$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft File: manifest.mft (raw, json) Hash identifier: gwaOZiTVL9otQRzajSMub23nWJoCs06YGjvjLloNYpI= Subject key identifier: 9D:63:4E:F4:AB:29:7B:D1:4A:60:E2:3E:F3:FD:23:9A:14:CE:F9:90 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 51FAE9BE05185080A35A0375C79A6210BA7C8AB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft Manifest number: 04DF Signing time: Tue 04 Nov 2025 00:03:13 +0000 Manifest this update: Tue 04 Nov 2025 00:03:13 +0000 Manifest next update: Sat 08 Nov 2025 00:03:13 +0000 Files and hashes: 1: 05bc8dbb-c70a-48da-b45b-4448364614ff.roa (hash: /reVIe2YEIi4m5jK093GGyA8i7HBrWakCLGWnSNEr/o=) 2: 0bf15d3f-c546-4bb6-a764-82165c384d37.roa (hash: ubXi3zaJaqhV7QZw8eCUDCOWJZC9CWeixwGqwLp7nbg=) 3: 0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa (hash: ckC1Dr/riv9p1pk0bUJjrFYYHVpxz5ELjz+tjrFdnrg=) 4: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (hash: MG9kewkpdSnNhIhBlptfiEIpXGKPELBh5UcDo7cbCxs=) 5: 3407e5b6-a83d-4668-898f-fdbb23092502.roa (hash: JHY7FdKY5RbGnBDWOBqSUMkdOz7Q611ihvsN6YA7f5U=) 6: 3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa (hash: EEpGnDssDT5F6TC5weTFiIsLtmOPA71qsLq3d55nmBE=) 7: 48a67156-122e-41d4-a2a8-8046cc5ecc41.roa (hash: GBUmV7kDiDil+MB1ROSLhi2YD7ufwLwA7D98kY68Ilw=) 8: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (hash: HE0+AFjHrsZUYP3WBUwQ3+BQoQzIZ8XAlG12v9RY3U4=) 9: 6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl (hash: W4ESUMSy0OforAXSUJXeDKOHQ9tA9AslRt+RMvll02k=) 10: 74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa (hash: iP7/JU1mljiUfiC8nO+MEr/dZ0c+dF9vVqRDfvtQdiM=) 11: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (hash: qT12EAP+jq8LHE8JEewgD8q+T8Pr2NvNkP5iek7FQdI=) 12: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (hash: NGORYJxJDltdkPEKBqejniUJY2TikteZ0OUxWGR4rZY=) 13: 9b59fbe4-f242-4dbf-9964-15048c3da996.roa (hash: 0r+FlDDsQsdNJWpt4qHirO2YBKxknShz8boMrzhl0eA=) 14: 9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa (hash: Qod34orDlh82LdDZsbXMpV/RaluZrIWgQGXXZbkDcVk=) 15: a78b90df-233b-4ec6-89d2-de27ac2dc044.roa (hash: YLQMN7Z3nUmBI19bUaX89a9dPbY1t5zKEwTMwe12/zM=) 16: b3ba338e-4843-454b-abe5-65f09756225a.roa (hash: wpY4uD+9FOqqjUhYtknswcsvsVNhyrIpyUW61BPDV10=) 17: c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa (hash: Dypn3u4AGsQ+wJvUDx2nJMdgHBGOGzSlkbUL8yU/Ykw=) 18: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (hash: tRerzt2d2gilZ39X5Ni19bIKwAr1daXkckl3y1tsN24=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 00:03:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:fa:e9:be:05:18:50:80:a3:5a:03:75:c7:9a:62:10:ba:7c:8a:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Nov 4 00:03:13 2025 GMT Not After : Nov 8 00:03:13 2025 GMT Subject: serialNumber=36b2291ed3de3de06cc6e7bdfad91eb320f1ba300251b90d635affa31593ae34, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:75:30:4e:6a:e8:75:8c:97:b6:ec:2e:7d:0f: 5b:7c:c4:8f:be:e5:4a:65:8f:d7:05:1b:73:22:3f: 36:c7:a8:8c:37:f9:69:02:2e:94:7f:85:1f:65:9a: 