$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft File: manifest.mft (raw, json) Hash identifier: 1sIUjuidJmWLMP6HCJ4OOcvbI31VNLBytRjc8XKFUJA= Subject key identifier: 4F:D9:79:B6:9F:7F:1A:B2:36:B4:B8:5E:85:50:0D:CF:38:A5:88:E8 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 59C93EE6182D02F3AA84C20F318980DB1A0FD17D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft Manifest number: 04D6 Signing time: Sun 26 Oct 2025 00:00:57 +0000 Manifest this update: Sun 26 Oct 2025 00:00:57 +0000 Manifest next update: Thu 30 Oct 2025 00:00:57 +0000 Files and hashes: 1: 05bc8dbb-c70a-48da-b45b-4448364614ff.roa (hash: /reVIe2YEIi4m5jK093GGyA8i7HBrWakCLGWnSNEr/o=) 2: 0bf15d3f-c546-4bb6-a764-82165c384d37.roa (hash: ubXi3zaJaqhV7QZw8eCUDCOWJZC9CWeixwGqwLp7nbg=) 3: 0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa (hash: ckC1Dr/riv9p1pk0bUJjrFYYHVpxz5ELjz+tjrFdnrg=) 4: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (hash: MG9kewkpdSnNhIhBlptfiEIpXGKPELBh5UcDo7cbCxs=) 5: 3407e5b6-a83d-4668-898f-fdbb23092502.roa (hash: JHY7FdKY5RbGnBDWOBqSUMkdOz7Q611ihvsN6YA7f5U=) 6: 3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa (hash: EEpGnDssDT5F6TC5weTFiIsLtmOPA71qsLq3d55nmBE=) 7: 48a67156-122e-41d4-a2a8-8046cc5ecc41.roa (hash: GBUmV7kDiDil+MB1ROSLhi2YD7ufwLwA7D98kY68Ilw=) 8: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (hash: HE0+AFjHrsZUYP3WBUwQ3+BQoQzIZ8XAlG12v9RY3U4=) 9: 6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl (hash: gZFwo7Oge4/M2sieyXO/c4hHzYUbsKFxMqD68yix7BA=) 10: 74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa (hash: iP7/JU1mljiUfiC8nO+MEr/dZ0c+dF9vVqRDfvtQdiM=) 11: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (hash: qT12EAP+jq8LHE8JEewgD8q+T8Pr2NvNkP5iek7FQdI=) 12: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (hash: NGORYJxJDltdkPEKBqejniUJY2TikteZ0OUxWGR4rZY=) 13: 9b59fbe4-f242-4dbf-9964-15048c3da996.roa (hash: 0r+FlDDsQsdNJWpt4qHirO2YBKxknShz8boMrzhl0eA=) 14: 9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa (hash: Qod34orDlh82LdDZsbXMpV/RaluZrIWgQGXXZbkDcVk=) 15: a78b90df-233b-4ec6-89d2-de27ac2dc044.roa (hash: YLQMN7Z3nUmBI19bUaX89a9dPbY1t5zKEwTMwe12/zM=) 16: b3ba338e-4843-454b-abe5-65f09756225a.roa (hash: wpY4uD+9FOqqjUhYtknswcsvsVNhyrIpyUW61BPDV10=) 17: c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa (hash: Dypn3u4AGsQ+wJvUDx2nJMdgHBGOGzSlkbUL8yU/Ykw=) 18: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (hash: tRerzt2d2gilZ39X5Ni19bIKwAr1daXkckl3y1tsN24=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 00:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:c9:3e:e6:18:2d:02:f3:aa:84:c2:0f:31:89:80:db:1a:0f:d1:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Oct 26 00:00:57 2025 GMT Not After : Oct 30 00:00:57 2025 GMT Subject: serialNumber=8b0c632b3dab01243ae3bf277b107ff617b0d98325cb0d45ef105e6f42241855, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:48:03:9c:5f:da:0c:d7:ef:83:85:f3:ec:57: 09:9d:33:ad:68:2a:15:40:d8:86:ec:35:e8:f4:6c: 2b:c9:cd:55:fb:cf:a6:2c:cf:7a:cd:f6:d8:a2:50: 