$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: pD8LYrRtOxy3qqbJjTUZOmXPcIVJuLOZ3hbQm3hlfGo= Subject key identifier: 39:40:66:36:90:BF:1F:A7:58:4C:39:12:45:80:72:75:40:EF:96:88 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 67AB05D291B143503794B04D79496507A237576A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 060D Signing time: Thu 07 May 2026 00:02:39 +0000 Manifest this update: Thu 07 May 2026 00:02:39 +0000 Manifest next update: Mon 11 May 2026 00:02:39 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: znXyHMGXtJKUN+HFN5znpLg5JX/zFGxsByAKg3eRPKQ=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 May 2026 00:02:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:ab:05:d2:91:b1:43:50:37:94:b0:4d:79:49:65:07:a2:37:57:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 7 00:02:39 2026 GMT Not After : May 11 00:02:39 2026 GMT Subject: serialNumber=0ea48fd5ab2ce780394254102432b3320e4a97d9a9cef3c35d918ae4ecbea12a, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:90:e1:6e:62:0a:13:33:2e:d8:74:d0:c3:08: c3:5d:ad:12:26:e6:4d:71:56:5e:8a:21:87:3b:fc: 9f:de:ce:60:35:5e:4f:d2:f1:d0:3b:60:c3:fc:cd: ad:fd:81:7e:c6:1d:57:ed:77:b2:06:94:76:e9:4a: 5d:b2:66:04:63:ef:b6:5c:e5:72:78:39:29:85:c5: 05:c9:94:d3:b0:0c:8b:b2:97:27:64:20:4d:51:0b: 69:41:2f:67:f8:d3:a0:e7:f4:78:a9:89:a5:20:d2: 42:ba:0d:89:8d:4f:da:89:30:74:ea:11:ed:1e:92: 35:03:9c:15:7e:89:49:67:5d:9b:fc:d4:59:da:0a: 21:67:8e:4c:f8:ef:8e:0d:9a:5c:0d:84:b2:9a:1e: f2:21:7d:90:b3:a8:47:66:0e:6d:cc:4c:25:79:7d: ce:cd:d0:ed:0a:11:55:d9:78:d6:3d:81:7a:87:c2: af:76:c9:1f:02:cc:bb:65:55:4d:55:d2:34:e3:87: 0d:5a:4d:5e:97:c4:51:e7:77:1c:8c:c0:ba:ae:f6: d2:52:bc:f2:48:ec:de:79:8c:4b:e9:4a:fc:bf:70: 3d:94:fb:b9:04:54:55:a8:2b:3c:33:00:1a:7f:6f: b9:7c:69:db:cd:fc:ac:1b:63:e5:25:6f:23:65:b9: cd:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:40:66:36:90:BF:1F:A7:58:4C:39:12:45:80:72:75:40:EF:96:88 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:0c:8a:1a:f9:32:cc:18:03:5d:fb:e2:d0:85:e7:a6:f2:b6: a7:96:49:13:2c:25:7e:0c:9d:95:69:bb:f5:cb:52:b9:e6:2c: b2:cf:07:cd:56:4a:9f:77:17:29:60:d8:36:89:36:9e:6e:1a: 83:0e:75:8c:cf:83:b4:e0:ee:9a:ad:33:62:44:5f:2c:5c:4b: da:e3:f4:e5:eb:af:8b:7d:ca:df:c7:c3:8d:56:c4:0e:26:63: c9:e8:ef:7e:df:74:20:09:e7:3d:42:fc:c0:c7:cc:c2:1b:98: fb:1e:fd:5f:87:b1:a8:e7:35:27:32:91:92:ae:28:c9:13:87: 88:11:5e:60:a2:a8:5a:a5:28:08:10:ac:27:a5:28:10:93:58: 2f:67:49:a3:91:49:11:02:71:f3:28:1b:59:5d:d1:5c:c6:3d: 2d:af:06:5a:4e:44:29:99:f0:e6:27:72:95:bb:7e:57:86:ea: 89:53:e7:0d:15:89:c6:0d:69:cb:9c:ef:a5:eb:bb:e1:aa:e8: 11:5f:72:b0:a7:3f:65:84:ad:4c:de:a4:17:00:26:63:72:f8: c6:a7:ab:57:dc:aa:f2:d9:d6:a3:10:e7:ea:3b:40:03:2e:6e: 9f:fa:7f:fc:05:ed:d1:42:7c:92:13:b4:bb:91:d6:3f:16:e1: 21:2f:85:fa -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUZ6sF0pGxQ1A3lLBNeUllB6I3V2owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUwNzAwMDIzOVoX DTI2MDUxMTAwMDIzOVowejFJMEcGA1UEBRNAMGVhNDhmZDVhYjJjZTc4MDM5NDI1 NDEwMjQzMmIzMzIwZTRhOTdkOWE5Y2VmM2MzNWQ5MThhZTRlY2JlYTEyYTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9ZDhbmIKEzMu2HTQwwjDXa0SJuZN cVZeiiGHO/yf3s5gNV5P0vHQO2DD/M2t/YF+xh1X7XeyBpR26UpdsmYEY++2XOVy eDkphcUFyZTTsAyLspcnZCBNUQtpQS9n+NOg5/R4qYmlINJCug2JjU/aiTB06hHt HpI1A5wVfolJZ12b/NRZ2gohZ45M+O+ODZpcDYSymh7yIX2Qs6hHZg5tzEwleX3O zdDtChFV2XjWPYF6h8KvdskfAsy7ZVVNVdI044cNWk1el8RR53ccjMC6rvbSUrzy SOzeeYxL6Ur8v3A9lPu5BFRVqCs8MwAaf2+5fGnbzfysG2PlJW8jZbnNHQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFDlAZjaQvx+nWEw5EkWAcnVA75aIMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAH4Mihr5MswYA1374tCF56bytqeWSRMs JX4MnZVpu/XLUrnmLLLPB81WSp93Fylg2DaJNp5uGoMOdYzPg7Tg7pqtM2JEXyxc S9rj9OXrr4t9yt/Hw41WxA4mY8no737fdCAJ5z1C/MDHzMIbmPse/V+HsajnNScy kZKuKMkTh4gRXmCiqFqlKAgQrCelKBCTWC9nSaORSRECcfMoG1ld0VzGPS2vBlpO RCmZ8OYncpW7fleG6olT5w0VicYNacuc76Xru+Gq6BFfcrCnP2WErUzepBcAJmNy +Manq1fcqvLZ1qMQ5+o7QAMubp/6f/wF7dFCfJITtLuR1j8W4SEvhfo= -----END CERTIFICATE-----Generated at Thu May 7 04:32:38 2026 by rpki-client