$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: P2sRBkVI/lGMmCCCQch7QhvmVQIM03djemqsK82G8cI= Subject key identifier: 79:7A:E7:6D:7A:19:93:3E:ED:7C:19:98:52:58:1F:E9:FF:06:9A:49 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 7DFA27D3950AD0489940CA7C3602A979D630333B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0604 Signing time: Tue 28 Apr 2026 00:00:51 +0000 Manifest this update: Tue 28 Apr 2026 00:00:51 +0000 Manifest next update: Sat 02 May 2026 00:00:51 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: zAeOJAJIgeOfTJBgmVw44wyZnHtohuuNeURwJ6TplVk=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 02 May 2026 00:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:fa:27:d3:95:0a:d0:48:99:40:ca:7c:36:02:a9:79:d6:30:33:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 28 00:00:51 2026 GMT Not After : May 2 00:00:51 2026 GMT Subject: serialNumber=84d27a956fee87632632f27407b132c26791a00aeed0b341e5220a5bff859dfa, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:4e:39:46:7e:9f:fe:e2:ba:64:a7:9e:18:f0: 96:db:d7:0c:0a:20:8f:13:95:14:32:cd:24:14:6f: 82:9f:47:1c:63:ef:a0:ae:d6:1b:bc:3c:df:ef:8e: a1:48:11:c0:27:d3:47:bc:be:6a:79:c4:c7:35:b1: 8c:d7:b5:05:a5:82:a0:a7:a8:8c:50:65:d3:c0:c2: 83:ab:4f:17:a7:1b:45:44:8f:18:ed:8f:ad:47:a4: 50:fb:07:f7:e5:8e:c5:86:9e:c8:89:13:30:6e:c9: bf:01:a8:28:6e:d0:c9:a8:c2:3f:67:4b:5c:84:9d: 24:34:d0:e5:4a:d7:2c:85:ab:12:00:c9:6c:5b:57: 47:fb:f4:f8:5a:d3:24:09:7e:d2:6f:4d:ac:65:e3: d5:a6:e4:8b:b4:08:44:ee:0a:cf:51:d6:7d:96:63: fd:66:9b:bc:ba:e5:20:6c:d3:3a:48:b1:6f:94:1b: 23:7e:27:d5:c4:a9:89:f9:32:32:06:7f:f0:6b:80: 5d:4a:f4:b4:47:fa:6c:53:e9:03:d1:52:7a:e0:a3: 2d:81:bd:fd:53:be:bb:0b:a1:d5:a1:89:b3:37:27: 36:62:33:e3:5e:db:b8:2f:6b:9e:8d:da:80:6c:80: 02:fc:6e:42:f4:ce:34:cf:ab:b8:67:54:69:1c:c4: 3a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:7A:E7:6D:7A:19:93:3E:ED:7C:19:98:52:58:1F:E9:FF:06:9A:49 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:53:04:af:59:3a:c5:ce:24:a9:fb:1b:55:32:3a:e4:96:9d: 19:79:02:cf:55:57:09:40:92:4e:b6:e3:f9:55:1a:c1:46:5a: 92:eb:54:1c:1c:11:3f:12:c4:8f:12:c4:e6:f5:c0:92:9f:54: f3:8e:70:e4:21:42:c1:cd:95:62:cd:77:28:b9:83:10:3e:21: 23:be:31:e8:f7:51:2c:62:95:e5:7c:c4:e2:82:6a:28:c8:92: 11:35:29:30:0c:6f:24:50:50:ff:ad:64:cb:22:60:6a:a2:7b: cf:7b:a3:d2:d4:ff:63:f6:96:b2:40:69:bc:94:b7:70:a6:00: 7d:4e:49:c8:e9:29:00:10:3b:6a:c0:6c:87:56:1f:a4:4a:b4: c4:a6:3d:32:a5:59:99:ed:a6:b7:0a:f5:1d:f1:3e:9a:68:36: 35:ef:81:3b:5d:60:98:04:98:93:63:e4:94:d7:e8:f3:2d:fb: 00:ba:68:22:ab:28:7e:ff:ca:1c:d4:3a:f2:4d:28:9f:08:87: c9:67:4a:6a:fd:9d:ba:e9:89:46:1f:04:ab:50:48:ec:05:87: f5:4c:7f:a2:37:d7:4e:11:fa:98:87:61:08:38:da:ea:56:eb: 97:30:bb:fb:76:68:d7:e1:f5:ca:20:dc:18:73:33:32:86:e7: 34:15:a2:c5 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUffon05UK0EiZQMp8NgKpedYwMzswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDQyODAwMDA1MVoX DTI2MDUwMjAwMDA1MVowejFJMEcGA1UEBRNAODRkMjdhOTU2ZmVlODc2MzI2MzJm Mjc0MDdiMTMyYzI2NzkxYTAwYWVlZDBiMzQxZTUyMjBhNWJmZjg1OWRmYTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj045Rn6f/uK6ZKeeGPCW29cMCiCP E5UUMs0kFG+Cn0ccY++grtYbvDzf746hSBHAJ9NHvL5qecTHNbGM17UFpYKgp6iM UGXTwMKDq08XpxtFRI8Y7Y+tR6RQ+wf35Y7Fhp7IiRMwbsm/AagobtDJqMI/Z0tc hJ0kNNDlStcshasSAMlsW1dH+/T4WtMkCX7Sb02sZePVpuSLtAhE7grPUdZ9lmP9 Zpu8uuUgbNM6SLFvlBsjfifVxKmJ+TIyBn/wa4BdSvS0R/psU+kD0VJ64KMtgb39 U767C6HVoYmzNyc2YjPjXtu4L2uejdqAbIAC/G5C9M40z6u4Z1RpHMQ6LQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFHl65216GZM+7XwZmFJYH+n/BppJMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAAZTBK9ZOsXOJKn7G1UyOuSWnRl5As9V VwlAkk624/lVGsFGWpLrVBwcET8SxI8SxOb1wJKfVPOOcOQhQsHNlWLNdyi5gxA+ ISO+Mej3USxileV8xOKCaijIkhE1KTAMbyRQUP+tZMsiYGqie897o9LU/2P2lrJA abyUt3CmAH1OScjpKQAQO2rAbIdWH6RKtMSmPTKlWZntprcK9R3xPppoNjXvgTtd YJgEmJNj5JTX6PMt+wC6aCKrKH7/yhzUOvJNKJ8Ih8lnSmr9nbrpiUYfBKtQSOwF h/VMf6I3104R+piHYQg42upW65cwu/t2aNfh9cog3BhzMzKG5zQVosU= -----END CERTIFICATE-----Generated at Tue Apr 28 08:43:18 2026 by rpki-client