$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft File: manifest.mft (raw, json) Hash identifier: 0X4ttXXTo3bRcp+ubjdsXB2A+n+PeU5dUYhEqt6aKdk= Subject key identifier: 44:60:E5:05:3E:ED:94:87:AD:D4:0C:76:ED:6D:82:B4:26:35:66:4A Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 2A210628E1C962B72A05A7ECFCAE86B52E6C69D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft Manifest number: 0480 Signing time: Mon 04 Aug 2025 00:00:59 +0000 Manifest this update: Mon 04 Aug 2025 00:00:59 +0000 Manifest next update: Fri 08 Aug 2025 00:00:59 +0000 Files and hashes: 1: 05bc8dbb-c70a-48da-b45b-4448364614ff.roa (hash: pnvLeuXvw+7IS4No+PwjrDQiczEGN88LXv81D7eKCQs=) 2: 0bf15d3f-c546-4bb6-a764-82165c384d37.roa (hash: wqmtLRiTOx+XRP0Hu5wCz4zM4dDDbcy4bbYs4TUuE9A=) 3: 0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa (hash: FW+/bZ8D2oaWvqulksoq9njFTMeu5cp/8WiR4QH8EBA=) 4: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (hash: 0C7Nv1Y8OiwG/GydIvjI6Z/RsI3vhVG/3sqaQKkSFZM=) 5: 3407e5b6-a83d-4668-898f-fdbb23092502.roa (hash: 576XBd2niZBqi+c2pxQktwulHLgv9uOE7PkYzNFlSZg=) 6: 3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa (hash: bzh2GGDOS5aX2WkxaXpOroA1RoAFzIFSKM1sVAYNCUc=) 7: 48a67156-122e-41d4-a2a8-8046cc5ecc41.roa (hash: nT3fRBuWjgL7NLMLR3rizYWaYHWnLoIwxAWGtucJ3cg=) 8: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (hash: MJetd7yU1xWgUDcTHzdOuzFw6IutMtn6OIpQpey3Ie0=) 9: 6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl (hash: 113GGGbSEhb6uRmRrrGQSa8Likutcg6iVTqYlQmiiL0=) 10: 74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa (hash: FZOK+4YhwqDo1cpJ3hQR06WS4oG7p73MUkJU+OrmJG8=) 11: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (hash: xc6kyGDCc08DGQ+CdD/ZJnGOu61b7ePmzNcZCJYbpUw=) 12: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (hash: KMb6C1MgOX5dzF/YLbSYl1NejBgG7XXK4kxmU/GlL+A=) 13: 9b59fbe4-f242-4dbf-9964-15048c3da996.roa (hash: 74CQtE2H0xUeFfAS/3WJl4t2V8mhid0eI/r673LK+jw=) 14: 9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa (hash: 54tprR8cyFwH6wv0bG3h23cBAbKtF1ApE4lnvB7dzcg=) 15: a78b90df-233b-4ec6-89d2-de27ac2dc044.roa (hash: JwwONJc4hCeu1NoOWtNFa2J8Xah3YPz0Wa1xaJ2cCv8=) 16: b3ba338e-4843-454b-abe5-65f09756225a.roa (hash: F1S7aL2OH792Xc6MBeE49bybnAL3ejnqZlK8r/EsuAE=) 17: c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa (hash: zLc/9ugUYkcVfNt6DDJSY6DViFpXJCwNvXhUNFh4Wxo=) 18: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (hash: 4cv3WxV7KgA0orOqwK35cRknLcmTA9ThJV8+7BxLlbg=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 00:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:21:06:28:e1:c9:62:b7:2a:05:a7:ec:fc:ae:86:b5:2e:6c:69:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Aug 4 00:00:59 2025 GMT Not After : Aug 8 00:00:59 2025 GMT Subject: serialNumber=ca5eb9a8fd894c1ad550ff9ceeeec953047611419ca725d55d29fb71aa433254, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4b:99:d1:86:67:ea:84:0c:53:d2:9e:83:b0: 56:36:03:20:57:08:d8:27:c1:73:d5:bd:69:3d:39: 76:e5:dc:d8:a6:05:a5:55:c5:96:8c:12:5d:ce:90: 66:e8:e4:50:53:07:7f:fa:f8:99:59:39:8f:24:bf: 