$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft File: manifest.mft (raw, json) Hash identifier: LUjb840lwEqnO4RYHP4cTnafAOEXnClDOgSooKrdfZ4= Subject key identifier: 40:EC:C0:88:4D:7D:45:08:44:7C:65:A5:17:17:8C:80:B6:C0:A0:4D Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 7B8F517EB3C227789D3FCC2BEFC418660C0F290D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft Manifest number: 04FE Signing time: Tue 04 Nov 2025 00:11:31 +0000 Manifest this update: Tue 04 Nov 2025 00:11:31 +0000 Manifest next update: Sat 08 Nov 2025 00:11:31 +0000 Files and hashes: 1: 2e40ee0b-9aa9-4919-a079-9712212e127c.roa (hash: IAE/EgLUs20wPy1NberdZ5RlgXXRQyh5hMi8XIkDDVc=) 2: 32bf2c39-b536-43d0-b557-f68d8ee64091.roa (hash: EakTpsjg8XbW1cpR2oHcTT8EbYnqa5DVQybZqrZLkNY=) 3: 3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa (hash: FB1Qpi6ubFBBb9QiCsmL14R/uNLcJYJQgm5SPXnPMkY=) 4: 40956690-3661-49f2-8ebc-2fa5a47a98ad.roa (hash: crbnfBSBUv7kqzvdC15ui/LRtS7PQKPupuvCIreIl3Y=) 5: 4cb3e9f9-46a2-41eb-a4b7-75b53d791f33.roa (hash: hlhw8zUOcvU7dCYv2yf608PlU2cI798S9a3AQCYnqmg=) 6: 55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa (hash: 1v9wIq4sBNlm/GC2BfQyE/SqWT0MGKf/GJbKnEXdVbE=) 7: 565f9740-389f-45ac-956e-b96e19889315.roa (hash: LJvew2T9bQIWuMlfUiq97MVDbVzuyC1QaX8FwA75otA=) 8: 840736df-cd98-4b5b-a4f2-5615993fc74d.roa (hash: n6tVsR1XAfzbjsnP/JgcUnf25M8E2mzJBAvKI8Zei+g=) 9: 9d703748-f446-47a1-b0a7-5e3357f2e0d2.roa (hash: 9pDvykmaFUGL4BDLghpf9Fqs/9UW7jRvXY+o1U4TSfE=) 10: a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl (hash: kg5r6+rf9kbw9YZcVoz0bAa6zyZzArLYv5sJyK/cd0w=) 11: b51d6a60-7601-45c2-8839-f2002dfa8409.roa (hash: UUIRkRmygN8aNQhzVQrNSTNyWSo9jIDHe1HZw1qKUNc=) 12: c18b0845-fc95-41d6-b476-af4e1e466849.roa (hash: oIWzjZ0fOrFIxmtoGIo39Ts2SGlH615lIsgzWqJGHm4=) 13: e5ffe65e-7287-4628-8759-7c141866ee12.roa (hash: RRxrTylUoJkKAEjxwP+vK1kttbtccN3yY6tn3ob0ZHQ=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 00:11:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:8f:51:7e:b3:c2:27:78:9d:3f:cc:2b:ef:c4:18:66:0c:0f:29:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Nov 4 00:11:31 2025 GMT Not After : Nov 8 00:11:31 2025 GMT Subject: serialNumber=2023423054dea5ea935221282f9cf43a610b6eb33f2a1219b5814b727d9f3ba7, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:11:41:54:f8:90:00:43:1c:01:d9:95:29:c3: 73:c2:d3:2a:52:14:67:b2:f2:ee:9a:0f:52:a2:eb: 7c:1b:50:66:5c:79:17:6a:a3:80:21:6c:16:d4:36: fb:bd:ed:4a:e6:8e:ec:cd:80:c3:10:04:79:b0:a7: 69:70:09:9e:b9:4f:f4:d5:62:06:5a:1a:77:98:96: 23:85:ee:55:7f:24:3e:7f:50:99:3c:8c:09:48:b7: 6f:87:4d:cb:fb:48:ea:91:51:e7:36:ac:55:fa:02: 23:b5:bb:0a:88:60:e9:04:d8:13:f6:9f:3f:04:40: 8c:ba:05:5d:98:0d:6d:5f:cd:a4:3a:47:ef:08:38: 