$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: LGm67nhqoLmVhm7aVwzZTZ2U+AABpOjKCTFMKtNHpyw= Subject key identifier: 89:4C:02:D2:E3:D9:AB:55:93:91:C2:37:74:02:F9:5E:C4:CB:87:06 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 62AF059ADDA7D79F47A499383620A55B4BAD91DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05FE Signing time: Wed 22 Apr 2026 00:13:57 +0000 Manifest this update: Wed 22 Apr 2026 00:13:57 +0000 Manifest next update: Sun 26 Apr 2026 00:13:57 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: Qr/FWwm+RdHshekoYeF5RqOyPX/a9F4uROy6dKzCxO8=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 00:13:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:af:05:9a:dd:a7:d7:9f:47:a4:99:38:36:20:a5:5b:4b:ad:91:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 22 00:13:57 2026 GMT Not After : Apr 26 00:13:57 2026 GMT Subject: serialNumber=8097315ef580d5a2851656031c63ab05b6b5f017916198711cb6fe42436753e8, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:db:6c:6d:22:8c:02:26:b1:cc:33:d5:65:5f: 81:07:19:03:47:17:e6:15:dc:59:7e:69:be:83:ef: 60:f7:89:6a:aa:d4:82:01:b1:41:f9:92:93:fc:12: 1c:dc:30:5c:25:a2:bb:de:b5:32:5b:d8:e6:68:1e: a5:9c:7b:50:14:07:50:6a:a8:65:10:68:a2:35:9f: a3:47:81:fd:e2:35:b5:b8:e7:bc:bd:51:d5:c5:2e: 6a:57:48:d9:bb:06:fa:5c:f6:fc:88:18:48:27:3f: 7c:a9:e8:15:a9:84:c2:e7:62:d9:61:c1:10:24:71: 61:2a:c2:46:03:40:e5:ec:5c:68:97:48:6a:76:7b: 0e:be:b2:9b:75:d7:47:c2:fc:6a:1c:3a:2d:d4:7b: 3b:d7:fa:ca:43:5d:4d:7e:86:65:aa:4f:f1:60:7d: 01:ce:9b:cd:b2:2d:89:23:d8:f7:3d:4d:0c:ef:67: b6:25:80:2a:9c:9b:64:22:c9:c4:71:fc:ff:d6:72: ad:1a:99:6f:8b:ae:84:03:84:f0:f1:50:a0:25:f3: d3:93:64:21:34:d8:3c:10:c5:ae:63:e1:a3:f5:7d: 7f:e8:88:c4:6f:56:04:3e:dc:19:b5:43:f8:ef:82: bb:ec:43:f1:1a:9b:52:5e:ff:d1:08:fd:34:01:8d: 38:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:4C:02:D2:E3:D9:AB:55:93:91:C2:37:74:02:F9:5E:C4:CB:87:06 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:6a:96:70:95:e5:b2:4a:0c:8b:c4:fc:0e:0e:a5:b1:6c:94: 0a:a9:52:27:6a:fb:82:7f:73:08:36:2a:35:24:07:ab:50:a1: ca:5a:59:f8:31:2b:53:1f:b5:f7:4d:92:d4:ff:e8:18:d1:96: fe:cd:a1:e3:aa:71:92:54:22:04:55:45:5a:cb:93:4b:fe:ca: 39:53:cd:18:07:c2:e7:15:12:4a:b4:b1:66:6b:e4:2d:51:48: 15:31:6a:ef:0b:88:7a:b0:02:e7:2d:f8:1a:46:bb:52:ad:eb: 88:c5:78:3e:a1:5e:62:b5:fb:3e:a8:28:30:b8:a2:09:e0:f6: d5:27:fb:b1:1e:0b:35:d6:b0:4b:e4:a5:e0:7e:5e:53:92:3f: f9:81:da:4d:ba:ee:91:d8:d1:11:0c:17:24:97:29:b6:c0:2a: d4:e0:01:02:51:16:66:b0:aa:a7:c3:92:e0:ff:71:0d:fb:c2: 98:6a:c9:c3:be:41:3e:83:6b:d9:8d:5f:b4:a6:eb:92:04:8d: 49:d4:12:2f:1a:88:95:5d:69:4f:d5:ec:71:64:f6:91:d1:71: 1b:67:b5:64:ea:f8:7a:5c:ae:32:ec:cc:57:3d:67:09:3e:7b: f1:d3:32:d6:91:5d:ca:63:bd:6c:d5:48:56:bd:76:a8:e1:b7: e3:20:df:0c -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUYq8Fmt2n159HpJk4NiClW0utkdswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDQyMjAwMTM1N1oX DTI2MDQyNjAwMTM1N1owejFJMEcGA1UEBRNAODA5NzMxNWVmNTgwZDVhMjg1MTY1 NjAzMWM2M2FiMDViNmI1ZjAxNzkxNjE5ODcxMWNiNmZlNDI0MzY3NTNlODEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApdtsbSKMAiaxzDPVZV+BBxkDRxfm FdxZfmm+g+9g94lqqtSCAbFB+ZKT/BIc3DBcJaK73rUyW9jmaB6lnHtQFAdQaqhl EGiiNZ+jR4H94jW1uOe8vVHVxS5qV0jZuwb6XPb8iBhIJz98qegVqYTC52LZYcEQ JHFhKsJGA0Dl7Fxol0hqdnsOvrKbdddHwvxqHDot1Hs71/rKQ11NfoZlqk/xYH0B zpvNsi2JI9j3PU0M72e2JYAqnJtkIsnEcfz/1nKtGplvi66EA4Tw8VCgJfPTk2Qh NNg8EMWuY+Gj9X1/6IjEb1YEPtwZtUP474K77EPxGptSXv/RCP00AY040wIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFIlMAtLj2atVk5HCN3QC+V7Ey4cGMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAE1qlnCV5bJKDIvE/A4OpbFslAqpUidq +4J/cwg2KjUkB6tQocpaWfgxK1MftfdNktT/6BjRlv7NoeOqcZJUIgRVRVrLk0v+ yjlTzRgHwucVEkq0sWZr5C1RSBUxau8LiHqwAuct+BpGu1Kt64jFeD6hXmK1+z6o KDC4ogng9tUn+7EeCzXWsEvkpeB+XlOSP/mB2k267pHY0REMFySXKbbAKtTgAQJR FmawqqfDkuD/cQ37wphqycO+QT6Da9mNX7Sm65IEjUnUEi8aiJVdaU/V7HFk9pHR cRtntWTq+HpcrjLszFc9Zwk+e/HTMtaRXcpjvWzVSFa9dqjht+Mg3ww= -----END CERTIFICATE-----Generated at Wed Apr 22 19:22:56 2026 by rpki-client