8f:83:51:d7:fa:f5:cd:30:4c:f2:5b:c1:48:69:68: 9e:41:89:43:90:f8:2a:80:7f:3d:e8:f6:1c:45:be: 95:ed:36:94:1e:46:5a:d8:56:70:fb:86:4a:49:a7: 5f:35:5e:b4:6c:c7:61:40:28:91:d7:d2:97:6d:73: fd:23:9e:cb:b4:b2:7f:f8:f3:22:05:fb:1f:79:f8: b6:33:c2:4c:b3:bc:06:54:8e:03:18:2c:b2:2a:e1: 46:c2:ac:da:e5:88:3f:56:e3:3b:7a:f2:80:30:e5: 10:0f:b4:6c:34:06:5b:4c:3f:cd:de:9c:8a:b9:e6: 35:75:ae:48:9a:fe:2f:bf:b3:59:76:d6:28:aa:16: d9:2d:5d:0b:95:3c:c6:89:c1:39:6b:60:3e:7c:81: 86:d8:00:81:a5:93:8e:3f:df:ab:15:8c:77:da:6f: bf:ae:5e:a7:d0:2c:d0:db:a5:e7:ff:13:a5:6a:99: c2:af:9f:8a:0b:47:cd:01:35:44:c5:4b:d3:40:0d: 59:c7:52:51:72:6a:37:07:91:f2:ec:52:0e:92:9f: 82:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:63:4E:F4:AB:29:7B:D1:4A:60:E2:3E:F3:FD:23:9A:14:CE:F9:90 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:25:bb:78:d1:ac:53:03:51:70:bb:e9:4f:5d:a4:09:ad:98: a7:3d:89:0c:44:48:2a:b2:cc:6f:8e:b8:ad:7f:32:af:0f:5d: 0c:9e:4d:a5:f7:d3:0c:ff:59:ab:a4:9e:9f:22:9f:2c:ca:21: 02:e2:e0:75:d5:c4:3b:9a:dc:a9:ac:95:70:f9:0e:87:77:3b: 00:17:dc:d6:21:0e:7d:05:6d:e7:ab:03:ec:ef:97:d5:83:86: 17:f3:e6:e4:bd:5f:e6:16:1f:f5:70:ca:48:73:69:47:74:bc: 19:38:fc:76:4b:21:20:d6:e7:5b:c8:ef:8a:ca:16:35:c8:3d: 09:6c:cf:e5:62:7f:9e:f1:4a:af:16:3e:e7:9c:43:7b:9b:3e: 4b:4a:81:f2:b2:36:fc:73:17:06:cc:8b:68:9d:72:c3:b9:01: a1:a9:33:ca:3b:2b:d1:c6:c6:02:fd:24:ea:6c:1b:a3:8a:d4: 55:4b:2d:a4:b3:32:7b:18:15:d7:55:f2:98:e9:d7:2a:ee:95: 0e:24:e3:70:c6:d7:ed:3a:d4:98:45:50:52:8b:d6:1f:d8:31: 25:39:e0:0a:e2:48:1f:c0:1b:df:5c:65:1b:72:c4:7f:a5:cd: fc:6c:25:c1:88:c1:5a:83:25:ab:2c:c4:2e:94:4e:f5:01:b2: 26:2d:f4:15 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUUfrpvgUYUICjWgN1x5piELp8irQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MTEwNDAwMDMxM1oX DTI1MTEwODAwMDMxM1owejFJMEcGA1UEBRNAMzZiMjI5MWVkM2RlM2RlMDZjYzZl N2JkZmFkOTFlYjMyMGYxYmEzMDAyNTFiOTBkNjM1YWZmYTMxNTkzYWUzNDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAynUwTmrodYyXtuwufQ9bfMSPvuVK ZY/XBRtzIj82x6iMN/lpAi6Uf4UfZZqPg1HX+vXNMEzyW8FIaWieQYlDkPgqgH89 6PYcRb6V7TaUHkZa2FZw+4ZKSadfNV60bMdhQCiR19KXbXP9I57LtLJ/+PMiBfsf efi2M8JMs7wGVI4DGCyyKuFGwqza5Yg/VuM7evKAMOUQD7RsNAZbTD/N3pyKueY1 da5Imv4vv7NZdtYoqhbZLV0LlTzGicE5a2A+fIGG2ACBpZOOP9+rFYx32m+/rl6n 0CzQ26Xn/xOlapnCr5+KC0fNATVExUvTQA1Zx1JRcmo3B5Hy7FIOkp+CsQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFJ1jTvSrKXvRSmDiPvP9I5oUzvmQMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4ZTVkYmQyMTkvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZGI5YTM3MmEtMDli Yy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5LzZlY2IzY2NhLTQ4OGQtNDNiOS1hNTBi LWQzN2MwYzU1YTllMS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAJAlu3jRrFMDUXC76U9dpAmtmKc9iQxE SCqyzG+OuK1/Mq8PXQyeTaX30wz/Wauknp8inyzKIQLi4HXVxDua3KmslXD5Dod3 OwAX3NYhDn0FbeerA+zvl9WDhhfz5uS9X+YWH/VwykhzaUd0vBk4/HZLISDW51vI 74rKFjXIPQlsz+Vif57xSq8WPuecQ3ubPktKgfKyNvxzFwbMi2idcsO5AaGpM8o7 K9HGxgL9JOpsG6OK1FVLLaSzMnsYFddV8pjp1yrulQ4k43DG1+061JhFUFKL1h/Y MSU54AriSB/AG99cZRtyxH+lzfxsJcGIwVqDJassxC6UTvUBsiYt9BU= -----END CERTIFICATE-----Generated at Tue Nov 4 12:53:21 2025 by rpki-client