9c:1d:e4:b6:02:ed:53:1b:ba:b4:36:ec:52:53:b6: 2d:be:29:f0:50:67:5d:a8:6e:99:16:39:e9:f2:e4: d1:e4:85:99:68:55:e1:e3:4a:0f:ad:04:1c:bc:b3: 1a:f7:1e:b4:9f:06:fd:f2:88:06:06:a1:6d:60:ea: a9:06:80:19:3a:7f:6b:e8:1b:a7:81:49:15:b3:dd: c8:04:f9:4c:14:65:9f:e4:8f:31:74:12:87:62:86: 78:d1:8d:0b:8f:de:ac:8c:14:6d:5f:13:03:00:8a: b8:d9:5a:55:d1:de:48:89:e5:35:8f:4e:ea:a2:94: 3f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:EC:C0:88:4D:7D:45:08:44:7C:65:A5:17:17:8C:80:B6:C0:A0:4D X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:80:61:71:26:c1:8f:34:86:d4:52:0f:aa:9a:9a:60:35:90: 84:69:7c:83:21:ce:09:14:87:dd:32:a9:74:54:59:a7:cb:de: a3:a3:3f:a7:86:dc:07:30:45:bf:43:65:96:1a:65:dd:0a:23: 9d:de:29:4d:48:b4:1c:c9:02:f6:cc:8c:e8:5b:32:3e:96:a0: 2b:dc:ae:f4:3e:39:07:d4:f9:47:b7:85:d3:10:3c:26:21:12: e3:85:aa:ab:52:dc:f9:0c:8f:04:2c:c3:00:fa:2a:fa:e6:35: 6d:25:86:b4:0d:ca:cd:9c:8c:80:12:ab:a3:77:8d:18:c8:39: db:63:ef:cd:20:5d:53:e3:a0:ea:c7:3e:a3:93:97:a5:97:d0: 5b:10:76:bb:ec:2b:8c:c2:20:51:59:8f:20:a6:13:cb:e9:b9: 7d:5a:39:d4:3f:f8:a6:8a:bd:8e:cb:72:a0:45:3a:84:d1:86: 0b:c4:dc:03:78:57:a4:3e:7f:fe:3f:9c:5b:7e:a5:bf:c4:3b: bd:ee:52:e0:5c:22:07:16:24:ad:7b:c2:74:55:1b:68:b1:ff: 7b:1c:4a:d1:84:13:12:dd:49:ac:5f:e9:34:09:0d:ae:78:5a: e2:2d:11:65:dd:56:1e:ae:f0:1d:40:9a:25:6e:bb:8c:6b:a7: 39:78:ab:bc -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUe49RfrPCJ3idP8wr78QYZgwPKQ0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI1MTEwNDAwMTEzMVoX DTI1MTEwODAwMTEzMVowejFJMEcGA1UEBRNAMjAyMzQyMzA1NGRlYTVlYTkzNTIy MTI4MmY5Y2Y0M2E2MTBiNmViMzNmMmExMjE5YjU4MTRiNzI3ZDlmM2JhNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzxFBVPiQAEMcAdmVKcNzwtMqUhRn svLumg9Sout8G1BmXHkXaqOAIWwW1Db7ve1K5o7szYDDEAR5sKdpcAmeuU/01WIG Whp3mJYjhe5VfyQ+f1CZPIwJSLdvh03L+0jqkVHnNqxV+gIjtbsKiGDpBNgT9p8/ BECMugVdmA1tX82kOkfvCDicHeS2Au1TG7q0NuxSU7YtvinwUGddqG6ZFjnp8uTR 5IWZaFXh40oPrQQcvLMa9x60nwb98ogGBqFtYOqpBoAZOn9r6BungUkVs93IBPlM FGWf5I8xdBKHYoZ40Y0Lj96sjBRtXxMDAIq42VpV0d5IieU1j07qopQ/cQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFEDswIhNfUUIRHxlpRcXjIC2wKBNMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMDhjMmYyNjQtMjNm OS00OWZiLTlkNDMtZjhiNTBiZWM5MjYxL2E1YjAxYmRkLWNkZWItNGNmYy04Yzkz LTdlNzBjNWUwOTMwNi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBACuAYXEmwY80htRSD6qammA1kIRpfIMh zgkUh90yqXRUWafL3qOjP6eG3AcwRb9DZZYaZd0KI53eKU1ItBzJAvbMjOhbMj6W oCvcrvQ+OQfU+Ue3hdMQPCYhEuOFqqtS3PkMjwQswwD6KvrmNW0lhrQNys2cjIAS q6N3jRjIOdtj780gXVPjoOrHPqOTl6WX0FsQdrvsK4zCIFFZjyCmE8vpuX1aOdQ/ +KaKvY7LcqBFOoTRhgvE3AN4V6Q+f/4/nFt+pb/EO73uUuBcIgcWJK17wnRVG2ix /3scStGEExLdSaxf6TQJDa54WuItEWXdVh6u8B1AmiVuu4xrpzl4q7w= -----END CERTIFICATE-----Generated at Wed Nov 5 00:30:26 2025 by rpki-client