$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: NypMDMN9rOPCZNOA1Cdlv4IoSCDDmriyRfLRIB8AZ/Q= Subject key identifier: FE:6D:5E:49:E7:5B:40:C7:A1:E5:12:14:49:09:6A:65:48:6E:27:5B Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 1BF6F9C62F5F875090AB523F4EC2C92BEE1F727F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05E6 Signing time: Sun 29 Mar 2026 00:08:08 +0000 Manifest this update: Sun 29 Mar 2026 00:08:08 +0000 Manifest next update: Thu 02 Apr 2026 00:08:08 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: 4eUY/QlX7+tU7u5YUZmb6z0dGd1pJvMVdnAONwZluA8=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 00:08:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:f6:f9:c6:2f:5f:87:50:90:ab:52:3f:4e:c2:c9:2b:ee:1f:72:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Mar 29 00:08:08 2026 GMT Not After : Apr 2 00:08:08 2026 GMT Subject: serialNumber=a112733ffc286e56c39032813615f03fa9a70fabd633aa1dfba3b64a2cbc3e48, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:33:15:55:ca:b3:9a:b4:ca:fe:e8:85:8a:4d: 42:ce:6c:d5:1c:fd:6d:26:9f:39:13:e4:60:da:22: 8f:a4:e0:88:00:9b:ba:6a:20:72:b3:ff:70:f5:08: 1d:57:15:66:9a:69:5a:a2:1f:98:62:ab:a4:82:b7: 3b:d2:f6:6a:4f:2d:b8:64:fc:8b:71:b4:42:2c:f2: 4c:9d:02:b9:ec:27:88:17:f5:bf:b0:9e:be:97:8d: 2f:37:43:51:ae:9d:0b:96:e3:dd:c9:c4:5c:fd:df: 95:12:86:b9:2e:4c:a5:4e:e1:99:99:73:ff:d1:65: 88:3a:6f:be:39:da:2e:e1:46:b6:7f:39:2f:50:05: 05:0e:dd:f1:52:36:28:7f:af:ed:da:06:60:d6:35: 2a:19:6a:7b:3a:71:85:ca:58:54:af:7a:2a:9d:c0: 90:a8:43:a7:a8:53:78:a6:15:c4:89:54:b1:ad:8c: 12:05:c4:11:96:b7:85:67:e6:c2:f3:34:69:58:ca: 17:18:03:41:de:ed:69:a2:2a:c0:b1:5e:be:a5:c6: 15:83:f4:2a:82:55:d8:43:40:d2:3e:31:f7:93:4e: bd:e5:73:7e:92:a5:0c:5d:1a:0b:fd:54:c4:be:64: 24:61:02:d9:11:d0:51:b8:d2:08:02:0e:fb:37:ab: 79:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:6D:5E:49:E7:5B:40:C7:A1:E5:12:14:49:09:6A:65:48:6E:27:5B X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:bb:3e:ea:ee:d6:6b:81:ee:36:72:ba:08:3e:01:34:23:9f: 3a:53:0e:b5:86:43:27:4f:f2:94:26:78:f7:68:64:e1:63:3b: 47:58:4f:b5:94:cb:65:03:aa:e0:13:b8:0f:e7:04:e0:58:9f: da:94:0a:c2:3e:a1:70:77:7d:03:85:05:bf:89:be:4b:1c:41: 6a:5e:92:46:4c:49:e2:02:ad:98:d3:4c:bc:07:1a:b8:8e:07: a1:02:a8:0d:69:5e:b4:98:81:6f:bc:2a:2d:4d:87:f2:2b:e5: b6:f5:01:97:0b:c0:63:aa:8c:b0:af:aa:1c:07:a8:de:38:6f: 8b:42:97:5b:4c:f0:2e:8b:23:ac:db:5e:f8:89:08:c4:6f:de: 7a:5d:01:91:bf:5f:fd:38:c1:fe:bb:df:31:7e:04:37:e3:4c: 7f:a4:74:e1:99:42:ac:d9:43:98:8c:ac:2c:7d:af:f4:b3:4a: 9a:1b:23:4d:6f:36:61:91:13:ec:75:49:f4:49:ef:48:79:e9: ec:78:2e:73:df:c5:b9:f8:02:ea:61:f6:0c:33:15:26:b6:03: bc:0d:d6:71:29:2a:3e:c0:24:5b:c5:ed:52:0c:f1:27:89:85: 4f:6b:f9:99:d7:ac:86:98:22:b1:f7:c0:5d:aa:5e:7d:a3:1f: ba:c5:17:27 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUG/b5xi9fh1CQq1I/TsLJK+4fcn8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDMyOTAwMDgwOFoX DTI2MDQwMjAwMDgwOFowejFJMEcGA1UEBRNAYTExMjczM2ZmYzI4NmU1NmMzOTAz MjgxMzYxNWYwM2ZhOWE3MGZhYmQ2MzNhYTFkZmJhM2I2NGEyY2JjM2U0ODEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9jMVVcqzmrTK/uiFik1CzmzVHP1t Jp85E+Rg2iKPpOCIAJu6aiBys/9w9QgdVxVmmmlaoh+YYqukgrc70vZqTy24ZPyL cbRCLPJMnQK57CeIF/W/sJ6+l40vN0NRrp0LluPdycRc/d+VEoa5LkylTuGZmXP/ 0WWIOm++Odou4Ua2fzkvUAUFDt3xUjYof6/t2gZg1jUqGWp7OnGFylhUr3oqncCQ qEOnqFN4phXEiVSxrYwSBcQRlreFZ+bC8zRpWMoXGANB3u1poirAsV6+pcYVg/Qq glXYQ0DSPjH3k0695XN+kqUMXRoL/VTEvmQkYQLZEdBRuNIIAg77N6t5MQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFP5tXknnW0DHoeUSFEkJamVIbidbMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAFK7Puru1muB7jZyugg+ATQjnzpTDrWG QydP8pQmePdoZOFjO0dYT7WUy2UDquATuA/nBOBYn9qUCsI+oXB3fQOFBb+Jvksc QWpekkZMSeICrZjTTLwHGriOB6ECqA1pXrSYgW+8Ki1Nh/Ir5bb1AZcLwGOqjLCv qhwHqN44b4tCl1tM8C6LI6zbXviJCMRv3npdAZG/X/04wf673zF+BDfjTH+kdOGZ QqzZQ5iMrCx9r/SzSpobI01vNmGRE+x1SfRJ70h56ex4LnPfxbn4Auph9gwzFSa2 A7wN1nEpKj7AJFvF7VIM8SeJhU9r+ZnXrIaYIrH3wF2qXn2jH7rFFyc= -----END CERTIFICATE-----Generated at Mon Mar 30 01:49:49 2026 by rpki-client