$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: JCqTV9mrZD9uIm1bMNcncHwkg4Go+HT3nOi0j/P0Hqw= Subject key identifier: 33:9C:A7:32:9A:D8:F6:17:C1:CC:A9:66:EF:BA:AB:0C:DB:AF:94:97 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 249202F20766934B6FA402728F8EED48538FBBF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 04F9 Signing time: Tue 04 Nov 2025 00:02:38 +0000 Manifest this update: Tue 04 Nov 2025 00:02:38 +0000 Manifest next update: Sat 08 Nov 2025 00:02:38 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: z1G8lq8NC4ogkuE1vqz8gyy6BCxT6xSZonearuQsSBs=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: VIjnt59TB7BGOdnaiSRXW6ZJQWdAWNQj0darbfG3BwA=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: 250FTgHuto9SJoid1HPvupHDn7UBUGmxCGIhjacP+Xc=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: 3zbHl8OvKelo05t92zTZXn5zH3V7bMh2b1M2KAWh32o=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: 32Xk3d4EJO19C4Fehm7kAjreNUzNLx5RKWRzaIabu7w=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: ibaZp+YjGH5VnNJafebxZIUG/khLXe5POMeNsISNYTE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: vW8hXHGe+eosGjnyK85vNW/30QKnvDmChUh3HJ3mdPI=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: 3E0UzIBtNqbgRSeM6C1RsmZ5yhJBTi7pT11KO15DtNI=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: yjyrnBw41vvDMUdtHNcvyBmhA8s539qhw8H4OkwB5cA=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: NyrvS2tQrRYqi8H9wIQQGaV1jGezPK8RjU38PR8MGYU=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: 3jf21F4EwMQSQt0fNSk0MM+jNDxWR8oVCU+iS20AUhU=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: Ifc/4norLBc4VDP5CUGtSfAa4lVa0x83f/SmdqePbYI=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: D9cw9ToNQZwqPDNLtKM2mhEKabKisLLOjOipREWgByc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: hf+wDgoXo6/O8WXfizibKGp/CFEpdhqNHrijLMJABMs=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 26s/OMmcwWQLpExoQRxdUqhOk4rubcYfXvubjEKCfFA=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: NLyEMar8Nbdt3tCQB3rrOz5Ml4Qv6xXZon+dfPbpswg=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: sKPpAS9zxq4u3F00zpIE53W6iu679gdzmw2+O/AYu64=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: lKKoLe0vbSLn1GYBLLvAGjq7yGPYrO+RjCrgmBCH5K4=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: D8bBPQUOCTEk8pdNz92K1MRwyNVwdAT9TarkZGSGScU=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: 1O+Gtev57+BDwGYGEZYmDoTaYcjZk2GsioCjBQyNFxo=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: aQFRbr+dd4Et86WLB5KvcxGqVS81WwmchY1341uHcOk=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: 8yPh7RFUtDHIOMlg2c13wT8N//u27y/UzlNQTFASLCE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 00:02:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:92:02:f2:07:66:93:4b:6f:a4:02:72:8f:8e:ed:48:53:8f:bb:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 4 00:02:38 2025 GMT Not After : Nov 8 00:02:38 2025 GMT Subject: serialNumber=a262a7c92f435a88d90a808fd1279848353f7a5c2792f36c138049c678ec9ddf, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6e:96:ab:e1:b9:98:df:3e:cb:d4:ab:04:30: cc:3e:11:59:8b:94:7d:25:4d:35:62:bc:9e:11:0d: 9b:f0:9e:e6:7d:2c:8e:bf:39:44:f8:9e:9d:51:3b: 9f:3a:88:f2:06:85:69:f3:f2:a5:af:f8:84:ea:b3: 7b:a8:08:bc:22:0e:0b:ff:a7:d2:50:a1:0c:48:99: c2:31:74:27:87:a5:21:5f:bb:9e:d4:3b:52:2d:f0: 57:14:c8:94:a4:35:31:dd:04:8d:43:25:63:4c:71: 56:58:72:92:63:7c:b4:c5:2b:50:cc:11:8d:c6:b4: e8:0b:56:29:56:c4:82:c8:d7:5f:58:82:5d:d8:10: e2:aa:f7:2a:d7:14:5c:64:2e:72:ae:fb:b9:11:66: 63:f0:52:e8:e4:1e:2c:d9:04:01:db:d7:4b:ea:ee: 97:2e:27:a2:46:48:bd:cb:06:d4:6b:92:30:89:5a: e5:d1:9c:9b:d9:87:3c:60:c7:12:62:79:a8:f6:35: d5:af:d5:3f:67:cc:ea:02:da:c7:bf:f8:4f:42:ea: 37:29:7f:90:65:b5:8f:97:c8:fb:fc:31:00:96:eb: 08:1d:0c:eb:1d:79:ba:18:24:ea:22:a2:a9:9f:1d: a6:9d:f0:0e:22:65:92:95:00:36:00:96:7a:10:90: 57:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:9C:A7:32:9A:D8:F6:17:C1:CC:A9:66:EF:BA:AB:0C:DB:AF:94:97 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:fb:1b:b3:ff:21:68:75:e8:45:45:4f:5f:55:0e:29:3c:d3: 9a:0a:fa:58:c4:fc:dc:d6:96:87:f4:06:42:39:7e:00:4e:c9: 5f:0b:3c:d0:20:3b:21:3c:90:00:60:41:20:d7:ea:b1:68:13: b6:b1:16:9d:64:c4:97:31:13:28:95:62:d0:af:3e:9b:13:75: fe:94:04:71:48:ad:6a:02:a2:33:d7:f2:f7:89:82:87:e9:49: 50:fa:55:69:0b:ea:89:a4:ef:2d:ad:41:03:e5:a2:4c:e8:a3: 4c:9c:1a:e1:14:a9:85:f3:bd:97:fe:4a:9f:66:fe:fb:4b:0f: 1f:74:1e:d6:54:4b:98:4b:91:ba:ad:d6:68:d0:6e:6a:0c:21: 8e:06:b3:11:ce:6a:e9:20:fa:2e:db:de:f4:a7:b6:45:dd:c3: 3a:82:f2:14:93:dd:4c:e8:af:c6:77:62:fe:ab:28:a1:5d:cb: 79:eb:95:0f:d1:f8:76:40:10:0f:cf:d0:10:6f:04:26:17:a5: 04:d2:45:ed:95:43:7f:45:5e:c7:aa:4e:b7:1c:04:95:3b:85: b1:eb:ce:da:55:f9:10:6c:3e:21:da:3b:32:89:eb:67:94:cb: 48:97:5c:49:9d:78:f2:28:24:f6:11:ef:0e:9c:c5:78:d1:02: a0:f1:5e:29 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUJJIC8gdmk0tvpAJyj47tSFOPu/UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTEwNDAwMDIzOFoX DTI1MTEwODAwMDIzOFowejFJMEcGA1UEBRNAYTI2MmE3YzkyZjQzNWE4OGQ5MGE4 MDhmZDEyNzk4NDgzNTNmN2E1YzI3OTJmMzZjMTM4MDQ5YzY3OGVjOWRkZjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo26Wq+G5mN8+y9SrBDDMPhFZi5R9 JU01YryeEQ2b8J7mfSyOvzlE+J6dUTufOojyBoVp8/Klr/iE6rN7qAi8Ig4L/6fS UKEMSJnCMXQnh6UhX7ue1DtSLfBXFMiUpDUx3QSNQyVjTHFWWHKSY3y0xStQzBGN xrToC1YpVsSCyNdfWIJd2BDiqvcq1xRcZC5yrvu5EWZj8FLo5B4s2QQB29dL6u6X LieiRki9ywbUa5IwiVrl0Zyb2Yc8YMcSYnmo9jXVr9U/Z8zqAtrHv/hPQuo3KX+Q ZbWPl8j7/DEAlusIHQzrHXm6GCTqIqKpnx2mnfAOImWSlQA2AJZ6EJBXZQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFDOcpzKa2PYXwcypZu+6qwzbr5SXMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGn7G7P/IWh16EVFT19VDik805oK+ljE /NzWlof0BkI5fgBOyV8LPNAgOyE8kABgQSDX6rFoE7axFp1kxJcxEyiVYtCvPpsT df6UBHFIrWoCojPX8veJgofpSVD6VWkL6omk7y2tQQPlokzoo0ycGuEUqYXzvZf+ Sp9m/vtLDx90HtZUS5hLkbqt1mjQbmoMIY4GsxHOaukg+i7b3vSntkXdwzqC8hST 3Uzor8Z3Yv6rKKFdy3nrlQ/R+HZAEA/P0BBvBCYXpQTSRe2VQ39FXseqTrccBJU7 hbHrztpV+RBsPiHaOzKJ62eUy0iXXEmdePIoJPYR7w6cxXjRAqDxXik= -----END CERTIFICATE-----Generated at Tue Nov 4 22:57:08 2025 by rpki-client