$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft File: manifest.mft (raw, json) Hash identifier: JkZH/tLMx5y/yweBYnKhZDJyKx12OfGf4kUwcoIsvpU= Subject key identifier: 3A:0E:E5:83:81:5F:39:5F:8B:25:D7:8C:7C:F5:15:09:00:64:6B:C5 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 3F7CA01C2CDC14C419138EE2410F0BA0D595C3EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft Manifest number: 0494 Signing time: Sat 23 Aug 2025 00:03:57 +0000 Manifest this update: Sat 23 Aug 2025 00:03:57 +0000 Manifest next update: Wed 27 Aug 2025 00:03:57 +0000 Files and hashes: 1: 05bc8dbb-c70a-48da-b45b-4448364614ff.roa (hash: pnvLeuXvw+7IS4No+PwjrDQiczEGN88LXv81D7eKCQs=) 2: 0bf15d3f-c546-4bb6-a764-82165c384d37.roa (hash: wqmtLRiTOx+XRP0Hu5wCz4zM4dDDbcy4bbYs4TUuE9A=) 3: 0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa (hash: FW+/bZ8D2oaWvqulksoq9njFTMeu5cp/8WiR4QH8EBA=) 4: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (hash: 0C7Nv1Y8OiwG/GydIvjI6Z/RsI3vhVG/3sqaQKkSFZM=) 5: 3407e5b6-a83d-4668-898f-fdbb23092502.roa (hash: L8E1l2oiOWTrgiP9UWGjpUoQO6+qB00YWAWDpPNzJg0=) 6: 3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa (hash: bzh2GGDOS5aX2WkxaXpOroA1RoAFzIFSKM1sVAYNCUc=) 7: 48a67156-122e-41d4-a2a8-8046cc5ecc41.roa (hash: nT3fRBuWjgL7NLMLR3rizYWaYHWnLoIwxAWGtucJ3cg=) 8: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (hash: MJetd7yU1xWgUDcTHzdOuzFw6IutMtn6OIpQpey3Ie0=) 9: 6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl (hash: D40Jqf3ljoZ8PKBK4XixMsFZQWP1TdMH/HVeqzBNO/s=) 10: 74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa (hash: FZOK+4YhwqDo1cpJ3hQR06WS4oG7p73MUkJU+OrmJG8=) 11: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (hash: xc6kyGDCc08DGQ+CdD/ZJnGOu61b7ePmzNcZCJYbpUw=) 12: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (hash: KMb6C1MgOX5dzF/YLbSYl1NejBgG7XXK4kxmU/GlL+A=) 13: 9b59fbe4-f242-4dbf-9964-15048c3da996.roa (hash: 74CQtE2H0xUeFfAS/3WJl4t2V8mhid0eI/r673LK+jw=) 14: 9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa (hash: I34NDbIviyeDaZZj7AqLe/6mj41B8r3FkTZrCBuwyDQ=) 15: a78b90df-233b-4ec6-89d2-de27ac2dc044.roa (hash: JwwONJc4hCeu1NoOWtNFa2J8Xah3YPz0Wa1xaJ2cCv8=) 16: b3ba338e-4843-454b-abe5-65f09756225a.roa (hash: F1S7aL2OH792Xc6MBeE49bybnAL3ejnqZlK8r/EsuAE=) 17: c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa (hash: 3aIN/XRsql+YV4C3dYNWqS31HTBIodwU84Th5RRnY/U=) 18: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (hash: GpN9yKGSI5MwTuaG/P7otT6SrcPR6vZF8AXvS4wz+uI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:03:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:7c:a0:1c:2c:dc:14:c4:19:13:8e:e2:41:0f:0b:a0:d5:95:c3:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Aug 23 00:03:57 2025 GMT Not After : Aug 27 00:03:57 2025 GMT Subject: serialNumber=98731bfc5223cab5cf556ed9e59914f5a007a82aaf99635575876c45deef7436, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e6:e3:2c:0b:13:68:77:61:a6:f4:2d:9c:1a: de:f6:63:c0:c8:0b:85:cf:99:d6:b8:77:63:22:85: 69:30:a0:45:fe:68:66:41:5e:9b:1a:f0:9b:06:18: 