$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft File: manifest.mft (raw, json) Hash identifier: xr/78g7qrYGuCBgn5VbZipg31Rmlgmsgemny+MgMiYY= Subject key identifier: 83:99:E1:10:6D:06:44:05:AA:F2:0B:D9:D9:DF:74:E2:9C:2C:92:D7 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 19B41EB8722ADCA3B12E7484197453E79842EB45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft Manifest number: 04D0 Signing time: Mon 20 Oct 2025 00:00:57 +0000 Manifest this update: Mon 20 Oct 2025 00:00:57 +0000 Manifest next update: Fri 24 Oct 2025 00:00:57 +0000 Files and hashes: 1: 05bc8dbb-c70a-48da-b45b-4448364614ff.roa (hash: /reVIe2YEIi4m5jK093GGyA8i7HBrWakCLGWnSNEr/o=) 2: 0bf15d3f-c546-4bb6-a764-82165c384d37.roa (hash: ubXi3zaJaqhV7QZw8eCUDCOWJZC9CWeixwGqwLp7nbg=) 3: 0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa (hash: ckC1Dr/riv9p1pk0bUJjrFYYHVpxz5ELjz+tjrFdnrg=) 4: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (hash: MG9kewkpdSnNhIhBlptfiEIpXGKPELBh5UcDo7cbCxs=) 5: 3407e5b6-a83d-4668-898f-fdbb23092502.roa (hash: +T6/QoiHGI2LZYOvScLYFN2i5jk3J26Zu5EdCaAiiSk=) 6: 3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa (hash: EEpGnDssDT5F6TC5weTFiIsLtmOPA71qsLq3d55nmBE=) 7: 48a67156-122e-41d4-a2a8-8046cc5ecc41.roa (hash: GBUmV7kDiDil+MB1ROSLhi2YD7ufwLwA7D98kY68Ilw=) 8: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (hash: HE0+AFjHrsZUYP3WBUwQ3+BQoQzIZ8XAlG12v9RY3U4=) 9: 6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl (hash: Czgb7G2bT1m0uPmavLlf2UJj3aXloX/+y2gC2h6i19M=) 10: 74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa (hash: iP7/JU1mljiUfiC8nO+MEr/dZ0c+dF9vVqRDfvtQdiM=) 11: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (hash: qT12EAP+jq8LHE8JEewgD8q+T8Pr2NvNkP5iek7FQdI=) 12: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (hash: NGORYJxJDltdkPEKBqejniUJY2TikteZ0OUxWGR4rZY=) 13: 9b59fbe4-f242-4dbf-9964-15048c3da996.roa (hash: 0r+FlDDsQsdNJWpt4qHirO2YBKxknShz8boMrzhl0eA=) 14: 9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa (hash: /hyw1I5GZYNdjhvWP+g46Lnurw8qiAMB43eWFRXl/Y0=) 15: a78b90df-233b-4ec6-89d2-de27ac2dc044.roa (hash: YLQMN7Z3nUmBI19bUaX89a9dPbY1t5zKEwTMwe12/zM=) 16: b3ba338e-4843-454b-abe5-65f09756225a.roa (hash: wpY4uD+9FOqqjUhYtknswcsvsVNhyrIpyUW61BPDV10=) 17: c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa (hash: Dypn3u4AGsQ+wJvUDx2nJMdgHBGOGzSlkbUL8yU/Ykw=) 18: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (hash: k8FI6kmGXsYH0fRLiZDflLJ3GLnpPUiKGqnxk/3nCkI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 00:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:b4:1e:b8:72:2a:dc:a3:b1:2e:74:84:19:74:53:e7:98:42:eb:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Oct 20 00:00:57 2025 GMT Not After : Oct 24 00:00:57 2025 GMT Subject: serialNumber=61dc46d1d2bd5664a3ec0da941a4b10623072216f2c925c4a865a39a186f34c9, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b4:99:7a:ae:e0:63:76:0f:b7:fa:d9:00:c6: ea:99:86:2a:c4:6c:31:43:ed:c9:17:42:92:92:ea: 51:b3:21:da:86:12:6e:39:3c:83:0a:d0:28:e2:d6: a9:37:13:66:31:91:2a:bb:7f:e5:11:a0:ab:b1:b3: 06:1d:a4:c8:58:df:3f:ed:02:12:11:ca:f4:ca:5d: db:84:d7:e5:bf:03:61:60:aa:6c:80:fb:95:50:71: 38:ca:2e:f3:35:fd:7d:cd:a4:9c:9b:2d:5f:63:74: 47:73:2a:19:62:c9:15:35:20:47:87:4d:c9:cc:b0: eb:49:80:52:4d:d5:25:00:85:30:1a:57:e0:4b:11: 15:f6:9c:d2:9a:27:f4:5b:05:ef:de:5d:54:cf:ac: 2a:1c:7c:19:10:bc:6a:2d:92:0a:93:65:67:9d:5c: 62:77:c6:c1:a7:ee:44:f6:88:c4:b7:ae:36:69:ba: 59:04:3a:14:84:53:61:f1:d4:6b:cb:b8:c2:18:f5: 21:55:a4:95:78:be:ce:b2:b5:35:59:31:ae:26:02: 39:11:60:59:04:ea:4e:34:b5:9c:d5:20:aa:1d:65: d1:ec:97:49:1f:90:93:89:a1:07:c1:98:86:a8:46: 35:c8:1c:66:64:4f:bf:88:02:34:2d:2c:30:3c:1c: 59:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:99:E1:10:6D:06:44:05:AA:F2:0B:D9:D9:DF:74:E2:9C:2C:92:D7 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:ae:71:a3:d0:e6:0f:75:2b:86:47:ec:4c:1e:6b:e2:a7:4a: a9:1b:f8:e1:3b:84:d8:6b:25:66:2a:bf:f7:e7:ee:22:f2:f3: 22:dd:e0:d8:ca:76:a4:91:94:0b:08:ad:4c:e5:79:ba:98:0a: aa:be:09:cd:bd:58:f9:96:b1:c5:d6:e4:58:ca:f8:79:2f:33: ba:70:51:c8:fc:25:e1:15:98:e4:99:9e:57:8f:fa:47:b1:8b: cb:3f:a4:57:60:7a:96:06:53:b4:72:fe:9e:99:62:a7:51:e1: d1:21:23:78:66:73:bc:98:c2:18:dc:c7:9f:13:0b:3c:1a:62: 0c:ed:c2:47:91:f1:bf:ac:10:65:e2:07:e7:9a:b1:1d:62:25: 43:93:ca:85:10:37:5e:0a:c5:39:72:34:be:6e:18:14:6d:cd: 56:6d:1e:91:cf:a6:7d:53:a0:c4:ad:21:8b:39:a5:bd:c5:d7: f6:4b:ce:66:00:36:fa:29:ab:35:0f:80:c3:74:7e:2b:00:69: db:90:13:30:93:4e:44:c0:f3:8c:75:d6:6d:07:fb:9e:94:65: e6:14:15:b6:68:b7:a5:ac:c5:bb:16:d5:ac:97:67:3b:aa:e1: 18:38:c5:19:e0:08:cc:b7:a5:33:db:3d:c8:b5:1f:45:dd:b0: 4b:31:eb:a7 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUGbQeuHIq3KOxLnSEGXRT55hC60UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MTAyMDAwMDA1N1oX DTI1MTAyNDAwMDA1N1owejFJMEcGA1UEBRNANjFkYzQ2ZDFkMmJkNTY2NGEzZWMw ZGE5NDFhNGIxMDYyMzA3MjIxNmYyYzkyNWM0YTg2NWEzOWExODZmMzRjOTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnbSZeq7gY3YPt/rZAMbqmYYqxGwx Q+3JF0KSkupRsyHahhJuOTyDCtAo4tapNxNmMZEqu3/lEaCrsbMGHaTIWN8/7QIS Ecr0yl3bhNflvwNhYKpsgPuVUHE4yi7zNf19zaScmy1fY3RHcyoZYskVNSBHh03J zLDrSYBSTdUlAIUwGlfgSxEV9pzSmif0WwXv3l1Uz6wqHHwZELxqLZIKk2VnnVxi d8bBp+5E9ojEt642abpZBDoUhFNh8dRry7jCGPUhVaSVeL7OsrU1WTGuJgI5EWBZ BOpONLWc1SCqHWXR7JdJH5CTiaEHwZiGqEY1yBxmZE+/iAI0LSwwPBxZ+QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFIOZ4RBtBkQFqvIL2dnfdOKcLJLXMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4ZTVkYmQyMTkvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZGI5YTM3MmEtMDli Yy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5LzZlY2IzY2NhLTQ4OGQtNDNiOS1hNTBi LWQzN2MwYzU1YTllMS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAHqucaPQ5g91K4ZH7Ewea+KnSqkb+OE7 hNhrJWYqv/fn7iLy8yLd4NjKdqSRlAsIrUzlebqYCqq+Cc29WPmWscXW5FjK+Hkv M7pwUcj8JeEVmOSZnleP+kexi8s/pFdgepYGU7Ry/p6ZYqdR4dEhI3hmc7yYwhjc x58TCzwaYgztwkeR8b+sEGXiB+easR1iJUOTyoUQN14KxTlyNL5uGBRtzVZtHpHP pn1ToMStIYs5pb3F1/ZLzmYANvopqzUPgMN0fisAaduQEzCTTkTA84x11m0H+56U ZeYUFbZot6WsxbsW1ayXZzuq4Rg4xRngCMy3pTPbPci1H0XdsEsx66c= -----END CERTIFICATE-----Generated at Mon Oct 20 01:40:20 2025 by rpki-client