$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: 6KfhVVOzMG3soE1C65+MukCi+GfRYh6kAO0/aD1pOoU= Subject key identifier: 02:3C:9B:2C:06:A5:00:06:C0:F0:B1:69:51:FB:8E:78:0E:CA:19:9D Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 5AEAD07D8A54F972D37990ABA8B9033DAD574D94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0634 Signing time: Mon 15 Jun 2026 00:06:07 +0000 Manifest this update: Mon 15 Jun 2026 00:06:07 +0000 Manifest next update: Fri 19 Jun 2026 00:06:07 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: jKKZWh8mJWZy3I33m0SPq1qnZc1IFJtHomLbbEyjXX8=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 00:06:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:ea:d0:7d:8a:54:f9:72:d3:79:90:ab:a8:b9:03:3d:ad:57:4d:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 15 00:06:07 2026 GMT Not After : Jun 19 00:06:07 2026 GMT Subject: serialNumber=c6211c2e4d4cf50bee33b3a0f4cc3d02dcea4ab249b679c1565a3067c0be6f28, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:c6:a4:59:96:c5:79:f3:88:c8:b0:99:73:14: e8:38:0b:10:c5:da:ca:eb:f9:a5:a8:83:67:c1:9f: 59:88:f2:09:34:f9:0b:73:5e:b2:4e:9e:68:03:4c: 5e:e7:9a:6b:47:08:78:c6:bf:2c:29:d7:59:bf:7d: ff:7b:ca:39:08:96:7e:44:32:54:9e:3b:d2:f9:6d: af:19:be:fe:28:41:cc:d4:cc:e4:90:33:90:e6:d4: cc:a9:fb:f8:d2:8f:9b:b6:82:85:d2:5b:24:68:4c: e6:9e:dd:8e:cc:d8:94:70:35:c6:29:af:5e:c0:4f: 81:6a:ad:e0:44:09:d1:11:68:a3:bc:20:43:63:eb: 74:70:fc:0c:12:95:ac:64:37:b8:45:f4:fc:be:33: 49:a2:22:8a:e8:71:e9:5d:93:c6:2d:f7:5a:43:b1: 24:a2:46:b0:52:e8:84:b1:a7:35:0c:9a:0b:db:c4: 71:0a:31:14:fa:c4:8b:40:c5:fd:b0:fc:40:b7:ca: d3:c2:63:76:be:3c:82:08:c4:32:f8:c2:ae:52:d5: 14:37:0f:84:04:66:7b:6a:55:0a:5b:5e:8d:0f:c4: 66:e8:df:60:ad:0d:dc:f2:f8:8a:82:e3:9f:38:aa: ef:0c:79:c3:92:a1:9d:06:3d:bd:00:46:0a:12:ae: 51:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:3C:9B:2C:06:A5:00:06:C0:F0:B1:69:51:FB:8E:78:0E:CA:19:9D X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:10:30:78:d7:a4:76:72:44:61:b9:ef:fa:07:45:68:02:04: 13:69:52:f1:00:01:e0:15:78:16:25:03:14:04:7b:3e:eb:c2: 03:b0:15:84:8d:4f:92:34:b3:cd:08:d0:13:c7:cb:36:5c:c8: 74:b2:cc:bc:0f:d3:8f:22:80:a6:49:e5:8c:81:fd:1a:3e:ff: 9e:c1:b7:cf:a4:0c:56:09:ff:38:5f:b4:8c:5e:9c:cb:17:c0: 7a:72:fa:e2:6d:b8:a1:f5:e6:7d:c7:c7:06:f8:f1:14:67:e4: 0c:b9:88:c5:75:ad:bc:0b:04:23:a5:a5:13:07:1f:4b:26:e3: 6e:ca:c1:b6:0f:22:c1:0e:82:03:5f:1a:b4:67:58:57:98:48: c3:86:5c:18:bb:30:07:e9:fd:08:01:e7:66:a6:36:de:e7:2a: 7f:1d:8d:52:ce:6b:c4:4d:52:03:e0:a4:04:64:1f:fe:3f:22: 0f:1e:67:62:e5:ea:48:86:f3:a5:4e:a3:98:e2:f4:37:28:57: e0:bd:92:99:73:16:69:68:05:e8:a0:35:da:ce:b7:66:66:6e: 70:5f:6f:07:7e:5d:54:9b:bc:15:23:79:8e:7d:70:bf:4c:96: 07:bc:da:ab:a0:5b:cd:16:a2:75:60:2f:df:63:46:b3:49:25: a4:6e:97:96 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUWurQfYpU+XLTeZCrqLkDPa1XTZQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYxNTAwMDYwN1oX DTI2MDYxOTAwMDYwN1owejFJMEcGA1UEBRNAYzYyMTFjMmU0ZDRjZjUwYmVlMzNi M2EwZjRjYzNkMDJkY2VhNGFiMjQ5YjY3OWMxNTY1YTMwNjdjMGJlNmYyODEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmMakWZbFefOIyLCZcxToOAsQxdrK 6/mlqINnwZ9ZiPIJNPkLc16yTp5oA0xe55prRwh4xr8sKddZv33/e8o5CJZ+RDJU njvS+W2vGb7+KEHM1MzkkDOQ5tTMqfv40o+btoKF0lskaEzmnt2OzNiUcDXGKa9e wE+Baq3gRAnREWijvCBDY+t0cPwMEpWsZDe4RfT8vjNJoiKK6HHpXZPGLfdaQ7Ek okawUuiEsac1DJoL28RxCjEU+sSLQMX9sPxAt8rTwmN2vjyCCMQy+MKuUtUUNw+E BGZ7alUKW16ND8Rm6N9grQ3c8viKguOfOKrvDHnDkqGdBj29AEYKEq5RoQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFAI8mywGpQAGwPCxaVH7jngOyhmdMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAA4QMHjXpHZyRGG57/oHRWgCBBNpUvEA AeAVeBYlAxQEez7rwgOwFYSNT5I0s80I0BPHyzZcyHSyzLwP048igKZJ5YyB/Ro+ /57Bt8+kDFYJ/zhftIxenMsXwHpy+uJtuKH15n3Hxwb48RRn5Ay5iMV1rbwLBCOl pRMHH0sm427KwbYPIsEOggNfGrRnWFeYSMOGXBi7MAfp/QgB52amNt7nKn8djVLO a8RNUgPgpARkH/4/Ig8eZ2Ll6kiG86VOo5ji9DcoV+C9kplzFmloBeigNdrOt2Zm bnBfbwd+XVSbvBUjeY59cL9Mlge82qugW80WonVgL99jRrNJJaRul5Y= -----END CERTIFICATE-----Generated at Mon Jun 15 21:05:11 2026 by rpki-client