$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft File: manifest.mft (raw, json) Hash identifier: i3VXU2qR12G7UY/UYmvuHrPpQDFWYJ4oCejbzDTPbSk= Subject key identifier: 30:8C:34:FC:85:49:F1:38:AA:90:89:13:06:38:18:56:F9:94:FF:04 Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 3B13038E75F25A9F84118C057EEAD100F69BABF3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft Manifest number: 05AC Signing time: Fri 17 Apr 2026 00:13:18 +0000 Manifest this update: Fri 17 Apr 2026 00:13:18 +0000 Manifest next update: Tue 21 Apr 2026 00:13:18 +0000 Files and hashes: 1: 2e40ee0b-9aa9-4919-a079-9712212e127c.roa (hash: HifPHeBwsO/AlIR45rsqvzHRP4MIeEvu4rBsdIj34M0=) 2: 32bf2c39-b536-43d0-b557-f68d8ee64091.roa (hash: 7j+M4k/YxLXgoUQh9ut5fyd0FgSZ1I4FPABA93oRNpU=) 3: 3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa (hash: dXBg2t9Rc27bMuDurzNxUcsK/TwKsHlPOvFnpp5aTVE=) 4: 40956690-3661-49f2-8ebc-2fa5a47a98ad.roa (hash: AgmdN3qsU2yrUPs1RIDpHG3eyZeN4lzX4GL8YuDvcs0=) 5: 4cb3e9f9-46a2-41eb-a4b7-75b53d791f33.roa (hash: xsaM36rzv8Uw5QN5dHxdEYXHzAwA5KNUnJAuj5qn0Dw=) 6: 55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa (hash: J9RI4VJSTxgaFW+3QF3NgsoWAna5ZD6zPEc51yMjTfg=) 7: 565f9740-389f-45ac-956e-b96e19889315.roa (hash: RBUJ8ShSm5Anvido6XPzsBu4tV+RRenjv9jc903Ikwg=) 8: 840736df-cd98-4b5b-a4f2-5615993fc74d.roa (hash: oid2qm1ok/AO9ebksp522nxKXQb48lmufO+GYtuqnC0=) 9: a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl (hash: rbs04yhqo0xdKoEOBr1aX/jNU0iNRwUNptxYkUnF9bk=) 10: b51d6a60-7601-45c2-8839-f2002dfa8409.roa (hash: wv2wCHPzy3EchePjRNU+awcsVc0NsUI4lB0jDWiKVnQ=) 11: c18b0845-fc95-41d6-b476-af4e1e466849.roa (hash: ntuPLViiaJGatIFvogVdq5Wl8TdNZ2/N5+5/fg06tSQ=) 12: e5ffe65e-7287-4628-8759-7c141866ee12.roa (hash: gqHve5mZoz5OKWb/tmkUudJMf28PgZgam85sSrazD3o=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 00:13:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:13:03:8e:75:f2:5a:9f:84:11:8c:05:7e:ea:d1:00:f6:9b:ab:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Apr 17 00:13:18 2026 GMT Not After : Apr 21 00:13:18 2026 GMT Subject: serialNumber=e09d7aeddda8eb7fe5ac007861d8c6802f39f17df6d009b0376601f8dd9753a1, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:9c:7d:20:ab:aa:39:0d:7a:82:e0:3e:b4:0b: 75:07:8a:7b:8a:cb:bd:9e:6d:32:05:54:a5:67:ba: 99:3b:09:28:5f:26:db:e4:cb:d9:73:b0:6f:83:50: 9f:b2:96:d3:15:fb:0e:4f:5e:72:23:9c:ae:0a:d3: 34:4a:dd:e3:60:b4:f1:aa:ec:1f:78:f7:a6:79:ad: a4:a0:ea:40:ff:c5:d7:d9:71:28:a9:36:51:23:43: b4:18:4f:d8:b3:46:dc:73:ce:25:da:55:1d:56:a5: 1f:7f:ba:d9:72:d1:b5:de:25:27:d7:21:90:4e:9c: 3d:c4:23:49:2d:24:1d:5c:1b:df:83:28:f5:78:ff: f7:65:d5:49:73:3f:c7:9c:e6:e3:75:e9:3a:8f:aa: 