$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft File: manifest.mft (raw, json) Hash identifier: XvLWbuBMrD4grcAKhmDE/VEROZ4p4u+tRy5kyYkdOwQ= Subject key identifier: 6B:39:6A:CC:B2:2C:A6:D9:A4:9E:40:B5:D3:F2:3C:7F:C0:4B:FF:A6 Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 2EF9F8E11CA70CFA0752AC62D1BBD506290E8DFC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft Manifest number: 05B0 Signing time: Tue 21 Apr 2026 00:14:04 +0000 Manifest this update: Tue 21 Apr 2026 00:14:04 +0000 Manifest next update: Sat 25 Apr 2026 00:14:04 +0000 Files and hashes: 1: 2e40ee0b-9aa9-4919-a079-9712212e127c.roa (hash: HifPHeBwsO/AlIR45rsqvzHRP4MIeEvu4rBsdIj34M0=) 2: 32bf2c39-b536-43d0-b557-f68d8ee64091.roa (hash: 7j+M4k/YxLXgoUQh9ut5fyd0FgSZ1I4FPABA93oRNpU=) 3: 3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa (hash: dXBg2t9Rc27bMuDurzNxUcsK/TwKsHlPOvFnpp5aTVE=) 4: 40956690-3661-49f2-8ebc-2fa5a47a98ad.roa (hash: AgmdN3qsU2yrUPs1RIDpHG3eyZeN4lzX4GL8YuDvcs0=) 5: 4cb3e9f9-46a2-41eb-a4b7-75b53d791f33.roa (hash: xsaM36rzv8Uw5QN5dHxdEYXHzAwA5KNUnJAuj5qn0Dw=) 6: 55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa (hash: J9RI4VJSTxgaFW+3QF3NgsoWAna5ZD6zPEc51yMjTfg=) 7: 565f9740-389f-45ac-956e-b96e19889315.roa (hash: RBUJ8ShSm5Anvido6XPzsBu4tV+RRenjv9jc903Ikwg=) 8: 840736df-cd98-4b5b-a4f2-5615993fc74d.roa (hash: oid2qm1ok/AO9ebksp522nxKXQb48lmufO+GYtuqnC0=) 9: a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl (hash: 9YMig323cqv2T1GQjEzpMq9M4BZug3+zoeW4okWKNCA=) 10: b51d6a60-7601-45c2-8839-f2002dfa8409.roa (hash: wv2wCHPzy3EchePjRNU+awcsVc0NsUI4lB0jDWiKVnQ=) 11: c18b0845-fc95-41d6-b476-af4e1e466849.roa (hash: ntuPLViiaJGatIFvogVdq5Wl8TdNZ2/N5+5/fg06tSQ=) 12: e5ffe65e-7287-4628-8759-7c141866ee12.roa (hash: gqHve5mZoz5OKWb/tmkUudJMf28PgZgam85sSrazD3o=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 00:14:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:f9:f8:e1:1c:a7:0c:fa:07:52:ac:62:d1:bb:d5:06:29:0e:8d:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Apr 21 00:14:04 2026 GMT Not After : Apr 25 00:14:04 2026 GMT Subject: serialNumber=5985da602b455e30c89fbfe0b93375ac8df26c960575b9e742d25a9d171bfa16, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e3:36:82:39:8f:e7:b1:41:a9:b1:b9:08:25: a8:48:7c:f1:60:6c:95:c0:ff:2e:cb:84:cd:f5:cf: ac:eb:da:3f:67:d7:c3:b8:87:f5:36:bb:8d:b0:b0: 92:03:cc:19:62:d8:50:c9:b2:9b:25:6d:1a:06:a3: 46:58:f4:5a:18:a0:d7:c0:20:02:43:a4:db:bf:1e: a0:8e:42:7b:91:9b:6d:d3:8e:c9:cd:d5:a0:fb:5f: 5a:2a:8e:d4:c1:6d:9a:91:17:f2:9a:ff:64:ff:fd: 6e:7f:2e:f2:3f:cf:59:30:a8:f9:44:4d:91:a0:11: 5b:fa:8f:f8:71:04:10:cd:22:15:31:78:a1:ac:e7: ee:d9:81:b4:a0:f6:d8:bc:de:2b:bf:0b:7c:1e:bc: 