$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft File: manifest.mft (raw, json) Hash identifier: AZTdSOSrHnoGdOXaUJ2SRIUnPSXbshu0WWTooLQXmjw= Subject key identifier: 8E:72:A1:36:7E:73:DD:C5:D2:61:3B:9E:86:C4:F9:FD:24:08:58:42 Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 797490D0355F83C77079B21DF5516DF2E4B07B10 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft Manifest number: 057D Signing time: Sun 01 Mar 2026 00:01:26 +0000 Manifest this update: Sun 01 Mar 2026 00:01:26 +0000 Manifest next update: Thu 05 Mar 2026 00:01:26 +0000 Files and hashes: 1: 2e40ee0b-9aa9-4919-a079-9712212e127c.roa (hash: HifPHeBwsO/AlIR45rsqvzHRP4MIeEvu4rBsdIj34M0=) 2: 32bf2c39-b536-43d0-b557-f68d8ee64091.roa (hash: 7j+M4k/YxLXgoUQh9ut5fyd0FgSZ1I4FPABA93oRNpU=) 3: 3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa (hash: dXBg2t9Rc27bMuDurzNxUcsK/TwKsHlPOvFnpp5aTVE=) 4: 40956690-3661-49f2-8ebc-2fa5a47a98ad.roa (hash: AgmdN3qsU2yrUPs1RIDpHG3eyZeN4lzX4GL8YuDvcs0=) 5: 4cb3e9f9-46a2-41eb-a4b7-75b53d791f33.roa (hash: xsaM36rzv8Uw5QN5dHxdEYXHzAwA5KNUnJAuj5qn0Dw=) 6: 55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa (hash: J9RI4VJSTxgaFW+3QF3NgsoWAna5ZD6zPEc51yMjTfg=) 7: 565f9740-389f-45ac-956e-b96e19889315.roa (hash: RBUJ8ShSm5Anvido6XPzsBu4tV+RRenjv9jc903Ikwg=) 8: 840736df-cd98-4b5b-a4f2-5615993fc74d.roa (hash: oid2qm1ok/AO9ebksp522nxKXQb48lmufO+GYtuqnC0=) 9: a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl (hash: kzJxLEiEQoWNTjiByA8JCmlx6AfymoagDehNDh7RgDI=) 10: b51d6a60-7601-45c2-8839-f2002dfa8409.roa (hash: wv2wCHPzy3EchePjRNU+awcsVc0NsUI4lB0jDWiKVnQ=) 11: c18b0845-fc95-41d6-b476-af4e1e466849.roa (hash: ntuPLViiaJGatIFvogVdq5Wl8TdNZ2/N5+5/fg06tSQ=) 12: e5ffe65e-7287-4628-8759-7c141866ee12.roa (hash: gqHve5mZoz5OKWb/tmkUudJMf28PgZgam85sSrazD3o=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:74:90:d0:35:5f:83:c7:70:79:b2:1d:f5:51:6d:f2:e4:b0:7b:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Mar 1 00:01:26 2026 GMT Not After : Mar 5 00:01:26 2026 GMT Subject: serialNumber=11b58bcefc5f79cb410489bda50290a1c4dc4d873227123fc10c57f3bb6f7208, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b7:f2:22:84:9b:39:77:d1:1b:bc:5a:b3:50: 5e:67:08:62:13:7c:d9:9d:33:26:1a:c4:d2:c4:58: ad:06:05:8a:2e:54:7d:7c:5c:ee:11:20:30:b0:66: 55:e8:2a:26:70:0d:9c:a8:21:08:a1:a3:27:b0:05: 1a:f8:54:59:cb:cd:5e:8f:a0:9c:72:bc:22:50:b6: 2a:1d:d5:6c:75:ee:81:fc:74:9e:b0:5c:a7:36:5c: 99:eb:c8:ef:f7:6e:b7:b7:16:c7:86:bb:c3:6d:dc: 79:7d:b9:09:d7:8e:4e:80:11:ba:58:6d:cd:f5:79: c6:cb:1b:13:31:ce:0d:ad:a7:c3:25:c2:6b:19:ac: 8a:e6:a0:42:a8:47:24:fb:a4:f1:9b:7c:5b:0f:35: 72:43:a0:62:8e:e1:52:0b:29:64:20:de:59:bc:6e: 