$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: 13jYmlZ9VrD708rGm1JyPDq9T7E3349wKI0kADiAsT4= Subject key identifier: D2:28:5C:16:56:D6:9B:62:68:B6:88:23:2B:A2:C6:A5:45:FD:CF:D4 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 2B9B843BF69077D3027B81E541C15256A6FBD16A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 063E Signing time: Thu 25 Jun 2026 00:08:01 +0000 Manifest this update: Thu 25 Jun 2026 00:08:01 +0000 Manifest next update: Mon 29 Jun 2026 00:08:01 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: Ay48HkotEG5BIDXY5F3426bwd0micGRCeIODo1+ANPQ=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 00:08:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:9b:84:3b:f6:90:77:d3:02:7b:81:e5:41:c1:52:56:a6:fb:d1:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 25 00:08:01 2026 GMT Not After : Jun 29 00:08:01 2026 GMT Subject: serialNumber=9b94ef4718948c2acea4945f714b90a5b38c9cf93ff84d57de915a1972ca1754, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:12:86:99:3c:12:6f:f4:65:33:cb:dc:66:fc: 34:8c:91:d3:c7:93:e9:5e:39:a4:b2:7a:9b:c9:25: 46:bf:09:41:7a:74:27:3d:ed:a8:6a:dd:2c:52:67: 18:3c:0e:4d:75:f5:9b:1c:d3:12:f9:55:50:65:47: 44:be:1a:7e:68:e2:b6:dc:23:c9:79:16:9c:56:19: 73:5b:de:e2:4c:f6:2a:94:06:f6:4b:ed:fa:a2:52: 03:02:16:45:14:97:02:51:68:2c:9f:8a:93:ff:67: 91:76:4b:fd:fb:c5:69:b0:29:a0:5f:f3:2a:f1:98: 38:7d:31:7e:35:04:e2:15:6e:16:44:21:59:39:71: a1:4b:7b:c7:bd:4d:d5:ee:ad:c9:39:44:c6:47:87: b6:91:ca:fa:60:0c:d9:73:83:75:ff:d8:8a:35:cd: ae:c6:34:ad:76:c1:1d:54:20:c7:14:ae:2f:55:03: 0e:77:08:14:c0:05:34:01:82:0c:5f:f5:1f:e5:7b: 2d:2e:ae:71:aa:e6:7b:41:4f:f3:92:85:e3:1a:cd: 86:ae:41:8a:5e:b3:2b:24:cc:00:53:61:4d:a2:ee: 48:d3:0b:15:99:69:46:0b:35:07:4f:03:c5:02:09: 6e:25:16:57:2d:ce:9b:8b:07:18:90:75:08:a2:1c: 6d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:28:5C:16:56:D6:9B:62:68:B6:88:23:2B:A2:C6:A5:45:FD:CF:D4 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:e7:a5:11:3c:4c:9d:78:4b:d6:18:ec:29:7b:02:48:3a:56: 52:d8:45:7d:76:2e:3f:bd:aa:93:02:6a:20:83:e3:07:95:db: 5b:67:3b:df:da:19:50:17:ec:cb:49:17:a3:71:9e:e0:80:90: 9c:d5:ba:33:94:3b:a5:38:7e:fb:f5:46:8d:4b:58:fb:3c:c0: 8c:6a:20:1c:1a:2d:8e:10:19:b4:06:eb:74:8b:20:1d:bd:00: bc:44:08:bf:f0:3e:bd:20:dc:96:94:2c:52:e0:4f:27:a4:bf: 35:0d:78:ba:e2:ec:b2:bc:f6:b3:52:60:b5:9e:a0:3b:22:84: 6b:2c:9b:ef:90:38:a3:34:a2:71:9b:72:96:c9:57:9f:b5:2d: bd:16:ec:69:1f:bc:a3:4d:28:b4:ff:60:b8:01:d0:d3:7c:41: 6b:96:cc:33:ef:02:5c:f3:47:12:dc:1b:8d:8b:1b:91:88:4c: f2:68:fd:b9:78:67:f2:f2:5d:0c:6f:09:b5:1e:6b:44:d8:0f: a4:fe:7f:19:30:b3:d4:1c:d1:87:09:77:94:63:dd:7d:c5:40: 80:54:46:4e:1b:0a:a2:5d:21:67:4e:6f:54:8f:6e:32:a2:48: f0:50:7b:c7:15:56:b2:a7:2b:42:10:63:03:5a:a4:b8:d2:be: d0:f4:30:12 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUK5uEO/aQd9MCe4HlQcFSVqb70WowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYyNTAwMDgwMVoX DTI2MDYyOTAwMDgwMVowejFJMEcGA1UEBRNAOWI5NGVmNDcxODk0OGMyYWNlYTQ5 NDVmNzE0YjkwYTViMzhjOWNmOTNmZjg0ZDU3ZGU5MTVhMTk3MmNhMTc1NDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwhKGmTwSb/RlM8vcZvw0jJHTx5Pp XjmksnqbySVGvwlBenQnPe2oat0sUmcYPA5NdfWbHNMS+VVQZUdEvhp+aOK23CPJ eRacVhlzW97iTPYqlAb2S+36olIDAhZFFJcCUWgsn4qT/2eRdkv9+8VpsCmgX/Mq 8Zg4fTF+NQTiFW4WRCFZOXGhS3vHvU3V7q3JOUTGR4e2kcr6YAzZc4N1/9iKNc2u xjStdsEdVCDHFK4vVQMOdwgUwAU0AYIMX/Uf5XstLq5xquZ7QU/zkoXjGs2GrkGK XrMrJMwAU2FNou5I0wsVmWlGCzUHTwPFAgluJRZXLc6biwcYkHUIohxtRwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNIoXBZW1ptiaLaIIyuixqVF/c/UMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAAvnpRE8TJ14S9YY7Cl7Akg6VlLYRX12 Lj+9qpMCaiCD4weV21tnO9/aGVAX7MtJF6NxnuCAkJzVujOUO6U4fvv1Ro1LWPs8 wIxqIBwaLY4QGbQG63SLIB29ALxECL/wPr0g3JaULFLgTyekvzUNeLri7LK89rNS YLWeoDsihGssm++QOKM0onGbcpbJV5+1Lb0W7GkfvKNNKLT/YLgB0NN8QWuWzDPv AlzzRxLcG42LG5GITPJo/bl4Z/LyXQxvCbUea0TYD6T+fxkws9Qc0YcJd5Rj3X3F QIBURk4bCqJdIWdOb1SPbjKiSPBQe8cVVrKnK0IQYwNapLjSvtD0MBI= -----END CERTIFICATE-----Generated at Thu Jun 25 17:16:16 2026 by rpki-client