$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: BuVMhURIn4l/S8soRE8a0N4JT4HvJGQixWRt55L3go4= Subject key identifier: D8:6F:B4:0E:F3:A9:83:53:03:53:64:F6:EF:BE:92:79:0D:5E:26:6F Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 34C6D048D2798D85C5E8BB501C6C410AB9DD3109 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05F8 Signing time: Thu 16 Apr 2026 00:12:01 +0000 Manifest this update: Thu 16 Apr 2026 00:12:01 +0000 Manifest next update: Mon 20 Apr 2026 00:12:01 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: /V3MazBjiLqdsykGZ70IwYt+C+K/AjSmujMjQ96jg6Q=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 00:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:c6:d0:48:d2:79:8d:85:c5:e8:bb:50:1c:6c:41:0a:b9:dd:31:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 16 00:12:01 2026 GMT Not After : Apr 20 00:12:01 2026 GMT Subject: serialNumber=d3a1e25282b9adc23b3f8411abb158dd9e490bb57ddbee069221b54b84516eed, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:83:84:a5:4e:ea:72:0b:e6:84:a7:b5:99:d2: 4a:b7:b3:0c:3e:7b:5b:34:f2:c9:09:5a:05:fc:44: c8:bf:66:d8:86:3d:54:0f:8f:ff:24:8e:30:3f:89: db:da:f5:4a:e7:ba:39:f1:91:37:f4:59:99:7a:2a: 40:f8:4b:b2:86:b4:ab:33:30:fd:8f:19:e7:8a:8b: 70:45:a7:90:3e:25:85:d4:dd:34:c0:94:c9:94:87: 24:c1:66:f5:d0:73:0c:0d:0e:9d:29:b2:60:38:59: 20:4f:bc:91:63:ec:fe:a8:c8:84:0c:07:8d:7e:57: 79:d2:2d:e0:ac:02:79:79:33:57:ef:41:20:d0:93: 9e:44:db:a5:d3:5d:17:71:95:ab:c3:31:35:3e:a7: 52:ac:e3:60:62:a8:ce:d0:ad:53:3a:40:da:36:c4: 65:96:c7:94:a6:39:eb:41:c2:c9:a6:a0:60:8e:c3: 3e:17:da:39:d1:0e:8c:72:3b:e9:87:40:b7:44:7b: 96:05:0d:fd:63:53:cf:7e:19:86:0f:f9:d2:f7:7f: 6b:6e:49:06:5c:43:8d:6a:ff:83:3f:15:29:d6:6a: 88:b3:b9:e9:fe:97:42:4f:8f:2b:2c:55:e9:85:14: 99:af:51:06:f3:b9:fa:23:6f:8f:42:8f:89:68:98: 29:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:6F:B4:0E:F3:A9:83:53:03:53:64:F6:EF:BE:92:79:0D:5E:26:6F X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:76:6a:f0:e3:63:67:28:29:5b:80:d4:ad:d0:0f:d7:28:a1: 70:62:e2:b4:26:f8:48:a6:75:a9:63:b9:d6:49:4d:98:a5:81: 8d:d5:02:d2:96:dc:1e:91:7a:9b:d9:83:8f:28:db:b4:ec:6b: 98:a0:7a:4e:5d:ca:e9:51:87:dd:9e:5f:e1:ac:1f:07:e5:10: c3:e0:38:a3:a9:3e:14:df:45:ee:bf:7d:5c:ad:b2:34:6b:13: b1:30:bf:8c:5f:aa:2c:f1:65:af:b3:4d:6f:61:74:fb:06:a4: 59:3a:25:4e:92:cd:59:91:cc:da:b1:70:93:8a:1a:2d:90:eb: 5a:dd:93:1c:63:a1:5d:c5:93:41:d7:26:32:54:9e:75:93:32: 03:4a:35:ff:f5:21:ad:b4:37:e0:b0:20:f1:02:e8:8a:dd:f2: a8:d2:0b:b8:ac:fd:14:dd:91:4b:45:62:38:e6:5a:20:32:b3: d8:ec:63:b4:66:cb:9d:33:79:6e:06:1e:72:b3:c8:c2:a7:0e: 77:00:ed:a0:38:e8:b2:6b:7b:46:f9:53:78:71:9d:dd:41:71: 65:69:3e:34:66:79:b9:2b:2a:4d:0e:49:76:d1:b1:7c:a3:27: f3:53:40:e6:e0:73:97:4b:37:84:f5:e8:9e:6b:86:ef:ec:78: 22:5b:e8:70 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUNMbQSNJ5jYXF6LtQHGxBCrndMQkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDQxNjAwMTIwMVoX DTI2MDQyMDAwMTIwMVowejFJMEcGA1UEBRNAZDNhMWUyNTI4MmI5YWRjMjNiM2Y4 NDExYWJiMTU4ZGQ5ZTQ5MGJiNTdkZGJlZTA2OTIyMWI1NGI4NDUxNmVlZDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp4OEpU7qcgvmhKe1mdJKt7MMPntb NPLJCVoF/ETIv2bYhj1UD4//JI4wP4nb2vVK57o58ZE39FmZeipA+EuyhrSrMzD9 jxnniotwRaeQPiWF1N00wJTJlIckwWb10HMMDQ6dKbJgOFkgT7yRY+z+qMiEDAeN fld50i3grAJ5eTNX70Eg0JOeRNul010XcZWrwzE1PqdSrONgYqjO0K1TOkDaNsRl lseUpjnrQcLJpqBgjsM+F9o50Q6Mcjvph0C3RHuWBQ39Y1PPfhmGD/nS939rbkkG XEONav+DPxUp1mqIs7np/pdCT48rLFXphRSZr1EG87n6I2+PQo+JaJgpQQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNhvtA7zqYNTA1Nk9u++knkNXiZvMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBABx2avDjY2coKVuA1K3QD9cooXBi4rQm +EimdaljudZJTZilgY3VAtKW3B6RepvZg48o27Tsa5igek5dyulRh92eX+GsHwfl EMPgOKOpPhTfRe6/fVytsjRrE7Ewv4xfqizxZa+zTW9hdPsGpFk6JU6SzVmRzNqx cJOKGi2Q61rdkxxjoV3Fk0HXJjJUnnWTMgNKNf/1Ia20N+CwIPEC6Ird8qjSC7is /RTdkUtFYjjmWiAys9jsY7Rmy50zeW4GHnKzyMKnDncA7aA46LJre0b5U3hxnd1B cWVpPjRmebkrKk0OSXbRsXyjJ/NTQObgc5dLN4T16J5rhu/seCJb6HA= -----END CERTIFICATE-----Generated at Thu Apr 16 03:50:07 2026 by rpki-client