:61:6f:6c:3b:f4: 8b:80:c3:db:d8:c7:7c:b7:34:0d:39:1a:61:7b:09:c6:39:35: 68:33:e3:9f:a5:d6:6d:a7:f5:af:81:09:ea:29:ad:3a:76:57: 19:16:29:64:b3:bc:59:7c:19:12:fc:eb:05:87:32:c0:db:e5: 2d:65:df:f8:72:1a:5b:c7:8f:17:40:b5:97:70:14:44:c5:56: b0:c0:02:08:d4:cb:b9:af:5b:bb:1d:61:91:11:f9:db:e4:c4: ca:5e:92:ed:7b:b0:9d:70:ad:cd:a6:d2:da:85:9f:f0:3b:da: dd:8b:da:f4 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUSfD/SSwQbDPRXYggFRjuxyJ6sLAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDMyNDAwMDY0NVoX DTI2MDMyODAwMDY0NVowejFJMEcGA1UEBRNAMGJjMzI5OGNjZWUwMjIyY2Q5Njc0 MzdkZDdhZWI0NTZmYWIwMDIyNzBjZmZiZjc5Y2NhYjU5M2ZlNDIyYmU4OTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkn6q8ixkEZZU9Vqu0FJmJ3y+ZF5h OugQFRHN6Sj5cH0m1sN8PVjdM/hDonPhgdcGOi+DEGmRAitCCtYiHLV6euyEDq6D HYDOazfxN1bY0PHZO7NorF75mzpnJIvAoyMr5qfy/9hC6sJCwosR+raiz9/vE570 d98g0BPYgSVD9p4rS013sbMHk3ztCZuD+YwtGp+JtDV5s9/M/4RTT5ttlJ8MaBsk lpclxWAMVBn6xIOXbip3ZHEuifHJQy64z6Q0SF8lHzspvlt7UKVqFVGFeNVUd/+z PCCxAby0OIipUPP3UR+txwwFgIlPvORRx0SQEvJmanO+pxsxLm2/jqysWQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFCZ518uwsA5nBqZBFQKVn+2bHcKIMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJiY2JiODVhZTYvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYzNjZDdjMjQtMTJj Yi00YWJjLThmZDItNWUyYmNiYjg1YWU2LzkwY2E5MGE5LWExMGEtNDRlNy04MmI5 LTEzNjU3NDZiYTU1ZS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAEUdHDCa9S8Z/YAWijpAnvZn+P/m2RuS 4zo5nnVPVV3dsd4IuWjgnEvVFDjWgk1mfrWKNt1cgOx1QAnYWduFl3CvCVl2e8fk 7+2k/O4ourxcI6h83IutHBfPEwKjYFs3zKAJM4fFU4jEP6DpL/PaA0C8n9Ri1drE RRlrF8d48h+1JILHb0w8xHolEc9hb2w79IuAw9vYx3y3NA05GmF7CcY5NWgz45+l 1m2n9a+BCeoprTp2VxkWKWSzvFl8GRL86wWHMsDb5S1l3/hyGlvHjxdAtZdwFETF VrDAAgjUy7mvW7sdYZER+dvkxMpeku17sJ1wrc2m0tqFn/A72t2L2vQ= -----END CERTIFICATE-----Generated at Tue Mar 24 16:23:25 2026 by rpki-client