$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: BbYlmfuAEKS6aufYufxZUhstMZX453Xju7ZlU3gh1Y8= Subject key identifier: 06:F4:80:D3:3E:A6:6A:EF:CB:A6:E3:0E:ED:52:FF:8C:67:CE:F3:2B Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 1AA38C8C51834C76462D49E467C7C1DFDAF43ACB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0632 Signing time: Sat 13 Jun 2026 00:05:47 +0000 Manifest this update: Sat 13 Jun 2026 00:05:47 +0000 Manifest next update: Wed 17 Jun 2026 00:05:47 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: gFrJmIx+0Eo7Gjntkb2QcQayVYtLbrvCemHlmsDE3G0=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:a3:8c:8c:51:83:4c:76:46:2d:49:e4:67:c7:c1:df:da:f4:3a:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 13 00:05:47 2026 GMT Not After : Jun 17 00:05:47 2026 GMT Subject: serialNumber=a0b68f78a6b44d74b20eebf20b13c2b6be0b79f69f82788128413b0b2a3aaf85, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e4:56:19:41:5a:74:eb:eb:60:29:61:93:7d: b3:34:91:cd:e6:7e:eb:37:d6:77:6f:a1:69:34:9a: 27:83:86:0c:52:9c:63:1c:df:d3:73:cc:bf:f7:1b: 47:8e:50:0b:93:9e:99:db:20:ec:fd:21:9e:93:77: a3:79:b4:53:1f:4d:f7:3d:01:33:7f:26:e7:3a:be: f9:1f:61:86:b3:49:fc:43:3b:d8:d3:3a:45:c1:35: f7:dc:59:9e:fc:88:e7:81:0b:0a:1f:11:fa:ed:8e: 22:5e:d6:73:49:56:9a:49:21:ba:41:99:01:e7:fa: 02:4e:2a:f5:a1:23:91:82:1d:e7:2d:ec:53:35:48: 0f:a7:ee:30:4b:33:04:48:1c:66:05:fb:85:22:84: 85:44:24:fe:c5:c5:cd:6e:6c:b3:20:20:e9:af:27: 5b:ef:71:27:ab:84:b1:26:f4:c4:2c:4e:07:95:05: 50:89:4f:79:a0:c2:7c:e0:60:70:57:c3:c6:fc:ca: b3:3e:61:1d:08:1c:c0:30:1d:df:0c:4e:6a:d4:2c: ad:e7:9a:79:6d:17:fb:d1:a8:d3:ca:f9:d8:c1:eb: 65:38:5d:33:3f:c1:0a:eb:c6:2f:0a:6c:8d:1f:e0: 4b:83:34:26:99:ee:ef:f0:85:8f:71:0c:d0:d5:aa: f3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:F4:80:D3:3E:A6:6A:EF:CB:A6:E3:0E:ED:52:FF:8C:67:CE:F3:2B X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:2b:e9:c9:ce:f0:b3:7c:7f:99:44:76:58:8d:b0:b2:3e:c1: 90:c7:a6:a0:90:e9:c6:ba:1b:bc:39:67:63:d4:7f:94:63:6d: 51:4f:d0:5f:59:f4:a7:3c:e2:94:3d:cf:91:0c:5c:69:6d:f8: cf:8b:5b:2a:33:32:4f:1a:31:0f:c7:73:c0:c4:52:ae:6f:0f: 78:0b:22:90:fc:8d:15:b6:d4:ef:cd:3e:8f:53:97:78:5b:70: 41:a6:4d:a9:1b:48:c2:2e:7a:51:a1:0f:3c:98:65:af:07:61: ef:52:91:eb:2d:ef:58:ea:81:92:25:72:f9:bf:83:83:7d:4a: f8:07:1b:c7:db:88:00:e4:d7:da:ed:e2:c3:de:13:5c:14:05: 7a:99:cd:4d:25:f1:4f:81:87:b4:03:41:b0:62:d1:18:c9:c9: e4:36:b9:88:eb:69:3e:97:d6:a9:09:43:c2:27:2f:53:f8:0a: 9d:e8:45:c1:2e:70:15:b3:70:2a:63:70:21:06:51:a8:62:28: 4a:8e:bb:7d:0b:30:2b:de:44:0d:6f:8c:65:af:34:2c:fb:e7: ff:08:f9:2f:76:60:5e:57:c2:5f:0f:31:0c:66:fa:8e:26:8b: f6:1c:b7:06:c5:aa:b9:d5:73:1d:2b:96:42:1f:99:98:9e:39: 76:55:2b:e1 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUGqOMjFGDTHZGLUnkZ8fB39r0OsswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYxMzAwMDU0N1oX DTI2MDYxNzAwMDU0N1owejFJMEcGA1UEBRNAYTBiNjhmNzhhNmI0NGQ3NGIyMGVl YmYyMGIxM2MyYjZiZTBiNzlmNjlmODI3ODgxMjg0MTNiMGIyYTNhYWY4NTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxORWGUFadOvrYClhk32zNJHN5n7r N9Z3b6FpNJong4YMUpxjHN/Tc8y/9xtHjlALk56Z2yDs/SGek3ejebRTH033PQEz fybnOr75H2GGs0n8QzvY0zpFwTX33Fme/IjngQsKHxH67Y4iXtZzSVaaSSG6QZkB 5/oCTir1oSORgh3nLexTNUgPp+4wSzMESBxmBfuFIoSFRCT+xcXNbmyzICDprydb 73Enq4SxJvTELE4HlQVQiU95oMJ84GBwV8PG/MqzPmEdCBzAMB3fDE5q1Cyt55p5 bRf70ajTyvnYwetlOF0zP8EK68YvCmyNH+BLgzQmme7v8IWPcQzQ1arzNwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFAb0gNM+pmrvy6bjDu1S/4xnzvMrMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAEwr6cnO8LN8f5lEdliNsLI+wZDHpqCQ 6ca6G7w5Z2PUf5RjbVFP0F9Z9Kc84pQ9z5EMXGlt+M+LWyozMk8aMQ/Hc8DEUq5v D3gLIpD8jRW21O/NPo9Tl3hbcEGmTakbSMIuelGhDzyYZa8HYe9Skest71jqgZIl cvm/g4N9SvgHG8fbiADk19rt4sPeE1wUBXqZzU0l8U+Bh7QDQbBi0RjJyeQ2uYjr aT6X1qkJQ8InL1P4Cp3oRcEucBWzcCpjcCEGUahiKEqOu30LMCveRA1vjGWvNCz7 5/8I+S92YF5Xwl8PMQxm+o4mi/YctwbFqrnVcx0rlkIfmZieOXZVK+E= -----END CERTIFICATE-----Generated at Sat Jun 13 09:24:41 2026 by rpki-client