$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: Q8gCw6JQuYwnhckIwdftqS81y/IgcjhiYVXEAJI8mVI= Subject key identifier: 28:29:E6:BE:9E:30:EF:E1:F3:47:38:B5:94:EE:65:AC:69:B2:5F:EF Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 29AF00E5C3C256B1DB5D840098DB4C34FC1921C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0626 Signing time: Mon 01 Jun 2026 00:03:48 +0000 Manifest this update: Mon 01 Jun 2026 00:03:48 +0000 Manifest next update: Fri 05 Jun 2026 00:03:48 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: O1ijePMXSQvNa/gPMzpzEoRTcSEm33Dnuloej9JTCdc=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Jun 2026 00:03:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:af:00:e5:c3:c2:56:b1:db:5d:84:00:98:db:4c:34:fc:19:21:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 1 00:03:48 2026 GMT Not After : Jun 5 00:03:48 2026 GMT Subject: serialNumber=556c47585de4e00e1e3d849b45399bb7523e68c2ddfdbb404e66a2ac0caa9dce, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9b:11:93:a1:f4:af:6e:21:88:d0:b8:d7:82: e6:b8:53:b6:18:e5:dc:2b:98:85:d1:91:70:9c:23: 57:fc:c7:eb:5a:4c:72:80:c5:a8:44:95:bc:3b:65: 62:d1:f4:7c:ed:a1:ea:ed:67:b7:be:eb:cb:13:43: e2:7a:fb:95:3e:8e:32:4e:6d:50:7b:4d:a4:9b:d1: 2c:27:2d:5f:f1:20:7a:07:57:22:f2:c1:25:9d:8d: 85:11:f2:e3:21:7d:c8:df:0d:9e:43:83:81:52:86: b6:39:20:f4:3c:0e:60:01:26:fe:01:30:cd:df:28: 33:4f:43:a4:38:03:e1:38:e0:2a:96:ef:32:0c:83: 8c:7c:bf:dd:8f:27:ac:a1:44:ef:9c:c9:80:93:95: eb:f5:3a:42:8a:5b:76:25:53:32:d2:d4:c4:0c:b0: c2:e1:80:7a:c0:74:4e:22:1c:15:eb:de:47:7d:8a: b2:c2:c3:1e:26:01:8d:f4:40:3f:31:6a:2a:da:b4: 74:39:06:77:54:00:ba:32:68:9b:02:30:4b:b0:be: 2e:20:ad:de:50:20:12:40:07:9b:40:62:01:93:fc: 3e:bb:b5:e5:f0:b7:6c:1c:e9:0c:7e:23:5b:f9:9d: b7:a2:3e:e0:31:6b:36:70:4e:f6:86:08:f5:66:6c: d7:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:29:E6:BE:9E:30:EF:E1:F3:47:38:B5:94:EE:65:AC:69:B2:5F:EF X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:a3:71:fe:19:8d:48:a8:d6:22:12:c6:2a:ef:7b:da:6a:87: c6:95:14:c2:c0:04:b1:98:4e:0c:0f:79:6b:23:16:a6:07:6f: 8f:97:a5:39:a8:d2:24:53:81:01:84:d9:5c:40:3b:b3:f2:3c: 59:4d:1c:2d:2e:c8:cd:62:81:ab:d2:2c:fd:81:87:88:bd:31: d0:77:b6:18:49:51:a8:de:fd:73:57:ce:55:37:31:86:28:c4: d7:eb:9d:5c:00:62:1b:1b:bd:6d:64:58:ef:76:2b:7b:55:5d: a0:76:20:03:d0:83:01:4f:8c:91:0a:fc:02:d4:ea:c9:66:fe: a2:e7:ae:31:53:aa:0f:81:3a:c6:76:e9:be:0e:13:40:3d:48: 58:82:97:86:89:88:ba:13:ad:78:b1:2d:1d:78:42:95:a9:1a: 66:2c:7a:2e:31:1d:c8:8e:75:36:67:d9:67:d4:e7:78:01:5f: 09:90:48:8a:fb:91:31:84:d7:82:48:90:57:e1:25:0c:31:66: d0:33:bc:c6:0f:69:8f:01:4e:c9:d0:68:b3:5f:e8:be:21:0f: 17:e2:86:92:da:2b:94:f5:58:ae:4b:fa:37:0d:12:fa:6e:ea: aa:88:66:0b:a6:74:2e:fa:02:1c:1f:42:b5:db:2b:6e:aa:bd: f6:36:ca:d9 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUKa8A5cPCVrHbXYQAmNtMNPwZIcEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYwMTAwMDM0OFoX DTI2MDYwNTAwMDM0OFowejFJMEcGA1UEBRNANTU2YzQ3NTg1ZGU0ZTAwZTFlM2Q4 NDliNDUzOTliYjc1MjNlNjhjMmRkZmRiYjQwNGU2NmEyYWMwY2FhOWRjZTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAupsRk6H0r24hiNC414LmuFO2GOXc K5iF0ZFwnCNX/MfrWkxygMWoRJW8O2Vi0fR87aHq7We3vuvLE0PievuVPo4yTm1Q e02km9EsJy1f8SB6B1ci8sElnY2FEfLjIX3I3w2eQ4OBUoa2OSD0PA5gASb+ATDN 3ygzT0OkOAPhOOAqlu8yDIOMfL/djyesoUTvnMmAk5Xr9TpCilt2JVMy0tTEDLDC 4YB6wHROIhwV695HfYqywsMeJgGN9EA/MWoq2rR0OQZ3VAC6MmibAjBLsL4uIK3e UCASQAebQGIBk/w+u7Xl8LdsHOkMfiNb+Z23oj7gMWs2cE72hgj1ZmzXKwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFCgp5r6eMO/h80c4tZTuZaxpsl/vMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAIejcf4ZjUio1iISxirve9pqh8aVFMLA BLGYTgwPeWsjFqYHb4+XpTmo0iRTgQGE2VxAO7PyPFlNHC0uyM1igavSLP2Bh4i9 MdB3thhJUaje/XNXzlU3MYYoxNfrnVwAYhsbvW1kWO92K3tVXaB2IAPQgwFPjJEK /ALU6slm/qLnrjFTqg+BOsZ26b4OE0A9SFiCl4aJiLoTrXixLR14QpWpGmYsei4x HciOdTZn2WfU53gBXwmQSIr7kTGE14JIkFfhJQwxZtAzvMYPaY8BTsnQaLNf6L4h DxfihpLaK5T1WK5L+jcNEvpu6qqIZgumdC76AhwfQrXbK26qvfY2ytk= -----END CERTIFICATE-----Generated at Mon Jun 1 20:48:54 2026 by rpki-client