$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: SVci8QBN1NFYoUhvzQmuaSjfmr+kEK1AYd2jQF6edAw= Subject key identifier: AE:3C:DF:B5:89:1C:17:CA:5E:AF:63:32:5E:9F:9E:36:BF:13:76:7D Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 3C7DD3361B30522BED4D113180E1654A01BA95FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05DE Signing time: Sat 21 Mar 2026 00:06:14 +0000 Manifest this update: Sat 21 Mar 2026 00:06:14 +0000 Manifest next update: Wed 25 Mar 2026 00:06:14 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: 2x13gn9SuzLmt02QAbz1K0mJJfb+doJCIe7X4Q6ia6g=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Mar 2026 00:06:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:7d:d3:36:1b:30:52:2b:ed:4d:11:31:80:e1:65:4a:01:ba:95:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Mar 21 00:06:14 2026 GMT Not After : Mar 25 00:06:14 2026 GMT Subject: serialNumber=ec98b1b0ed982851411f8d44a84ef1cd0f766fac4bfca9ed40474cf1d0603398, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a5:24:c5:07:5f:25:0f:f4:2e:91:fb:23:29: 63:45:33:4a:21:2a:23:e1:af:e3:5d:a8:3b:11:56: 96:47:22:6a:ca:10:6f:88:31:93:ae:86:f6:0d:6a: 0c:87:1f:8c:ff:df:cb:ff:9b:dd:1f:36:d3:05:67: 0d:58:a1:f9:8d:74:ad:16:66:bb:1e:83:7e:05:11: 45:85:57:fd:fa:d4:e7:6e:5b:31:c6:ba:1e:f4:06: 44:7e:47:4b:b9:38:2d:62:6e:52:62:07:91:3e:87: 6b:5d:da:12:d9:0a:40:5a:c7:b7:95:e6:41:5f:30: c2:9d:ca:7f:00:bd:24:9e:dd:a7:13:70:5a:74:2b: 47:89:e7:96:ab:e4:2a:c2:73:96:e4:59:ee:91:36: da:e6:7b:05:cd:0b:27:be:fa:12:eb:f9:5b:13:38: 09:69:9f:67:a1:90:37:ca:81:dc:6f:6d:5f:13:17: 4d:59:49:ab:b5:05:bf:ad:32:18:0b:b9:1e:60:d7: e3:50:0e:69:92:f5:91:41:d3:35:10:39:d1:fa:bb: e5:67:e4:1b:32:fe:95:b0:d5:f6:a7:14:ee:f6:48: 22:30:bc:ce:fc:e9:c7:01:b8:6f:f6:1e:eb:84:95: c6:29:f7:14:70:b1:f4:62:48:1f:a7:f8:bb:03:e0: c8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:3C:DF:B5:89:1C:17:CA:5E:AF:63:32:5E:9F:9E:36:BF:13:76:7D X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:45:ab:e5:e3:93:67:c1:76:a9:bb:40:b3:4e:6c:4e:09:c6: 7b:90:f0:35:1a:e3:68:d9:18:25:62:27:60:6a:1b:10:66:4a: 01:a5:12:7c:c8:99:5a:ea:9a:b3:8f:a7:78:1f:0b:e0:16:c2: 33:27:0f:dd:00:41:19:8d:22:63:50:0b:9c:b0:a2:de:f0:f7: ac:53:52:67:5d:4c:26:71:c6:fd:bf:2e:87:ba:39:7d:83:25: bd:28:9c:d6:2a:a3:81:20:2a:ce:1b:be:3a:a8:1f:8d:eb:5d: 5c:f8:a4:e9:8e:65:ef:39:7e:6b:a1:18:e5:83:86:13:e6:25: 21:f0:59:61:90:c1:dd:2f:64:90:94:66:2e:7a:d3:14:bb:b3: 46:91:46:14:9e:f1:96:38:ff:34:95:7d:f3:e6:fb:eb:95:f4: e7:d0:cc:21:a6:81:09:74:62:b4:11:b4:89:f9:df:bb:ce:83: ba:64:88:ab:52:82:60:9a:87:59:cd:e3:77:d0:ae:17:63:40: 8c:95:6e:65:6d:71:b1:31:a7:f0:d8:cd:88:9c:89:49:28:d1: 0a:0d:03:65:72:2f:ef:73:7b:b0:b8:b7:d2:91:4b:f7:b3:11: cc:02:2f:c7:de:6f:aa:97:1c:eb:e6:5c:09:05:59:bb:fe:23: ec:e9:d2:b9 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUPH3TNhswUivtTRExgOFlSgG6lfswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDMyMTAwMDYxNFoX DTI2MDMyNTAwMDYxNFowejFJMEcGA1UEBRNAZWM5OGIxYjBlZDk4Mjg1MTQxMWY4 ZDQ0YTg0ZWYxY2QwZjc2NmZhYzRiZmNhOWVkNDA0NzRjZjFkMDYwMzM5ODEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApqUkxQdfJQ/0LpH7IyljRTNKISoj 4a/jXag7EVaWRyJqyhBviDGTrob2DWoMhx+M/9/L/5vdHzbTBWcNWKH5jXStFma7 HoN+BRFFhVf9+tTnblsxxroe9AZEfkdLuTgtYm5SYgeRPodrXdoS2QpAWse3leZB XzDCncp/AL0knt2nE3BadCtHieeWq+QqwnOW5FnukTba5nsFzQsnvvoS6/lbEzgJ aZ9noZA3yoHcb21fExdNWUmrtQW/rTIYC7keYNfjUA5pkvWRQdM1EDnR+rvlZ+Qb Mv6VsNX2pxTu9kgiMLzO/OnHAbhv9h7rhJXGKfcUcLH0Ykgfp/i7A+DIVwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFK4837WJHBfKXq9jMl6fnja/E3Z9MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGVFq+Xjk2fBdqm7QLNObE4JxnuQ8DUa 42jZGCViJ2BqGxBmSgGlEnzImVrqmrOPp3gfC+AWwjMnD90AQRmNImNQC5ywot7w 96xTUmddTCZxxv2/Loe6OX2DJb0onNYqo4EgKs4bvjqoH43rXVz4pOmOZe85fmuh GOWDhhPmJSHwWWGQwd0vZJCUZi560xS7s0aRRhSe8ZY4/zSVffPm++uV9OfQzCGm gQl0YrQRtIn537vOg7pkiKtSgmCah1nN43fQrhdjQIyVbmVtcbExp/DYzYiciUko 0QoNA2VyL+9ze7C4t9KRS/ezEcwCL8feb6qXHOvmXAkFWbv+I+zp0rk= -----END CERTIFICATE-----Generated at Sun Mar 22 00:20:05 2026 by rpki-client