$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: f2aA4TYbbjLmV/F4jST6s5NJE1/JAbEm8gtAVYtcfxs= Subject key identifier: 18:B7:38:EC:28:7A:55:FF:13:0C:7E:9D:A9:39:F6:E4:A2:68:E5:F6 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 2CB77DA67F9259FF601DF92A474E59C0D8625973 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05E7 Signing time: Mon 30 Mar 2026 00:08:23 +0000 Manifest this update: Mon 30 Mar 2026 00:08:23 +0000 Manifest next update: Fri 03 Apr 2026 00:08:23 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: atTYY/rrrKme87ZbPGN7tknj76IIx/t423luibVuyNI=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 00:08:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:b7:7d:a6:7f:92:59:ff:60:1d:f9:2a:47:4e:59:c0:d8:62:59:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Mar 30 00:08:23 2026 GMT Not After : Apr 3 00:08:23 2026 GMT Subject: serialNumber=3436e62f10f1982654d87a8e4bee812650d9a3ae2dbf71bac4103fa11b384ec3, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:23:3c:e2:37:da:3d:0f:4f:41:2f:77:64:5c: 06:d9:62:9e:38:37:ae:9e:bc:59:23:87:ba:7b:7e: 71:8d:bd:23:8e:7f:62:01:84:9a:95:43:05:1a:5e: e0:a3:d0:d2:da:d4:9d:4c:40:60:34:e0:30:c6:ac: a9:44:e1:e1:66:bb:81:23:e2:b4:a9:19:6d:3d:06: 2b:da:85:3e:9e:95:e4:7a:bb:05:54:e3:37:14:28: bd:2d:6b:72:9c:e1:4b:91:12:81:ad:92:89:b4:c7: 94:12:eb:d0:e4:9f:53:0d:98:e3:f0:4f:3f:44:de: 67:b7:c2:aa:4e:f8:2b:25:59:a7:f6:d4:4b:55:35: fc:92:6f:ff:86:27:ab:c0:e8:df:86:86:83:ca:15: 5f:14:34:d7:42:f0:2a:35:89:d9:ee:85:14:36:48: 05:4a:df:4f:b6:de:06:dc:65:cd:92:dc:5a:5e:ed: b5:0f:7a:f5:eb:bd:98:49:37:0f:e5:de:0c:bf:6e: be:9b:13:78:bd:d1:68:82:a4:34:3f:76:d5:bd:01: 14:25:5b:2d:6e:b0:36:f9:fb:70:df:53:16:1e:7f: b3:ec:80:40:aa:19:0c:e3:cc:98:7b:bc:8d:b9:17: 45:2d:74:58:c6:87:3d:12:1c:e9:b5:6d:1f:1e:98: e2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:B7:38:EC:28:7A:55:FF:13:0C:7E:9D:A9:39:F6:E4:A2:68:E5:F6 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:cb:b5:26:bb:38:90:4a:bf:0f:79:40:62:ef:9b:90:04:0b: 0a:a6:44:29:56:0f:5a:ed:33:8c:12:eb:41:7f:1b:e1:4f:6a: 1d:c2:1f:24:bb:61:fe:3c:02:95:6e:6e:3c:e0:be:8c:b6:1a: 9b:4f:cc:f3:da:a4:c5:68:5a:97:d3:2f:a6:5d:7e:6a:6a:bf: 6e:1a:e5:79:92:6c:19:2f:0e:d0:dc:43:ec:8a:54:3f:69:ac: b1:f0:da:b5:0f:03:b7:63:9e:ff:2d:0e:f7:d7:d8:2c:ef:40: e5:c5:0e:d0:03:21:f9:3b:55:ee:8f:90:d2:e3:94:9c:84:c0: 53:cd:98:2d:f0:86:df:a4:f6:17:ba:1e:35:3e:13:35:d5:6d: cf:23:a6:21:b8:22:d6:8d:1f:db:cf:61:23:86:a9:22:c1:ff: 3b:59:c1:52:47:fe:7d:dd:6b:58:80:00:c4:c0:a0:74:8a:af: 9b:76:45:f0:b2:aa:ef:41:f2:f9:37:64:83:3d:42:c2:a4:5c: 33:7d:50:04:5e:92:07:f2:ab:c7:78:31:c9:03:1f:31:3b:9a: 9c:cc:54:7a:ec:71:0b:4d:f3:0d:e9:48:4b:24:8f:c3:3d:5a: b6:8f:57:f6:df:31:86:1e:db:a1:ca:30:12:2d:5e:fa:c6:f2: 4c:4a:17:b8 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIULLd9pn+SWf9gHfkqR05ZwNhiWXMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDMzMDAwMDgyM1oX DTI2MDQwMzAwMDgyM1owejFJMEcGA1UEBRNAMzQzNmU2MmYxMGYxOTgyNjU0ZDg3 YThlNGJlZTgxMjY1MGQ5YTNhZTJkYmY3MWJhYzQxMDNmYTExYjM4NGVjMzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsSM84jfaPQ9PQS93ZFwG2WKeODeu nrxZI4e6e35xjb0jjn9iAYSalUMFGl7go9DS2tSdTEBgNOAwxqypROHhZruBI+K0 qRltPQYr2oU+npXkersFVOM3FCi9LWtynOFLkRKBrZKJtMeUEuvQ5J9TDZjj8E8/ RN5nt8KqTvgrJVmn9tRLVTX8km//hierwOjfhoaDyhVfFDTXQvAqNYnZ7oUUNkgF St9Ptt4G3GXNktxaXu21D3r1672YSTcP5d4Mv26+mxN4vdFogqQ0P3bVvQEUJVst brA2+ftw31MWHn+z7IBAqhkM48yYe7yNuRdFLXRYxoc9EhzptW0fHpjigQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFBi3OOwoelX/Ewx+nak59uSiaOX2MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAHHLtSa7OJBKvw95QGLvm5AECwqmRClW D1rtM4wS60F/G+FPah3CHyS7Yf48ApVubjzgvoy2GptPzPPapMVoWpfTL6Zdfmpq v24a5XmSbBkvDtDcQ+yKVD9prLHw2rUPA7djnv8tDvfX2CzvQOXFDtADIfk7Ve6P kNLjlJyEwFPNmC3wht+k9he6HjU+EzXVbc8jpiG4ItaNH9vPYSOGqSLB/ztZwVJH /n3da1iAAMTAoHSKr5t2RfCyqu9B8vk3ZIM9QsKkXDN9UARekgfyq8d4MckDHzE7 mpzMVHrscQtN8w3pSEskj8M9WraPV/bfMYYe26HKMBItXvrG8kxKF7g= -----END CERTIFICATE-----Generated at Mon Mar 30 14:38:34 2026 by rpki-client