$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: AvtmMpU5lg+732qtGHB3Tyi+15cvPkA+tjM+y9FMNpc= Subject key identifier: 77:4D:4F:BA:72:10:AB:02:C3:8F:19:AE:AD:1C:1F:50:E2:23:FB:79 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 6C78776D65D1248C32AA81D6DA88D50A333CDDA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05DC Signing time: Thu 19 Mar 2026 00:05:52 +0000 Manifest this update: Thu 19 Mar 2026 00:05:52 +0000 Manifest next update: Mon 23 Mar 2026 00:05:52 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: NinzQ0RgEOsFB379XhG2pfZFXVufQu6ElhGiGjKKr08=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Mar 2026 00:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:78:77:6d:65:d1:24:8c:32:aa:81:d6:da:88:d5:0a:33:3c:dd:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Mar 19 00:05:52 2026 GMT Not After : Mar 23 00:05:52 2026 GMT Subject: serialNumber=5a71885a585db0d09003ff1dcda5f2229bd4d4923f78fabd2fe236aa6233483f, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:cf:84:9e:78:94:67:fa:92:e6:bb:90:43:20: 57:5c:bc:f7:35:63:2f:cf:91:df:69:f2:d9:5b:9f: cd:8f:61:7f:3d:59:ac:80:98:f1:e8:1f:50:d2:6f: 09:46:f4:c1:2a:44:3d:ae:1d:6f:56:a8:b9:5d:0f: de:4c:ac:39:4a:d3:d2:cb:65:1e:a3:1e:ef:83:35: 4d:81:b5:8e:95:c4:89:36:77:1f:49:5d:d8:5f:dd: d7:fd:33:30:fe:71:ea:99:15:69:cd:15:a2:13:31: d5:d1:6e:12:c7:bf:d6:4d:e9:9d:df:78:3b:71:d0: 5b:18:e9:a5:dd:a2:4e:ce:3e:aa:7b:5e:fd:18:e9: 66:b4:ba:7e:81:12:28:a4:80:2d:55:a2:88:5f:5c: 1d:9a:5a:79:44:3b:76:7f:b1:9c:8a:c8:1d:3d:5e: 1c:07:ac:ca:ad:fc:94:b7:04:fa:fb:40:2a:19:93: 1d:13:a6:29:44:27:df:4e:2a:e0:f1:cf:5c:9e:fb: 84:44:17:10:0f:a2:c2:1a:9c:aa:a6:69:ca:b2:11: b9:0d:50:da:b0:4e:cf:01:ce:4d:28:2f:01:d2:4c: c5:4b:75:c8:12:26:ee:94:81:66:f9:dc:d1:2f:55: 32:87:0f:9e:4c:0a:76:d5:6d:1f:dc:0e:5a:4b:48: f8:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:4D:4F:BA:72:10:AB:02:C3:8F:19:AE:AD:1C:1F:50:E2:23:FB:79 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:7a:be:ba:ba:2e:05:53:b8:e4:21:2d:e9:63:a6:22:bb:83: 2b:97:af:d6:fe:04:f4:35:02:68:72:ce:33:c6:28:6b:a1:44: a6:40:e5:7f:87:f0:ab:5e:42:42:5b:4c:8b:3c:aa:ae:c6:88: 4e:61:b4:1c:eb:3c:d8:02:4c:7b:51:da:22:de:f5:9b:dd:e9: 76:8e:21:0d:2c:fb:26:23:62:d5:76:a7:a8:df:f4:84:59:f7: 92:e1:c8:3a:e2:f6:60:4b:19:64:d5:f4:2d:35:5b:3e:42:aa: ba:e5:d4:bf:8b:f1:f6:c6:96:20:bb:d5:43:33:9e:93:0e:a5: 00:d3:db:0e:fe:64:5a:23:e6:73:6c:51:d2:65:7d:9c:38:ca: 97:c3:06:2b:b4:fa:07:c0:5a:6a:9e:c6:fb:82:b2:8b:23:75: cf:b0:e7:bf:4f:60:59:97:a5:9c:45:df:78:d2:55:cb:d3:2b: f1:26:7c:79:83:4c:65:2f:cc:d8:23:b3:f8:d6:ea:5c:ad:32: 13:b2:5f:07:ac:c2:42:e5:a3:c1:22:99:df:58:f6:54:8a:74: 83:18:99:99:c4:39:95:c9:36:8e:a4:82:d6:f1:ab:ca:60:b7: f9:0c:af:4d:bb:88:e2:1c:6c:d5:e0:64:69:7d:db:f8:1c:53: 01:1d:5a:b5 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUbHh3bWXRJIwyqoHW2ojVCjM83aMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDMxOTAwMDU1MloX DTI2MDMyMzAwMDU1MlowejFJMEcGA1UEBRNANWE3MTg4NWE1ODVkYjBkMDkwMDNm ZjFkY2RhNWYyMjI5YmQ0ZDQ5MjNmNzhmYWJkMmZlMjM2YWE2MjMzNDgzZjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk8+EnniUZ/qS5ruQQyBXXLz3NWMv z5HfafLZW5/Nj2F/PVmsgJjx6B9Q0m8JRvTBKkQ9rh1vVqi5XQ/eTKw5StPSy2Ue ox7vgzVNgbWOlcSJNncfSV3YX93X/TMw/nHqmRVpzRWiEzHV0W4Sx7/WTemd33g7 cdBbGOml3aJOzj6qe179GOlmtLp+gRIopIAtVaKIX1wdmlp5RDt2f7GcisgdPV4c B6zKrfyUtwT6+0AqGZMdE6YpRCffTirg8c9cnvuERBcQD6LCGpyqpmnKshG5DVDa sE7PAc5NKC8B0kzFS3XIEibulIFm+dzRL1Uyhw+eTAp21W0f3A5aS0j4qQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFHdNT7pyEKsCw48Zrq0cH1DiI/t5MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBADl6vrq6LgVTuOQhLeljpiK7gyuXr9b+ BPQ1AmhyzjPGKGuhRKZA5X+H8KteQkJbTIs8qq7GiE5htBzrPNgCTHtR2iLe9Zvd 6XaOIQ0s+yYjYtV2p6jf9IRZ95LhyDri9mBLGWTV9C01Wz5Cqrrl1L+L8fbGliC7 1UMznpMOpQDT2w7+ZFoj5nNsUdJlfZw4ypfDBiu0+gfAWmqexvuCsosjdc+w579P YFmXpZxF33jSVcvTK/EmfHmDTGUvzNgjs/jW6lytMhOyXweswkLlo8Eimd9Y9lSK dIMYmZnEOZXJNo6kgtbxq8pgt/kMr027iOIcbNXgZGl92/gcUwEdWrU= -----END CERTIFICATE-----Generated at Thu Mar 19 05:59:40 2026 by rpki-client