$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: Htagv9qT1u3Cm+akixyIC75WRKqOlEIdJv6N2XgRpwE= Subject key identifier: 80:DB:07:4A:3D:FE:D5:8D:E9:93:EA:3D:8D:CB:18:D2:9F:24:F8:5D Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 37AB0A2CE4FD6F93DC94308AF2736D85667F48D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05EB Signing time: Fri 03 Apr 2026 00:09:24 +0000 Manifest this update: Fri 03 Apr 2026 00:09:24 +0000 Manifest next update: Tue 07 Apr 2026 00:09:24 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: sD1JVuSXjFGeHPhuv8tnxUt+qLBbfsL2h3h8AEJ541E=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 Apr 2026 00:09:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:ab:0a:2c:e4:fd:6f:93:dc:94:30:8a:f2:73:6d:85:66:7f:48:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 3 00:09:24 2026 GMT Not After : Apr 7 00:09:24 2026 GMT Subject: serialNumber=128afbbaa3f37ab22e43a310389fcdc5cd0e54a257107b24c829dee502c5a1ec, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:03:b1:2f:d6:55:f4:10:d8:85:ba:db:96:d9: df:d6:18:aa:7f:1a:97:16:b5:94:e1:be:56:7a:57: 38:0a:13:fc:71:18:ae:0a:b4:21:2d:8e:70:54:56: 59:ed:14:da:50:3b:94:e3:3f:d1:23:4d:52:b9:a3: 32:72:5c:83:98:73:76:e1:69:cd:c8:c2:aa:90:6d: ae:ae:dd:f1:d4:27:8f:27:51:07:00:e7:ff:6d:40: 4c:c8:46:87:71:38:a0:e2:0b:29:4f:a1:cf:d2:8b: 4c:65:ef:6b:db:a3:f0:6c:21:b3:76:be:9d:88:8a: d2:65:f2:2d:24:40:aa:0f:d9:82:55:8a:fc:b0:68: e0:3c:20:04:ee:10:8b:11:f1:63:fd:5c:0e:4b:9b: f8:c8:41:91:17:1e:c1:c8:f9:2c:0c:74:84:3d:ba: 1b:8c:47:27:67:5c:ac:4b:f1:0f:29:23:fb:fe:0b: 62:ea:3d:ad:f4:ef:e3:43:3e:98:b7:77:f6:df:8b: 28:8a:f3:4a:c7:48:19:0a:9a:f5:71:94:e0:e3:d6: d2:8c:95:68:be:f1:6b:20:11:31:5d:19:47:53:66: 54:14:72:b2:74:d4:53:52:12:94:ab:b6:1e:68:d0: f1:96:45:83:08:cb:7a:d8:51:9a:83:9b:bf:9e:6c: c8:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:DB:07:4A:3D:FE:D5:8D:E9:93:EA:3D:8D:CB:18:D2:9F:24:F8:5D X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:70:69:8a:bf:d6:d0:e1:7f:a2:a2:e1:8d:4b:f4:70:c3:ce: 06:b4:f5:e7:9a:7e:06:17:2c:c4:60:3d:91:5b:4e:0c:f7:1f: 71:1a:76:a6:4b:b7:b1:91:d5:1d:f7:6f:38:1a:96:85:b5:46: ac:4b:81:a8:1b:07:4a:d7:16:53:6c:33:24:03:ce:2a:44:1a: 38:8e:8c:ce:31:5f:19:db:da:4e:51:cc:ba:a9:72:34:fe:d8: 10:c0:6d:74:ef:77:ca:ca:df:e2:8f:2e:1e:e1:ee:b7:53:dc: 45:96:3c:3f:25:43:ba:01:43:79:12:83:51:b0:3b:b1:e2:e6: 8a:df:57:0e:23:83:59:67:b3:80:d3:e3:10:c7:fb:f6:ea:a2: c8:f4:3b:f8:84:c1:75:24:34:2e:86:1f:1e:0b:40:52:bd:41: b2:1e:ba:df:01:66:60:19:2d:17:c5:8c:9d:79:a4:f4:f4:9a: 97:82:b1:e1:80:43:61:05:33:5c:53:1f:2d:ef:38:11:bf:6c: 5f:5c:60:23:95:d2:d7:d3:d3:6e:ff:52:b1:2e:ea:c9:8a:c1: 03:5f:13:33:66:87:1f:28:73:4c:42:d9:8d:89:6a:cc:da:89: 5a:f6:ab:79:05:72:0e:77:8a:e4:ac:a0:b5:7b:cc:b4:1e:6a: ef:86:a2:be -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUN6sKLOT9b5PclDCK8nNthWZ/SNQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDQwMzAwMDkyNFoX DTI2MDQwNzAwMDkyNFowejFJMEcGA1UEBRNAMTI4YWZiYmFhM2YzN2FiMjJlNDNh MzEwMzg5ZmNkYzVjZDBlNTRhMjU3MTA3YjI0YzgyOWRlZTUwMmM1YTFlYzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgOxL9ZV9BDYhbrbltnf1hiqfxqX FrWU4b5Welc4ChP8cRiuCrQhLY5wVFZZ7RTaUDuU4z/RI01SuaMyclyDmHN24WnN yMKqkG2urt3x1CePJ1EHAOf/bUBMyEaHcTig4gspT6HP0otMZe9r26PwbCGzdr6d iIrSZfItJECqD9mCVYr8sGjgPCAE7hCLEfFj/VwOS5v4yEGRFx7ByPksDHSEPbob jEcnZ1ysS/EPKSP7/gti6j2t9O/jQz6Yt3f234soivNKx0gZCpr1cZTg49bSjJVo vvFrIBExXRlHU2ZUFHKydNRTUhKUq7YeaNDxlkWDCMt62FGag5u/nmzIDwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFIDbB0o9/tWN6ZPqPY3LGNKfJPhdMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAEZwaYq/1tDhf6Ki4Y1L9HDDzga09eea fgYXLMRgPZFbTgz3H3EadqZLt7GR1R33bzgaloW1RqxLgagbB0rXFlNsMyQDzipE GjiOjM4xXxnb2k5RzLqpcjT+2BDAbXTvd8rK3+KPLh7h7rdT3EWWPD8lQ7oBQ3kS g1GwO7Hi5orfVw4jg1lns4DT4xDH+/bqosj0O/iEwXUkNC6GHx4LQFK9QbIeut8B ZmAZLRfFjJ15pPT0mpeCseGAQ2EFM1xTHy3vOBG/bF9cYCOV0tfT027/UrEu6smK wQNfEzNmhx8oc0xC2Y2JaszaiVr2q3kFcg53iuSsoLV7zLQeau+Gor4= -----END CERTIFICATE-----Generated at Fri Apr 3 11:08:43 2026 by rpki-client