$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: qRMrYJCz1nmJaAhk41O1ImPS9Um6DVMsnS5jWWqfFag= Subject key identifier: 48:CA:9D:9A:D9:E2:AC:96:74:39:07:02:3B:9E:1D:C7:E9:A4:30:DF Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 73B271E8BEDB05CD0FF33EAD43D71D9187D47639 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 04E9 Signing time: Sun 19 Oct 2025 00:00:40 +0000 Manifest this update: Sun 19 Oct 2025 00:00:40 +0000 Manifest next update: Thu 23 Oct 2025 00:00:40 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: z1G8lq8NC4ogkuE1vqz8gyy6BCxT6xSZonearuQsSBs=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: VIjnt59TB7BGOdnaiSRXW6ZJQWdAWNQj0darbfG3BwA=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: 250FTgHuto9SJoid1HPvupHDn7UBUGmxCGIhjacP+Xc=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: crbLBi9nu8qb5t939fM1l5siZq8FO1beWK3pS+hJhYo=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: 32Xk3d4EJO19C4Fehm7kAjreNUzNLx5RKWRzaIabu7w=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: ibaZp+YjGH5VnNJafebxZIUG/khLXe5POMeNsISNYTE=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: vW8hXHGe+eosGjnyK85vNW/30QKnvDmChUh3HJ3mdPI=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: 3E0UzIBtNqbgRSeM6C1RsmZ5yhJBTi7pT11KO15DtNI=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: yjyrnBw41vvDMUdtHNcvyBmhA8s539qhw8H4OkwB5cA=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: NyrvS2tQrRYqi8H9wIQQGaV1jGezPK8RjU38PR8MGYU=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: 3jf21F4EwMQSQt0fNSk0MM+jNDxWR8oVCU+iS20AUhU=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: Ifc/4norLBc4VDP5CUGtSfAa4lVa0x83f/SmdqePbYI=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: D9cw9ToNQZwqPDNLtKM2mhEKabKisLLOjOipREWgByc=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: hf+wDgoXo6/O8WXfizibKGp/CFEpdhqNHrijLMJABMs=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 26s/OMmcwWQLpExoQRxdUqhOk4rubcYfXvubjEKCfFA=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: NLyEMar8Nbdt3tCQB3rrOz5Ml4Qv6xXZon+dfPbpswg=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: sKPpAS9zxq4u3F00zpIE53W6iu679gdzmw2+O/AYu64=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: lKKoLe0vbSLn1GYBLLvAGjq7yGPYrO+RjCrgmBCH5K4=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: zgw1gADDD2VRjNIGI30UlXvCJlMvy1Rc5dfChKjDH+8=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: 1O+Gtev57+BDwGYGEZYmDoTaYcjZk2GsioCjBQyNFxo=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: aQFRbr+dd4Et86WLB5KvcxGqVS81WwmchY1341uHcOk=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: YWCFEoQJdKZwxxiiaZDGsmtfIPNCHJy0waaA5H0NDrQ=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 00:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:b2:71:e8:be:db:05:cd:0f:f3:3e:ad:43:d7:1d:91:87:d4:76:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Oct 19 00:00:40 2025 GMT Not After : Oct 23 00:00:40 2025 GMT Subject: serialNumber=e14898213c434b128f7592911a470b24ffc80bb8a76b83b2b0335ff64a4a20f9, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:88:a5:62:ba:7b:40:6b:04:27:20:f5:1c:d4: 0c:e4:ad:16:c9:ae:a6:1f:23:4e:7e:92:2b:f2:bc: 5d:c6:0e:50:a6:dd:1c:73:47:1c:37:db:19:51:29: 92:b2:cb:fa:2c:a8:68:40:30:b3:88:90:f7:f8:33: a0:6d:09:7a:c2:bf:89:8d:c7:94:02:f8:df:8c:ab: 8b:e7:50:f8:3e:a6:ec:da:67:65:f9:7d:fb:c1:1a: 1b:57:2e:e5:d7:56:ad:30:39:ae:ec:e7:de:75:bb: a5:a4:c2:22:17:da:b1:bf:45:2a:27:5b:6d:7b:d2: 37:e4:b5:45:70:f4:8d:ca:33:60:09:3e:8a:57:f0: e3:7d:3a:35:0c:e7:27:5d:af:25:fa:36:14:e3:0a: da:44:9f:7c:d1:33:f1:23:03:3a:a3:6c:a4:0b:1b: 0e:87:81:ef:0a:63:2f:93:73:aa:db:07:c0:85:6a: 19:47:54:11:f9:37:80:95:aa:53:8c:31:2e:d5:87: 23:3a:f5:66:46:78:23:e5:08:ec:cb:7d:fd:60:9f: fa:6f:f9:f5:f1:4c:29:35:ce:dd:39:87:ad:f1:80: 2b:78:04:91:c7:79:3e:8c:3d:57:e1:a2:1b:9d:40: 35:b6:14:bc:92:52:91:86:1d:47:8f:f2:89:9c:7c: 4c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:CA:9D:9A:D9:E2:AC:96:74:39:07:02:3B:9E:1D:C7:E9:A4:30:DF X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:c9:0c:0e:7e:30:69:02:e0:5e:00:f5:48:2e:e2:a6:4f:08: ef:1e:1f:a5:90:fe:cc:9d:7f:53:54:21:b5:14:58:9a:d0:8d: 16:c0:a8:4c:22:9b:c3:96:42:f1:41:7b:57:e9:88:44:76:f0: 93:a3:ce:db:6d:89:86:37:cd:9f:e7:eb:ff:bc:5a:88:06:a1: 1f:5e:af:72:9b:d0:b8:fe:1e:c2:d5:e2:b3:36:1e:a3:3a:a7: 17:c0:f5:56:4d:6e:d4:6c:3e:5a:ab:e7:4d:b9:8b:fd:b0:a6: a1:c8:0a:ef:00:3c:28:bf:2a:58:7f:d8:d5:4a:b5:fc:6e:cf: fc:bc:53:e4:05:ab:7f:6d:36:1c:51:af:a3:88:7d:06:36:e2: f1:46:bc:95:d5:c0:7a:a5:96:6b:2f:f5:fc:89:2c:39:26:4e: e0:57:c9:e9:05:37:67:5d:49:68:85:bd:77:95:4c:b1:54:8f: fa:ba:72:85:27:b8:70:e5:2a:85:e2:64:8d:6d:20:ad:29:48: 25:21:12:91:69:dc:03:e2:50:28:ad:a8:96:da:19:71:7f:bd: c0:13:53:78:cf:5f:33:64:ff:b2:58:d2:29:36:af:b5:dd:90: 0d:a7:71:20:00:ef:c8:81:d7:0b:14:d2:94:df:a1:e2:d0:10: d6:d1:4a:bb -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUc7Jx6L7bBc0P8z6tQ9cdkYfUdjkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTAxOTAwMDA0MFoX DTI1MTAyMzAwMDA0MFowejFJMEcGA1UEBRNAZTE0ODk4MjEzYzQzNGIxMjhmNzU5 MjkxMWE0NzBiMjRmZmM4MGJiOGE3NmI4M2IyYjAzMzVmZjY0YTRhMjBmOTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn4ilYrp7QGsEJyD1HNQM5K0Wya6m HyNOfpIr8rxdxg5Qpt0cc0ccN9sZUSmSssv6LKhoQDCziJD3+DOgbQl6wr+JjceU AvjfjKuL51D4Pqbs2mdl+X37wRobVy7l11atMDmu7OfedbulpMIiF9qxv0UqJ1tt e9I35LVFcPSNyjNgCT6KV/DjfTo1DOcnXa8l+jYU4wraRJ980TPxIwM6o2ykCxsO h4HvCmMvk3Oq2wfAhWoZR1QR+TeAlapTjDEu1YcjOvVmRngj5Qjsy339YJ/6b/n1 8UwpNc7dOYet8YAreASRx3k+jD1X4aIbnUA1thS8klKRhh1Hj/KJnHxMrQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFEjKnZrZ4qyWdDkHAjueHcfppDDfMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAJ/JDA5+MGkC4F4A9Ugu4qZPCO8eH6WQ /sydf1NUIbUUWJrQjRbAqEwim8OWQvFBe1fpiER28JOjztttiYY3zZ/n6/+8WogG oR9er3Kb0Lj+HsLV4rM2HqM6pxfA9VZNbtRsPlqr5025i/2wpqHICu8APCi/Klh/ 2NVKtfxuz/y8U+QFq39tNhxRr6OIfQY24vFGvJXVwHqllmsv9fyJLDkmTuBXyekF N2ddSWiFvXeVTLFUj/q6coUnuHDlKoXiZI1tIK0pSCUhEpFp3APiUCitqJbaGXF/ vcATU3jPXzNk/7JY0ik2r7XdkA2ncSAA78iB1wsU0pTfoeLQENbRSrs= -----END CERTIFICATE-----Generated at Sun Oct 19 23:16:31 2025 by rpki-client