$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: uedVm6Acn2mYE4ntq20UJxHSErz6j9MCzlx8CIGYSXk= Subject key identifier: 67:6A:6D:28:3E:02:77:56:33:B3:35:85:3A:BF:E5:AF:57:A8:74:04 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 72B54698E661019C10673D88ABAC839B28BCD0D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05C7 Signing time: Thu 26 Feb 2026 00:00:43 +0000 Manifest this update: Thu 26 Feb 2026 00:00:43 +0000 Manifest next update: Mon 02 Mar 2026 00:00:43 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: cvpQ5wperqkUfpiwIM3bTmJuHnUOodbGFe2kUBMBHOE=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 00:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:b5:46:98:e6:61:01:9c:10:67:3d:88:ab:ac:83:9b:28:bc:d0:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Feb 26 00:00:43 2026 GMT Not After : Mar 2 00:00:43 2026 GMT Subject: serialNumber=11433ddf86f7760e5111ff5a47d4274254b6419e5da67236a2d28c169913f7ad, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:fc:81:29:5d:aa:0e:b6:1a:ae:35:cc:2f:a1: 86:30:21:3c:16:fa:d5:6d:ed:17:2c:0b:34:22:df: a1:d2:33:59:ca:46:df:0f:e5:c5:16:0c:7f:ce:4a: 32:18:73:42:f1:a1:7b:5e:56:33:3e:79:cb:32:0c: 67:77:10:49:bc:1f:de:92:ea:65:10:42:dc:8c:5f: 9b:5d:54:33:b5:61:76:ad:c9:3b:3d:ec:35:15:9b: d3:ed:88:11:ed:ed:26:3b:08:68:f6:4c:bf:e0:39: fb:5a:18:a2:28:4e:44:bc:e8:bc:f3:79:6c:91:3f: 89:61:26:5a:1c:1d:e9:a9:a2:c6:3a:c8:bd:8b:27: c9:f4:75:ca:ff:0b:85:9a:57:6e:e1:be:d4:78:7e: d2:60:44:0f:ee:88:cc:41:ab:04:b9:f2:09:01:32: af:83:37:4e:32:48:5f:0e:ff:fa:37:60:de:0e:32: 64:15:be:09:99:86:9d:22:ce:97:26:a6:ca:3d:ab: bf:55:8e:13:4f:e3:71:eb:7b:d0:64:e7:3b:91:da: b3:19:15:f7:19:8a:09:8f:d1:1a:6d:ff:96:87:74: 26:f7:b8:53:d5:55:c5:ea:22:39:3a:64:a6:1a:63: 8c:b1:3f:18:40:5a:60:88:3f:85:30:ec:c4:b6:0b: 00:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:6A:6D:28:3E:02:77:56:33:B3:35:85:3A:BF:E5:AF:57:A8:74:04 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:94:96:6b:1c:34:62:46:81:68:88:10:0d:8c:c3:04:83:31: b6:d1:a6:df:b0:a6:d0:d0:2e:18:3e:b2:2c:1a:97:f4:74:f2: 20:39:af:ea:b4:fb:24:87:d5:ef:b2:44:6f:01:07:ae:98:da: 43:46:97:6c:82:ab:f2:7b:85:07:e2:eb:57:3a:33:15:6c:61: 51:c7:d7:a9:7f:91:7d:12:18:25:44:4b:75:18:19:0f:a6:da: f0:88:64:d0:3a:d9:fc:87:55:5f:4a:08:76:d6:b9:de:d4:1a: e5:c6:8b:42:5c:c0:65:81:14:bd:19:f4:34:a4:ee:be:95:1b: 70:f8:e4:ab:3f:01:52:1f:91:2b:2f:85:70:64:c6:b1:a7:8d: 4a:6b:d4:4c:61:3d:2a:3c:8b:fd:09:52:dc:29:d4:05:ac:5a: e5:48:b0:1d:a6:5b:88:24:2c:ba:c5:3d:cd:70:85:c6:81:89: 5b:9e:ce:16:b5:0a:b6:75:ee:d9:8c:f2:33:a9:39:82:82:90: 84:26:45:52:3b:bc:ab:52:b1:f4:08:87:e6:50:5b:70:07:0d: 4e:f2:57:9e:40:de:6c:98:83:03:cb:ca:91:70:8b:e6:35:59: 94:8a:e5:e9:57:b7:c2:44:b5:cb:17:24:da:16:af:f9:61:d4: 65:19:3e:bd -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUcrVGmOZhAZwQZz2Iq6yDmyi80NgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDIyNjAwMDA0M1oX DTI2MDMwMjAwMDA0M1owejFJMEcGA1UEBRNAMTE0MzNkZGY4NmY3NzYwZTUxMTFm ZjVhNDdkNDI3NDI1NGI2NDE5ZTVkYTY3MjM2YTJkMjhjMTY5OTEzZjdhZDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwvyBKV2qDrYarjXML6GGMCE8FvrV be0XLAs0It+h0jNZykbfD+XFFgx/zkoyGHNC8aF7XlYzPnnLMgxndxBJvB/ekupl EELcjF+bXVQztWF2rck7Pew1FZvT7YgR7e0mOwho9ky/4Dn7WhiiKE5EvOi883ls kT+JYSZaHB3pqaLGOsi9iyfJ9HXK/wuFmldu4b7UeH7SYEQP7ojMQasEufIJATKv gzdOMkhfDv/6N2DeDjJkFb4JmYadIs6XJqbKPau/VY4TT+Nx63vQZOc7kdqzGRX3 GYoJj9Eabf+Wh3Qm97hT1VXF6iI5OmSmGmOMsT8YQFpgiD+FMOzEtgsAhQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFGdqbSg+AndWM7M1hTq/5a9XqHQEMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAHaUlmscNGJGgWiIEA2MwwSDMbbRpt+w ptDQLhg+siwal/R08iA5r+q0+ySH1e+yRG8BB66Y2kNGl2yCq/J7hQfi61c6MxVs YVHH16l/kX0SGCVES3UYGQ+m2vCIZNA62fyHVV9KCHbWud7UGuXGi0JcwGWBFL0Z 9DSk7r6VG3D45Ks/AVIfkSsvhXBkxrGnjUpr1ExhPSo8i/0JUtwp1AWsWuVIsB2m W4gkLLrFPc1whcaBiVuezha1CrZ17tmM8jOpOYKCkIQmRVI7vKtSsfQIh+ZQW3AH DU7yV55A3myYgwPLypFwi+Y1WZSK5elXt8JEtcsXJNoWr/lh1GUZPr0= -----END CERTIFICATE-----Generated at Thu Feb 26 16:59:01 2026 by rpki-client