$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: foM1zwf6OiKIzxmR4TTIJcC4fWTyyIZ+AJaBeNbblQI= Subject key identifier: E9:DD:0F:9C:DC:C7:1A:0E:0F:45:F8:69:4F:DE:AF:B7:61:59:CD:F3 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 31F2BF82AE80DE0CC3F7ACBA499E723C9AC50599 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05E0 Signing time: Mon 23 Mar 2026 00:06:51 +0000 Manifest this update: Mon 23 Mar 2026 00:06:51 +0000 Manifest next update: Fri 27 Mar 2026 00:06:51 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: OXMceRaLcwMMujZM7K3R0G8DKw1FAdOHmGcRMWtGwRA=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 00:06:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:f2:bf:82:ae:80:de:0c:c3:f7:ac:ba:49:9e:72:3c:9a:c5:05:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Mar 23 00:06:51 2026 GMT Not After : Mar 27 00:06:51 2026 GMT Subject: serialNumber=a8c9afb058647ec2113200ef1fd38215eea91c8b7b89d1d2737875f7fd6f2011, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0a:71:85:46:e9:86:bc:93:9a:3a:6c:70:8b: ce:4b:4b:69:36:98:15:3d:29:10:43:d0:2e:1f:16: 45:37:e9:3e:91:40:1e:aa:91:46:9c:5b:17:77:34: 76:12:0b:1c:16:b8:e5:01:c1:f5:74:13:46:df:f7: 71:3c:1b:a7:f8:86:06:12:8e:06:1c:bb:5f:7a:9e: e7:ea:70:0b:7e:92:b9:75:7f:7a:ac:c2:50:3a:f5: eb:43:42:8b:60:74:28:29:b1:1d:1a:68:39:d5:27: 09:2c:a8:68:ee:7d:56:9d:58:97:66:02:c4:fb:00: f0:b6:b2:7f:e9:67:b2:22:11:a3:1f:72:67:45:0f: 7b:b8:e6:9e:00:b1:fe:30:e8:05:a3:d6:db:f0:aa: 5b:80:d0:fe:98:5e:e2:72:ad:fd:ed:60:5e:4d:95: 07:8b:4e:4f:a4:76:84:48:34:98:07:06:4e:db:6e: 10:61:71:e3:06:2c:cf:27:5f:f4:9c:f8:51:e0:27: 45:eb:18:f9:6d:2a:76:cd:84:72:41:15:aa:ef:33: e1:8b:ba:68:38:3b:f1:cb:3f:4d:95:4e:db:5b:19: 04:70:5b:bb:f0:06:11:70:97:ce:30:e6:5e:ce:46: 35:c0:62:85:2b:a2:5c:6d:54:1b:27:5e:fd:56:ad: 91:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:DD:0F:9C:DC:C7:1A:0E:0F:45:F8:69:4F:DE:AF:B7:61:59:CD:F3 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:c5:da:a1:a5:07:b7:98:c9:d0:ab:bc:fc:98:af:95:f2:db: 03:a3:7b:65:76:62:59:fc:7b:0b:d2:f5:ec:c8:66:3c:d1:c7: 35:a9:d0:d9:9b:b6:8c:08:09:89:63:77:c5:a1:5d:b8:40:3e: 52:7d:07:f3:79:49:23:a0:f4:52:40:fd:93:0d:aa:43:0d:7b: d0:00:6b:23:aa:ef:07:7b:1e:dd:9a:1f:fe:9a:a7:74:fd:9a: cc:70:29:00:1a:90:96:90:95:c8:3e:43:7b:c0:1f:e7:fa:53: 2f:d1:51:fd:5a:41:1d:67:7f:4a:be:1f:f3:8e:f5:b6:ec:88: f0:8c:f7:eb:86:a5:9c:e5:68:3b:59:89:23:12:e8:19:97:7d: b2:05:e4:45:d1:d3:d4:8b:8e:d1:e2:00:3d:71:fb:a5:bb:f6: 9f:f3:bb:4c:b4:90:7b:d8:81:5b:45:df:03:75:d9:a3:41:22: 81:f1:65:64:1f:15:0b:dc:86:28:59:9b:3b:3f:a0:0e:bc:ab: 99:c7:13:71:26:5f:8c:9c:71:0a:20:12:e3:53:b0:fc:0d:82: 66:30:8e:a5:af:02:75:8d:f5:7c:35:c5:c8:bb:be:0f:99:0a: 8b:3e:db:d5:34:37:b6:6b:5b:ec:4e:4d:58:77:5c:fb:ec:c2: e8:49:5b:90 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUMfK/gq6A3gzD96y6SZ5yPJrFBZkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDMyMzAwMDY1MVoX DTI2MDMyNzAwMDY1MVowejFJMEcGA1UEBRNAYThjOWFmYjA1ODY0N2VjMjExMzIw MGVmMWZkMzgyMTVlZWE5MWM4YjdiODlkMWQyNzM3ODc1ZjdmZDZmMjAxMTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqwpxhUbphryTmjpscIvOS0tpNpgV PSkQQ9AuHxZFN+k+kUAeqpFGnFsXdzR2EgscFrjlAcH1dBNG3/dxPBun+IYGEo4G HLtfep7n6nALfpK5dX96rMJQOvXrQ0KLYHQoKbEdGmg51ScJLKho7n1WnViXZgLE +wDwtrJ/6WeyIhGjH3JnRQ97uOaeALH+MOgFo9bb8KpbgND+mF7icq397WBeTZUH i05PpHaESDSYBwZO224QYXHjBizPJ1/0nPhR4CdF6xj5bSp2zYRyQRWq7zPhi7po ODvxyz9NlU7bWxkEcFu78AYRcJfOMOZezkY1wGKFK6JcbVQbJ179Vq2RowIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFOndD5zcxxoOD0X4aU/er7dhWc3zMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGXF2qGlB7eYydCrvPyYr5Xy2wOje2V2 Yln8ewvS9ezIZjzRxzWp0NmbtowICYljd8WhXbhAPlJ9B/N5SSOg9FJA/ZMNqkMN e9AAayOq7wd7Ht2aH/6ap3T9msxwKQAakJaQlcg+Q3vAH+f6Uy/RUf1aQR1nf0q+ H/OO9bbsiPCM9+uGpZzlaDtZiSMS6BmXfbIF5EXR09SLjtHiAD1x+6W79p/zu0y0 kHvYgVtF3wN12aNBIoHxZWQfFQvchihZmzs/oA68q5nHE3EmX4yccQogEuNTsPwN gmYwjqWvAnWN9Xw1xci7vg+ZCos+29U0N7ZrW+xOTVh3XPvswuhJW5A= -----END CERTIFICATE-----Generated at Mon Mar 23 13:17:10 2026 by rpki-client