23:26:54:f0:c2:3c:85:d9:97:97:00:6d:95:de:d4: 91:1d:a7:44:98:80:1d:79:36:c2:b8:d7:c2:87:94: 34:fc:ef:54:f3:cf:95:53:8b:89:e0:2a:84:aa:8e: 46:6b:b4:b1:d6:83:62:2b:25:a9:50:ce:86:a4:18: a8:9d:4b:ff:53:4d:d9:b5:c4:39:ad:e6:41:55:74: e3:f9:45:86:0f:e0:cc:4d:6a:79:43:d7:e5:80:0c: e4:4d:5e:6b:e4:09:c7:3e:58:b8:c5:a2:6b:9b:77: a2:35:b1:87:ab:00:33:98:8a:cc:38:bd:fa:44:26: 23:fb:de:17:eb:0c:09:27:90:e8:76:d0:43:c3:47: b5:6c:5c:62:e8:cc:be:45:17:ef:ef:7d:9e:53:5a: 11:a8:a5:e9:59:67:5a:93:6c:7f:e3:d8:e3:f2:66: 84:1d:cf:57:4c:9a:73:bf:28:dd:5e:79:f9:fe:0c: eb:7c:d1:ad:62:ef:ae:85:55:e1:1f:bc:80:7e:0b: 6a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:60:E5:05:3E:ED:94:87:AD:D4:0C:76:ED:6D:82:B4:26:35:66:4A X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:51:ce:54:64:fb:cc:72:b7:81:78:c0:8f:9e:e9:f9:94:4a: 2b:44:96:49:74:ba:2d:12:93:b0:c0:d3:eb:2f:cb:d8:ec:09: 7d:87:8c:b9:12:f6:76:74:a9:f0:f4:c8:80:84:fe:43:b8:c9: 10:11:1d:6a:29:0a:bc:9f:49:18:39:d1:bc:f1:06:27:e9:97: 43:07:41:df:e3:db:6e:dc:fe:51:a0:2f:8b:3b:67:52:4b:b6: 05:56:95:9a:f8:8f:27:9c:fc:0b:fa:db:0d:f5:64:f5:76:9d: 19:ca:0f:3c:e6:23:57:2c:d9:fa:a4:34:cd:ff:03:8d:6e:f3: 9c:47:ca:48:2e:b0:59:4d:a0:5a:cc:0e:8d:6e:f4:74:1b:ea: fa:5f:18:64:f2:63:38:fb:7d:0f:af:1d:35:da:22:b0:b8:42: 58:02:1f:f6:1e:5b:08:6d:e2:ea:8a:5b:ce:d6:90:a8:6a:23: 8f:6a:82:5c:c2:68:98:48:ae:5d:1e:ae:bc:7c:b0:94:4f:51: c2:a4:fe:6b:09:7c:61:c7:d2:c2:c9:c0:58:10:44:7e:0b:46: 52:62:b0:9e:91:39:d1:da:59:ac:38:50:44:f4:67:1e:66:ed: d6:54:e9:92:b8:a7:22:4f:3a:a2:db:bc:e8:db:14:7a:a5:0e: bc:1a:99:98 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUKiEGKOHJYrcqBafs/K6GtS5sadcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDgwNDAwMDA1OVoX DTI1MDgwODAwMDA1OVowejFJMEcGA1UEBRNAY2E1ZWI5YThmZDg5NGMxYWQ1NTBm ZjljZWVlZWM5NTMwNDc2MTE0MTljYTcyNWQ1NWQyOWZiNzFhYTQzMzI1NDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvUuZ0YZn6oQMU9Keg7BWNgMgVwjY J8Fz1b1pPTl25dzYpgWlVcWWjBJdzpBm6ORQUwd/+viZWTmPJL8jJlTwwjyF2ZeX AG2V3tSRHadEmIAdeTbCuNfCh5Q0/O9U88+VU4uJ4CqEqo5Ga7Sx1oNiKyWpUM6G pBionUv/U03ZtcQ5reZBVXTj+UWGD+DMTWp5Q9flgAzkTV5r5AnHPli4xaJrm3ei NbGHqwAzmIrMOL36RCYj+94X6wwJJ5DodtBDw0e1bFxi6My+RRfv732eU1oRqKXp WWdak2x/49jj8maEHc9XTJpzvyjdXnn5/gzrfNGtYu+uhVXhH7yAfgtqwQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFERg5QU+7ZSHrdQMdu1tgrQmNWZKMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4ZTVkYmQyMTkvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZGI5YTM3MmEtMDli Yy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5LzZlY2IzY2NhLTQ4OGQtNDNiOS1hNTBi LWQzN2MwYzU1YTllMS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBADtRzlRk+8xyt4F4wI+e6fmUSitElkl0 ui0Sk7DA0+svy9jsCX2HjLkS9nZ0qfD0yICE/kO4yRARHWopCryfSRg50bzxBifp l0MHQd/j227c/lGgL4s7Z1JLtgVWlZr4jyec/Av62w31ZPV2nRnKDzzmI1cs2fqk NM3/A41u85xHykgusFlNoFrMDo1u9HQb6vpfGGTyYzj7fQ+vHTXaIrC4QlgCH/Ye Wwht4uqKW87WkKhqI49qglzCaJhIrl0errx8sJRPUcKk/msJfGHH0sLJwFgQRH4L RlJisJ6ROdHaWaw4UET0Zx5m7dZU6ZK4pyJPOqLbvOjbFHqlDrwamZg= -----END CERTIFICATE-----Generated at Mon Aug 4 11:02:54 2025 by rpki-client