$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft File: manifest.mft (raw, json) Hash identifier: oxjT0lwfdNLtQ6MIhvXBK4njKYKTI9oyk0Ltei+7voA= Subject key identifier: C0:A8:CB:E5:59:15:CD:AC:58:25:DC:AF:D7:07:01:5C:EC:43:74:2F Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 503731FF7D9EE6631374DE60186DD52E5E311492 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft Manifest number: 0570 Signing time: Sat 28 Mar 2026 00:07:39 +0000 Manifest this update: Sat 28 Mar 2026 00:07:39 +0000 Manifest next update: Wed 01 Apr 2026 00:07:39 +0000 Files and hashes: 1: 05bc8dbb-c70a-48da-b45b-4448364614ff.roa (hash: 94IdkhuysCtpUhjxxnTBDxDY8wcAFCDxnvDHBRF5fs8=) 2: 0bf15d3f-c546-4bb6-a764-82165c384d37.roa (hash: 3/O173PHBuIz6mu8xF4BBpQyuSSXG31gIN+dAztx7tU=) 3: 0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa (hash: qH4UYxIo4GmiVDct5oCvngMgU+M+xfB7x0cpSWfBWpI=) 4: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (hash: w9dP68hgjTwoVTVZbfzP2G5I7m0K6Q1OW+wD/LSUllg=) 5: 3407e5b6-a83d-4668-898f-fdbb23092502.roa (hash: 92iBp9qU7g6n+zuX9c8av5bZGkNDQA6sfydJaa4OH2E=) 6: 3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa (hash: KdJvcPeDsOZ+BJoWuQRlSV6VANqoUPeEX3cWo51RCu4=) 7: 48a67156-122e-41d4-a2a8-8046cc5ecc41.roa (hash: ROZb7Tv2KD3NnpptYibXOH4yrtmutDpNrPPgjX6j8aE=) 8: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (hash: BY42jY8m9CnIuDARw32JheNmH2JsVrZ/FgY72atfbec=) 9: 6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl (hash: OeF9AIsAit2LTxB7p90iuPgccG1rrDnRES/fI9AMU4c=) 10: 74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa (hash: 6iafgtxJna4YOKnfmGGjHe/fUaX3c3vMQNik0yLQ2sY=) 11: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (hash: qZkqbKiNgx8ucra+8F91Z+iqMAPhmhI0ZuWkZkNBdNU=) 12: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (hash: OJmgOUcQjiJMwxM7bwdSAtFKotOY/2x5tv0dDie1nVQ=) 13: 9b59fbe4-f242-4dbf-9964-15048c3da996.roa (hash: dvqZyjDP4DM17H4iP9qadmlu63zU1PZlX4eNeTdhr54=) 14: 9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa (hash: zdOl15xiPO/2p9k0fkfFESjOUUAzls9mUEj1rb9KzuY=) 15: a78b90df-233b-4ec6-89d2-de27ac2dc044.roa (hash: f4Fl24SB2Oz8neyZRhs4xAWvq57eQY8Tm6Y9abpLvNI=) 16: b3ba338e-4843-454b-abe5-65f09756225a.roa (hash: IfPsINwRrxd34VBeRIe+GE50/CjGcoN/iwF7+EVNuzM=) 17: c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa (hash: xkM4EMj1nW0jd1U+wxjkYr8i5dZqCvgIU9sDt8QBn+o=) 18: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (hash: yfUIFh+TomPlrcVQIlX9VNrU1he+sH0NOx9nr1TTQok=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:07:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:37:31:ff:7d:9e:e6:63:13:74:de:60:18:6d:d5:2e:5e:31:14:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Mar 28 00:07:39 2026 GMT Not After : Apr 1 00:07:39 2026 GMT Subject: serialNumber=d862f0c070cd49bbc4fbc253157de45e3bfc5f45e45d9332112762fadaed6e43, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:b3:4e:a0:46:fc:16:8e:92:25:55:fa:6b:9a: 17:fd:d8:43:e6:27:d6:22:9f:ce:65:eb:57:23:12: c6:ee:77:f4:57:c6:51:91:dc:65:a3:f9:d0:24:1a: