$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: CXDHBQJmtlm95gyLa1JPhQOXJeAEwtvJoGeovCpWp50= Subject key identifier: D0:7F:50:00:38:87:92:A0:41:7B:6D:11:29:3B:F7:15:63:19:D0:17 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 2AB899B9EF93B25407E51A090CFF3BFFDA9BFCB3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0641 Signing time: Sun 28 Jun 2026 00:08:35 +0000 Manifest this update: Sun 28 Jun 2026 00:08:35 +0000 Manifest next update: Thu 02 Jul 2026 00:08:35 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: YcBDdQ21d0UvAxetfPCl4NlTRdsqAGez2bwkDxTCJXQ=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Jul 2026 00:08:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:b8:99:b9:ef:93:b2:54:07:e5:1a:09:0c:ff:3b:ff:da:9b:fc:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 28 00:08:35 2026 GMT Not After : Jul 2 00:08:35 2026 GMT Subject: serialNumber=b82e706322fe363e16753999fdcfdc8698201e4ad116308fb4285778ec84ed26, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:50:14:8c:6a:3f:6c:9c:c0:71:76:dc:34:95: 40:b0:fc:8e:d4:ee:fa:1f:1c:11:fb:06:70:28:4b: a9:f2:f8:b5:6e:fd:07:70:64:94:47:f8:02:f8:a0: 32:ff:a1:c2:39:95:c7:dc:1a:38:39:86:09:3a:5d: 90:ea:70:a7:ba:23:74:07:61:e4:46:de:86:46:ff: 8c:0b:e8:4f:69:e5:d1:3c:69:b6:bc:aa:39:f0:93: 36:3c:66:00:bc:25:a0:af:af:e4:57:eb:91:3e:ad: c3:67:cf:01:f5:f3:79:52:1f:b4:96:2c:e3:65:7e: 93:d0:c7:38:cf:0b:8a:a9:36:71:18:0a:e2:5c:0d: 34:06:f5:cb:e6:64:f2:16:8c:98:17:a9:dd:a3:f6: 7a:2e:85:e5:ca:a6:b6:2f:a8:a2:02:5a:29:15:bc: 37:cf:a4:88:37:53:71:6b:a9:55:11:71:8b:5a:4f: 87:e3:0f:ba:59:f3:f3:9e:dd:70:16:e1:34:db:52: fa:b3:5f:04:8f:59:1d:82:4d:d7:a6:d8:4e:50:69: 21:c5:12:4d:a9:26:fa:6f:6e:11:3d:cb:27:af:c1: 4b:27:a9:af:aa:00:4e:29:9c:53:53:e9:35:51:0c: 33:dd:5f:e4:5c:18:d8:4f:91:eb:b0:ee:30:47:86: c6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:7F:50:00:38:87:92:A0:41:7B:6D:11:29:3B:F7:15:63:19:D0:17 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:21:bc:d8:51:1e:5a:35:ee:0d:43:c4:97:f4:f6:e6:7d:b9: 3a:8d:b7:e2:1b:f7:b9:fb:b3:8a:cc:8c:a0:69:58:97:cd:83: cd:7d:ce:28:e5:59:13:96:ee:6a:a0:0f:c0:ab:20:b4:c5:f1: aa:4b:79:7c:81:bd:e7:7f:f5:1b:68:05:0b:6c:39:5d:95:9c: 47:02:c6:61:3f:49:5e:e3:1a:0b:e4:ff:75:43:62:d3:76:72: 85:b0:76:bf:49:f0:df:60:62:4b:1b:fa:a7:ef:8c:2b:45:a7: b2:d9:2b:62:8b:c6:86:0b:97:d2:f8:cb:f8:86:0f:0d:95:1b: 5b:79:4f:6d:f6:20:36:46:64:82:0a:cb:7a:9d:b5:71:3b:e7: 99:da:b4:2e:29:d7:3f:b7:f7:89:d8:c2:8e:a1:e0:81:43:6c: 91:d7:9f:cf:9f:45:6f:29:eb:f9:e8:70:81:46:ed:3c:79:78: 67:47:e7:27:5e:6f:fb:ef:35:04:95:a7:2c:78:f8:b7:31:49: 1a:e4:09:12:40:8d:ad:15:5a:f2:0c:cb:3c:ec:95:db:c8:9a: 26:a9:64:7c:dc:8e:a7:2d:f4:d6:3b:34:f6:84:e4:c0:17:6e: 87:d4:70:15:8a:09:c3:69:0b:10:84:cf:3a:29:b7:7b:4c:92: 86:e0:42:02 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUKriZue+TslQH5RoJDP87/9qb/LMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYyODAwMDgzNVoX DTI2MDcwMjAwMDgzNVowejFJMEcGA1UEBRNAYjgyZTcwNjMyMmZlMzYzZTE2NzUz OTk5ZmRjZmRjODY5ODIwMWU0YWQxMTYzMDhmYjQyODU3NzhlYzg0ZWQyNjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwlAUjGo/bJzAcXbcNJVAsPyO1O76 HxwR+wZwKEup8vi1bv0HcGSUR/gC+KAy/6HCOZXH3Bo4OYYJOl2Q6nCnuiN0B2Hk Rt6GRv+MC+hPaeXRPGm2vKo58JM2PGYAvCWgr6/kV+uRPq3DZ88B9fN5Uh+0lizj ZX6T0Mc4zwuKqTZxGAriXA00BvXL5mTyFoyYF6ndo/Z6LoXlyqa2L6iiAlopFbw3 z6SIN1Nxa6lVEXGLWk+H4w+6WfPznt1wFuE021L6s18Ej1kdgk3XpthOUGkhxRJN qSb6b24RPcsnr8FLJ6mvqgBOKZxTU+k1UQwz3V/kXBjYT5HrsO4wR4bGwwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNB/UAA4h5KgQXttESk79xVjGdAXMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAAchvNhRHlo17g1DxJf09uZ9uTqNt+Ib 97n7s4rMjKBpWJfNg819zijlWROW7mqgD8CrILTF8apLeXyBved/9RtoBQtsOV2V nEcCxmE/SV7jGgvk/3VDYtN2coWwdr9J8N9gYksb+qfvjCtFp7LZK2KLxoYLl9L4 y/iGDw2VG1t5T232IDZGZIIKy3qdtXE755natC4p1z+394nYwo6h4IFDbJHXn8+f RW8p6/nocIFG7Tx5eGdH5ydeb/vvNQSVpyx4+LcxSRrkCRJAja0VWvIMyzzsldvI miapZHzcjqct9NY7NPaE5MAXbofUcBWKCcNpCxCEzzopt3tMkobgQgI= -----END CERTIFICATE-----Generated at Sun Jun 28 13:57:19 2026 by rpki-client