$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: 4Xy8wuWtC17EuksulXswcW3fH+DmwVVvTmP+/l3+YA8= Subject key identifier: 2D:DE:EF:8C:18:A4:84:9C:69:E2:76:67:D2:6F:3E:5A:39:3B:69:A3 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 4DD16641317DD300FDF6A05F3808DD512FC9A61B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05FB Signing time: Sun 19 Apr 2026 00:12:50 +0000 Manifest this update: Sun 19 Apr 2026 00:12:50 +0000 Manifest next update: Thu 23 Apr 2026 00:12:50 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: aKFyvFgTcTUH5OvKvAmZSXmFQ0taKK++U8mbsdi/J0I=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 00:12:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:d1:66:41:31:7d:d3:00:fd:f6:a0:5f:38:08:dd:51:2f:c9:a6:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 19 00:12:50 2026 GMT Not After : Apr 23 00:12:50 2026 GMT Subject: serialNumber=4269b4595a98d70f06f6303937a858a0cf36e8d231220f4ab4e72155fe6214c2, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:46:00:3b:70:14:d2:1b:c8:ea:ee:43:51:6f: 4a:81:c0:11:e9:d0:0a:73:b2:7e:11:59:45:b0:58: cd:0c:bc:30:8f:48:99:ba:e2:34:36:66:f3:83:e0: 9f:46:4f:d0:79:5a:2d:3a:26:d9:42:51:ab:8e:02: ea:13:36:f2:30:55:10:50:c8:0d:87:d1:a8:70:0e: 33:58:af:33:a2:f8:91:5e:41:85:d9:66:d1:16:f7: 90:ef:cf:e2:e9:5d:5a:13:18:e2:e1:0d:81:0d:ab: 78:4d:b0:ec:48:fb:c3:72:1c:03:2f:52:9a:d8:31: 72:dd:da:00:05:be:d1:ba:a0:8d:c0:64:e7:e0:0f: 31:ca:05:bc:7c:3b:de:c1:ea:4f:30:09:07:3f:0c: c7:c4:13:91:21:68:6c:a7:46:6e:b9:59:20:ee:3c: 70:f4:5f:15:c1:b3:be:22:84:e7:7b:68:ab:3f:d2: 81:d6:c7:6e:77:0a:c0:83:88:b3:c4:21:b6:c3:34: 27:c3:00:b4:93:58:be:f3:14:2a:d2:ba:ea:66:86: d0:95:ef:78:4d:b1:5e:c4:bf:72:17:17:a8:de:70: b5:e7:5b:5f:14:36:3e:6c:a3:7a:01:b5:64:68:3e: 8c:9e:99:0e:21:8f:6f:20:2a:e5:07:1d:e5:9c:84: fc:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:DE:EF:8C:18:A4:84:9C:69:E2:76:67:D2:6F:3E:5A:39:3B:69:A3 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:c0:49:9c:5c:02:ac:46:f8:c2:b6:4e:67:eb:01:88:9c:3e: 59:a1:48:42:86:61:9d:c7:a9:be:e7:36:94:9b:5d:1f:19:6d: b0:6f:2c:42:80:b1:0b:1a:16:a1:ee:46:ac:44:fc:00:00:91: 94:da:95:59:1c:46:fa:5c:8a:5a:4d:af:86:c7:45:f6:fa:83: 29:84:00:81:23:4e:8c:06:b1:a7:37:ff:61:49:a6:df:5c:95: f4:04:81:b5:8f:ec:30:32:b9:ed:15:50:da:9d:4f:b6:50:c9: 08:39:fc:65:50:78:3b:6b:ec:eb:7c:86:be:5f:f9:0d:76:ff: a1:1e:59:06:d5:b4:37:41:81:02:dc:84:51:62:ed:8a:06:6f: 38:49:37:4c:82:7d:6b:1e:8f:0c:1a:78:63:8a:5e:44:8c:54: 4e:0c:c8:3f:97:be:d6:dc:2e:33:43:17:96:8f:4f:ef:2f:1f: 1d:24:01:fd:30:51:0c:c1:97:48:1e:2b:82:3f:b7:0a:6e:18: ca:3f:6b:8e:51:dc:1c:d0:a2:d3:5f:ac:c3:5e:39:13:38:57: ae:f0:b4:f1:b3:9c:1c:ce:2e:3f:a0:95:b8:b9:9e:1f:8c:96: db:ae:37:a3:a9:30:0e:5f:5b:f1:ac:46:8a:95:ab:50:5a:bd: 00:99:23:a0 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUTdFmQTF90wD99qBfOAjdUS/JphswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDQxOTAwMTI1MFoX DTI2MDQyMzAwMTI1MFowejFJMEcGA1UEBRNANDI2OWI0NTk1YTk4ZDcwZjA2ZjYz MDM5MzdhODU4YTBjZjM2ZThkMjMxMjIwZjRhYjRlNzIxNTVmZTYyMTRjMjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo0YAO3AU0hvI6u5DUW9KgcAR6dAK c7J+EVlFsFjNDLwwj0iZuuI0Nmbzg+CfRk/QeVotOibZQlGrjgLqEzbyMFUQUMgN h9GocA4zWK8zoviRXkGF2WbRFveQ78/i6V1aExji4Q2BDat4TbDsSPvDchwDL1Ka 2DFy3doABb7RuqCNwGTn4A8xygW8fDvewepPMAkHPwzHxBORIWhsp0ZuuVkg7jxw 9F8VwbO+IoTne2irP9KB1sdudwrAg4izxCG2wzQnwwC0k1i+8xQq0rrqZobQle94 TbFexL9yFxeo3nC151tfFDY+bKN6AbVkaD6MnpkOIY9vICrlBx3lnIT86QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFC3e74wYpIScaeJ2Z9JvPlo5O2mjMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAALASZxcAqxG+MK2TmfrAYicPlmhSEKG YZ3Hqb7nNpSbXR8ZbbBvLEKAsQsaFqHuRqxE/AAAkZTalVkcRvpcilpNr4bHRfb6 gymEAIEjTowGsac3/2FJpt9clfQEgbWP7DAyue0VUNqdT7ZQyQg5/GVQeDtr7Ot8 hr5f+Q12/6EeWQbVtDdBgQLchFFi7YoGbzhJN0yCfWsejwwaeGOKXkSMVE4MyD+X vtbcLjNDF5aPT+8vHx0kAf0wUQzBl0geK4I/twpuGMo/a45R3BzQotNfrMNeORM4 V67wtPGznBzOLj+glbi5nh+MltuuN6OpMA5fW/GsRoqVq1BavQCZI6A= -----END CERTIFICATE-----Generated at Sun Apr 19 04:54:26 2026 by rpki-client