$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: F0PJ+5LJBXxfCMx4caUr0rLTYH5Z71CdCE7rrLBEbB0= Subject key identifier: 9B:64:DC:72:24:0F:52:78:F4:44:CF:70:C8:15:CF:FA:8E:50:62:71 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 60F8206E899D0B2608CF7C4B13B03A4232B3F977 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05ED Signing time: Sun 05 Apr 2026 00:09:51 +0000 Manifest this update: Sun 05 Apr 2026 00:09:51 +0000 Manifest next update: Thu 09 Apr 2026 00:09:51 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: TCcd5Q2Yzaiou1GkQgb3y3aScmQe44yuC0YwnbkLshg=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 Apr 2026 00:09:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:f8:20:6e:89:9d:0b:26:08:cf:7c:4b:13:b0:3a:42:32:b3:f9:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 5 00:09:51 2026 GMT Not After : Apr 9 00:09:51 2026 GMT Subject: serialNumber=28496f086bf50c0e348227082d329172150b448be07997421997074af566ada5, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:44:c3:d4:36:05:10:82:57:1d:08:32:02:90: 28:54:1d:f9:a4:3a:fa:97:1f:fa:d1:7a:2a:53:e9: 73:fa:6a:a6:19:87:56:54:23:77:73:19:ec:37:9b: c6:3a:6c:f6:4a:b2:92:7b:29:1d:a6:d0:fe:42:8f: a9:05:33:11:f8:5a:11:de:6c:73:38:d7:28:72:28: d2:e0:1a:ba:10:b6:6f:11:e5:2d:5e:66:71:09:6a: c4:04:4d:39:98:17:35:0d:36:d7:c2:e1:72:75:50: ae:5c:5a:40:84:a4:1c:af:6a:1d:2f:1a:d0:09:45: 6b:b9:fa:8c:60:36:d6:ae:0d:f0:67:3d:28:24:4a: 1c:bc:14:2c:68:8a:2b:ca:0e:95:09:9c:ab:5e:77: e1:2a:0a:a8:c6:0e:92:c9:b5:d4:cd:fd:3f:7b:04: 83:8e:ae:d3:19:08:e9:ce:c7:f8:8e:8a:25:34:03: f6:b7:81:7f:52:46:60:8a:04:c9:62:01:56:b3:20: 2f:db:ec:a5:25:b8:96:ed:23:7f:c6:6b:f1:de:32: 6f:7d:0f:b4:3f:ed:48:1e:70:2e:8a:74:17:6c:b0: 59:55:0f:57:e0:40:bc:3e:33:83:79:07:2d:18:75: ca:4e:40:ae:5c:ae:a6:73:93:f5:d7:0e:22:17:2e: 39:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:64:DC:72:24:0F:52:78:F4:44:CF:70:C8:15:CF:FA:8E:50:62:71 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:3c:28:9e:43:1a:f2:50:91:ea:df:e1:0f:29:8d:8c:3e:20: 7f:51:27:ab:90:31:19:50:8d:b5:dd:e2:65:c6:b6:b4:32:f6: 53:2c:63:3e:f1:9b:1d:fb:07:1d:1b:ea:ef:ed:06:97:fb:64: f4:9a:45:04:e9:4e:74:38:6a:8f:36:69:07:85:88:39:e6:82: 7c:17:51:08:e2:6c:29:e6:98:e8:63:b5:e0:e0:43:de:9b:b6: 83:8b:06:b3:6b:eb:9a:06:c8:73:d3:1b:c3:87:f9:02:76:c2: 85:33:3b:05:42:8f:da:d3:3f:73:3c:bf:39:b2:3e:23:b9:e4: 37:b0:53:03:d4:29:95:01:77:4a:a5:c4:8e:c9:42:b5:19:79: c0:e3:7a:a1:7a:c9:57:81:70:82:2a:5b:bf:4b:50:5a:85:c0: f8:93:75:ee:24:e3:2c:68:dd:9f:0f:cd:3e:9e:f9:e3:9e:f6: 1e:ae:25:1c:a5:06:a9:fc:2a:d5:75:de:70:77:c4:31:2e:3c: 3a:65:67:7b:7e:c1:f0:e0:2a:e5:36:51:c2:96:28:fc:fd:f7: b3:56:f0:73:71:dc:e5:9e:83:f9:1b:37:c3:b0:bf:d5:c6:b5: ad:ba:24:1d:14:f6:d9:83:a9:87:60:0a:8b:d9:0d:42:69:03: 80:83:27:e3 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUYPggbomdCyYIz3xLE7A6QjKz+XcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDQwNTAwMDk1MVoX DTI2MDQwOTAwMDk1MVowejFJMEcGA1UEBRNAMjg0OTZmMDg2YmY1MGMwZTM0ODIy NzA4MmQzMjkxNzIxNTBiNDQ4YmUwNzk5NzQyMTk5NzA3NGFmNTY2YWRhNTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsETD1DYFEIJXHQgyApAoVB35pDr6 lx/60XoqU+lz+mqmGYdWVCN3cxnsN5vGOmz2SrKSeykdptD+Qo+pBTMR+FoR3mxz ONcocijS4Bq6ELZvEeUtXmZxCWrEBE05mBc1DTbXwuFydVCuXFpAhKQcr2odLxrQ CUVrufqMYDbWrg3wZz0oJEocvBQsaIoryg6VCZyrXnfhKgqoxg6SybXUzf0/ewSD jq7TGQjpzsf4joolNAP2t4F/UkZgigTJYgFWsyAv2+ylJbiW7SN/xmvx3jJvfQ+0 P+1IHnAuinQXbLBZVQ9X4EC8PjODeQctGHXKTkCuXK6mc5P11w4iFy458wIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFJtk3HIkD1J49ETPcMgVz/qOUGJxMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAEs8KJ5DGvJQkerf4Q8pjYw+IH9RJ6uQ MRlQjbXd4mXGtrQy9lMsYz7xmx37Bx0b6u/tBpf7ZPSaRQTpTnQ4ao82aQeFiDnm gnwXUQjibCnmmOhjteDgQ96btoOLBrNr65oGyHPTG8OH+QJ2woUzOwVCj9rTP3M8 vzmyPiO55DewUwPUKZUBd0qlxI7JQrUZecDjeqF6yVeBcIIqW79LUFqFwPiTde4k 4yxo3Z8PzT6e+eOe9h6uJRylBqn8KtV13nB3xDEuPDplZ3t+wfDgKuU2UcKWKPz9 97NW8HNx3OWeg/kbN8Owv9XGta26JB0U9tmDqYdgCovZDUJpA4CDJ+M= -----END CERTIFICATE-----Generated at Sun Apr 5 03:30:33 2026 by rpki-client