$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: 2t67OvJNwQewHn6cZekQolYYjXvMwD7ypMdS3USD2GI= Subject key identifier: 60:21:A1:E4:53:7B:57:91:40:72:C5:3B:72:24:BC:85:28:9C:C0:9C Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 447A40C2EBE538ED3918024FEAEC20ADA1A4ABA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05EA Signing time: Thu 02 Apr 2026 00:09:10 +0000 Manifest this update: Thu 02 Apr 2026 00:09:10 +0000 Manifest next update: Mon 06 Apr 2026 00:09:10 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: VtP+vD3rZ8BKWqxpfWndBUoyo2wCyTSOCIxZT7W4x78=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:7a:40:c2:eb:e5:38:ed:39:18:02:4f:ea:ec:20:ad:a1:a4:ab:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 2 00:09:10 2026 GMT Not After : Apr 6 00:09:10 2026 GMT Subject: serialNumber=d5b97cce3d73017132279bb3a48b5d97f3b37e95c305c30d31c887ce9e11b41d, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2b:59:4d:dc:a8:eb:fc:61:b8:b7:eb:b1:cc: a2:94:6b:d3:57:d0:e6:66:96:e7:34:a3:99:f9:46: aa:99:e3:c6:4f:27:fb:28:2b:55:9b:5c:fe:fc:1f: e5:50:1b:a3:04:08:f3:a8:81:82:81:f5:b8:a2:e7: 01:b0:18:32:99:0b:2c:36:07:0e:92:54:e3:e5:ab: 47:f1:05:ea:05:86:dc:e1:dd:b9:6a:dc:e7:00:03: 05:3e:c2:d0:d1:64:93:a5:6d:c1:f2:a9:d6:87:13: 1f:80:2d:86:48:64:ea:b9:86:60:61:c9:6b:f7:51: 1a:e9:2f:c4:d6:a7:2c:c9:55:e6:f8:f3:a7:89:17: bb:84:e5:08:1c:37:d6:17:b0:df:dd:51:8e:c1:1a: c3:79:59:36:92:5b:5f:dd:d8:05:fc:ce:6d:e7:ca: e0:06:4b:d0:e9:2e:27:08:0a:82:71:4f:ea:17:69: c8:2b:38:d6:f1:3b:ab:ce:82:a4:4f:d8:d9:99:2a: fd:24:83:16:0e:3b:47:2a:17:6e:54:6e:ec:28:7a: 3a:88:47:57:0c:ac:7e:75:3e:3c:e5:cf:1d:88:0a: 78:5b:fc:95:01:06:8e:77:32:e0:03:50:7e:31:4c: d6:08:f9:f0:78:e2:1c:38:6a:09:88:37:bd:f8:77: 68:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:21:A1:E4:53:7B:57:91:40:72:C5:3B:72:24:BC:85:28:9C:C0:9C X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:12:f8:60:12:f2:33:96:c8:be:ed:26:80:a4:c1:a5:ae:d3: b1:72:1b:2e:b1:37:0c:e4:2b:f0:f5:0e:54:29:20:f8:bc:bb: 30:4e:c9:ab:a2:1c:ed:63:39:32:f4:1c:8c:07:d2:53:85:3f: 4c:6a:f7:b8:44:91:0a:6f:29:84:f9:77:ae:43:6e:58:78:d5: 18:0c:b2:63:71:f2:ad:5b:85:c4:bb:ce:a3:2f:ce:15:ac:5d: 37:e4:e7:a2:50:da:0f:b8:54:80:f2:85:a0:a6:6f:1c:25:1d: 73:d6:76:fb:b2:a7:b9:10:a6:27:b0:94:b2:dc:d2:27:4e:0f: e8:6f:44:43:0e:08:c7:82:76:24:00:29:1b:01:9f:16:40:75: e4:07:9e:31:1f:61:f9:d4:ba:b3:94:cb:15:79:a8:2d:29:c6: af:10:6c:b9:19:02:91:09:3b:ed:a0:7c:50:69:db:4d:e4:d5: e7:69:2e:16:74:88:3c:cd:ea:ce:c3:30:ce:c8:96:20:7f:fb: e7:3d:f5:07:75:82:9c:b8:d5:88:e3:81:01:0f:56:16:36:b6: a8:03:9c:b6:98:fd:fa:56:ff:7b:ae:a2:aa:12:68:db:86:ad: 4e:e6:1d:8f:56:0a:dc:63:bd:0f:42:89:97:58:19:5e:de:ea: c9:23:45:7d -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIURHpAwuvlOO05GAJP6uwgraGkq6MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDQwMjAwMDkxMFoX DTI2MDQwNjAwMDkxMFowejFJMEcGA1UEBRNAZDViOTdjY2UzZDczMDE3MTMyMjc5 YmIzYTQ4YjVkOTdmM2IzN2U5NWMzMDVjMzBkMzFjODg3Y2U5ZTExYjQxZDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCtZTdyo6/xhuLfrscyilGvTV9Dm ZpbnNKOZ+UaqmePGTyf7KCtVm1z+/B/lUBujBAjzqIGCgfW4oucBsBgymQssNgcO klTj5atH8QXqBYbc4d25atznAAMFPsLQ0WSTpW3B8qnWhxMfgC2GSGTquYZgYclr 91Ea6S/E1qcsyVXm+POniRe7hOUIHDfWF7Df3VGOwRrDeVk2kltf3dgF/M5t58rg BkvQ6S4nCAqCcU/qF2nIKzjW8TurzoKkT9jZmSr9JIMWDjtHKhduVG7sKHo6iEdX DKx+dT485c8diAp4W/yVAQaOdzLgA1B+MUzWCPnweOIcOGoJiDe9+HdoewIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFGAhoeRTe1eRQHLFO3IkvIUonMCcMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAI4S+GAS8jOWyL7tJoCkwaWu07FyGy6x NwzkK/D1DlQpIPi8uzBOyauiHO1jOTL0HIwH0lOFP0xq97hEkQpvKYT5d65Dblh4 1RgMsmNx8q1bhcS7zqMvzhWsXTfk56JQ2g+4VIDyhaCmbxwlHXPWdvuyp7kQpiew lLLc0idOD+hvREMOCMeCdiQAKRsBnxZAdeQHnjEfYfnUurOUyxV5qC0pxq8QbLkZ ApEJO+2gfFBp203k1edpLhZ0iDzN6s7DMM7IliB/++c99Qd1gpy41YjjgQEPVhY2 tqgDnLaY/fpW/3uuoqoSaNuGrU7mHY9WCtxjvQ9CiZdYGV7e6skjRX0= -----END CERTIFICATE-----Generated at Thu Apr 2 08:57:04 2026 by rpki-client