$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft File: manifest.mft (raw, json) Hash identifier: ZL+ABQ4OXlsSKeyCp/KjPiTFIGfVDaY2CQqbzPupHOc= Subject key identifier: A3:3B:40:C5:72:A9:98:6F:17:A0:57:E7:08:11:63:C4:23:B1:2C:11 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 524AA544DFFBFAD25E1DE2ED2F25039EE6E0F7D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft Manifest number: 04A4 Signing time: Mon 08 Sep 2025 00:01:51 +0000 Manifest this update: Mon 08 Sep 2025 00:01:51 +0000 Manifest next update: Fri 12 Sep 2025 00:01:51 +0000 Files and hashes: 1: 05bc8dbb-c70a-48da-b45b-4448364614ff.roa (hash: LQE84TeQyIGnEjW8ousHXrwYbCLI8j4LnU4mOEWzIqw=) 2: 0bf15d3f-c546-4bb6-a764-82165c384d37.roa (hash: EknYaBpD1ECNXyfgg0Lo8hvQ3BUiJG9nv6soz1O8t/U=) 3: 0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa (hash: HJBzRp8vbAH4c3qOXvydjbUjhWK4n+lXgql7cqVYLyM=) 4: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (hash: dmcLNDE8Ircf1BiepY9deLtoHvr2d17N7swT8/8obbg=) 5: 3407e5b6-a83d-4668-898f-fdbb23092502.roa (hash: Feb3QUoa6V70mgxna5U4zkDiMpMtdSR8FEc6F9L2Hrk=) 6: 3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa (hash: 7U7YgCKK1M1nlqM5nLWabBq6MKprWt3PBvFg7ZlQH1c=) 7: 48a67156-122e-41d4-a2a8-8046cc5ecc41.roa (hash: ZoDp7gkaymHJov0jvAxraRYququ0uIjdfs0Fbg2thmE=) 8: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (hash: DAoSUCafPo7Z6XIwuxzjAJ4UYhdURURNiVOUpr1yqc0=) 9: 6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl (hash: VgZAk+azao7kI0c3eyA5N1L31Pl1OtxwZ3RwJ8MEnb8=) 10: 74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa (hash: JjOLUdb5hF4uh/yTk4NwnMITn/til+Lqgz8mOVZEfbM=) 11: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (hash: wpKj36JdsfXag8LGDUWBP1MmuCyEVzf36jNKuqjSKus=) 12: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (hash: t/We06D79O6yR+REeSEZdKobAXtnXf/kQKYltNmRUOk=) 13: 9b59fbe4-f242-4dbf-9964-15048c3da996.roa (hash: PuPRPa47bjxbhrSmgJdiKDRqOCHnk8L+V79L08Z8zpU=) 14: 9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa (hash: z3+u5KKkvLgRlfE4ivoL+HEumbdMOKooNwTJpPnPA1A=) 15: a78b90df-233b-4ec6-89d2-de27ac2dc044.roa (hash: a1ThmnmKIEzHuxdRa/DWBa9ARpMo3sLnIQYyx+Lzito=) 16: b3ba338e-4843-454b-abe5-65f09756225a.roa (hash: fOV7A0tHbHVXHPbIJiI2Wlmp+OIN/LYS0ZXtu+H6YU0=) 17: c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa (hash: e31xJy00zED7oThBhR0QKELvdOdLiwRftPQEXNFJ2bs=) 18: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (hash: eOJD4Hwy0ynyjKIYG3gjU9NXRqe5UX6yG9jE0p7lZ8o=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 00:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:4a:a5:44:df:fb:fa:d2:5e:1d:e2:ed:2f:25:03:9e:e6:e0:f7:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Sep 8 00:01:51 2025 GMT Not After : Sep 12 00:01:51 2025 GMT Subject: serialNumber=5a9e529afb9910ee87b77790991449160db46f559f29f5f046325cf4c9fdfe7e, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:97:83:3a:57:ba:4b:10:8f:cd:a2:fc:68:0a: ec:7b:cd:31:ec:35:e8:7b:1e:01:40:ad:de:fd:ff: 4a:70:df:c6:3b:20:08:97:f4:b3:89:74:39:bf:99: 