$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: gNPFD5KMW8FTEUI04ONkrP2tG4DzCM/PgF7JE9jdyZE= Subject key identifier: B8:09:91:89:B5:A3:77:0F:20:7B:52:34:DB:73:AD:7F:F5:5F:33:CB Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 6E5DB3BF5CAA57ACF251F01181FC67FCDC88E566 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 04AE Signing time: Sat 23 Aug 2025 00:00:41 +0000 Manifest this update: Sat 23 Aug 2025 00:00:41 +0000 Manifest next update: Wed 27 Aug 2025 00:00:41 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: KY+3ez0xt27XvXV4Ptra/fdRkMmp3DQqO0tBL1+GFms=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: tbAbfaC2RuFNWZiog/TRY+SJFGIcDojyat8DSXiGpj4=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: +dgLMbF0Pa9+nV1whtS18K/OYeyEPHxLgt1uJNdX/z8=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: +7bC6U81T/zAvSqaMsf5aNPf0+dpIVB5mHessVKpdm0=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: 0tdunrsGVZ3WKr4OAoHYFQU5uziBzinewn0h/W+ES+E=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: EPvoRMnGKG5xZf5eimr1MDAtgUNi6zNpYiiPjvtebgQ=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: lg1YUGhW4/UQUdrKyIyy9Kwc8htsOn7PAyEoxCHWx20=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: f5PY2MrxTAvRi+a996gcb3GhB27Fv3w21olKXCI653c=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: amkVtT5O0C2NbJL88E9FOLSqLSjYan3d8UkmnxNtxG4=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: waiHC2uvQ/JWWGj6dv0+Jnvjhmk720UW4x8oKc0eTrA=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: hcBCz8pjSbZBwEsa41ey2guhkl5K7x9KUwBIbfqn6Jc=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: 5Ttu2kLHtleGqXhGp1154M4Fs/n0b2qXFD2eo3KCU0w=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: Xr7nLPSK2ZSyjI0rCOlF0AuSHNbswrAss87oZHF4EXo=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: V/7m5yE+CCJeT/nKdukf9a+x/FN2cTA8qHx6R6yG9Jc=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: kwDtKkjV5R3jmwfsxK9pMTDCxQI0E15H942j4JCKTKo=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: 89Q54azxDN3ASeR/6p4+Ave3WHYO3C21Hbmap/CklK4=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: Kvmc/hqY/vogQCWVl6vkaYesnaU1vHdvynPTnINrqQw=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: kW8NYWZj/E/StIyQluPL3r9uG3u0JJiZgUJ+lQnOSEY=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: 42D2MpM7D8MbZHMxL6Bn0db+gMi54+8csOxmsP/LWZU=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: h4ZB/MWEgyJ8LZrf1SxnyFlIxQ+R+CVKJktPaoigBZ4=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: dClEonqXxXGeK3AlK7PwDwEIvV/bh31mEliYfQYbDzE=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: 8BZFocgKPkGBJ81xSolcBX4ocQRaTMnybA4zb1BOLOA=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:5d:b3:bf:5c:aa:57:ac:f2:51:f0:11:81:fc:67:fc:dc:88:e5:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Aug 23 00:00:41 2025 GMT Not After : Aug 27 00:00:41 2025 GMT Subject: serialNumber=b170ae2e00da9eed61b919442143547f3c52bc026a22f7c319abc7a753c4b537, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:2d:7b:5a:7e:b7:fa:7c:23:5c:6f:f7:34:79: a9:d5:be:5b:71:a7:12:89:b6:77:d0:fb:4b:29:1a: 77:fe:fb:15:8b:e8:47:7a:26:bb:96:ed:bb:05:7a: d6:dc:23:96:20:9a:1d:53:7c:4d:01:a2:97:a5:4f: 05:55:6a:31:ac:30:53:78:55:5e:18:0d:a3:78:fb: 7d:dc:cf:0e:3a:72:60:e4:c1:78:f9:8d:48:e3:5e: f8:ec:11:77:61:e8:b0:0c:fb:c4:93:b9:5c:44:f1: 09:42:0b:23:f6:ae:74:c4:88:9f:97:35:af:a2:8d: c5:59:89:e8:bc:a7:7c:59:e8:1b:a0:b5:28:94:09: 63:a7:16:b1:3f:6c:7e:b1:d2:b3:42:a1:26:50:87: d4:c7:f6:e7:b6:17:5c:45:be:03:cf:c4:8a:9a:1c: 4d:0c:aa:a6:75:01:1f:4d:1b:b8:a3:fd:af:6a:69: 7c:d7:5e:86:be:cd:13:70:5c:a3:ac:cf:fd:8a:44: 37:9b:e8:de:5b:44:fd:da:3c:75:22:37:ce:15:91: 06:f3:c5:d0:b2:c7:7d:9a:c2:c3:b4:b9:fb:3c:2a: e8:1a:10:7c:a0:be:b3:71:a1:32:ab:84:35:f3:fb: 8c:e1:df:75:7d:aa:8a:b7:4d:22:36:8c:e3:e6:c0: 9d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:09:91:89:B5:A3:77:0F:20:7B:52:34:DB:73:AD:7F:F5:5F:33:CB X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:36:fd:fd:3f:11:3a:98:1e:10:f3:63:5b:d3:84:72:d1:db: 1d:78:be:bd:9d:db:6c:49:e2:ac:5b:7b:3e:48:b7:14:af:1c: 45:12:a0:24:36:be:9f:4a:b5:ec:06:83:9f:10:8d:8e:db:72: 07:66:5f:97:00:ea:a9:bc:93:4a:1e:89:aa:c5:ed:72:09:4c: 6d:54:03:43:87:b1:20:84:8a:84:e6:fb:86:05:b9:f4:0d:c5: 4f:06:24:48:2d:d8:3a:32:15:41:dc:fb:1d:f4:59:aa:f4:fd: 5c:63:de:0b:f1:93:57:7b:76:c0:6a:3a:3e:c2:37:f1:67:7a: 7c:49:e9:4e:9f:a0:41:35:de:92:e3:4f:e3:cf:d6:77:b2:a2: 90:0b:6c:6b:85:f5:15:b2:16:3d:f0:8f:c8:3b:8e:2d:f6:44: 99:33:4a:ce:4f:dd:6f:8e:ae:62:de:8a:8a:68:b7:c9:42:67: de:0f:bd:34:bf:f2:d4:97:95:19:c0:7f:96:18:c9:a3:82:21: 87:8e:17:6d:70:6b:3b:5c:e9:92:53:2e:39:81:11:8f:2c:42: 98:72:36:c1:7b:6e:19:82:f9:aa:bc:35:c6:b1:27:28:b9:3e: 96:7d:53:e3:af:13:ac:19:54:41:dc:76:13:13:a0:72:db:fc: 19:d0:1a:8e -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUbl2zv1yqV6zyUfARgfxn/NyI5WYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDgyMzAwMDA0MVoX DTI1MDgyNzAwMDA0MVowejFJMEcGA1UEBRNAYjE3MGFlMmUwMGRhOWVlZDYxYjkx OTQ0MjE0MzU0N2YzYzUyYmMwMjZhMjJmN2MzMTlhYmM3YTc1M2M0YjUzNzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAii17Wn63+nwjXG/3NHmp1b5bcacS ibZ30PtLKRp3/vsVi+hHeia7lu27BXrW3COWIJodU3xNAaKXpU8FVWoxrDBTeFVe GA2jePt93M8OOnJg5MF4+Y1I41747BF3YeiwDPvEk7lcRPEJQgsj9q50xIiflzWv oo3FWYnovKd8WegboLUolAljpxaxP2x+sdKzQqEmUIfUx/bnthdcRb4Dz8SKmhxN DKqmdQEfTRu4o/2vaml8116Gvs0TcFyjrM/9ikQ3m+jeW0T92jx1IjfOFZEG88XQ ssd9msLDtLn7PCroGhB8oL6zcaEyq4Q18/uM4d91faqKt00iNozj5sCdmwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFLgJkYm1o3cPIHtSNNtzrX/1XzPLMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAHI2/f0/ETqYHhDzY1vThHLR2x14vr2d 22xJ4qxbez5ItxSvHEUSoCQ2vp9KtewGg58QjY7bcgdmX5cA6qm8k0oeiarF7XIJ TG1UA0OHsSCEioTm+4YFufQNxU8GJEgt2DoyFUHc+x30War0/Vxj3gvxk1d7dsBq Oj7CN/FnenxJ6U6foEE13pLjT+PP1neyopALbGuF9RWyFj3wj8g7ji32RJkzSs5P 3W+OrmLeiopot8lCZ94PvTS/8tSXlRnAf5YYyaOCIYeOF21waztc6ZJTLjmBEY8s QphyNsF7bhmC+aq8NcaxJyi5PpZ9U+OvE6wZVEHcdhMToHLb/BnQGo4= -----END CERTIFICATE-----Generated at Sat Aug 23 09:37:52 2025 by rpki-client