00:de:25:a4:b4:e0:46:ac:47:52:29:b9:cc:6e:cd: 16:f2:f3:ec:b3:15:19:c2:f9:ff:88:99:a7:12:f4: cb:7f:f6:4f:d1:2e:8e:23:b8:47:8c:de:b4:ea:e6: 43:eb:0c:7c:1c:43:57:4f:09:c6:8a:b5:d2:6a:fa: a7:51:cf:63:3e:59:4b:2e:2d:8e:89:87:d2:86:59: af:66:cc:79:93:87:b1:3d:16:31:d6:81:7a:b7:df: 85:ca:1c:09:95:14:75:27:35:81:89:3e:ce:5c:f2: 3b:59:b0:df:d1:3b:f4:78:26:2a:0b:65:1f:78:0b: 9c:71:53:92:81:bc:1e:f1:b6:8d:e0:66:90:e3:78: 13:3e:85:5c:6b:09:bd:0b:c6:4f:25:a8:e5:a5:df: a5:ea:09:b0:5c:2b:3e:63:d8:22:fc:08:72:66:06: 78:89:7a:d8:ca:10:98:e4:34:c0:53:c2:7c:6f:d4: e6:a0:94:a0:96:68:fd:ba:99:ae:6d:96:d7:b3:5d: 86:07:52:6d:6a:6d:9d:52:a9:e9:e6:7c:4d:1e:9c: d4:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:D9:79:B6:9F:7F:1A:B2:36:B4:B8:5E:85:50:0D:CF:38:A5:88:E8 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:6e:69:22:45:eb:28:5f:3e:33:49:49:09:59:ec:61:70:3e: b5:97:af:be:6f:4b:88:98:13:19:af:06:f2:a1:cc:54:2d:6e: 8f:19:14:b6:0c:79:c8:5b:ba:fc:f3:b3:17:a0:99:26:87:84: 4c:1a:68:6b:91:1d:c4:c8:81:51:ad:d7:dc:02:7f:e2:2c:58: 66:ac:32:1f:e6:cf:18:e2:cf:cd:e8:c3:13:19:cc:5a:64:0a: 06:88:a8:58:e1:40:b8:fc:61:5f:7b:42:46:ce:82:96:25:3d: f6:07:c4:69:5f:88:da:0e:4e:8a:c9:38:5e:db:a7:c4:d7:3f: 3c:ec:aa:e5:9e:05:ad:bf:e5:07:f9:ed:10:6e:e1:34:b0:87: 17:b2:ae:ec:60:da:55:77:6e:14:0d:a1:e6:4a:66:59:02:3d: bf:f7:0c:8d:07:70:1d:8b:2d:b6:5f:cc:b2:a4:77:4e:4d:ce: 59:09:42:9b:16:96:8e:f9:d7:b4:9d:4b:03:8a:18:17:70:41: 07:d4:e9:6d:c3:1b:28:1e:77:34:4a:e0:20:2c:41:72:90:54: f7:84:a0:af:28:69:27:9f:3b:bc:66:7a:39:20:2e:5c:96:49: eb:ea:bf:14:1e:82:5b:4d:17:17:89:40:be:61:03:42:c2:1c: d3:ae:dd:fb -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUWck+5hgtAvOqhMIPMYmA2xoP0X0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MTAyNjAwMDA1N1oX DTI1MTAzMDAwMDA1N1owejFJMEcGA1UEBRNAOGIwYzYzMmIzZGFiMDEyNDNhZTNi ZjI3N2IxMDdmZjYxN2IwZDk4MzI1Y2IwZDQ1ZWYxMDVlNmY0MjI0MTg1NTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA00gDnF/aDNfvg4Xz7FcJnTOtaCoV QNiG7DXo9Gwryc1V+8+mLM96zfbYolAA3iWktOBGrEdSKbnMbs0W8vPssxUZwvn/ iJmnEvTLf/ZP0S6OI7hHjN606uZD6wx8HENXTwnGirXSavqnUc9jPllLLi2OiYfS hlmvZsx5k4exPRYx1oF6t9+FyhwJlRR1JzWBiT7OXPI7WbDf0Tv0eCYqC2UfeAuc cVOSgbwe8baN4GaQ43gTPoVcawm9C8ZPJajlpd+l6gmwXCs+Y9gi/AhyZgZ4iXrY yhCY5DTAU8J8b9TmoJSglmj9upmubZbXs12GB1Jtam2dUqnp5nxNHpzUDwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFE/ZebaffxqyNrS4XoVQDc84pYjoMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4ZTVkYmQyMTkvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZGI5YTM3MmEtMDli Yy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5LzZlY2IzY2NhLTQ4OGQtNDNiOS1hNTBi LWQzN2MwYzU1YTllMS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAH1uaSJF6yhfPjNJSQlZ7GFwPrWXr75v S4iYExmvBvKhzFQtbo8ZFLYMechbuvzzsxegmSaHhEwaaGuRHcTIgVGt19wCf+Is WGasMh/mzxjiz83owxMZzFpkCgaIqFjhQLj8YV97QkbOgpYlPfYHxGlfiNoOTorJ OF7bp8TXPzzsquWeBa2/5Qf57RBu4TSwhxeyruxg2lV3bhQNoeZKZlkCPb/3DI0H cB2LLbZfzLKkd05NzlkJQpsWlo7517SdSwOKGBdwQQfU6W3DGygedzRK4CAsQXKQ VPeEoK8oaSefO7xmejkgLlyWSevqvxQegltNFxeJQL5hA0LCHNOu3fs= -----END CERTIFICATE-----Generated at Sun Oct 26 08:08:32 2025 by rpki-client