$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: S8I/sMcfOP4d5UZTYfcwUomMEGV70evojdeVk+nySdU= Subject key identifier: 1E:FE:98:D9:D0:41:2A:14:2E:4A:C2:B6:17:80:71:5D:A2:D2:3B:9C Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 27652575B5A95F99B62559708C2529A9D0FC0CA4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05C6 Signing time: Wed 25 Feb 2026 00:00:33 +0000 Manifest this update: Wed 25 Feb 2026 00:00:33 +0000 Manifest next update: Sun 01 Mar 2026 00:00:33 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: A2J3u1t6PknYuLTBjmDa9Flm1/empw5bRPBdxk/6v20=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Mar 2026 00:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:65:25:75:b5:a9:5f:99:b6:25:59:70:8c:25:29:a9:d0:fc:0c:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Feb 25 00:00:33 2026 GMT Not After : Mar 1 00:00:33 2026 GMT Subject: serialNumber=0f1d3466d453a85163543cb053dfe3c455a2756885a28f9ba2f5cba8985246c2, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:72:8b:9c:ee:00:18:c7:ec:6d:99:1b:a0:09: 66:45:3c:49:b8:4a:b1:9d:ee:85:e8:c4:07:28:43: 32:a2:10:f1:0c:a7:67:b9:58:ac:2a:a5:cc:1d:ae: 3d:61:36:00:50:b6:44:fb:ac:62:51:21:19:26:60: 73:dd:f0:8e:5c:41:76:1d:90:70:87:48:c4:5f:b6: fc:ee:e8:da:91:9d:77:98:5e:49:6e:9e:69:93:7f: 0c:e5:c0:ec:0c:59:a0:11:32:df:f1:4f:2a:97:99: 81:e2:68:a8:91:21:39:5c:7f:77:14:38:4a:f6:42: 03:03:e2:55:bd:ef:5b:1e:e2:fb:52:e8:0b:2f:d2: b2:5e:0d:c0:89:a7:d1:43:4f:d7:ec:ef:31:c1:df: 09:57:f2:f4:82:51:28:4f:51:90:0a:43:e4:e9:2b: 68:31:4b:c8:2a:cd:69:a7:2e:b3:9e:41:0f:e1:3a: b7:1c:65:cf:96:42:8e:9d:21:05:a9:96:7c:99:ff: 1a:70:61:35:cd:8c:10:4f:8e:0f:7d:c8:3c:20:e1: 32:ce:ba:1d:e3:b0:e6:bf:29:80:6d:87:7e:83:25: bb:34:bf:f8:1d:2d:a1:4d:81:9d:e6:19:83:11:12: 7e:49:ee:7c:8f:14:52:0d:9c:13:71:9a:04:d2:10: 63:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:FE:98:D9:D0:41:2A:14:2E:4A:C2:B6:17:80:71:5D:A2:D2:3B:9C X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:62:08:39:5f:c7:f2:eb:95:a7:00:81:3c:6a:bd:cf:f1:19: ab:9c:b4:74:45:32:09:90:ce:f6:33:e7:a1:ed:c6:63:33:14: 88:53:ce:87:28:d4:a9:18:b8:34:62:c4:b5:5b:38:30:60:13: 49:bd:b7:5f:67:80:cb:51:81:32:2a:34:5a:30:d5:0a:5d:a3: 58:36:ea:94:ee:38:c6:6b:f7:99:05:9a:d0:49:fb:bf:8d:c7: f5:be:fd:c3:a6:89:a1:ac:24:8d:73:32:8f:cd:6e:3c:93:fe: fc:ad:3b:aa:d4:3e:e3:c7:ad:48:0c:f7:07:70:9d:bc:14:8f: 9f:b8:3a:72:38:2b:4f:70:c7:31:a8:62:ab:53:05:7e:d2:5e: a6:a4:82:a4:b5:2a:b9:55:c7:08:fb:f2:7f:73:bc:36:60:70: 53:1b:d4:e9:1d:ed:51:a8:bc:c8:1b:2e:57:dc:7d:ee:c9:35: 17:f1:1d:33:12:c9:42:fd:ae:4d:90:e4:64:12:03:ca:91:e2: 49:6b:32:a2:1a:71:64:29:37:96:47:7a:52:e5:cc:8c:3e:3e: ad:cc:09:2a:8e:5b:d2:26:24:ce:76:a5:0e:71:0d:33:82:be: 74:ea:e2:e4:eb:04:85:02:22:f0:d7:40:48:bf:ae:5f:6a:6a: 82:38:54:23 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUJ2UldbWpX5m2JVlwjCUpqdD8DKQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDIyNTAwMDAzM1oX DTI2MDMwMTAwMDAzM1owejFJMEcGA1UEBRNAMGYxZDM0NjZkNDUzYTg1MTYzNTQz Y2IwNTNkZmUzYzQ1NWEyNzU2ODg1YTI4ZjliYTJmNWNiYTg5ODUyNDZjMjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApXKLnO4AGMfsbZkboAlmRTxJuEqx ne6F6MQHKEMyohDxDKdnuVisKqXMHa49YTYAULZE+6xiUSEZJmBz3fCOXEF2HZBw h0jEX7b87ujakZ13mF5Jbp5pk38M5cDsDFmgETLf8U8ql5mB4miokSE5XH93FDhK 9kIDA+JVve9bHuL7UugLL9KyXg3AiafRQ0/X7O8xwd8JV/L0glEoT1GQCkPk6Sto MUvIKs1ppy6znkEP4Tq3HGXPlkKOnSEFqZZ8mf8acGE1zYwQT44Pfcg8IOEyzrod 47DmvymAbYd+gyW7NL/4HS2hTYGd5hmDERJ+Se58jxRSDZwTcZoE0hBjIQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFB7+mNnQQSoULkrCtheAcV2i0jucMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAABiCDlfx/LrlacAgTxqvc/xGauctHRF MgmQzvYz56HtxmMzFIhTzoco1KkYuDRixLVbODBgE0m9t19ngMtRgTIqNFow1Qpd o1g26pTuOMZr95kFmtBJ+7+Nx/W+/cOmiaGsJI1zMo/NbjyT/vytO6rUPuPHrUgM 9wdwnbwUj5+4OnI4K09wxzGoYqtTBX7SXqakgqS1KrlVxwj78n9zvDZgcFMb1Okd 7VGovMgbLlfcfe7JNRfxHTMSyUL9rk2Q5GQSA8qR4klrMqIacWQpN5ZHelLlzIw+ Pq3MCSqOW9ImJM52pQ5xDTOCvnTq4uTrBIUCIvDXQEi/rl9qaoI4VCM= -----END CERTIFICATE-----Generated at Wed Feb 25 04:06:05 2026 by rpki-client