$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: qz0S8PJkoXJTK0M0Pm0TbGxjnb9rD6K6cdpqRObUfP0= Subject key identifier: DE:46:0B:E3:44:1C:40:30:9B:BD:36:8F:99:E5:C3:8B:3F:AC:04:1E Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 1F1B1A8D1EB6716885F5A771E968C4C9AD3D5065 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05E2 Signing time: Wed 25 Mar 2026 00:07:29 +0000 Manifest this update: Wed 25 Mar 2026 00:07:29 +0000 Manifest next update: Sun 29 Mar 2026 00:07:29 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: +utF4KGy1lISl9RQSdSxvLi08FawgopRAC1QgITG1UQ=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 00:07:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:1b:1a:8d:1e:b6:71:68:85:f5:a7:71:e9:68:c4:c9:ad:3d:50:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Mar 25 00:07:29 2026 GMT Not After : Mar 29 00:07:29 2026 GMT Subject: serialNumber=d2f4b8c510b69b6563b4799e813a13021ef7e92826259edf84dbaaa0d573112d, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fa:d7:66:bc:0d:dc:ce:a2:8d:0b:db:a0:e0: 1c:77:9f:be:0d:3f:00:db:50:94:78:1c:25:ce:81: 7a:60:36:9a:22:b0:1e:66:b4:20:8b:cb:b6:e5:b2: 22:62:25:0c:5f:e1:98:12:93:b4:f6:e8:dd:61:f3: 11:1c:af:5e:ee:7e:25:6f:fa:0d:47:ca:ce:7b:83: 77:2b:af:63:40:09:ce:c2:df:93:89:5d:f8:9b:80: df:1f:d2:be:5c:a3:c2:13:00:5d:b5:b9:10:e9:75: 47:90:ea:5d:02:13:b4:c3:3e:14:33:84:9c:7b:d0: c7:ad:59:3c:bd:47:25:d1:e3:cb:37:46:70:67:3d: 48:df:4e:0a:43:8f:37:4a:2b:a5:e8:9a:8d:ef:01: b4:de:99:9d:b1:e1:a9:69:14:c0:1a:ee:67:5b:91: 16:fc:4d:89:3d:62:cc:6a:fd:5b:69:94:37:da:28: 40:3f:db:4d:fd:d8:ba:1a:94:b7:2a:13:ff:3e:66: dc:20:89:71:6f:cb:a1:dc:7a:f5:20:2a:ef:9d:54: 3b:96:31:c8:18:a2:28:19:17:03:b0:69:d5:d8:d8: bd:61:4d:80:16:cf:28:71:3c:50:5c:a3:ec:89:c8: 17:60:7b:62:37:7a:38:39:0a:3d:b2:6d:b1:88:41: 0d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:46:0B:E3:44:1C:40:30:9B:BD:36:8F:99:E5:C3:8B:3F:AC:04:1E X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:a3:01:4c:06:78:78:23:e4:a6:37:40:47:e0:19:79:07:e8: ed:9b:7b:53:1c:f7:dd:c2:5d:9e:d7:c5:c8:3c:ee:6a:11:d8: be:42:1a:a4:ba:ad:7f:03:e8:62:1b:33:b6:89:6e:08:20:d5: 53:a4:42:a3:37:94:20:12:f8:69:9b:3f:3f:32:43:51:85:4f: df:10:59:fa:5e:d7:85:90:18:3b:31:14:27:34:55:7a:ae:4a: 4b:9c:d2:20:6b:3e:a3:db:63:65:9a:d0:1b:49:9d:5a:2b:f6: a2:c9:84:a9:1b:34:c4:97:07:e8:e1:01:d4:63:92:59:3b:c1: 96:d8:5c:11:f8:1b:28:7c:8b:bd:60:4c:78:61:2d:57:a7:25: 45:08:6c:23:73:5b:67:cf:73:38:ca:d9:3d:6d:b6:07:bb:7e: 4a:32:ca:1e:92:72:12:b5:4a:fb:7b:fe:c6:11:03:ef:e4:12: 49:d3:65:5b:b8:67:64:ed:c5:1d:3f:3f:78:e1:ac:2a:8e:a3: bd:e9:9d:52:f9:8c:bb:30:82:c4:85:3a:c8:c9:63:a5:1c:ad: 01:da:82:9c:25:99:96:d7:7d:d7:3e:24:6c:b1:0d:2a:59:54: ea:3c:40:49:cd:68:69:eb:8e:01:34:90:9b:94:a2:b9:88:62: ad:18:e8:c9 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUHxsajR62cWiF9adx6WjEya09UGUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDMyNTAwMDcyOVoX DTI2MDMyOTAwMDcyOVowejFJMEcGA1UEBRNAZDJmNGI4YzUxMGI2OWI2NTYzYjQ3 OTllODEzYTEzMDIxZWY3ZTkyODI2MjU5ZWRmODRkYmFhYTBkNTczMTEyZDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxPrXZrwN3M6ijQvboOAcd5++DT8A 21CUeBwlzoF6YDaaIrAeZrQgi8u25bIiYiUMX+GYEpO09ujdYfMRHK9e7n4lb/oN R8rOe4N3K69jQAnOwt+TiV34m4DfH9K+XKPCEwBdtbkQ6XVHkOpdAhO0wz4UM4Sc e9DHrVk8vUcl0ePLN0ZwZz1I304KQ483Siul6JqN7wG03pmdseGpaRTAGu5nW5EW /E2JPWLMav1baZQ32ihAP9tN/di6GpS3KhP/PmbcIIlxb8uh3Hr1ICrvnVQ7ljHI GKIoGRcDsGnV2Ni9YU2AFs8ocTxQXKPsicgXYHtiN3o4OQo9sm2xiEENpwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFN5GC+NEHEAwm702j5nlw4s/rAQeMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAD2jAUwGeHgj5KY3QEfgGXkH6O2be1Mc 993CXZ7Xxcg87moR2L5CGqS6rX8D6GIbM7aJbggg1VOkQqM3lCAS+GmbPz8yQ1GF T98QWfpe14WQGDsxFCc0VXquSkuc0iBrPqPbY2Wa0BtJnVor9qLJhKkbNMSXB+jh AdRjklk7wZbYXBH4Gyh8i71gTHhhLVenJUUIbCNzW2fPczjK2T1ttge7fkoyyh6S chK1Svt7/sYRA+/kEknTZVu4Z2TtxR0/P3jhrCqOo73pnVL5jLswgsSFOsjJY6Uc rQHagpwlmZbXfdc+JGyxDSpZVOo8QEnNaGnrjgE0kJuUormIYq0Y6Mk= -----END CERTIFICATE-----Generated at Wed Mar 25 16:47:42 2026 by rpki-client