$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft File: manifest.mft (raw, json) Hash identifier: HjPRuifKPbbOyKuatUMDXWGqkq1a9oqKdyMpgtFNr1s= Subject key identifier: 29:FE:8A:3A:5E:A3:B7:A2:78:16:19:8D:45:E1:A7:08:97:71:22:CA Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 292258AE095676DD3CF17FC79B4460F332828A08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft Manifest number: 0595 Signing time: Wed 25 Mar 2026 00:07:15 +0000 Manifest this update: Wed 25 Mar 2026 00:07:15 +0000 Manifest next update: Sun 29 Mar 2026 00:07:15 +0000 Files and hashes: 1: 2e40ee0b-9aa9-4919-a079-9712212e127c.roa (hash: HifPHeBwsO/AlIR45rsqvzHRP4MIeEvu4rBsdIj34M0=) 2: 32bf2c39-b536-43d0-b557-f68d8ee64091.roa (hash: 7j+M4k/YxLXgoUQh9ut5fyd0FgSZ1I4FPABA93oRNpU=) 3: 3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa (hash: dXBg2t9Rc27bMuDurzNxUcsK/TwKsHlPOvFnpp5aTVE=) 4: 40956690-3661-49f2-8ebc-2fa5a47a98ad.roa (hash: AgmdN3qsU2yrUPs1RIDpHG3eyZeN4lzX4GL8YuDvcs0=) 5: 4cb3e9f9-46a2-41eb-a4b7-75b53d791f33.roa (hash: xsaM36rzv8Uw5QN5dHxdEYXHzAwA5KNUnJAuj5qn0Dw=) 6: 55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa (hash: J9RI4VJSTxgaFW+3QF3NgsoWAna5ZD6zPEc51yMjTfg=) 7: 565f9740-389f-45ac-956e-b96e19889315.roa (hash: RBUJ8ShSm5Anvido6XPzsBu4tV+RRenjv9jc903Ikwg=) 8: 840736df-cd98-4b5b-a4f2-5615993fc74d.roa (hash: oid2qm1ok/AO9ebksp522nxKXQb48lmufO+GYtuqnC0=) 9: a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl (hash: 6ng9rAt9/57kNq9mDXtFubCUuC/z8wiCj8iHR/BpixQ=) 10: b51d6a60-7601-45c2-8839-f2002dfa8409.roa (hash: wv2wCHPzy3EchePjRNU+awcsVc0NsUI4lB0jDWiKVnQ=) 11: c18b0845-fc95-41d6-b476-af4e1e466849.roa (hash: ntuPLViiaJGatIFvogVdq5Wl8TdNZ2/N5+5/fg06tSQ=) 12: e5ffe65e-7287-4628-8759-7c141866ee12.roa (hash: gqHve5mZoz5OKWb/tmkUudJMf28PgZgam85sSrazD3o=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 00:07:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:22:58:ae:09:56:76:dd:3c:f1:7f:c7:9b:44:60:f3:32:82:8a:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Mar 25 00:07:15 2026 GMT Not After : Mar 29 00:07:15 2026 GMT Subject: serialNumber=828dad32ecec866f91aaa3c153ae512528f07d66b98e84e0588825300c2fb29e, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b2:8b:81:88:2c:33:b9:1b:05:eb:33:23:5f: 61:8a:2f:d6:58:9b:cc:71:73:aa:62:44:72:7b:75: f2:b0:80:81:2c:e4:7d:70:27:65:f9:f4:8c:c5:03: 1d:e6:88:d9:2a:83:e3:f2:07:59:6a:45:22:dc:7b: 21:e4:33:7e:93:30:31:c9:a3:bb:6a:e9:86:90:1f: 49:bd:c9:4a:86:22:72:fb:04:27:ab:88:23:dd:1d: 60:b2:c4:51:87:35:7a:c7:5f:1f:44:be:02:53:71: c4:91:6c:1c:77:70:07:3b:5c:14:a0:4e:4b:b8:15: 15:85:bd:99:8e:28:8d:49:5c:89:eb:4c:8a:6d:9b: d4:6f:ea:c4:80:4b:9f:5d:c9:9a:ca:68:f7:31:d0: 