$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: Z5XcKaLHMx7gs+HW3FUNhuDpaXBNhrE3j1rxF3TJ97o= Subject key identifier: F5:C1:38:57:E4:52:25:37:D2:4C:CA:6F:19:FF:BB:B4:A7:00:0F:45 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 0F91889A50AF45E6576ADE9107C8B750086BEFC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05E8 Signing time: Tue 31 Mar 2026 00:08:49 +0000 Manifest this update: Tue 31 Mar 2026 00:08:49 +0000 Manifest next update: Sat 04 Apr 2026 00:08:49 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: hX+esvPvwJVctStRipKq5ZmEluoffii48Dlc5q8KHQ4=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 00:08:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:91:88:9a:50:af:45:e6:57:6a:de:91:07:c8:b7:50:08:6b:ef:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Mar 31 00:08:49 2026 GMT Not After : Apr 4 00:08:49 2026 GMT Subject: serialNumber=bd46d6b0239f7999ad0107fd9dc0ee8a942f15ac8285962945eb3c841ff77172, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:73:c4:61:99:4d:07:59:6a:3a:30:8e:f7:ae: 18:30:0c:a8:97:7b:cc:d1:69:65:85:32:95:1f:72: 69:22:00:6c:2b:8f:94:76:a7:b9:28:2d:74:9d:8d: ab:6c:45:e6:25:a3:8a:a7:b9:00:74:46:25:e2:c4: d8:42:89:53:0a:a5:50:54:1d:3e:8d:93:6c:e6:f6: dc:b9:8d:45:32:71:9c:be:26:f5:47:bc:97:84:ed: f8:b8:73:19:42:8c:d5:52:e5:89:9b:18:94:0f:be: 07:d2:30:c1:af:a9:99:ed:01:7f:d4:96:dd:2e:8a: da:e1:31:2b:d0:42:8f:fe:60:f0:09:3b:a0:ce:67: 7c:1c:60:44:62:d6:7b:dc:06:7a:04:1e:87:de:d3: 49:59:51:51:e1:f9:9f:cb:2b:bc:6b:4b:7a:6f:a1: 12:6b:a7:41:e9:c0:c3:f9:55:1c:a5:d6:20:1c:d6: b3:3b:7a:27:f1:ef:fe:c9:0d:15:8e:ac:df:fc:98: d2:56:da:40:36:9c:a7:2e:6b:8f:ee:47:db:75:c1: 2a:9b:1d:8b:51:65:10:35:8a:ad:3b:34:f8:10:51: 77:63:83:49:01:89:95:01:e0:ae:33:95:df:fb:0a: fc:5d:ad:a1:8d:f6:9a:11:f8:52:29:98:30:b7:39: 35:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:C1:38:57:E4:52:25:37:D2:4C:CA:6F:19:FF:BB:B4:A7:00:0F:45 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:17:c4:b0:10:4c:cb:e3:38:d4:fe:c2:0a:f8:a0:d2:f9:c6: c2:77:37:d9:cb:c7:01:0f:d6:48:75:28:62:0b:c8:9f:f8:d1: ea:75:24:3e:3a:ac:36:90:90:15:f4:74:52:c7:97:30:1d:d0: 3e:32:5c:60:fd:35:2d:27:ff:72:05:5d:5f:b3:a0:79:76:e7: 6d:79:d6:13:b4:b3:c5:b8:86:16:d6:6c:39:31:ec:c2:e7:7d: 03:06:05:1a:62:72:8d:82:f0:94:54:1d:67:9d:6d:3a:4b:46: d0:c6:c9:56:21:2b:49:5f:4f:a9:9f:dc:03:b1:79:22:17:a0: a5:4a:d4:66:1a:8f:7e:53:52:ec:fd:68:95:1e:a0:6a:e1:53: 71:1c:22:f7:9e:cf:40:0d:7c:97:95:f0:d2:18:31:25:80:10: 9b:b5:3c:21:19:9a:30:8c:d4:4e:d9:2b:e5:88:04:59:a0:37: 53:91:76:aa:45:a1:d6:7b:56:4e:d4:63:ee:ad:78:18:34:d1: 3c:28:fd:09:01:e8:9d:b4:2f:fc:f8:d0:3b:c8:da:f4:93:d2: 26:97:d1:83:ee:04:40:c6:f9:11:e9:d4:17:ec:4b:12:c6:13: 9c:58:3c:82:4e:22:b3:26:ad:2d:93:36:04:0b:68:b3:5e:bb: fb:c2:0d:49 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUD5GImlCvReZXat6RB8i3UAhr78EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDMzMTAwMDg0OVoX DTI2MDQwNDAwMDg0OVowejFJMEcGA1UEBRNAYmQ0NmQ2YjAyMzlmNzk5OWFkMDEw N2ZkOWRjMGVlOGE5NDJmMTVhYzgyODU5NjI5NDVlYjNjODQxZmY3NzE3MjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHPEYZlNB1lqOjCO964YMAyol3vM 0WllhTKVH3JpIgBsK4+Udqe5KC10nY2rbEXmJaOKp7kAdEYl4sTYQolTCqVQVB0+ jZNs5vbcuY1FMnGcvib1R7yXhO34uHMZQozVUuWJmxiUD74H0jDBr6mZ7QF/1Jbd Lora4TEr0EKP/mDwCTugzmd8HGBEYtZ73AZ6BB6H3tNJWVFR4fmfyyu8a0t6b6ES a6dB6cDD+VUcpdYgHNazO3on8e/+yQ0Vjqzf/JjSVtpANpynLmuP7kfbdcEqmx2L UWUQNYqtOzT4EFF3Y4NJAYmVAeCuM5Xf+wr8Xa2hjfaaEfhSKZgwtzk13QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFPXBOFfkUiU30kzKbxn/u7SnAA9FMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAIQXxLAQTMvjONT+wgr4oNL5xsJ3N9nL xwEP1kh1KGILyJ/40ep1JD46rDaQkBX0dFLHlzAd0D4yXGD9NS0n/3IFXV+zoHl2 52151hO0s8W4hhbWbDkx7MLnfQMGBRpico2C8JRUHWedbTpLRtDGyVYhK0lfT6mf 3AOxeSIXoKVK1GYaj35TUuz9aJUeoGrhU3EcIveez0ANfJeV8NIYMSWAEJu1PCEZ mjCM1E7ZK+WIBFmgN1ORdqpFodZ7Vk7UY+6teBg00Two/QkB6J20L/z40DvI2vST 0iaX0YPuBEDG+RHp1BfsSxLGE5xYPIJOIrMmrS2TNgQLaLNeu/vCDUk= -----END CERTIFICATE-----Generated at Tue Mar 31 16:36:53 2026 by rpki-client