34:ea:16:77:f2:d6:c7:c5:9e:5b:15:80:46:92:19: 2d:02:fb:e8:6a:e2:6d:ae:34:fc:05:20:b1:a0:60: d3:37:e4:ef:1c:21:c5:a2:a5:18:34:ee:43:b4:5b: 89:27:51:3a:23:54:80:7f:26:13:72:04:6a:6d:5c: d9:26:59:58:a2:c5:db:f0:37:2f:5f:9e:1f:08:7d: 45:08:2b:c4:7c:22:b1:70:20:86:83:73:db:cb:7f: eb:6b:18:de:52:20:e0:0a:cf:17:68:ca:6f:77:43: e5:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:8C:34:FC:85:49:F1:38:AA:90:89:13:06:38:18:56:F9:94:FF:04 X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:8e:ad:c1:0e:db:53:8a:dd:9e:ce:6f:11:f3:9c:af:14:31: 79:fb:07:01:cb:a5:37:34:0e:4e:b0:94:0c:29:e8:dc:ea:7c: 3b:6c:16:d1:34:39:1b:6e:0c:f2:8d:03:f8:db:16:b3:12:ec: 45:23:f1:42:48:c6:4c:51:09:8a:e2:d5:e0:d7:4f:f3:69:93: 99:d1:da:ee:f1:9f:48:5d:f9:0c:ef:e2:3f:76:e2:8d:11:9a: 05:d5:73:13:74:83:73:d7:9c:5f:3e:08:f7:b9:25:f2:3c:fc: 72:73:b4:a3:a2:7b:f4:e2:ba:25:e8:cc:d2:af:bc:e2:de:9e: 8b:8c:5b:95:15:2b:b3:8f:12:6f:41:5a:4f:92:6e:60:04:38: 3a:43:6f:c4:89:63:7d:f9:42:b8:29:c0:ab:35:dc:08:28:90: 55:67:06:a6:09:40:24:d3:2b:10:e9:d4:fb:bd:b2:02:4f:b8: b5:b6:75:85:3b:a0:5c:75:fb:37:27:37:3f:3a:d4:2e:aa:56: 00:f3:21:d2:98:5b:c6:5c:57:83:ef:6e:a0:1a:5c:60:d7:d9: ae:1d:1b:21:b5:bd:4a:29:a3:5c:d1:50:a8:9b:51:97:e7:ea: e5:f9:38:ce:f0:bf:69:df:98:dd:1c:00:ff:24:75:96:bf:8d: 93:a7:cb:9b -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUOxMDjnXyWp+EEYwFfurRAPabq/MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI2MDQxNzAwMTMxOFoX DTI2MDQyMTAwMTMxOFowejFJMEcGA1UEBRNAZTA5ZDdhZWRkZGE4ZWI3ZmU1YWMw MDc4NjFkOGM2ODAyZjM5ZjE3ZGY2ZDAwOWIwMzc2NjAxZjhkZDk3NTNhMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkJx9IKuqOQ16guA+tAt1B4p7isu9 nm0yBVSlZ7qZOwkoXybb5MvZc7Bvg1CfspbTFfsOT15yI5yuCtM0St3jYLTxquwf ePemea2koOpA/8XX2XEoqTZRI0O0GE/Ys0bcc84l2lUdVqUff7rZctG13iUn1yGQ Tpw9xCNJLSQdXBvfgyj1eP/3ZdVJcz/HnObjdek6j6o06hZ38tbHxZ5bFYBGkhkt AvvoauJtrjT8BSCxoGDTN+TvHCHFoqUYNO5DtFuJJ1E6I1SAfyYTcgRqbVzZJllY osXb8DcvX54fCH1FCCvEfCKxcCCGg3Pby3/raxjeUiDgCs8XaMpvd0PlUQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFDCMNPyFSfE4qpCJEwY4GFb5lP8EMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMDhjMmYyNjQtMjNm OS00OWZiLTlkNDMtZjhiNTBiZWM5MjYxL2E1YjAxYmRkLWNkZWItNGNmYy04Yzkz LTdlNzBjNWUwOTMwNi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAB+OrcEO21OK3Z7ObxHznK8UMXn7BwHL pTc0Dk6wlAwp6NzqfDtsFtE0ORtuDPKNA/jbFrMS7EUj8UJIxkxRCYri1eDXT/Np k5nR2u7xn0hd+Qzv4j924o0RmgXVcxN0g3PXnF8+CPe5JfI8/HJztKOie/TiuiXo zNKvvOLenouMW5UVK7OPEm9BWk+SbmAEODpDb8SJY335QrgpwKs13AgokFVnBqYJ QCTTKxDp1Pu9sgJPuLW2dYU7oFx1+zcnNz861C6qVgDzIdKYW8ZcV4PvbqAaXGDX 2a4dGyG1vUopo1zRUKibUZfn6uX5OM7wv2nfmN0cAP8kdZa/jZOny5s= -----END CERTIFICATE-----Generated at Fri Apr 17 05:45:17 2026 by rpki-client