$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: 62CCNbwx3rXjN7udknwUtf/qWC0/t8zCZGUpawKkD/o= Subject key identifier: 25:0A:2E:2D:1F:B4:82:5B:72:CD:62:8D:2D:74:A7:4F:01:06:A3:CC Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 1C6DF2C85442DA98A79259536339DAB9DD80E34C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 05A1 Signing time: Fri 17 Apr 2026 00:12:02 +0000 Manifest this update: Fri 17 Apr 2026 00:12:02 +0000 Manifest next update: Tue 21 Apr 2026 00:12:02 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 1l+gLwyU/H4HNaQ0uYL3F1eW99PrBxN74OxZSMVTb64=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: Ok9QxyjTFyjGbrIkAgVdfAsj3rRD3nEAieX4CB4TUfc=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: n8mdK97d/Vw0NB0uqE1Lu/NAcKYHksxdIYeyBefJ5e0=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: zmCV/d5bpLoSS+zvApJ7r/z/pnc55m95Bh5MUhoeQPU=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 46SkQknDcBfOGQwbNRfMD6C/4bRPxr72VMFVTNETTU8=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: iNY6C3I93M/b88ycFa4wj9iSAtZRjCOVsp9Gf/bWmT8=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: SbC+1TuCvU+jX8YVK+7obHcSTkPpgYNWlTlRRoFqGKo=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 6SXvrQCVtJ9I7yKXy5cpiG6IXfqjfmiQZzvT8SNuDyE=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zVg+chZsOqM0G5PhFIXsidezF7tDS/5injSaQlsHP78=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: NlFUv6dJwsR3RjMmUp1VN/OlvhJ1TaIgnS+8Z9Ov1Us=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: EbVvusiwIRiiG6aIZrh85ZC5dtWbNE/O92xrlXFEtg0=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: kOpfYh9nuQ7s0H/UIYwh+6amJBF7Bcdr+fTO2DNuSiA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 00:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:6d:f2:c8:54:42:da:98:a7:92:59:53:63:39:da:b9:dd:80:e3:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 17 00:12:02 2026 GMT Not After : Apr 21 00:12:02 2026 GMT Subject: serialNumber=9b04fe5b4596e5254c858758468d8e782e880f9712c664f26788e37e1a8cb6c3, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c5:a6:41:9d:ae:04:5e:a8:61:1f:36:d7:11: ed:24:6b:1c:4e:b6:87:6d:95:ae:67:84:ea:15:7a: 58:e4:1c:09:f1:e8:ed:15:69:cd:cc:58:86:c0:c2: 7f:2a:07:4d:0e:e3:bb:e9:d9:b0:94:bf:b0:79:91: 79:0b:eb:cb:a3:9e:d5:ad:71:0a:b8:c7:8d:be:3c: 9b:19:52:eb:f4:c3:36:a5:59:02:90:ac:66:16:92: f9:35:15:f2:23:9b:2d:b9:b0:8e:3f:8f:3e:be:a8: 2d:2c:92:5e:90:63:79:41:7a:0e:0e:f9:b8:c9:6b: ee:6f:20:f8:91:39:96:89:22:7f:fd:e1:cf:9e:08: 52:be:45:d5:6c:eb:7b:5d:17:d8:8d:72:31:b7:9f: cb:f8:79:81:19:46:48:74:a2:99:e6:0a:bf:0e:fd: c5:ee:34:e3:ef:ff:27:ce:eb:94:c0:75:13:fc:dc: 08:38:9c:86:aa:47:ec:c8:f7:8c:43:cc:4c:ab:92: 2f:8c:01:c2:0d:04:44:fd:91:b9:3c:86:58:a8:43: 61:68:fd:bb:07:b6:c6:da:0f:14:6f:4a:21:89:a0: c7:66:c7:5d:eb:cc:f0:2a:18:0c:79:32:9c:33:2e: 8c:3b:b7:f8:e9:db:58:91:29:d8:40:b3:f3:43:3a: 8a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:0A:2E:2D:1F:B4:82:5B:72:CD:62:8D:2D:74:A7:4F:01:06:A3:CC X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ed:12:4f:e7:2d:84:8c:ac:a7:70:04:99:a4:7a:f5:63:60:5e: a3:78:5d:27:c6:4b:f9:68:90:4d:5b:2e:5b:4e:7f:44:97:1f: 05:21:fe:e2:6e:07:7f:c8:ca:36:01:aa:ec:f1:c7:78:71:cd: fb:01:db:10:77:50:74:a2:1f:81:fb:f9:f4:a0:01:31:87:22: e6:13:7f:d0:69:97:8e:31:08:51:47:a3:f1:30:e2:80:15:b4: 99:83:1b:dd:45:f3:25:14:93:b8:f3:0d:36:db:88:e6:51:38: 86:df:1e:9b:fa:6d:9b:93:23:9c:84:c7:16:44:fc:f7:00:61: ed:2d:56:22:c7:88:9d:99:fb:b3:55:c9:fb:72:ec:4c:d3:5c: f0:c3:7c:43:3d:bc:69:21:73:10:b9:f1:5e:8f:6f:fc:8d:d6: 84:d7:7d:87:d8:80:96:b9:00:16:9f:40:bc:39:b6:ea:dd:70: a2:95:ca:59:f9:09:98:d1:f4:36:f7:66:58:44:cc:31:32:0a: a0:6b:d3:44:a2:f1:ce:31:8d:12:fd:25:88:31:a4:70:f6:a4: 6c:01:4f:00:5f:84:66:8e:27:54:fe:cd:a7:ca:6b:47:94:4c: 02:cd:f2:ee:46:ab:40:f7:4b:91:a0:4c:b8:81:89:85:ff:da: 11:5a:22:d8 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUHG3yyFRC2pinkllTYznaud2A40wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDQxNzAwMTIwMloX DTI2MDQyMTAwMTIwMlowejFJMEcGA1UEBRNAOWIwNGZlNWI0NTk2ZTUyNTRjODU4 NzU4NDY4ZDhlNzgyZTg4MGY5NzEyYzY2NGYyNjc4OGUzN2UxYThjYjZjMzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3sWmQZ2uBF6oYR821xHtJGscTraH bZWuZ4TqFXpY5BwJ8ejtFWnNzFiGwMJ/KgdNDuO76dmwlL+weZF5C+vLo57VrXEK uMeNvjybGVLr9MM2pVkCkKxmFpL5NRXyI5stubCOP48+vqgtLJJekGN5QXoODvm4 yWvubyD4kTmWiSJ//eHPnghSvkXVbOt7XRfYjXIxt5/L+HmBGUZIdKKZ5gq/Dv3F 7jTj7/8nzuuUwHUT/NwIOJyGqkfsyPeMQ8xMq5IvjAHCDQRE/ZG5PIZYqENhaP27 B7bG2g8Ub0ohiaDHZsdd68zwKhgMeTKcMy6MO7f46dtYkSnYQLPzQzqKWQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFCUKLi0ftIJbcs1ijS10p08BBqPMMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAO0ST+cthIysp3AEmaR69WNgXqN4XSfG S/lokE1bLltOf0SXHwUh/uJuB3/IyjYBquzxx3hxzfsB2xB3UHSiH4H7+fSgATGH IuYTf9Bpl44xCFFHo/Ew4oAVtJmDG91F8yUUk7jzDTbbiOZROIbfHpv6bZuTI5yE xxZE/PcAYe0tViLHiJ2Z+7NVyfty7EzTXPDDfEM9vGkhcxC58V6Pb/yN1oTXfYfY gJa5ABafQLw5turdcKKVyln5CZjR9Db3ZlhEzDEyCqBr00Si8c4xjRL9JYgxpHD2 pGwBTwBfhGaOJ1T+zafKa0eUTALN8u5Gq0D3S5GgTLiBiYX/2hFaItg= -----END CERTIFICATE-----Generated at Fri Apr 17 07:45:39 2026 by rpki-client