3e:50:d6:15:aa:6e:58:7f:c4:65:63:b6:bd:1a:35: eb:0a:84:b5:b4:55:af:95:a3:ca:09:ae:57:0e:7c: e2:6c:16:9a:1e:6a:5f:8b:93:c3:09:ac:df:06:de: a1:0d:8d:96:6c:e2:2f:dc:a3:e2:81:6e:38:6a:e9: b2:c1:a6:82:36:0a:cb:37:66:bb:8f:63:51:13:4c: 44:1d:4f:f8:9c:a4:45:ad:5a:2e:50:75:ef:1a:57: 2d:0a:79:42:75:e0:b2:d6:2a:1d:c3:a1:bd:ee:4b: 9a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:FE:8A:3A:5E:A3:B7:A2:78:16:19:8D:45:E1:A7:08:97:71:22:CA X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:b8:9e:0c:17:30:c8:27:33:6d:88:5c:3e:2a:6d:ed:d9:1e: e0:1f:0e:7d:e3:4f:7a:7b:ae:cf:d3:5d:2c:0d:c5:2e:f9:30: cd:51:82:d8:49:cb:bf:20:8d:9f:dd:0e:8e:5a:3f:ee:c1:bb: ff:dc:fc:ca:11:3c:53:19:44:f4:57:78:fe:c8:43:7a:da:3f: b7:63:ae:77:cc:75:81:37:3d:4d:72:eb:1f:9f:1f:e5:d3:d9: 0b:72:56:c9:0c:57:67:6e:ac:e7:f5:ee:9a:d1:a5:5b:9d:f4: 8b:90:27:3f:d8:ad:72:45:2c:e5:ef:b7:f0:b2:cc:52:79:e3: 8f:b4:6a:35:ae:65:fb:5d:f0:47:87:2b:5e:4c:a5:7d:ee:5f: 7c:01:48:19:b8:74:60:ee:03:12:d4:8b:bb:10:a2:76:32:3b: dd:11:45:35:8d:c4:01:15:b6:fd:cb:21:2a:a6:7a:96:3d:3c: 31:e4:c6:71:ec:ba:c5:50:ad:f5:4d:a2:35:50:03:8e:ac:b0: 5b:78:01:3b:2b:f0:99:cb:f4:a5:57:29:d9:73:7f:34:e0:8f: c2:29:f2:55:29:45:d3:89:78:8c:fc:72:5e:46:e9:e9:dc:40: 6f:72:56:55:82:0a:0e:49:21:d9:09:25:95:2f:78:c5:29:7b: bb:9c:76:72 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUKSJYrglWdt088X/Hm0Rg8zKCiggwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI2MDMyNTAwMDcxNVoX DTI2MDMyOTAwMDcxNVowejFJMEcGA1UEBRNAODI4ZGFkMzJlY2VjODY2ZjkxYWFh M2MxNTNhZTUxMjUyOGYwN2Q2NmI5OGU4NGUwNTg4ODI1MzAwYzJmYjI5ZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvLKLgYgsM7kbBeszI19hii/WWJvM cXOqYkRye3XysICBLOR9cCdl+fSMxQMd5ojZKoPj8gdZakUi3Hsh5DN+kzAxyaO7 aumGkB9JvclKhiJy+wQnq4gj3R1gssRRhzV6x18fRL4CU3HEkWwcd3AHO1wUoE5L uBUVhb2ZjiiNSVyJ60yKbZvUb+rEgEufXcmaymj3MdA+UNYVqm5Yf8RlY7a9GjXr CoS1tFWvlaPKCa5XDnzibBaaHmpfi5PDCazfBt6hDY2WbOIv3KPigW44aumywaaC NgrLN2a7j2NRE0xEHU/4nKRFrVouUHXvGlctCnlCdeCy1iodw6G97kuafQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFCn+ijpeo7eieBYZjUXhpwiXcSLKMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMDhjMmYyNjQtMjNm OS00OWZiLTlkNDMtZjhiNTBiZWM5MjYxL2E1YjAxYmRkLWNkZWItNGNmYy04Yzkz LTdlNzBjNWUwOTMwNi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBABG4ngwXMMgnM22IXD4qbe3ZHuAfDn3j T3p7rs/TXSwNxS75MM1RgthJy78gjZ/dDo5aP+7Bu//c/MoRPFMZRPRXeP7IQ3ra P7djrnfMdYE3PU1y6x+fH+XT2QtyVskMV2durOf17prRpVud9IuQJz/YrXJFLOXv t/CyzFJ544+0ajWuZftd8EeHK15MpX3uX3wBSBm4dGDuAxLUi7sQonYyO90RRTWN xAEVtv3LISqmepY9PDHkxnHsusVQrfVNojVQA46ssFt4ATsr8JnL9KVXKdlzfzTg j8Ip8lUpRdOJeIz8cl5G6encQG9yVlWCCg5JIdkJJZUveMUpe7ucdnI= -----END CERTIFICATE-----Generated at Thu Mar 26 03:14:41 2026 by rpki-client