$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: aV9n9rSvt8ZXaaZ417y0vuQ4tt1bjn8IOKDuPTtibS4= Subject key identifier: 92:0C:E5:EC:AF:23:11:AC:C5:E3:C6:AF:85:52:C8:2A:C6:C5:B4:44 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 448B7FA4AD4A46C283C0B5298A9154BC7D53B1DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05FF Signing time: Thu 23 Apr 2026 00:14:19 +0000 Manifest this update: Thu 23 Apr 2026 00:14:19 +0000 Manifest next update: Mon 27 Apr 2026 00:14:19 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: xRnJ4t4fpkoLtD1jBc0uyCPQ27lqBKT4QKg1qBeMbLs=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 00:14:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:8b:7f:a4:ad:4a:46:c2:83:c0:b5:29:8a:91:54:bc:7d:53:b1:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 23 00:14:19 2026 GMT Not After : Apr 27 00:14:19 2026 GMT Subject: serialNumber=070c66335dc2a383b0a825a71b0645f2a8641ace864fc232248d9d306086a7db, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f1:15:0c:d9:6b:95:ac:86:fc:cf:4d:f3:8c: 70:d3:23:9c:a7:5e:f7:72:88:36:1b:8f:3f:5d:01: 99:6d:19:3c:49:ee:3e:a9:25:72:47:08:9c:ea:14: d6:67:b7:cc:38:b5:5a:7f:7d:76:aa:3d:e6:0e:ae: 6d:da:6b:48:60:ab:da:80:6f:55:a1:46:3b:2b:b4: 61:01:d2:53:35:43:10:17:0d:35:0a:66:60:6b:23: 8d:42:d2:3c:79:cd:0a:c7:cf:9c:d1:9c:c9:fb:2f: e8:0a:3f:73:a3:c1:1a:30:31:45:fc:ae:ae:59:8d: 75:04:64:90:5c:bb:e8:d3:fe:53:00:bf:84:25:e8: 97:3a:2c:23:bb:79:cc:9b:05:1b:cb:0d:7d:64:7e: 7d:d2:e2:af:6f:43:ee:b3:a9:95:e1:cb:07:e5:49: da:b5:b5:79:49:2e:f6:ba:4b:6b:d0:1d:37:5b:6a: b2:fb:ef:bc:3b:40:b6:b7:83:69:d9:00:28:8d:78: 05:3d:fd:51:c7:9e:f0:73:95:ba:5b:3d:59:26:df: 76:d8:f9:1e:69:ac:4a:a3:f3:2d:d9:3a:7c:b0:15: f0:a2:1a:e8:86:70:14:cb:72:04:f2:f4:8e:c5:85: a1:3a:84:78:26:68:84:48:dc:46:64:7b:65:40:e7: 0c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:0C:E5:EC:AF:23:11:AC:C5:E3:C6:AF:85:52:C8:2A:C6:C5:B4:44 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:ac:72:82:69:90:52:0f:df:38:0c:a9:8f:28:0b:62:b1:6e: a8:6e:74:73:b3:5d:e9:0a:ce:2e:a3:b3:23:1c:e1:45:55:c1: 7c:b2:6f:b5:6c:cc:0a:cb:4c:ee:33:ae:26:5a:08:95:d8:de: 49:35:07:9a:d4:1b:76:84:19:8d:16:ed:4f:a4:4b:c2:40:5e: c1:1c:1c:4b:9c:8f:e5:c7:b8:ac:f9:f8:fc:c5:76:bb:a4:a7: 92:80:c7:af:4f:07:10:27:d0:0a:a6:8a:28:a0:0a:b2:ed:11: bc:0e:40:84:5b:ec:e1:e5:85:3b:ca:5d:94:ba:a2:38:20:e7: 8c:8b:d3:e9:37:ec:21:d3:ff:91:ef:e7:07:3c:9a:19:e2:49: 8e:b8:73:9f:b7:b4:fc:87:38:30:06:19:49:c5:de:be:c7:4f: 28:86:c9:c1:00:42:02:62:90:ab:cf:ed:4d:b2:fe:40:81:d8: 92:e6:09:8a:e0:0d:0c:c2:28:e8:2d:6f:5e:a0:99:60:cd:96: fb:fd:ba:8a:44:7c:8c:a3:75:0a:f1:d8:29:f2:af:51:52:c4: 1f:f6:e5:fd:5d:80:02:99:fe:49:b8:23:95:e0:de:45:ea:ea: 7c:f9:6d:06:dd:8e:a8:02:a1:fe:b5:aa:32:5e:6f:90:8b:88: b4:d9:fb:ee -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIURIt/pK1KRsKDwLUpipFUvH1TsdwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDQyMzAwMTQxOVoX DTI2MDQyNzAwMTQxOVowejFJMEcGA1UEBRNAMDcwYzY2MzM1ZGMyYTM4M2IwYTgy NWE3MWIwNjQ1ZjJhODY0MWFjZTg2NGZjMjMyMjQ4ZDlkMzA2MDg2YTdkYjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArvEVDNlrlayG/M9N84xw0yOcp173 cog2G48/XQGZbRk8Se4+qSVyRwic6hTWZ7fMOLVaf312qj3mDq5t2mtIYKvagG9V oUY7K7RhAdJTNUMQFw01CmZgayONQtI8ec0Kx8+c0ZzJ+y/oCj9zo8EaMDFF/K6u WY11BGSQXLvo0/5TAL+EJeiXOiwju3nMmwUbyw19ZH590uKvb0Pus6mV4csH5Una tbV5SS72uktr0B03W2qy+++8O0C2t4Np2QAojXgFPf1Rx57wc5W6Wz1ZJt922Pke aaxKo/Mt2Tp8sBXwohrohnAUy3IE8vSOxYWhOoR4JmiESNxGZHtlQOcMXQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFJIM5eyvIxGsxePGr4VSyCrGxbREMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGuscoJpkFIP3zgMqY8oC2KxbqhudHOz XekKzi6jsyMc4UVVwXyyb7VszArLTO4zriZaCJXY3kk1B5rUG3aEGY0W7U+kS8JA XsEcHEucj+XHuKz5+PzFdrukp5KAx69PBxAn0AqmiiigCrLtEbwOQIRb7OHlhTvK XZS6ojgg54yL0+k37CHT/5Hv5wc8mhniSY64c5+3tPyHODAGGUnF3r7HTyiGycEA QgJikKvP7U2y/kCB2JLmCYrgDQzCKOgtb16gmWDNlvv9uopEfIyjdQrx2Cnyr1FS xB/25f1dgAKZ/km4I5Xg3kXq6nz5bQbdjqgCof61qjJeb5CLiLTZ++4= -----END CERTIFICATE-----Generated at Thu Apr 23 04:00:48 2026 by rpki-client