49:89:57:ad:af:ae:d3:a0:e5:a4:8a:6d:09:b9:75: 69:4b:ac:4c:b0:b7:51:56:23:36:e1:1f:17:9d:2c: e7:59:f5:2a:9f:6d:dd:4c:93:fd:bd:9a:f0:41:f7: 43:19:df:d3:96:43:de:b7:65:cc:e4:f1:e8:65:91: a0:af:73:44:62:bb:74:a4:02:10:fc:6c:95:2f:96: 9c:47:b2:86:cf:2e:74:e2:53:7c:79:6b:29:a0:9e: 6f:30:58:47:72:d0:dd:87:02:b9:e5:ee:ac:a4:45: d7:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:39:6A:CC:B2:2C:A6:D9:A4:9E:40:B5:D3:F2:3C:7F:C0:4B:FF:A6 X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:3a:4f:9c:7e:be:c2:56:b5:99:f5:2d:dc:22:a2:5a:ff:a5: 62:1a:78:45:a8:9d:20:1c:bf:b2:4e:a6:df:07:a5:29:81:65: f1:fc:d6:02:ed:a2:9a:1e:06:b9:b3:3a:67:86:57:41:32:d5: 9f:af:57:e8:6d:d4:3c:37:eb:94:10:eb:d6:2c:7b:2f:35:68: cd:7f:81:ef:c0:4e:36:51:49:d8:17:3f:57:55:ea:06:13:c3: 2c:f9:d1:04:08:f0:ae:44:51:eb:6a:f3:8c:42:0f:7c:b1:6d: 41:a0:fd:1c:0a:ac:00:a6:df:09:4c:a7:73:59:24:15:0e:8d: 01:ad:d0:90:86:86:58:b7:96:7b:0f:27:a7:24:71:9f:70:46: a0:31:9e:f8:b8:1d:fb:bc:cd:0a:49:1d:a2:f4:10:f9:a5:1f: 10:71:24:e3:79:6e:19:58:b7:89:f4:ef:18:60:4d:bd:6e:7f: 31:d6:6d:f5:9b:87:a7:3a:c6:20:49:87:de:6a:22:c4:5e:3d: 54:f1:12:a8:ff:6d:21:d0:f8:12:4b:80:73:52:05:f3:95:b9: 00:c5:63:5b:75:a5:2e:77:54:54:70:87:4e:b3:b3:21:5c:41: cf:14:1c:c6:bc:ea:25:56:a7:8b:88:8f:ae:10:8c:a5:50:95: 3c:8e:9d:df -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIULvn44RynDPoHUqxi0bvVBikOjfwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI2MDQyMTAwMTQwNFoX DTI2MDQyNTAwMTQwNFowejFJMEcGA1UEBRNANTk4NWRhNjAyYjQ1NWUzMGM4OWZi ZmUwYjkzMzc1YWM4ZGYyNmM5NjA1NzViOWU3NDJkMjVhOWQxNzFiZmExNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv+M2gjmP57FBqbG5CCWoSHzxYGyV wP8uy4TN9c+s69o/Z9fDuIf1NruNsLCSA8wZYthQybKbJW0aBqNGWPRaGKDXwCAC Q6Tbvx6gjkJ7kZtt047JzdWg+19aKo7UwW2akRfymv9k//1ufy7yP89ZMKj5RE2R oBFb+o/4cQQQzSIVMXihrOfu2YG0oPbYvN4rvwt8HrxJiVetr67ToOWkim0JuXVp S6xMsLdRViM24R8XnSznWfUqn23dTJP9vZrwQfdDGd/TlkPet2XM5PHoZZGgr3NE Yrt0pAIQ/GyVL5acR7KGzy504lN8eWspoJ5vMFhHctDdhwK55e6spEXXEwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFGs5asyyLKbZpJ5AtdPyPH/AS/+mMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMDhjMmYyNjQtMjNm OS00OWZiLTlkNDMtZjhiNTBiZWM5MjYxL2E1YjAxYmRkLWNkZWItNGNmYy04Yzkz LTdlNzBjNWUwOTMwNi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAFw6T5x+vsJWtZn1Ldwiolr/pWIaeEWo nSAcv7JOpt8HpSmBZfH81gLtopoeBrmzOmeGV0Ey1Z+vV+ht1Dw365QQ69Ysey81 aM1/ge/ATjZRSdgXP1dV6gYTwyz50QQI8K5EUetq84xCD3yxbUGg/RwKrACm3wlM p3NZJBUOjQGt0JCGhli3lnsPJ6ckcZ9wRqAxnvi4Hfu8zQpJHaL0EPmlHxBxJON5 bhlYt4n07xhgTb1ufzHWbfWbh6c6xiBJh95qIsRePVTxEqj/bSHQ+BJLgHNSBfOV uQDFY1t1pS53VFRwh06zsyFcQc8UHMa86iVWp4uIj64QjKVQlTyOnd8= -----END CERTIFICATE-----Generated at Tue Apr 21 18:01:43 2026 by rpki-client