$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: 7YlTThETKW2R/UT7bG4G9JvbhpP4jXBocgYP7Q8J9ec= Subject key identifier: 69:AC:FD:DD:7A:48:82:D8:0F:08:84:37:27:B5:44:C1:0B:99:6D:7C Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 0D31588F788823D87C2774AFCBE94FD17D62434A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05CE Signing time: Thu 05 Mar 2026 00:02:31 +0000 Manifest this update: Thu 05 Mar 2026 00:02:31 +0000 Manifest next update: Mon 09 Mar 2026 00:02:31 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: PJ9l0s4j0btzmPhWqTZDx6lIJuhRuoQ58VB7Cirf5tU=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:02:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:31:58:8f:78:88:23:d8:7c:27:74:af:cb:e9:4f:d1:7d:62:43:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Mar 5 00:02:31 2026 GMT Not After : Mar 9 00:02:31 2026 GMT Subject: serialNumber=f7d3da5c7daccd66f4766717ae559d2e4adb79477a948c1a80de818fd622ed50, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:77:97:7a:de:2c:b4:4d:99:d0:cc:7f:4f:53: 8b:21:82:3d:5e:37:92:24:ed:58:8b:7d:51:02:99: 56:9f:4d:66:94:46:69:96:97:1a:9e:63:f5:30:71: af:4b:ca:c6:01:ee:99:be:c9:bd:12:5d:39:d6:b0: 71:32:a3:7b:47:44:13:f9:2d:37:86:1f:98:b6:92: 68:64:5b:77:34:62:86:a0:c4:30:aa:f9:7a:5e:78: 16:d9:7e:ab:16:08:02:f2:37:ef:62:49:e6:d5:1c: 8d:d0:2a:bd:e0:30:5b:18:4c:47:f3:04:2f:35:88: d9:2e:dc:f4:7f:46:49:e4:17:8c:eb:3b:35:07:e5: 4a:02:4c:46:f5:ba:4c:7f:5f:68:d1:8e:03:97:de: 44:7a:ac:f1:07:e9:d8:5c:63:70:1d:55:8b:ce:98: 21:53:81:0c:b2:2c:24:b4:8e:1e:1b:37:11:46:36: 90:2d:77:64:18:1b:44:a7:d0:28:2d:b5:59:ac:bc: 66:5f:8e:3c:92:91:cc:30:1e:18:52:d9:ba:33:5a: b7:f4:15:3c:41:97:c7:be:33:be:d6:7d:4f:9a:fd: b3:d5:40:60:3e:02:0f:1e:ca:5c:7e:7b:6b:3e:ea: 6e:47:ff:d3:07:1e:7c:db:69:f3:02:6f:b4:51:3e: 91:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:AC:FD:DD:7A:48:82:D8:0F:08:84:37:27:B5:44:C1:0B:99:6D:7C X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:4f:88:2c:4d:af:a5:e0:ba:da:46:53:1e:f3:f6:11:59:bb: 56:47:c7:d3:d4:97:18:dc:20:11:00:3d:50:f7:a5:14:a3:54: 1d:c1:84:d9:f8:cf:33:45:71:78:a2:4d:26:31:a6:f9:cb:7e: 4e:d8:8d:0b:66:c3:7a:97:39:3e:ae:2d:95:62:8d:1c:ac:84: 15:24:e0:97:76:32:35:e3:9b:47:64:bc:25:c1:9b:6b:f1:ec: b3:08:b4:d0:08:22:18:7a:8e:0d:ef:5a:8a:e9:b1:2d:37:ce: 1f:5f:de:36:53:b8:99:18:37:02:c6:40:37:dd:f6:41:8e:32: 49:7d:64:84:ee:a8:ab:12:aa:b4:a3:9a:82:3e:67:d6:9e:d6: cb:14:19:57:40:bc:12:b6:5c:23:59:b5:9c:e1:2f:41:5b:58: ba:bd:4e:ca:2f:22:e9:df:b4:ed:2d:dc:88:1c:74:cd:8a:21: 6d:62:29:a6:4a:48:54:55:9e:2a:6d:e4:67:08:ed:49:83:3a: de:e1:d7:e0:57:d8:19:2a:1d:72:85:58:07:5e:29:d1:bf:51: f7:32:73:cc:16:24:c5:d3:8d:04:23:af:39:39:d4:99:95:5a: af:c5:09:0a:1b:51:25:9e:ea:58:4d:fe:4f:4a:90:8f:90:b6: 31:05:ac:ba -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUDTFYj3iII9h8J3Svy+lP0X1iQ0owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDMwNTAwMDIzMVoX DTI2MDMwOTAwMDIzMVowejFJMEcGA1UEBRNAZjdkM2RhNWM3ZGFjY2Q2NmY0NzY2 NzE3YWU1NTlkMmU0YWRiNzk0NzdhOTQ4YzFhODBkZTgxOGZkNjIyZWQ1MDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq3eXet4stE2Z0Mx/T1OLIYI9XjeS JO1Yi31RAplWn01mlEZplpcanmP1MHGvS8rGAe6Zvsm9El051rBxMqN7R0QT+S03 hh+YtpJoZFt3NGKGoMQwqvl6XngW2X6rFggC8jfvYknm1RyN0Cq94DBbGExH8wQv NYjZLtz0f0ZJ5BeM6zs1B+VKAkxG9bpMf19o0Y4Dl95EeqzxB+nYXGNwHVWLzpgh U4EMsiwktI4eGzcRRjaQLXdkGBtEp9AoLbVZrLxmX448kpHMMB4YUtm6M1q39BU8 QZfHvjO+1n1Pmv2z1UBgPgIPHspcfntrPupuR//TBx5822nzAm+0UT6R5QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFGms/d16SILYDwiENye1RMELmW18MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAHRPiCxNr6XgutpGUx7z9hFZu1ZHx9PU lxjcIBEAPVD3pRSjVB3BhNn4zzNFcXiiTSYxpvnLfk7YjQtmw3qXOT6uLZVijRys hBUk4Jd2MjXjm0dkvCXBm2vx7LMItNAIIhh6jg3vWorpsS03zh9f3jZTuJkYNwLG QDfd9kGOMkl9ZITuqKsSqrSjmoI+Z9ae1ssUGVdAvBK2XCNZtZzhL0FbWLq9Tsov IunftO0t3IgcdM2KIW1iKaZKSFRVnipt5GcI7UmDOt7h1+BX2BkqHXKFWAdeKdG/ Ufcyc8wWJMXTjQQjrzk51JmVWq/FCQobUSWe6lhN/k9KkI+QtjEFrLo= -----END CERTIFICATE-----Generated at Thu Mar 5 18:40:29 2026 by rpki-client