03:24:1e:e2:68:ff:94:94:6f:3d:82:86:e0:38:0f: 80:30:49:81:f8:54:41:d2:95:7d:a4:a8:62:88:0f: 4c:e6:ea:f3:a1:c9:e9:7a:16:73:c7:1b:9f:53:ae: be:9d:74:74:17:09:c3:2e:de:5c:b7:f7:ce:56:be: ba:31:24:76:09:65:b5:73:36:e7:df:11:b7:14:74: 8d:cb:4c:e1:d5:df:cb:24:a9:4f:9a:3e:50:8b:47: 14:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:72:A1:36:7E:73:DD:C5:D2:61:3B:9E:86:C4:F9:FD:24:08:58:42 X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:8f:cf:07:55:5f:96:eb:f2:c7:82:c9:fd:f5:e7:4e:55:7e: 91:ba:1c:59:d2:f2:ee:bf:18:4f:59:ec:43:08:dc:49:b0:82: 79:18:52:40:89:59:0a:fe:85:fc:d0:56:5d:c2:1f:af:45:49: 92:71:1a:c8:9c:95:8b:f3:46:84:cd:73:11:19:0b:22:5a:5f: 36:ec:bc:83:2d:ba:e0:be:d0:03:75:b9:06:e7:a7:3e:bf:54: 8a:ff:ed:a1:10:4e:ac:05:bf:3d:ce:43:32:f3:e7:65:9c:ff: 41:b8:24:87:66:14:f8:b3:c7:78:5f:7b:c0:84:b3:19:7a:da: 08:00:ae:0c:52:78:3b:96:35:6d:92:08:44:30:a5:3b:f8:e5: 8e:2b:a2:96:55:70:05:ee:e4:db:8c:05:03:66:d8:33:62:fb: 15:a8:e8:55:ab:e4:0a:63:a5:55:d6:96:89:52:06:9e:80:b6: 1c:b4:03:88:e7:6b:d0:23:9e:a0:39:f4:ef:9b:c8:12:29:3d: de:a5:3b:33:a2:43:20:eb:42:f0:1e:39:ea:92:27:19:9a:c6: 7f:97:eb:87:13:95:d2:b6:1f:0c:3d:de:a1:84:07:8a:70:b3: d0:f8:0c:a1:4a:82:c6:eb:c2:41:30:60:ab:2e:d2:3a:15:71: 52:47:d9:c0 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUeXSQ0DVfg8dwebId9VFt8uSwexAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI2MDMwMTAwMDEyNloX DTI2MDMwNTAwMDEyNlowejFJMEcGA1UEBRNAMTFiNThiY2VmYzVmNzljYjQxMDQ4 OWJkYTUwMjkwYTFjNGRjNGQ4NzMyMjcxMjNmYzEwYzU3ZjNiYjZmNzIwODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7fyIoSbOXfRG7xas1BeZwhiE3zZ nTMmGsTSxFitBgWKLlR9fFzuESAwsGZV6ComcA2cqCEIoaMnsAUa+FRZy81ej6Cc crwiULYqHdVsde6B/HSesFynNlyZ68jv9263txbHhrvDbdx5fbkJ145OgBG6WG3N 9XnGyxsTMc4NrafDJcJrGayK5qBCqEck+6Txm3xbDzVyQ6BijuFSCylkIN5ZvG4D JB7iaP+UlG89gobgOA+AMEmB+FRB0pV9pKhiiA9M5urzocnpehZzxxufU66+nXR0 FwnDLt5ct/fOVr66MSR2CWW1czbn3xG3FHSNy0zh1d/LJKlPmj5Qi0cUTwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFI5yoTZ+c93F0mE7nobE+f0kCFhCMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMDhjMmYyNjQtMjNm OS00OWZiLTlkNDMtZjhiNTBiZWM5MjYxL2E1YjAxYmRkLWNkZWItNGNmYy04Yzkz LTdlNzBjNWUwOTMwNi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGSPzwdVX5br8seCyf31505VfpG6HFnS 8u6/GE9Z7EMI3EmwgnkYUkCJWQr+hfzQVl3CH69FSZJxGsiclYvzRoTNcxEZCyJa XzbsvIMtuuC+0AN1uQbnpz6/VIr/7aEQTqwFvz3OQzLz52Wc/0G4JIdmFPizx3hf e8CEsxl62ggArgxSeDuWNW2SCEQwpTv45Y4ropZVcAXu5NuMBQNm2DNi+xWo6FWr 5ApjpVXWlolSBp6Athy0A4jna9AjnqA59O+byBIpPd6lOzOiQyDrQvAeOeqSJxma xn+X64cTldK2Hww93qGEB4pws9D4DKFKgsbrwkEwYKsu0joVcVJH2cA= -----END CERTIFICATE-----Generated at Sun Mar 1 22:00:32 2026 by rpki-client