ca:69:f5:38:a7:0e:b9:34:f0:c2:dc:24:96:49:65: 8a:f0:6b:0a:39:9e:b9:78:ba:32:ca:26:3a:b8:05: 45:ea:a1:41:8b:e5:e4:a4:47:35:86:4c:b9:fc:c2: 88:ab:44:0e:16:f5:7e:7e:76:f6:cf:42:df:a4:1e: f3:08:3a:fe:dc:81:a4:4f:db:b3:11:6a:56:8e:b6: 65:88:fa:25:c4:c8:4f:3f:0c:65:a1:e1:de:47:42: 7a:47:07:4f:1f:d8:90:7e:ff:4c:86:55:a8:b6:3d: f8:80:f4:4a:47:b7:b9:4f:5b:9e:87:aa:e6:18:3f: a1:73:e5:a5:c7:aa:80:ab:82:c8:33:62:1d:b9:a3: d3:53:38:c7:77:62:5e:1e:c9:17:53:e7:a4:c7:a7: f4:fa:b5:47:f6:80:4b:e3:de:d8:b6:a4:b9:cb:fe: d3:fd:ab:bc:47:58:61:dd:8c:17:93:9f:83:69:26: 18:7d:98:16:20:b1:7a:3c:fd:27:62:11:c3:21:ca: e9:48:b7:14:44:fe:2d:b8:76:36:be:1c:a7:94:0c: 26:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:A8:CB:E5:59:15:CD:AC:58:25:DC:AF:D7:07:01:5C:EC:43:74:2F X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:2b:ac:bd:ce:a6:db:42:d7:ee:3b:db:68:06:95:ac:6d:61: aa:bd:d8:af:28:c8:ad:4e:39:c8:11:14:b5:5a:9f:c0:b1:59: 46:15:8b:d4:c5:ea:cd:a9:0d:e6:4d:ad:dd:2e:53:a0:6b:a6: 8b:da:f5:c3:95:33:5e:5b:54:3a:b3:aa:e6:a6:a0:fe:80:26: df:a4:0a:a1:c3:43:26:ea:dc:60:1e:88:8a:58:00:a3:dc:77: af:dd:84:f3:53:25:87:f8:d4:4a:90:7e:03:27:5c:36:8c:00: 6e:c6:a1:c3:3b:24:ef:21:94:30:d9:c0:b6:16:24:e0:82:b3: b9:45:ea:2f:77:94:cf:57:7d:ca:b5:3e:fe:6c:7b:6b:ae:3f: 14:b3:19:d4:0e:49:6c:89:9e:09:31:e9:0d:74:8d:5b:42:69: 29:a6:a9:a3:88:ec:46:25:2e:45:e6:56:45:56:76:cf:1a:c8: 0b:25:72:f6:f7:bb:bf:a9:86:a6:d2:b9:f9:b4:21:6a:b1:36: 6c:de:5e:38:55:e3:42:96:20:36:0c:6c:18:1a:f4:36:e0:1f: 50:e5:65:99:1a:45:b6:de:d2:e5:ef:74:49:b9:8a:35:dd:23: ba:4b:aa:d2:8e:21:17:08:86:13:ff:a1:9a:4f:7a:a9:86:3c: 1f:64:57:2d -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUUDcx/32e5mMTdN5gGG3VLl4xFJIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDMyODAwMDczOVoX DTI2MDQwMTAwMDczOVowejFJMEcGA1UEBRNAZDg2MmYwYzA3MGNkNDliYmM0ZmJj MjUzMTU3ZGU0NWUzYmZjNWY0NWU0NWQ5MzMyMTEyNzYyZmFkYWVkNmU0MzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9LNOoEb8Fo6SJVX6a5oX/dhD5ifW Ip/OZetXIxLG7nf0V8ZRkdxlo/nQJBrKafU4pw65NPDC3CSWSWWK8GsKOZ65eLoy yiY6uAVF6qFBi+XkpEc1hky5/MKIq0QOFvV+fnb2z0LfpB7zCDr+3IGkT9uzEWpW jrZliPolxMhPPwxloeHeR0J6RwdPH9iQfv9MhlWotj34gPRKR7e5T1ueh6rmGD+h c+Wlx6qAq4LIM2IduaPTUzjHd2JeHskXU+ekx6f0+rVH9oBL497YtqS5y/7T/au8 R1hh3YwXk5+DaSYYfZgWILF6PP0nYhHDIcrpSLcURP4tuHY2vhynlAwmGQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFMCoy+VZFc2sWCXcr9cHAVzsQ3QvMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4ZTVkYmQyMTkvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZGI5YTM3MmEtMDli Yy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5LzZlY2IzY2NhLTQ4OGQtNDNiOS1hNTBi LWQzN2MwYzU1YTllMS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBALYrrL3OpttC1+4722gGlaxtYaq92K8o yK1OOcgRFLVan8CxWUYVi9TF6s2pDeZNrd0uU6Brpova9cOVM15bVDqzquamoP6A Jt+kCqHDQybq3GAeiIpYAKPcd6/dhPNTJYf41EqQfgMnXDaMAG7GocM7JO8hlDDZ wLYWJOCCs7lF6i93lM9Xfcq1Pv5se2uuPxSzGdQOSWyJngkx6Q10jVtCaSmmqaOI 7EYlLkXmVkVWds8ayAslcvb3u7+phqbSufm0IWqxNmzeXjhV40KWIDYMbBga9Dbg H1DlZZkaRbbe0uXvdEm5ijXdI7pLqtKOIRcIhhP/oZpPeqmGPB9kVy0= -----END CERTIFICATE-----Generated at Sat Mar 28 08:50:29 2026 by rpki-client