$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: KdRD7+qKpg40uu+x5ggNIHsxcdaDF/Dj6FevwjMmLKo= Subject key identifier: 4D:FA:1F:FC:DD:35:07:DC:FD:1A:7D:A1:7A:71:D1:71:EC:10:C4:D8 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 7F42B26FCF37382D8CE5BD5C36DEE461D28EFC40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05F1 Signing time: Thu 09 Apr 2026 00:10:53 +0000 Manifest this update: Thu 09 Apr 2026 00:10:53 +0000 Manifest next update: Mon 13 Apr 2026 00:10:53 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: WsD4J6zl0N8Ao8Uwxfk06H4Q4hZPh58infsGANa8mos=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Apr 2026 00:10:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:42:b2:6f:cf:37:38:2d:8c:e5:bd:5c:36:de:e4:61:d2:8e:fc:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 9 00:10:53 2026 GMT Not After : Apr 13 00:10:53 2026 GMT Subject: serialNumber=1f1c4d0f58d59f3e4288ab9bc7d6a0f31b19e924bd2302c26681b390a7b2958a, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:bb:cb:10:1a:0c:24:2c:5b:d9:a7:f9:3b:44: e1:5f:cf:30:3f:06:07:51:c1:ed:1a:13:21:9c:d6: ad:96:f5:26:f7:a9:3d:eb:0a:7f:fe:8e:c3:67:d4: 6c:52:a8:2d:a5:bc:60:4a:e1:7c:7c:b8:7e:7f:5c: 07:f6:a7:d8:2a:23:eb:2a:cb:a2:b2:4a:dc:c2:dd: 33:a9:10:eb:1c:6b:e8:05:6e:92:51:b7:09:9a:9f: dd:fd:38:ab:7a:22:cb:0b:92:89:a4:60:2d:14:0a: 5c:ce:af:e7:94:72:c0:06:26:7b:b6:cf:33:97:2c: bc:52:46:3a:2a:5d:bf:05:66:76:9a:b1:9a:03:6b: 1b:db:a7:e1:72:2f:17:0e:68:9e:6a:2a:fb:27:07: c0:18:e7:e0:82:b8:f4:5a:ab:d6:5d:a4:68:66:66: 08:e3:ad:d7:16:43:8f:9e:86:e7:7e:c3:83:ab:bb: d4:1b:8f:f6:73:09:41:b9:eb:72:51:68:b0:29:d0: 5f:14:68:e0:63:bf:e9:47:7e:c6:a5:d7:5b:04:a1: 61:c5:f4:1b:c4:ed:ea:d8:73:a9:0e:55:03:bb:5e: cf:68:24:86:b5:d3:44:76:20:ac:13:f2:0d:9e:5c: 57:1a:7b:25:3e:bb:a2:55:26:33:c7:ce:a4:b5:2e: e6:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:FA:1F:FC:DD:35:07:DC:FD:1A:7D:A1:7A:71:D1:71:EC:10:C4:D8 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:1f:2e:61:1c:ad:84:32:c7:06:69:3b:25:3d:e8:2b:d0:28: 65:e4:51:5e:b4:0e:86:7e:06:6e:3b:57:61:8c:2e:7b:9c:4d: 10:28:54:7c:3f:39:e1:64:c9:e5:9d:b6:ce:50:2c:b3:b0:e2: bc:b0:85:8b:a7:9b:73:6b:08:92:5f:da:88:d5:9d:19:1c:8c: 40:76:54:dc:08:c7:12:bf:5c:d7:ea:39:d9:29:ef:46:20:f2: 29:69:fc:46:dd:2e:b7:44:23:9a:d4:0f:31:89:62:01:99:98: d8:f2:a4:45:c5:09:b4:41:e0:0a:b6:39:93:bd:b8:b7:8f:61: 41:c0:15:93:d1:e7:19:15:d1:cd:a4:4c:09:25:8b:2c:ae:19: d5:44:21:c8:20:7e:f3:25:0a:1c:59:32:e5:f1:ee:1f:27:fc: 7a:48:e6:ab:6d:fd:fc:9b:e9:59:b2:50:9c:2c:0a:8b:5c:0f: ac:7a:c8:c3:7c:17:a3:65:a1:8b:53:55:9b:8e:d0:16:a3:02: d4:da:13:a8:98:92:00:74:a8:85:53:0c:c5:7d:6a:7a:94:a0: b0:08:a0:ee:70:f0:9e:87:48:e5:b2:ef:44:81:8d:7c:17:2b: 74:ac:a6:a6:00:62:7d:a3:e5:9d:48:da:6c:45:46:7a:8b:5c: 18:61:49:5b -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUf0Kyb883OC2M5b1cNt7kYdKO/EAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDQwOTAwMTA1M1oX DTI2MDQxMzAwMTA1M1owejFJMEcGA1UEBRNAMWYxYzRkMGY1OGQ1OWYzZTQyODhh YjliYzdkNmEwZjMxYjE5ZTkyNGJkMjMwMmMyNjY4MWIzOTBhN2IyOTU4YTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnLvLEBoMJCxb2af5O0ThX88wPwYH UcHtGhMhnNatlvUm96k96wp//o7DZ9RsUqgtpbxgSuF8fLh+f1wH9qfYKiPrKsui skrcwt0zqRDrHGvoBW6SUbcJmp/d/TireiLLC5KJpGAtFApczq/nlHLABiZ7ts8z lyy8UkY6Kl2/BWZ2mrGaA2sb26fhci8XDmieair7JwfAGOfggrj0WqvWXaRoZmYI 463XFkOPnobnfsODq7vUG4/2cwlBuetyUWiwKdBfFGjgY7/pR37GpddbBKFhxfQb xO3q2HOpDlUDu17PaCSGtdNEdiCsE/INnlxXGnslPruiVSYzx86ktS7m9QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFE36H/zdNQfc/Rp9oXpx0XHsEMTYMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAHEfLmEcrYQyxwZpOyU96CvQKGXkUV60 DoZ+Bm47V2GMLnucTRAoVHw/OeFkyeWdts5QLLOw4rywhYunm3NrCJJf2ojVnRkc jEB2VNwIxxK/XNfqOdkp70Yg8ilp/EbdLrdEI5rUDzGJYgGZmNjypEXFCbRB4Aq2 OZO9uLePYUHAFZPR5xkV0c2kTAkliyyuGdVEIcggfvMlChxZMuXx7h8n/HpI5qtt /fyb6VmyUJwsCotcD6x6yMN8F6NloYtTVZuO0BajAtTaE6iYkgB0qIVTDMV9anqU oLAIoO5w8J6HSOWy70SBjXwXK3SspqYAYn2j5Z1I2mxFRnqLXBhhSVs= -----END CERTIFICATE-----Generated at Thu Apr 9 03:26:11 2026 by rpki-client