$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: OwTCB4yxV2iFwa5hVSi1b6QdUrtsbnkS86tii3RuVnM= Subject key identifier: BD:2B:8B:CE:3D:49:29:FC:BB:D5:18:9B:53:0F:5E:F3:E9:81:30:93 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 35D86B727703A6284CD53C9EF70B96111C5A053C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0605 Signing time: Wed 29 Apr 2026 00:01:07 +0000 Manifest this update: Wed 29 Apr 2026 00:01:07 +0000 Manifest next update: Sun 03 May 2026 00:01:07 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: ptRHT2lm+zIB1UKYLXD+0YClwh6T8PDvWsbZvFrPTcE=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 00:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:d8:6b:72:77:03:a6:28:4c:d5:3c:9e:f7:0b:96:11:1c:5a:05:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 29 00:01:07 2026 GMT Not After : May 3 00:01:07 2026 GMT Subject: serialNumber=872ba3886fe25fc9a1174a847eaeba66c6073e3b763c9e9d65bd8ffabe7ac4f8, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c1:8c:ce:53:34:2b:71:87:db:ec:40:40:c7: 20:e5:90:c1:a9:07:d8:fe:f8:ff:d4:2c:c3:f0:23: ed:32:83:50:46:5d:49:93:42:38:18:bd:19:62:79: b0:26:04:92:5c:21:01:82:aa:d5:ac:11:c7:dc:91: 74:0c:d8:f3:53:30:1f:a0:d3:cf:49:0e:36:b5:ab: 90:ea:99:61:cb:22:52:1f:83:39:a4:bb:d1:e3:f0: 49:af:51:1e:d7:9e:31:7e:0a:23:1f:0c:94:82:10: bf:c7:2d:9e:7c:b7:76:54:0c:0f:6b:37:ea:24:73: 50:b9:58:f9:5f:29:f2:63:4b:75:a0:7f:c6:2e:be: 46:6a:fc:79:48:69:3d:fd:37:75:13:71:55:8d:af: 65:43:29:66:c0:ff:69:09:3b:dd:24:2b:05:29:50: 50:55:a3:12:ff:ca:a8:ad:3a:6e:22:eb:28:7c:de: 5c:91:77:45:d4:c1:a2:0c:29:f9:54:79:f3:5c:34: f1:a2:fc:26:85:e5:b0:6c:58:c2:8b:40:47:51:f7: bc:1d:1b:1e:a5:cf:6e:43:df:7a:37:51:3a:42:b7: 32:da:c6:45:28:c4:ca:9f:b9:a6:a8:af:77:52:e3: 0b:0c:7c:38:4a:60:a2:67:53:68:b8:33:c2:82:60: f8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:2B:8B:CE:3D:49:29:FC:BB:D5:18:9B:53:0F:5E:F3:E9:81:30:93 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:5d:d5:52:55:42:d1:56:b5:17:26:61:2e:26:31:eb:31:be: 4b:c4:74:3b:25:66:99:3a:5f:0e:ef:7e:dc:37:b8:24:fd:22: 68:de:06:90:74:85:02:d8:46:49:d8:24:41:c0:b1:a2:9b:e8: c7:cf:21:82:c4:1a:e7:e6:2f:be:0c:ae:a0:af:e9:81:11:bd: ad:ae:bb:d4:5b:6b:2f:ac:a7:92:1c:ca:f7:f0:35:b2:86:0f: 09:ee:f0:d4:50:0b:20:07:e5:4a:20:9c:47:dd:00:4f:ee:37: 27:1d:f6:df:93:19:d6:58:e4:f5:89:19:80:1d:8c:fb:5b:88: 6f:0d:3d:f2:c5:e6:09:8d:ae:db:a6:26:23:86:7a:0d:38:70: 2e:14:c7:9c:1f:7e:12:75:89:39:46:27:9e:d7:51:24:22:2e: 57:38:eb:31:af:82:99:16:10:25:10:1b:b7:21:70:79:cd:6f: 61:79:37:71:fe:8d:4a:48:73:a5:d4:e8:d3:09:64:60:7f:2d: 61:fa:11:d0:c4:8c:f5:8e:9f:3f:03:e1:32:ef:5e:bd:53:b7: 02:43:d0:f7:54:d1:23:3a:7f:0b:5e:1a:3e:f5:b8:ca:b0:9f: db:a8:48:32:e6:3f:1b:8a:82:a2:0f:1c:7e:10:cc:d6:79:07: ff:b0:6f:e2 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUNdhrcncDpihM1Tye9wuWERxaBTwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDQyOTAwMDEwN1oX DTI2MDUwMzAwMDEwN1owejFJMEcGA1UEBRNAODcyYmEzODg2ZmUyNWZjOWExMTc0 YTg0N2VhZWJhNjZjNjA3M2UzYjc2M2M5ZTlkNjViZDhmZmFiZTdhYzRmODEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqsGMzlM0K3GH2+xAQMcg5ZDBqQfY /vj/1CzD8CPtMoNQRl1Jk0I4GL0ZYnmwJgSSXCEBgqrVrBHH3JF0DNjzUzAfoNPP SQ42tauQ6plhyyJSH4M5pLvR4/BJr1Ee154xfgojHwyUghC/xy2efLd2VAwPazfq JHNQuVj5XynyY0t1oH/GLr5Gavx5SGk9/Td1E3FVja9lQylmwP9pCTvdJCsFKVBQ VaMS/8qorTpuIusofN5ckXdF1MGiDCn5VHnzXDTxovwmheWwbFjCi0BHUfe8HRse pc9uQ996N1E6Qrcy2sZFKMTKn7mmqK93UuMLDHw4SmCiZ1NouDPCgmD4swIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFL0ri849SSn8u9UYm1MPXvPpgTCTMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAIFd1VJVQtFWtRcmYS4mMesxvkvEdDsl Zpk6Xw7vftw3uCT9ImjeBpB0hQLYRknYJEHAsaKb6MfPIYLEGufmL74MrqCv6YER va2uu9Rbay+sp5IcyvfwNbKGDwnu8NRQCyAH5UognEfdAE/uNycd9t+TGdZY5PWJ GYAdjPtbiG8NPfLF5gmNrtumJiOGeg04cC4Ux5wffhJ1iTlGJ57XUSQiLlc46zGv gpkWECUQG7chcHnNb2F5N3H+jUpIc6XU6NMJZGB/LWH6EdDEjPWOnz8D4TLvXr1T twJD0PdU0SM6fwteGj71uMqwn9uoSDLmPxuKgqIPHH4QzNZ5B/+wb+I= -----END CERTIFICATE-----Generated at Wed Apr 29 09:59:49 2026 by rpki-client