$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: QJgWWrGlwdmrSzxPT8Owig2jYeb6phc0SMaTywtrzgk= Subject key identifier: 72:BD:E5:30:DA:F1:4A:DD:97:A4:F2:37:5C:FF:FB:EF:38:7D:48:DB Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 1B932B0C62C5C69EC9BE7A3A48B86238BB9327BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05FC Signing time: Mon 20 Apr 2026 00:13:14 +0000 Manifest this update: Mon 20 Apr 2026 00:13:14 +0000 Manifest next update: Fri 24 Apr 2026 00:13:14 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: WnNHQK7CXIfTWaoWoShZUPeuidwdADtZVJzrZf4DIOI=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:13:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:93:2b:0c:62:c5:c6:9e:c9:be:7a:3a:48:b8:62:38:bb:93:27:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 20 00:13:14 2026 GMT Not After : Apr 24 00:13:14 2026 GMT Subject: serialNumber=342c5513dd6a207cd2e2aa61dbf319c3614d82b31da70dee56c45bc0dd7309bc, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e0:dd:4c:7c:64:76:ae:aa:3d:36:30:7e:a2: 18:34:a2:2d:fd:a5:37:15:62:76:fa:fb:e5:aa:b9: 61:66:c1:93:b0:a6:88:0f:e3:41:ad:06:d5:10:b1: c2:bf:bb:26:eb:59:6f:84:6e:25:65:20:62:61:ef: e9:d0:c7:44:9f:fe:94:72:ce:cf:68:30:98:0c:4d: cf:b4:0a:55:0c:7d:ee:e2:00:2e:43:61:46:87:20: 5e:b9:15:f6:0c:88:af:56:f5:68:b2:94:fa:ac:20: 95:f0:23:16:c5:4a:e1:cb:29:69:39:81:6e:60:c1: 54:44:75:cc:79:a9:89:60:3c:11:41:65:d3:fa:56: 6b:9c:2a:8c:a1:f2:de:4e:11:18:29:38:7c:69:3d: a8:ec:eb:df:b9:d7:d4:d1:87:9c:04:81:1a:22:04: 2f:6a:e0:04:53:89:f6:42:f9:a5:3c:09:0f:ad:6d: 73:fe:e8:94:ba:8f:4d:bb:c6:63:d2:e6:c2:77:8e: ff:4c:00:47:2f:c2:f1:47:97:e5:8a:c2:0a:66:ed: 67:04:40:45:b3:2a:49:23:f2:bf:b3:1c:3c:56:77: 06:e9:4e:b5:8a:f8:20:04:ae:c2:e7:bd:d4:e4:e8: 4f:c8:0d:61:d6:b5:e2:72:bc:86:1d:8d:f1:21:15: 74:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:BD:E5:30:DA:F1:4A:DD:97:A4:F2:37:5C:FF:FB:EF:38:7D:48:DB X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:85:74:54:2c:7c:19:38:87:11:2d:7e:4c:f4:48:5c:ea:07: 32:9d:0f:5d:d6:b1:3e:ef:10:72:9f:76:61:d4:ac:73:d0:b7: cb:a8:3b:ed:db:09:e6:71:70:30:92:a4:3a:89:56:0f:94:a7: 51:07:ff:ee:65:ad:66:d8:91:ae:31:1a:e4:77:a3:97:66:08: 10:f2:63:53:dc:d7:b5:d0:1a:b3:44:4e:a5:9e:be:45:a0:ad: 08:a8:76:d4:87:50:fd:4d:8f:9b:c4:2e:01:05:54:83:64:da: b8:62:05:f0:9d:6a:1c:f2:65:94:3e:6b:4c:d2:62:40:37:77: 7b:9f:13:60:bf:f5:75:35:fc:f3:ba:a0:20:25:36:29:ea:da: 72:4d:91:67:9c:08:4a:3f:9a:1d:f3:ab:66:a6:95:1d:dc:ed: 81:5c:42:50:18:36:34:a0:3e:4c:e0:c5:c9:05:96:08:82:7f: 54:a1:ef:40:5e:c9:35:3e:a7:e7:73:52:e1:00:ae:48:6a:97: b2:d3:11:2a:7d:8a:7e:b3:c5:b6:45:02:c7:7e:80:ba:d0:d5: 57:a7:25:d4:41:af:b3:ed:c4:06:eb:ed:b2:e5:93:68:ff:d3: a2:69:13:db:7b:22:b6:52:c9:25:50:21:20:32:a9:25:6a:b3: f3:96:09:36 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUG5MrDGLFxp7Jvno6SLhiOLuTJ7owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDQyMDAwMTMxNFoX DTI2MDQyNDAwMTMxNFowejFJMEcGA1UEBRNAMzQyYzU1MTNkZDZhMjA3Y2QyZTJh YTYxZGJmMzE5YzM2MTRkODJiMzFkYTcwZGVlNTZjNDViYzBkZDczMDliYzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+DdTHxkdq6qPTYwfqIYNKIt/aU3 FWJ2+vvlqrlhZsGTsKaID+NBrQbVELHCv7sm61lvhG4lZSBiYe/p0MdEn/6Ucs7P aDCYDE3PtApVDH3u4gAuQ2FGhyBeuRX2DIivVvVospT6rCCV8CMWxUrhyylpOYFu YMFURHXMeamJYDwRQWXT+lZrnCqMofLeThEYKTh8aT2o7OvfudfU0YecBIEaIgQv auAEU4n2QvmlPAkPrW1z/uiUuo9Nu8Zj0ubCd47/TABHL8LxR5flisIKZu1nBEBF sypJI/K/sxw8VncG6U61ivggBK7C573U5OhPyA1h1rXicryGHY3xIRV0IwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFHK95TDa8Urdl6TyN1z/++84fUjbMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAHGFdFQsfBk4hxEtfkz0SFzqBzKdD13W sT7vEHKfdmHUrHPQt8uoO+3bCeZxcDCSpDqJVg+Up1EH/+5lrWbYka4xGuR3o5dm CBDyY1Pc17XQGrNETqWevkWgrQiodtSHUP1Nj5vELgEFVINk2rhiBfCdahzyZZQ+ a0zSYkA3d3ufE2C/9XU1/PO6oCAlNinq2nJNkWecCEo/mh3zq2amlR3c7YFcQlAY NjSgPkzgxckFlgiCf1Sh70BeyTU+p+dzUuEArkhql7LTESp9in6zxbZFAsd+gLrQ 1VenJdRBr7PtxAbr7bLlk2j/06JpE9t7IrZSySVQISAyqSVqs/OWCTY= -----END CERTIFICATE-----Generated at Mon Apr 20 05:23:49 2026 by rpki-client