$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: GRyC4Zfvmlb5fjOgmWrWKuEl4GtaxYTDdL0NR1m/gLo= Subject key identifier: A9:A9:31:A9:E9:EA:92:60:61:14:E3:CF:18:92:FE:CA:44:BA:61:56 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 619C80F4033D2D211004CCBE8337E5C3DFE8D518 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0601 Signing time: Sat 25 Apr 2026 00:14:51 +0000 Manifest this update: Sat 25 Apr 2026 00:14:51 +0000 Manifest next update: Wed 29 Apr 2026 00:14:51 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: rL76GFDdljKACgBEJTIFJ2VTmPoOnsKmWBGeQKrCw1k=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Apr 2026 00:14:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:9c:80:f4:03:3d:2d:21:10:04:cc:be:83:37:e5:c3:df:e8:d5:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 25 00:14:51 2026 GMT Not After : Apr 29 00:14:51 2026 GMT Subject: serialNumber=a7646714645743f2ac788d31ce3e265cf307f14923a3c77ab858abbcfad9ef5c, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:64:9a:57:2c:f7:8c:78:5e:dd:c3:10:74:89: b7:a3:65:86:2a:d1:a8:1e:b7:bb:e5:b2:39:5c:fc: 1b:a2:61:90:be:8c:eb:7f:3d:b4:ea:0f:a1:99:55: 3b:10:06:d1:83:e0:ea:94:c5:f6:d5:6e:8a:97:ec: cd:ac:37:30:85:4c:c1:72:f3:bd:8b:92:71:d3:df: f6:0e:46:0a:ad:55:ef:56:19:f9:1a:f7:a5:ff:db: 28:ef:fb:fc:37:52:87:a1:25:df:56:fb:ea:6d:a7: 6e:ee:48:47:e2:bc:33:0a:2b:f6:c4:78:32:fe:14: ab:e3:55:80:61:28:44:78:e5:52:70:50:81:a7:0a: d5:3d:0a:24:72:72:de:a3:ea:bd:92:5c:4d:af:77: d4:00:d6:c5:64:e5:9f:65:d8:47:87:ad:19:b4:10: f6:1a:fc:ae:15:03:3a:08:ba:a2:c2:3a:a6:f6:29: a4:26:cd:f3:a6:6d:ac:b2:a9:20:19:88:3d:3a:87: 14:12:1c:5c:56:09:78:a3:01:07:24:a4:a4:4c:40: 3e:14:a9:b8:b5:81:eb:cd:07:b1:ec:a0:f5:dd:b7: 2e:0b:21:2a:4b:44:8e:8d:8a:eb:f7:00:a1:a2:ed: 4f:4a:5a:94:ea:3c:21:89:1d:3c:59:7c:5a:8e:f7: 85:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:A9:31:A9:E9:EA:92:60:61:14:E3:CF:18:92:FE:CA:44:BA:61:56 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:7f:3e:15:ce:a4:13:0d:05:37:3e:b3:31:b0:d1:6d:96:63: 32:8b:00:33:9a:c5:4b:fb:ab:53:4d:21:cd:d7:25:04:58:1c: 96:25:6d:d8:26:cd:f8:06:4c:a8:7c:e4:f4:4f:9f:88:25:e9: 45:e7:32:29:a9:1f:f5:2d:07:fa:1b:7b:b7:5c:73:17:a6:8a: 58:f1:c9:2f:a0:49:c5:08:35:22:5f:a6:c2:e9:13:c7:5d:79: d7:22:c6:94:69:ba:94:1d:6f:fc:c6:91:a7:99:60:c0:b5:5c: 98:b4:e8:41:83:c6:33:7a:f5:47:d5:84:1f:3b:20:a8:92:9c: b2:5a:ab:4a:79:bf:5b:27:d4:e0:7b:b0:13:0d:a9:8b:ba:d6: 6a:54:0a:00:6c:4d:42:e7:f1:bb:d6:ca:41:d0:60:13:9b:f2: b1:c3:4c:e6:10:af:8a:27:f2:51:8f:0d:b7:90:ec:77:d6:7f: c9:dd:60:41:4f:76:ed:0f:a1:2a:e5:ee:50:da:1e:32:ff:bb: 34:8b:2f:c2:f5:5d:4f:a1:e8:58:66:50:78:92:01:09:c3:ce: 09:5b:a8:40:43:47:ba:1d:6c:d3:8d:66:bd:1c:65:d1:fa:6f: 49:51:4c:d1:ec:cc:75:37:fc:f3:6a:8b:f0:66:a4:7b:0a:dc: 69:be:0f:80 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUYZyA9AM9LSEQBMy+gzflw9/o1RgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDQyNTAwMTQ1MVoX DTI2MDQyOTAwMTQ1MVowejFJMEcGA1UEBRNAYTc2NDY3MTQ2NDU3NDNmMmFjNzg4 ZDMxY2UzZTI2NWNmMzA3ZjE0OTIzYTNjNzdhYjg1OGFiYmNmYWQ5ZWY1YzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2WSaVyz3jHhe3cMQdIm3o2WGKtGo Hre75bI5XPwbomGQvozrfz206g+hmVU7EAbRg+DqlMX21W6Kl+zNrDcwhUzBcvO9 i5Jx09/2DkYKrVXvVhn5Gvel/9so7/v8N1KHoSXfVvvqbadu7khH4rwzCiv2xHgy /hSr41WAYShEeOVScFCBpwrVPQokcnLeo+q9klxNr3fUANbFZOWfZdhHh60ZtBD2 GvyuFQM6CLqiwjqm9imkJs3zpm2ssqkgGYg9OocUEhxcVgl4owEHJKSkTEA+FKm4 tYHrzQex7KD13bcuCyEqS0SOjYrr9wChou1PSlqU6jwhiR08WXxajveFywIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFKmpManp6pJgYRTjzxiS/spEumFWMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAEV/PhXOpBMNBTc+szGw0W2WYzKLADOa xUv7q1NNIc3XJQRYHJYlbdgmzfgGTKh85PRPn4gl6UXnMimpH/UtB/obe7dccxem iljxyS+gScUINSJfpsLpE8ddedcixpRpupQdb/zGkaeZYMC1XJi06EGDxjN69UfV hB87IKiSnLJaq0p5v1sn1OB7sBMNqYu61mpUCgBsTULn8bvWykHQYBOb8rHDTOYQ r4on8lGPDbeQ7HfWf8ndYEFPdu0PoSrl7lDaHjL/uzSLL8L1XU+h6FhmUHiSAQnD zglbqEBDR7odbNONZr0cZdH6b0lRTNHszHU3/PNqi/BmpHsK3Gm+D4A= -----END CERTIFICATE-----Generated at Sat Apr 25 18:21:35 2026 by rpki-client