1a:aa:25:bf:a5:6e:c9:6f:01:53:f6:0b:36:e0:58: e1:a8:a5:78:b4:7e:69:fd:7b:59:fa:a1:6b:c9:3c: 23:ac:ef:85:6e:5d:40:c6:6a:65:71:79:a7:2e:09: f8:1f:d8:26:11:1d:53:cb:dc:85:21:02:bd:9c:1d: 6c:cc:b9:fe:78:ac:ae:d8:1d:a4:0d:4c:e3:47:c7: d7:f5:5a:a1:b7:63:21:90:ad:2c:5c:06:6e:47:2f: 6e:0d:e6:67:62:8f:1e:f4:02:28:28:97:da:27:55: cd:ca:ab:cc:88:42:11:a5:d7:a6:93:09:f4:fb:f7: 43:43:b9:a8:d0:ec:a0:78:63:98:f4:cd:4f:a0:32: 5c:30:91:bd:61:c3:33:8a:54:ea:dc:c0:e2:fd:86: f6:0a:30:7c:3b:b5:5a:94:7f:68:28:47:34:aa:17: 05:54:b1:d4:f2:89:95:00:4f:cd:87:53:7a:d9:ba: 24:8a:f7:f1:7c:0f:09:b1:0e:7e:22:d8:6a:ab:0f: 1f:42:f8:37:b8:84:8b:c6:72:27:9b:18:b6:20:4d: 39:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:3B:40:C5:72:A9:98:6F:17:A0:57:E7:08:11:63:C4:23:B1:2C:11 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:02:95:75:03:ff:ac:66:0a:95:0d:71:e9:0c:35:b8:da:7c: 51:ca:d9:f4:cb:c9:28:11:18:fe:f1:d8:b9:90:c4:5f:cc:68: 8c:56:f6:53:8a:c7:88:fc:89:47:92:d9:29:5a:60:f7:66:5b: 74:4a:21:66:e8:16:82:9a:be:77:22:d8:d0:99:fa:a0:6a:68: e2:17:9e:2f:60:21:11:e3:4b:08:99:bc:e5:7c:f8:36:dd:cc: 01:cf:8d:78:94:71:75:e6:f1:82:c7:d5:02:7c:e2:ca:31:c1: ba:b1:63:bc:20:2d:68:29:13:ea:e0:5f:4b:3b:c1:3e:65:9d: 8b:d0:b9:33:74:d9:fa:c7:04:4b:3c:78:0b:6d:5c:34:9a:3c: 8d:42:74:e3:ab:5b:c0:47:f5:8c:d2:b9:53:69:29:60:af:7a: f1:8e:04:1a:55:52:c2:6e:41:99:7b:5f:0d:f0:b1:5a:15:a3: 81:37:43:f4:1a:76:57:1d:19:5d:5d:7a:f0:55:91:82:30:db: 03:e3:ce:2f:64:f6:d3:9d:3d:f0:28:45:52:8f:13:91:5e:c0: 96:f4:f7:ab:b8:a9:63:42:3a:7b:90:d8:16:73:7a:8a:84:b4: bf:5b:11:ba:e4:f2:56:63:b0:e3:df:08:41:78:fa:8f:e5:25: 2a:ce:1b:fd -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUUkqlRN/7+tJeHeLtLyUDnubg99MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDkwODAwMDE1MVoX DTI1MDkxMjAwMDE1MVowejFJMEcGA1UEBRNANWE5ZTUyOWFmYjk5MTBlZTg3Yjc3 NzkwOTkxNDQ5MTYwZGI0NmY1NTlmMjlmNWYwNDYzMjVjZjRjOWZkZmU3ZTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZeDOle6SxCPzaL8aArse80x7DXo ex4BQK3e/f9KcN/GOyAIl/SziXQ5v5kaqiW/pW7JbwFT9gs24FjhqKV4tH5p/XtZ +qFryTwjrO+Fbl1AxmplcXmnLgn4H9gmER1Ty9yFIQK9nB1szLn+eKyu2B2kDUzj R8fX9Vqht2MhkK0sXAZuRy9uDeZnYo8e9AIoKJfaJ1XNyqvMiEIRpdemkwn0+/dD Q7mo0OygeGOY9M1PoDJcMJG9YcMzilTq3MDi/Yb2CjB8O7ValH9oKEc0qhcFVLHU 8omVAE/Nh1N62bokivfxfA8JsQ5+Ithqqw8fQvg3uISLxnInmxi2IE05DQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFKM7QMVyqZhvF6BX5wgRY8QjsSwRMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4ZTVkYmQyMTkvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZGI5YTM3MmEtMDli Yy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5LzZlY2IzY2NhLTQ4OGQtNDNiOS1hNTBi LWQzN2MwYzU1YTllMS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAI8ClXUD/6xmCpUNcekMNbjafFHK2fTL ySgRGP7x2LmQxF/MaIxW9lOKx4j8iUeS2SlaYPdmW3RKIWboFoKavnci2NCZ+qBq aOIXni9gIRHjSwiZvOV8+DbdzAHPjXiUcXXm8YLH1QJ84soxwbqxY7wgLWgpE+rg X0s7wT5lnYvQuTN02frHBEs8eAttXDSaPI1CdOOrW8BH9YzSuVNpKWCvevGOBBpV UsJuQZl7Xw3wsVoVo4E3Q/QadlcdGV1devBVkYIw2wPjzi9k9tOdPfAoRVKPE5Fe wJb096u4qWNCOnuQ2BZzeoqEtL9bEbrk8lZjsOPfCEF4+o/lJSrOG/0= -----END CERTIFICATE-----Generated at Mon Sep 8 09:30:34 2025 by rpki-client