3a:f8:e9:76:c5:0a:2e:c9:43:af:77:ae:a5:4a:aa: b9:cc:62:68:18:da:6b:bc:53:47:a7:10:d2:06:51: e9:03:51:40:92:92:58:27:26:f3:09:bc:a9:53:c0: b9:40:9c:26:8f:e1:c0:4d:79:6c:f2:87:fb:b6:a0: 2d:5a:3a:5b:fb:67:ba:a4:ca:8c:f6:f5:ae:47:b9: c2:39:7f:02:dd:4f:1e:a1:35:48:df:93:0e:b0:09: 5a:c1:ed:37:4f:31:99:9c:7d:b2:b0:a3:f0:71:23: 01:3e:c1:49:5e:a0:fe:a3:cb:e9:31:6b:01:ec:1b: 2c:b7:d6:12:8c:bb:75:41:b4:1c:96:d6:87:9e:1d: 54:ef:a0:5a:2f:80:2c:76:82:f6:0d:81:7b:ad:77: ce:d1:b8:2d:b9:e7:e0:ee:b2:8d:7d:64:21:55:ce: 3e:55:07:9e:58:63:a5:85:f5:d7:bb:31:dd:a0:67: fa:b7:d1:d3:15:92:c2:2d:09:a0:d4:91:4d:3f:76: a6:65:db:0e:4c:47:46:bc:c3:8f:ff:4a:b3:59:37: 2c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:0E:E5:83:81:5F:39:5F:8B:25:D7:8C:7C:F5:15:09:00:64:6B:C5 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:71:ae:9c:46:f3:61:d1:f5:2c:ba:6b:27:9d:99:23:58:5c: 9d:a6:20:6f:5f:35:11:6d:c3:40:bf:4c:91:b4:4f:8f:56:5b: 5f:ee:9b:7a:b2:2c:43:40:4d:e6:9f:5d:90:60:b2:29:df:ae: e2:bb:89:f0:52:b0:5a:ed:17:89:67:c5:5d:73:6e:94:ea:70: f1:cc:6f:a1:ce:e0:fb:c5:16:75:f7:7e:24:8c:f6:87:b1:e9: dd:de:33:71:a0:0c:c8:cc:92:1c:9c:64:ed:c9:d9:ad:f7:2e: e6:24:bf:86:e1:7f:d9:97:47:4d:aa:60:35:28:d7:68:21:6f: 5b:bb:66:e0:9f:63:cf:17:e2:7b:d8:d7:52:58:4d:1e:99:85: ab:c2:99:8e:e1:1e:43:ca:89:ea:fd:54:54:d1:ad:f1:43:bb: 1f:36:08:c4:a2:1c:33:58:7d:c5:dc:6a:c1:4d:04:2d:d7:0e: 37:1d:cf:6d:f8:e4:da:e2:e2:70:e2:fe:e1:72:0e:3a:d8:b0: fd:18:86:14:e0:40:66:12:86:e7:ea:a8:01:ce:de:e2:66:08: 87:47:e3:79:52:53:c9:26:17:6e:5d:b5:25:c3:90:7b:67:a3: 39:64:b0:38:ee:7c:99:95:e8:b8:32:a3:b4:53:ed:9c:0e:a8: 69:94:f1:6d -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUP3ygHCzcFMQZE47iQQ8LoNWVw+wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDgyMzAwMDM1N1oX DTI1MDgyNzAwMDM1N1owejFJMEcGA1UEBRNAOTg3MzFiZmM1MjIzY2FiNWNmNTU2 ZWQ5ZTU5OTE0ZjVhMDA3YTgyYWFmOTk2MzU1NzU4NzZjNDVkZWVmNzQzNjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuebjLAsTaHdhpvQtnBre9mPAyAuF z5nWuHdjIoVpMKBF/mhmQV6bGvCbBhg6+Ol2xQouyUOvd66lSqq5zGJoGNprvFNH pxDSBlHpA1FAkpJYJybzCbypU8C5QJwmj+HATXls8of7tqAtWjpb+2e6pMqM9vWu R7nCOX8C3U8eoTVI35MOsAlawe03TzGZnH2ysKPwcSMBPsFJXqD+o8vpMWsB7Bss t9YSjLt1QbQcltaHnh1U76BaL4AsdoL2DYF7rXfO0bgtuefg7rKNfWQhVc4+VQee WGOlhfXXuzHdoGf6t9HTFZLCLQmg1JFNP3amZdsOTEdGvMOP/0qzWTcsGQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFDoO5YOBXzlfiyXXjHz1FQkAZGvFMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4ZTVkYmQyMTkvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZGI5YTM3MmEtMDli Yy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5LzZlY2IzY2NhLTQ4OGQtNDNiOS1hNTBi LWQzN2MwYzU1YTllMS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBADFxrpxG82HR9Sy6ayedmSNYXJ2mIG9f NRFtw0C/TJG0T49WW1/um3qyLENATeafXZBgsinfruK7ifBSsFrtF4lnxV1zbpTq cPHMb6HO4PvFFnX3fiSM9oex6d3eM3GgDMjMkhycZO3J2a33LuYkv4bhf9mXR02q YDUo12ghb1u7ZuCfY88X4nvY11JYTR6ZhavCmY7hHkPKier9VFTRrfFDux82CMSi HDNYfcXcasFNBC3XDjcdz2345Nri4nDi/uFyDjrYsP0YhhTgQGYShufqqAHO3uJm CIdH43lSU8kmF25dtSXDkHtnozlksDjufJmV6Lgyo7RT7ZwOqGmU8W0= -----END CERTIFICATE-----Generated at Sat Aug 23 09:36:23 2025 by rpki-client