$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: ivPpok8PZBe18PgISwlw/gSRKCcJLrFCpbO+LRQAzOU= Subject key identifier: BA:C7:2C:FD:2F:89:C4:53:D1:EB:47:31:7F:E6:13:A8:D0:85:58:6B Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 26EECB24F21351733466B24FDE1F0CA9D054752F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05E5 Signing time: Sat 28 Mar 2026 00:07:54 +0000 Manifest this update: Sat 28 Mar 2026 00:07:54 +0000 Manifest next update: Wed 01 Apr 2026 00:07:54 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: RBBwAwviJyozdX24bKqvDo+c6LW1ZPwvp/VbeTCifk0=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:ee:cb:24:f2:13:51:73:34:66:b2:4f:de:1f:0c:a9:d0:54:75:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Mar 28 00:07:54 2026 GMT Not After : Apr 1 00:07:54 2026 GMT Subject: serialNumber=67369a66cbdde87b83b81a767c9779af2cad14f99aec93cf4b832fad053eedae, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:3f:79:ec:a3:f4:aa:7c:03:84:5e:33:d7:78: 24:47:b5:8c:6a:4b:43:67:03:22:48:02:f1:5a:ea: 8d:0d:55:68:34:2b:10:72:35:06:35:90:0d:c1:8a: 51:6f:b6:ce:35:cd:e5:60:68:a2:4c:1a:93:f0:6e: 68:87:e5:7b:4e:1d:b6:25:64:d3:c3:fb:0f:d3:60: e9:a0:ee:eb:94:84:69:16:db:a4:67:37:3c:10:98: 21:e1:10:14:74:dc:4e:f6:3d:46:4d:63:77:67:60: c1:29:31:9c:1f:f2:7e:b3:0f:2b:d8:b5:ba:f8:86: d1:06:2c:82:5e:ba:56:fd:56:f4:a8:a1:9e:98:b9: b7:77:01:5a:d8:9e:d0:94:a8:b5:d3:3b:95:65:01: 3f:14:97:14:c0:7b:46:e8:4d:5d:65:f8:70:30:f9: 0e:c3:43:f8:5f:2d:3c:2b:87:9f:65:73:0d:80:70: ca:3f:77:e6:c7:2c:2c:ce:88:a0:aa:49:bb:ca:c4: f8:75:a7:2d:17:0d:b3:27:d5:1d:0e:db:d2:f7:87: 8c:a7:fd:18:70:c5:d0:b7:8a:6f:dd:01:78:d6:08: cf:b2:46:26:f9:94:2a:f8:04:98:a4:e5:90:a5:09: ee:83:a9:2e:3d:81:b2:09:10:e1:8b:8c:40:80:40: dc:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:C7:2C:FD:2F:89:C4:53:D1:EB:47:31:7F:E6:13:A8:D0:85:58:6B X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:91:68:32:14:37:b1:8b:ce:79:76:60:71:72:65:3f:2c:c3: 5f:81:36:f5:c9:77:94:f8:48:a0:31:bb:02:52:49:c7:65:27: 97:d3:16:50:bf:fd:d9:74:1f:d5:8b:d7:c1:f8:f5:fd:18:ca: e7:86:57:64:92:32:45:ad:50:49:b9:5d:8a:91:00:9c:01:ca: 1d:01:a3:1c:7c:d7:4d:3e:61:44:ed:23:c0:be:c1:26:60:49: d5:42:33:aa:35:85:db:05:cc:3f:0f:98:8b:16:17:e8:21:07: 6c:c9:c0:d4:9a:6e:ea:d0:8d:0b:b3:04:ca:f6:52:9f:01:56: 5b:6d:fb:d4:cb:f2:7e:4d:52:b2:46:01:13:4a:58:7b:87:9d: 5e:ff:44:72:a2:b9:c8:05:87:bd:21:c8:45:bb:35:6b:71:59: c7:89:b7:b9:f5:bc:c0:c9:c6:1b:29:f3:9f:2f:fb:22:00:ba: c8:10:9d:45:47:6f:b5:75:75:2a:5c:97:dd:c3:5a:65:90:39: 2f:ef:4f:0e:3c:8d:a7:e1:7c:68:38:53:49:aa:1c:5a:3b:0a: 93:5f:d1:33:1d:b8:3a:69:f0:8d:71:2d:a1:7d:d1:07:61:b9: a1:b7:bc:60:d0:c6:23:8a:44:8c:df:47:3a:6d:1e:af:96:64: 03:6c:21:f7 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUJu7LJPITUXM0ZrJP3h8MqdBUdS8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDMyODAwMDc1NFoX DTI2MDQwMTAwMDc1NFowejFJMEcGA1UEBRNANjczNjlhNjZjYmRkZTg3YjgzYjgx YTc2N2M5Nzc5YWYyY2FkMTRmOTlhZWM5M2NmNGI4MzJmYWQwNTNlZWRhZTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqD957KP0qnwDhF4z13gkR7WMaktD ZwMiSALxWuqNDVVoNCsQcjUGNZANwYpRb7bONc3lYGiiTBqT8G5oh+V7Th22JWTT w/sP02DpoO7rlIRpFtukZzc8EJgh4RAUdNxO9j1GTWN3Z2DBKTGcH/J+sw8r2LW6 +IbRBiyCXrpW/Vb0qKGemLm3dwFa2J7QlKi10zuVZQE/FJcUwHtG6E1dZfhwMPkO w0P4Xy08K4efZXMNgHDKP3fmxywszoigqkm7ysT4dactFw2zJ9UdDtvS94eMp/0Y cMXQt4pv3QF41gjPskYm+ZQq+ASYpOWQpQnug6kuPYGyCRDhi4xAgEDcJQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFLrHLP0vicRT0etHMX/mE6jQhVhrMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAJCRaDIUN7GLznl2YHFyZT8sw1+BNvXJ d5T4SKAxuwJSScdlJ5fTFlC//dl0H9WL18H49f0YyueGV2SSMkWtUEm5XYqRAJwB yh0Boxx8100+YUTtI8C+wSZgSdVCM6o1hdsFzD8PmIsWF+ghB2zJwNSaburQjQuz BMr2Up8BVltt+9TL8n5NUrJGARNKWHuHnV7/RHKiucgFh70hyEW7NWtxWceJt7n1 vMDJxhsp858v+yIAusgQnUVHb7V1dSpcl93DWmWQOS/vTw48jafhfGg4U0mqHFo7 CpNf0TMduDpp8I1xLaF90QdhuaG3vGDQxiOKRIzfRzptHq+WZANsIfc= -----END CERTIFICATE-----Generated at Sat Mar 28 17:06:51 2026 by rpki-client