
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File: manifest.mft (raw, json)
Hash identifier: rB9ibPOQM8Wagf1S/v+GeTUjukrH1yAGfxK/PbiIv9A=
Subject key identifier: 44:F8:15:2B:43:D4:64:0C:64:9E:C5:E0:1D:CD:DE:AC:44:B0:51:E3
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial: 3EB2162192AE4FC67053D3D1A27C9D52C64E7E47
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number: 060C
Signing time: Wed 06 May 2026 00:02:29 +0000
Manifest this update: Wed 06 May 2026 00:02:29 +0000
Manifest next update: Sun 10 May 2026 00:02:29 +0000
Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: 0BwGlp+G3NxiiW5IBl5LDz3zntKNlLgdNFpkrFsa7DI=)
2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=)
3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=)
4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=)
5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=)
6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=)
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 09 May 2026 22:28:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:b2:16:21:92:ae:4f:c6:70:53:d3:d1:a2:7c:9d:52:c6:4e:7e:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Validity
Not Before: May 6 00:02:29 2026 GMT
Not After : May 10 00:02:29 2026 GMT
Subject: serialNumber=89d4f4faa333e73016da74b4826e20e626d4db31b76caa379becb55dd2e130f6, CN=bb9a9116-f615-462e-a680-5266b327e0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:b5:f3:6e:27:54:01:80:37:78:ba:a4:85:e3:
8b:7a:89:28:c7:85:1b:6d:65:c9:70:de:65:fc:96:
81:d5:ad:de:1d:70:2d:a9:a2:ed:17:f0:fd:bc:db:
9b:32:7a:a9:8d:4d:8f:13:ab:a0:6f:31:f8:31:ee:
84:17:af:bf:c4:59:38:2c:8e:c4:19:c0:83:f6:bd:
c4:77:5a:9a:a3:3e:be:a5:5a:fc:5a:94:88:a6:bd:
d5:c1:27:d7:f5:87:6b:fe:37:26:a4:bb:35:76:4f:
5f:71:b4:c0:47:c4:c2:1b:ad:07:92:31:12:af:1b:
7d:6f:c2:c8:67:f5:6a:16:ae:43:b6:88:ae:52:0f:
e2:54:63:bf:5f:3b:8c:df:b0:03:cd:a1:9a:b6:d8:
61:4f:f0:7f:4c:88:6b:04:01:7d:2d:45:e9:4e:0d:
d1:fe:78:9a:03:08:c2:c0:50:87:86:ef:16:44:1f:
c1:9b:92:e1:ce:d8:76:5b:a1:d8:74:d8:6c:4f:6c:
50:33:4e:31:26:39:26:54:c5:34:0e:03:b6:1d:4a:
fd:63:2f:cc:23:61:37:ed:de:8d:c9:a7:a1:f6:16:
86:ea:18:45:a0:31:ab:4b:09:5f:f7:a9:bc:f1:ac:
28:ec:08:58:b6:85:25:0e:45:76:71:05:41:37:8a:
7f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:F8:15:2B:43:D4:64:0C:64:9E:C5:E0:1D:CD:DE:AC:44:B0:51:E3
X509v3 Authority Key Identifier:
keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:6a:58:bb:ab:e1:4d:86:ef:2f:97:07:ca:dc:c1:4c:4e:5f:
75:c8:fd:78:ab:58:f5:c8:42:f1:78:07:32:52:a5:7d:76:f0:
1b:a4:82:db:fc:38:8b:31:af:a4:87:fc:3c:2f:1a:e5:9a:68:
34:fd:49:3e:da:8a:99:da:6a:b6:22:67:db:45:30:10:f2:8a:
92:a4:53:cc:be:da:fa:13:1c:93:19:1c:2c:d3:51:d4:6a:76:
e2:50:de:67:ab:97:37:d3:cd:98:00:c4:9c:45:be:35:2c:af:
15:fe:12:0e:57:78:63:5b:8a:93:4f:d9:40:5a:03:95:fb:c2:
2a:99:e1:69:49:18:9e:dc:2b:f5:68:01:6a:19:6b:1c:7a:22:
9e:19:2b:fb:5f:26:a4:67:b1:f2:5a:bd:8f:7b:d7:a7:93:ad:
51:55:73:24:d2:ba:fc:bd:92:1d:ce:e7:84:ab:52:aa:49:b7:
a9:31:c0:7e:26:f2:c5:1d:c5:6a:5c:95:f4:cc:1b:1c:77:59:
86:c9:4d:4c:f8:4e:27:7e:1b:66:8b:45:6a:5e:ff:7e:f3:1c:
28:52:98:05:48:49:8e:7c:f5:c9:57:fe:a9:b6:82:9d:05:b1:
18:2f:68:85:2a:03:0d:fb:23:e3:99:36:a2:0e:56:e8:81:ce:
98:2a:60:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 6 03:32:36 2026 by rpki-client