$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: bepL8UO88lLdi+3bqUD4K8qAUgxGMHT/UntSW8HERkI= Subject key identifier: 06:36:26:E7:C5:90:21:2E:A1:20:98:BC:AA:7F:E8:77:1E:E0:42:5A Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 4B3E25DDCB7A9C72614A67F364A67A82A657CF97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05C1 Signing time: Fri 20 Feb 2026 00:03:51 +0000 Manifest this update: Fri 20 Feb 2026 00:03:51 +0000 Manifest next update: Tue 24 Feb 2026 00:03:51 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: H0SAdkZNoXYtxd/HZednezMtyT/OXc+Bidbn1pFSb84=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Feb 2026 00:03:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:3e:25:dd:cb:7a:9c:72:61:4a:67:f3:64:a6:7a:82:a6:57:cf:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Feb 20 00:03:51 2026 GMT Not After : Feb 24 00:03:51 2026 GMT Subject: serialNumber=1edae1883ed15fbdbcd86ad970fc871d7c820c31c20419b68e5c61a85132ad25, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:23:fc:31:28:ce:31:c1:6c:fe:7d:57:96:e9: be:06:00:37:39:3a:47:a9:32:1a:05:da:79:c5:88: e8:d3:aa:5b:85:23:1d:98:68:bd:f1:09:ad:f7:7a: de:4b:a6:4c:47:22:94:58:13:74:31:1e:d3:66:d3: 80:b3:c2:bb:f1:c7:81:cf:19:9f:4f:4b:64:68:38: aa:9b:4b:c3:37:ff:99:ee:d0:e7:d1:32:dc:16:f5: 33:00:17:33:4c:fd:de:94:91:b4:47:04:5f:14:2a: a8:98:2e:e1:c0:1e:a3:34:71:20:ca:46:0d:c1:b4: dc:58:bf:17:03:2a:f7:77:d1:a1:e5:8a:c5:95:60: 68:f6:76:ee:67:b4:d3:d4:e4:f7:71:74:7f:5f:d1: bc:49:3c:b7:fb:4e:45:4c:08:88:13:48:36:ef:91: 42:77:43:13:d6:49:fb:a5:ce:34:5c:55:42:c6:f1: 3c:d6:17:ed:3a:a2:fd:02:0f:30:00:24:04:08:80: eb:49:28:89:f2:7b:a5:40:f6:38:85:8e:a1:73:8d: f7:6a:e3:ab:03:48:64:15:61:eb:8f:73:1b:3b:a1: 3f:78:8b:57:6b:2b:02:91:69:1b:59:97:fa:bb:b5: fa:bc:8f:16:64:ff:09:c9:4a:85:8d:66:05:84:dd: db:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:36:26:E7:C5:90:21:2E:A1:20:98:BC:AA:7F:E8:77:1E:E0:42:5A X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:c7:86:5b:a6:86:8c:9b:34:75:f8:6e:e4:f9:01:b0:e3:4f: 8c:a6:6f:66:1c:1a:bc:79:31:9d:56:a9:40:a4:19:eb:f5:e7: 48:62:77:b8:06:07:6a:06:01:96:f3:e3:1a:34:d3:24:c0:00: eb:a2:51:1a:8b:76:51:9d:e9:1c:22:e3:96:ed:00:b4:e7:67: fc:79:33:82:87:02:ef:17:f9:ee:53:7d:7a:1a:92:da:ec:94: a3:bf:2c:35:44:60:a3:4c:f3:97:cd:75:ab:d7:bb:b3:85:15: 92:35:f5:86:a0:ae:cc:68:4a:1a:f0:8b:88:c8:63:5d:eb:3a: ef:a5:0e:11:3d:26:17:d0:e6:10:12:d9:2d:a6:24:99:50:30: 90:a0:d5:51:7d:53:a5:97:00:46:ce:93:d6:a3:65:b1:01:ef: de:13:4e:0e:97:b9:a2:73:80:25:ce:0f:8e:51:d6:79:96:20: 80:0c:33:cf:e1:0c:61:a7:42:0f:39:e3:57:cb:c7:a4:26:3a: 37:6f:87:c6:ee:b9:40:8f:72:7d:45:a4:74:bc:2e:6a:05:4d: 54:05:40:62:aa:12:4b:ea:0f:84:0d:91:28:fc:b7:16:45:08: ba:9f:48:ef:74:67:e1:89:10:9f:a4:52:89:d0:ed:29:1d:29: 8b:26:f3:83 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUSz4l3ct6nHJhSmfzZKZ6gqZXz5cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDIyMDAwMDM1MVoX DTI2MDIyNDAwMDM1MVowejFJMEcGA1UEBRNAMWVkYWUxODgzZWQxNWZiZGJjZDg2 YWQ5NzBmYzg3MWQ3YzgyMGMzMWMyMDQxOWI2OGU1YzYxYTg1MTMyYWQyNTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6CP8MSjOMcFs/n1Xlum+BgA3OTpH qTIaBdp5xYjo06pbhSMdmGi98Qmt93reS6ZMRyKUWBN0MR7TZtOAs8K78ceBzxmf T0tkaDiqm0vDN/+Z7tDn0TLcFvUzABczTP3elJG0RwRfFCqomC7hwB6jNHEgykYN wbTcWL8XAyr3d9Gh5YrFlWBo9nbuZ7TT1OT3cXR/X9G8STy3+05FTAiIE0g275FC d0MT1kn7pc40XFVCxvE81hftOqL9Ag8wACQECIDrSSiJ8nulQPY4hY6hc433auOr A0hkFWHrj3MbO6E/eItXaysCkWkbWZf6u7X6vI8WZP8JyUqFjWYFhN3bOwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFAY2JufFkCEuoSCYvKp/6Hce4EJaMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAAXHhlumhoybNHX4buT5AbDjT4ymb2Yc Grx5MZ1WqUCkGev150hid7gGB2oGAZbz4xo00yTAAOuiURqLdlGd6Rwi45btALTn Z/x5M4KHAu8X+e5TfXoaktrslKO/LDVEYKNM85fNdavXu7OFFZI19YagrsxoShrw i4jIY13rOu+lDhE9JhfQ5hAS2S2mJJlQMJCg1VF9U6WXAEbOk9ajZbEB794TTg6X uaJzgCXOD45R1nmWIIAMM8/hDGGnQg8541fLx6QmOjdvh8buuUCPcn1FpHS8LmoF TVQFQGKqEkvqD4QNkSj8txZFCLqfSO90Z+GJEJ+kUonQ7SkdKYsm84M= -----END CERTIFICATE-----Generated at Fri Feb 20 22:32:49 2026 by rpki-client