$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: Bhjx8lUBPl6+arRa6oJyHmOm6OpjyzR5aNKmVLXIhRw= Subject key identifier: E3:41:2C:35:25:57:E1:8A:48:3A:F1:91:D7:01:B1:24:47:9A:B2:02 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 5C311E8FB386F20A775D970968115FD436ACBC95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05C4 Signing time: Mon 23 Feb 2026 00:04:28 +0000 Manifest this update: Mon 23 Feb 2026 00:04:28 +0000 Manifest next update: Fri 27 Feb 2026 00:04:28 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: uM3cUMF8VnSElHY85agthr/jl8fZs8ZV9tQdGg9hrKw=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Feb 2026 00:04:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:31:1e:8f:b3:86:f2:0a:77:5d:97:09:68:11:5f:d4:36:ac:bc:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Feb 23 00:04:28 2026 GMT Not After : Feb 27 00:04:28 2026 GMT Subject: serialNumber=a2b7d00ac7587bd87ac780aa7c0c5dafd1e6976dbc97d77b430d1b6af5eec0bb, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8f:c6:b1:14:d6:28:c3:d8:61:fe:40:3f:bc: 14:93:81:75:54:56:66:e1:36:14:03:8c:72:ba:33: 3f:39:6a:06:17:c7:d2:22:75:dc:37:94:aa:25:fd: 9a:d8:4d:a9:9f:63:40:4d:13:5d:a9:c5:b5:90:16: 9d:b9:39:80:1c:8f:db:e0:c5:78:da:a1:63:b4:3e: ce:32:5f:0c:04:ad:b1:e5:8b:1a:4d:3d:fc:3c:39: ab:ab:eb:7a:ef:97:aa:1b:73:cf:85:40:0d:b5:95: fe:a2:d5:01:0e:23:c0:73:c0:a9:b8:1f:5e:8f:28: 11:90:0c:95:0c:c6:94:86:d0:7f:47:be:d3:df:dd: 67:27:74:14:53:1d:08:b3:31:e1:78:47:f1:23:1b: cc:b4:1f:ca:c7:2e:82:ff:be:3a:f3:f7:91:dd:0e: 8f:af:8b:3a:b7:97:b6:66:0e:fc:f2:76:70:f9:87: b2:c0:eb:2e:f5:3a:83:14:ad:83:91:4b:10:60:68: d8:56:f8:8e:69:5b:5e:4c:aa:55:4b:d3:01:3e:a9: d8:14:e0:af:7e:56:58:3d:92:ce:3d:ee:3a:1e:b9: cb:c2:4d:1c:e6:7b:99:a3:7f:88:cc:7b:60:d5:9c: 27:0a:bf:e4:01:77:73:20:a2:29:ce:9b:a7:b0:79: 7e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:41:2C:35:25:57:E1:8A:48:3A:F1:91:D7:01:B1:24:47:9A:B2:02 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:d7:38:b1:72:40:da:fb:b1:d6:b6:45:f6:99:5a:ec:0b:76: c1:f2:b9:17:f8:09:67:91:0d:be:6f:b0:cb:4e:45:4a:7e:8d: d5:3a:fe:44:17:1b:2c:d6:7c:3d:bd:8e:d1:ec:b7:2a:95:84: a6:8c:02:90:28:c3:6b:4e:62:3f:b6:05:00:a9:ff:ee:47:4f: c2:ce:56:de:ba:2d:de:26:b0:ee:9f:d1:c8:c1:53:27:2c:1c: e8:2a:c9:ca:4f:f1:36:0e:28:f2:a9:79:92:34:6e:90:77:8e: 28:f3:dd:2a:14:31:33:c1:7d:4f:5f:81:db:ac:21:f8:81:3a: ba:3b:c0:e5:f5:aa:1e:e6:63:e7:6a:82:1a:c6:08:b0:90:bb: 7d:10:d5:f3:dc:f4:f3:ef:cf:21:54:22:c4:1a:af:e2:e1:ee: 21:c6:3d:c3:b1:03:07:d0:d4:93:3e:c0:0b:c9:fd:35:24:11: 29:37:c7:0a:ec:c1:e8:48:9d:32:73:ba:f3:3e:dd:59:30:26: 86:37:fd:bc:49:e1:c5:b6:45:bc:95:e0:24:79:ce:d9:39:dc: d0:81:af:e3:8f:c4:b7:20:f0:c6:4f:2b:a4:56:68:37:0e:37: 2c:f2:d5:a3:29:9b:99:19:c7:43:2a:9e:84:88:29:9c:91:7d: b5:38:a8:8d -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUXDEej7OG8gp3XZcJaBFf1DasvJUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDIyMzAwMDQyOFoX DTI2MDIyNzAwMDQyOFowejFJMEcGA1UEBRNAYTJiN2QwMGFjNzU4N2JkODdhYzc4 MGFhN2MwYzVkYWZkMWU2OTc2ZGJjOTdkNzdiNDMwZDFiNmFmNWVlYzBiYjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA34/GsRTWKMPYYf5AP7wUk4F1VFZm 4TYUA4xyujM/OWoGF8fSInXcN5SqJf2a2E2pn2NATRNdqcW1kBaduTmAHI/b4MV4 2qFjtD7OMl8MBK2x5YsaTT38PDmrq+t675eqG3PPhUANtZX+otUBDiPAc8CpuB9e jygRkAyVDMaUhtB/R77T391nJ3QUUx0IszHheEfxIxvMtB/Kxy6C/7468/eR3Q6P r4s6t5e2Zg788nZw+YeywOsu9TqDFK2DkUsQYGjYVviOaVteTKpVS9MBPqnYFOCv flZYPZLOPe46HrnLwk0c5nuZo3+IzHtg1ZwnCr/kAXdzIKIpzpunsHl+gQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFONBLDUlV+GKSDrxkdcBsSRHmrICMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBACPXOLFyQNr7sda2RfaZWuwLdsHyuRf4 CWeRDb5vsMtORUp+jdU6/kQXGyzWfD29jtHstyqVhKaMApAow2tOYj+2BQCp/+5H T8LOVt66Ld4msO6f0cjBUycsHOgqycpP8TYOKPKpeZI0bpB3jijz3SoUMTPBfU9f gdusIfiBOro7wOX1qh7mY+dqghrGCLCQu30Q1fPc9PPvzyFUIsQar+Lh7iHGPcOx AwfQ1JM+wAvJ/TUkESk3xwrswehInTJzuvM+3VkwJoY3/bxJ4cW2RbyV4CR5ztk5 3NCBr+OPxLcg8MZPK6RWaDcONyzy1aMpm5kZx0MqnoSIKZyRfbU4qI0= -----END CERTIFICATE-----Generated at Tue Feb 24 01:20:40 2026 by rpki-client