$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: SqIBMzbpMDTveXz2wGTJXf0ouIg+uoLnmDj1MiVyWH4= Subject key identifier: D6:1A:32:73:64:8E:2B:C8:7D:6B:95:9F:CC:1A:44:14:B9:ED:0E:C2 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 33CFC8CCF16479092343F86DADD5E61F197E9681 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0628 Signing time: Wed 03 Jun 2026 00:04:12 +0000 Manifest this update: Wed 03 Jun 2026 00:04:12 +0000 Manifest next update: Sun 07 Jun 2026 00:04:12 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: YrUtcWq5Zh3j8k618LI1v3Q15nFYhKHrkhunO0jzlFA=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Jun 2026 00:04:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:cf:c8:cc:f1:64:79:09:23:43:f8:6d:ad:d5:e6:1f:19:7e:96:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 3 00:04:12 2026 GMT Not After : Jun 7 00:04:12 2026 GMT Subject: serialNumber=73dedcb5e0d4b2119bfbe5a72b493cba4cb9bb957084b3367e43452bc655b7c0, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:4e:be:d9:99:e5:20:3d:cf:39:21:75:e9:b3: 42:d8:7f:6e:bf:fc:98:12:bd:6f:98:87:75:85:88: b0:82:98:77:ac:2d:8a:84:1e:d1:9f:f8:b9:46:b3: 9d:04:4d:4b:49:8f:22:6d:e4:cc:e8:61:ba:16:80: d5:8f:f6:00:0e:10:86:39:c2:ac:63:40:c8:d6:86: 6b:dd:97:51:dd:1a:01:5e:e5:32:9a:c8:66:35:5f: 37:49:b8:c7:ce:fd:e7:c1:8f:8b:82:96:cd:38:0b: aa:36:60:c6:3b:d3:e9:50:7a:2e:4f:b8:c1:40:f1: c9:f5:cb:c2:c2:7e:e5:da:57:ec:4e:c7:53:af:8f: 5e:dd:99:75:7c:85:3d:80:3c:ae:33:1a:5d:ee:c9: 27:4a:59:54:91:f6:3b:7e:08:c3:5d:33:3d:45:47: 1a:9f:4f:9b:f2:39:e0:1f:3f:bb:65:ba:5e:e5:d1: 22:7a:a4:40:d8:c5:03:ab:7a:1e:20:02:0f:d7:20: 10:21:1b:31:d6:77:91:e6:ab:2e:76:78:47:c7:25: 1c:5e:79:49:d0:2c:6b:c3:cc:bf:b0:07:62:e9:90: 16:b5:b5:3f:85:68:2b:0e:b6:85:05:cc:d8:1c:6f: 37:fb:81:2a:72:4c:64:33:31:76:71:4f:b1:f6:b5: 35:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:1A:32:73:64:8E:2B:C8:7D:6B:95:9F:CC:1A:44:14:B9:ED:0E:C2 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:ae:2c:ba:0b:3f:86:6e:58:73:41:45:83:bc:9c:d1:3c:b6: fb:b3:ad:5c:f0:da:89:d9:a4:a0:3e:83:32:bc:e3:56:d8:0f: 78:7b:3f:ce:6e:92:bc:c3:26:0c:03:85:96:74:0e:65:34:99: 20:51:76:9d:2c:e9:0b:a8:09:bd:0c:53:0d:c9:24:a8:4f:40: c5:02:7e:28:11:6b:92:d3:dc:0f:bd:83:5e:4d:c5:55:f3:79: 32:7d:73:2a:d3:cf:0d:17:bf:de:09:48:67:29:fc:b6:5b:04: 0f:9c:52:41:cf:a8:ae:a8:59:b9:f7:62:50:e5:29:6d:d0:cb: 1d:00:12:7a:d4:1a:7f:29:c8:fd:f0:2c:e3:fc:8d:93:0e:76: 44:7d:86:2f:dc:60:36:fe:d8:b2:42:60:b3:b3:73:ae:a0:68: 29:f9:cc:7a:99:fd:51:b5:a4:e0:61:0d:14:29:1f:a7:c3:ed: 6c:4e:0d:33:7a:4d:d3:44:97:1f:38:66:e4:cf:cd:85:0f:58: cc:7a:9c:b1:aa:89:9d:ed:ad:9a:c5:6e:6b:23:9e:6f:5f:21: 36:ee:3e:26:46:14:e0:0e:ef:fa:2c:73:0f:c5:e2:44:4e:50: 05:43:4e:a9:4b:cb:16:ae:4f:fd:00:50:14:29:6a:67:4d:ed: ef:b7:02:62 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUM8/IzPFkeQkjQ/htrdXmHxl+loEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYwMzAwMDQxMloX DTI2MDYwNzAwMDQxMlowejFJMEcGA1UEBRNANzNkZWRjYjVlMGQ0YjIxMTliZmJl NWE3MmI0OTNjYmE0Y2I5YmI5NTcwODRiMzM2N2U0MzQ1MmJjNjU1YjdjMDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhU6+2ZnlID3POSF16bNC2H9uv/yY Er1vmId1hYiwgph3rC2KhB7Rn/i5RrOdBE1LSY8ibeTM6GG6FoDVj/YADhCGOcKs Y0DI1oZr3ZdR3RoBXuUymshmNV83SbjHzv3nwY+LgpbNOAuqNmDGO9PpUHouT7jB QPHJ9cvCwn7l2lfsTsdTr49e3Zl1fIU9gDyuMxpd7sknSllUkfY7fgjDXTM9RUca n0+b8jngHz+7Zbpe5dEieqRA2MUDq3oeIAIP1yAQIRsx1neR5qsudnhHxyUcXnlJ 0Cxrw8y/sAdi6ZAWtbU/hWgrDraFBczYHG83+4EqckxkMzF2cU+x9rU1NQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNYaMnNkjivIfWuVn8waRBS57Q7CMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAFOuLLoLP4ZuWHNBRYO8nNE8tvuzrVzw 2onZpKA+gzK841bYD3h7P85ukrzDJgwDhZZ0DmU0mSBRdp0s6QuoCb0MUw3JJKhP QMUCfigRa5LT3A+9g15NxVXzeTJ9cyrTzw0Xv94JSGcp/LZbBA+cUkHPqK6oWbn3 YlDlKW3Qyx0AEnrUGn8pyP3wLOP8jZMOdkR9hi/cYDb+2LJCYLOzc66gaCn5zHqZ /VG1pOBhDRQpH6fD7WxODTN6TdNElx84ZuTPzYUPWMx6nLGqiZ3trZrFbmsjnm9f ITbuPiZGFOAO7/oscw/F4kROUAVDTqlLyxauT/0AUBQpamdN7e+3AmI= -----END CERTIFICATE-----Generated at Wed Jun 3 14:11:58 2026 by rpki-client