$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: o36hYNRXUbqNt0lz3n3NGFzi4mg/Kb2922vcrQA3p9Q= Subject key identifier: 95:34:18:BE:2E:E7:14:86:F4:21:75:BE:79:9F:D0:84:8B:AF:1E:F7 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 7FB9B3853545286542504024B1BDC3EC8E36FF7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 05CB Signing time: Mon 02 Mar 2026 00:02:01 +0000 Manifest this update: Mon 02 Mar 2026 00:02:01 +0000 Manifest next update: Fri 06 Mar 2026 00:02:01 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: DBKuHL0fgDoQ6ChXjl6L+ny/V9zz6bau8A2GrpUBW1U=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:02:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:b9:b3:85:35:45:28:65:42:50:40:24:b1:bd:c3:ec:8e:36:ff:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Mar 2 00:02:01 2026 GMT Not After : Mar 6 00:02:01 2026 GMT Subject: serialNumber=80cd52ddea93ca3fcd5be7c45122b42642adcf1df1b1f1fd3edfc60e161549d8, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:2d:07:6f:de:4a:14:c2:c3:ba:71:66:c4:af: fb:49:bb:c6:62:36:02:1f:4d:1d:03:27:c9:7d:05: bb:19:45:40:9d:1a:56:c4:8d:ae:f9:92:d2:a4:d4: 34:de:f1:1e:a6:02:aa:14:ad:f5:55:2b:85:e2:e9: f3:e7:d7:fc:3f:62:52:ed:7d:88:d4:fa:ca:45:94: 13:d5:53:be:a2:4e:7b:00:d7:ab:f5:41:4c:db:20: 31:c1:3c:b7:10:76:b3:cd:99:7f:e9:2d:87:93:47: 2e:6c:bd:31:fb:e6:8f:e1:fc:e2:7e:66:2a:19:9d: bb:5b:ec:81:4b:e5:71:5e:34:96:8f:30:69:ff:4d: 33:cf:61:cb:23:f0:d4:76:4e:b9:73:8a:d2:5f:db: 55:f3:13:d5:16:ce:25:21:f8:40:92:4c:8b:e5:0e: 7b:9b:3e:a6:45:74:0d:96:d6:d1:cf:b2:58:fe:61: fd:e4:da:30:e5:74:04:d4:c3:50:89:23:19:b6:c8: f1:45:ae:c2:09:9d:39:c2:c8:45:f0:6f:13:2e:cc: af:16:81:cb:05:54:55:99:82:5a:b3:68:42:f0:51: 13:e5:43:58:30:79:a2:99:51:91:17:8c:e1:dc:9d: e4:eb:bf:75:89:a3:76:22:3b:f5:ac:ee:3e:fe:80: c7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:34:18:BE:2E:E7:14:86:F4:21:75:BE:79:9F:D0:84:8B:AF:1E:F7 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:fb:8c:97:df:33:be:94:86:14:19:47:08:63:4e:e5:a5:00: 67:f5:ad:c8:36:e8:71:ab:f4:04:ce:86:c6:fb:e4:82:48:0c: 00:7b:cf:34:ad:0c:df:51:30:42:1c:19:d6:1c:5a:d4:98:1a: 3f:84:5a:52:02:e4:26:cf:81:96:6d:7f:62:8f:40:eb:e1:3f: c0:8d:0a:9f:e8:0c:d3:c6:35:ac:6b:23:f8:e1:27:be:f7:64: 10:a7:fb:13:66:56:19:c9:85:2d:83:0e:37:f9:0f:f3:cb:bf: af:ae:f6:91:48:b1:4c:8a:35:bc:d2:39:e2:cf:35:eb:f8:7e: d9:29:13:1b:d9:6a:22:8e:3f:51:4f:22:bf:9f:58:64:17:53: 74:9a:99:76:40:52:0f:5f:b4:53:02:70:1f:4f:6e:d6:2d:a9: 03:61:6c:4f:2b:83:3c:01:a1:c1:d5:b0:9b:c8:83:f9:9f:cd: a6:59:8d:96:a3:b4:8e:69:37:af:2f:8e:55:c0:38:a4:a0:24: 52:1a:77:8e:6a:76:84:7c:19:cb:7b:d4:5d:df:26:59:fd:96: 15:e6:99:73:20:4c:82:3d:e9:87:43:54:e2:c0:67:15:87:9f: 56:5c:c0:82:37:59:d7:da:7a:8c:fe:3a:c0:d6:1e:e4:9d:f5: e9:29:a9:62 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUf7mzhTVFKGVCUEAksb3D7I42/34wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDMwMjAwMDIwMVoX DTI2MDMwNjAwMDIwMVowejFJMEcGA1UEBRNAODBjZDUyZGRlYTkzY2EzZmNkNWJl N2M0NTEyMmI0MjY0MmFkY2YxZGYxYjFmMWZkM2VkZmM2MGUxNjE1NDlkODEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmi0Hb95KFMLDunFmxK/7SbvGYjYC H00dAyfJfQW7GUVAnRpWxI2u+ZLSpNQ03vEepgKqFK31VSuF4unz59f8P2JS7X2I 1PrKRZQT1VO+ok57ANer9UFM2yAxwTy3EHazzZl/6S2Hk0cubL0x++aP4fzifmYq GZ27W+yBS+VxXjSWjzBp/00zz2HLI/DUdk65c4rSX9tV8xPVFs4lIfhAkkyL5Q57 mz6mRXQNltbRz7JY/mH95Now5XQE1MNQiSMZtsjxRa7CCZ05wshF8G8TLsyvFoHL BVRVmYJas2hC8FET5UNYMHmimVGRF4zh3J3k6791iaN2Ijv1rO4+/oDHtwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFJU0GL4u5xSG9CF1vnmf0ISLrx73MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAAf7jJffM76UhhQZRwhjTuWlAGf1rcg2 6HGr9ATOhsb75IJIDAB7zzStDN9RMEIcGdYcWtSYGj+EWlIC5CbPgZZtf2KPQOvh P8CNCp/oDNPGNaxrI/jhJ773ZBCn+xNmVhnJhS2DDjf5D/PLv6+u9pFIsUyKNbzS OeLPNev4ftkpExvZaiKOP1FPIr+fWGQXU3SamXZAUg9ftFMCcB9PbtYtqQNhbE8r gzwBocHVsJvIg/mfzaZZjZajtI5pN68vjlXAOKSgJFIad45qdoR8Gct71F3fJln9 lhXmmXMgTII96YdDVOLAZxWHn1ZcwII3Wdfaeoz+OsDWHuSd9ekpqWI= -----END CERTIFICATE-----Generated at Mon Mar 2 03:02:07 2026 by rpki-client