$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: KudzxLuRKjRdhXjxR0xHmy1EjeVHiXQ2pgEO4QZAbT8= Subject key identifier: 53:72:49:48:03:04:70:3B:B3:1A:AA:C6:8E:06:AE:43:30:67:16:45 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 521B3C2117D1FBCB39F79B8309144D653DAAA9C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0602 Signing time: Sun 26 Apr 2026 00:15:11 +0000 Manifest this update: Sun 26 Apr 2026 00:15:11 +0000 Manifest next update: Thu 30 Apr 2026 00:15:11 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: u7yZhRZ6Odb3Y6+nPuBNBhw+E7SDQoA6J60oN0mmprE=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Apr 2026 00:15:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:1b:3c:21:17:d1:fb:cb:39:f7:9b:83:09:14:4d:65:3d:aa:a9:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 26 00:15:11 2026 GMT Not After : Apr 30 00:15:11 2026 GMT Subject: serialNumber=bee27bfe4256a08b04b91a9df1b60d87245926f5acf46808a8ba3b8f97fa850e, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ca:01:07:d3:4b:36:b8:56:8a:68:2c:2f:44: c9:7d:54:66:df:4a:a4:e7:72:35:1c:ee:bb:c2:49: b8:cb:35:2a:26:ba:65:8c:e2:6c:44:5e:8e:a2:fc: 0e:64:20:92:79:cd:93:82:c0:b9:0d:72:ff:16:a8: 25:e3:89:d0:d9:29:da:bd:c9:8f:1c:15:8e:84:c9: da:97:e6:77:78:ee:3e:19:38:67:58:5a:a6:f8:7f: 56:5a:80:ec:d9:95:cd:2d:b0:de:c3:f2:03:e6:40: 8c:db:b8:5c:5e:0b:2c:8a:ff:bf:91:b9:fb:9c:5c: 19:08:4d:27:d2:40:d8:1e:61:1f:a4:db:45:e0:55: b1:25:07:ac:0b:11:71:77:cd:e2:36:c7:df:d1:18: 15:d9:88:e8:83:1d:b3:74:4f:b7:13:72:ca:7c:dc: 22:f7:f7:31:18:91:0d:89:02:33:2d:49:6f:1f:d7: 10:5c:a6:a7:18:5e:bf:63:7e:9b:24:9b:dc:48:08: 94:03:94:71:41:e2:18:b2:5a:b4:00:4d:d9:69:ab: 24:2d:c8:ed:d1:07:5e:43:35:74:ef:26:ad:78:58: 10:09:ea:92:21:56:72:f1:e4:b6:1d:c8:47:3a:31: ee:40:7c:67:b6:af:98:13:fe:33:c9:8d:bc:e3:f7: 0c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:72:49:48:03:04:70:3B:B3:1A:AA:C6:8E:06:AE:43:30:67:16:45 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:1e:68:c3:f7:76:3c:f8:86:b3:b3:aa:d3:59:83:86:f7:1e: 3f:87:97:14:7d:02:d9:0e:31:c8:40:ec:e5:bb:ac:27:cd:c2: 69:03:3e:ea:52:e1:f4:c0:2f:43:90:0e:3c:8c:e3:55:b1:1d: 95:f2:b9:20:4c:1a:8f:be:19:19:b9:06:37:9c:68:5c:e6:dc: 9b:c7:b4:cd:24:d6:35:2e:8a:f6:32:76:73:18:38:2d:5d:77: 43:1c:f6:dc:4c:cc:3d:73:64:44:9e:5b:41:57:f4:37:88:df: a9:21:27:90:64:f1:4a:3c:15:c3:0b:a5:0d:0e:42:40:1f:28: 5e:fa:bb:05:05:af:4a:ca:35:d5:8a:b0:76:49:22:e7:9b:e1: dc:af:63:f3:85:79:88:52:4e:da:0a:e9:a8:50:ba:90:dc:e4: a7:57:aa:92:3a:a3:03:18:69:6a:9b:2b:3d:9f:fa:81:f1:8e: 27:48:d6:69:fa:8b:b5:cc:80:7a:b6:b1:3f:89:26:ca:92:58: e2:a0:d0:6f:7d:38:4f:9a:33:0f:07:a7:72:42:27:06:15:f5: 08:cc:6c:97:0c:ff:97:6a:7c:a0:97:8a:58:80:dd:cb:80:78: c4:68:8a:23:ba:00:08:01:8a:78:00:67:74:2d:e5:5e:68:0a: de:cb:0f:dc -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUUhs8IRfR+8s595uDCRRNZT2qqckwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDQyNjAwMTUxMVoX DTI2MDQzMDAwMTUxMVowejFJMEcGA1UEBRNAYmVlMjdiZmU0MjU2YTA4YjA0Yjkx YTlkZjFiNjBkODcyNDU5MjZmNWFjZjQ2ODA4YThiYTNiOGY5N2ZhODUwZTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAysoBB9NLNrhWimgsL0TJfVRm30qk 53I1HO67wkm4yzUqJrpljOJsRF6OovwOZCCSec2TgsC5DXL/Fqgl44nQ2SnavcmP HBWOhMnal+Z3eO4+GThnWFqm+H9WWoDs2ZXNLbDew/ID5kCM27hcXgssiv+/kbn7 nFwZCE0n0kDYHmEfpNtF4FWxJQesCxFxd83iNsff0RgV2Yjogx2zdE+3E3LKfNwi 9/cxGJENiQIzLUlvH9cQXKanGF6/Y36bJJvcSAiUA5RxQeIYslq0AE3ZaaskLcjt 0QdeQzV07yateFgQCeqSIVZy8eS2HchHOjHuQHxntq+YE/4zyY284/cMrQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFFNySUgDBHA7sxqqxo4GrkMwZxZFMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAAkeaMP3djz4hrOzqtNZg4b3Hj+HlxR9 AtkOMchA7OW7rCfNwmkDPupS4fTAL0OQDjyM41WxHZXyuSBMGo++GRm5BjecaFzm 3JvHtM0k1jUuivYydnMYOC1dd0Mc9txMzD1zZESeW0FX9DeI36khJ5Bk8Uo8FcML pQ0OQkAfKF76uwUFr0rKNdWKsHZJIueb4dyvY/OFeYhSTtoK6ahQupDc5KdXqpI6 owMYaWqbKz2f+oHxjidI1mn6i7XMgHq2sT+JJsqSWOKg0G99OE+aMw8Hp3JCJwYV 9QjMbJcM/5dqfKCXiliA3cuAeMRoiiO6AAgBingAZ3Qt5V5oCt7LD9w= -----END CERTIFICATE-----Generated at Sun Apr 26 07:19:30 2026 by rpki-client