$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: 4y2aX0W5ibITzZ3pkGHK7efl0v9tAHDljEu2wTj9FKY= Subject key identifier: DA:A0:19:3F:F6:3D:0F:67:26:64:B2:DA:46:2F:09:9C:70:F5:D3:34 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 511E81434E6160E71D1E79A8871534E3AD6C4F06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0637 Signing time: Thu 18 Jun 2026 00:06:41 +0000 Manifest this update: Thu 18 Jun 2026 00:06:41 +0000 Manifest next update: Mon 22 Jun 2026 00:06:41 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: xVw42ejvYhkouNot5fiWtQnOq8By0c42KoCkQ3NRB4E=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Jun 2026 00:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:1e:81:43:4e:61:60:e7:1d:1e:79:a8:87:15:34:e3:ad:6c:4f:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 18 00:06:41 2026 GMT Not After : Jun 22 00:06:41 2026 GMT Subject: serialNumber=bada4d4aa43bb0956d3c1cb3bb94cd89d87bdfe31bb1278dcfdbd113196c6d42, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e1:2c:64:c5:d1:96:88:24:cc:49:d7:69:3e: 65:b2:bd:b3:06:41:5c:be:4b:6d:9e:ea:aa:e0:c7: ec:ec:8e:31:81:c8:32:48:28:e4:70:26:b7:d8:eb: 97:d0:42:fd:07:04:7b:ae:fa:67:7a:eb:e6:de:7a: f2:25:9b:3b:6c:d8:c8:1b:52:50:32:e3:0f:ac:71: 1d:e4:54:4b:0a:ed:29:45:70:74:69:e5:c5:b8:2c: ef:98:37:c6:e3:8a:24:2d:17:d5:91:6c:04:00:15: 1e:60:a7:af:d0:14:05:f0:53:fc:8b:3b:3c:ad:79: 34:22:08:b5:c3:ab:13:cb:58:66:0f:e0:be:32:5a: c9:a9:c3:a0:a5:0b:41:13:4b:00:eb:31:5a:a1:ba: f0:c7:cf:17:8f:65:fc:bb:63:67:ca:3a:54:d8:a5: c0:75:10:f6:f6:49:7e:e3:29:68:93:02:6a:de:63: 6f:5d:e4:d2:29:28:32:a7:8f:ae:d5:50:59:a4:77: 62:b5:46:26:93:1b:4c:1b:c3:df:9a:af:c0:fb:2b: 26:94:ec:48:20:53:23:b6:21:51:c1:ce:3c:8f:37: eb:a2:05:9e:03:bb:40:a7:bf:68:c9:93:4f:3f:65: f9:62:91:6f:f8:07:2c:6b:b4:ad:77:b4:f6:4d:22: dd:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:A0:19:3F:F6:3D:0F:67:26:64:B2:DA:46:2F:09:9C:70:F5:D3:34 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:16:58:af:cf:df:cd:16:6d:e2:f7:36:f0:0f:e9:8f:c3:6d: d3:32:e2:cf:c8:ef:89:ab:86:f4:3f:bd:36:e3:24:e2:b2:a3: b0:21:8d:b0:09:82:89:67:a1:a7:67:07:0a:0a:49:e8:58:ab: 86:1b:ed:9d:17:68:8e:2e:ae:67:06:97:81:b8:ca:1c:7f:75: 12:e7:20:b9:81:e7:82:58:f3:d2:ec:2b:4d:df:b1:d4:54:05: 34:07:b6:10:34:92:59:55:ba:de:8c:50:f5:3f:24:63:ad:2d: 49:7b:7a:c7:c3:c5:e7:78:37:07:c1:8b:df:4a:e6:32:76:3e: 14:bf:ad:3e:8a:67:06:f3:89:b1:79:fc:d8:e8:6a:f3:33:67: 99:2a:e0:41:af:cf:da:23:1e:d1:93:6a:20:6c:94:3d:95:ba: 58:dd:fc:8d:40:f0:3a:62:75:cc:69:ce:fb:c0:5e:81:43:1b: 29:a2:2f:86:dd:24:fd:56:79:50:cc:d3:ee:fb:51:d3:dd:5c: 8a:04:c3:bb:58:4c:a6:76:7b:e0:bb:be:f4:5e:68:f4:8e:93: 36:1f:b8:08:b5:ed:b2:dc:2a:b1:75:a5:69:87:ee:17:db:64: 9a:79:16:0a:11:60:f2:91:9d:a2:c8:03:4d:6b:0b:ba:fb:bf: e0:ee:8d:35 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUUR6BQ05hYOcdHnmohxU0461sTwYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYxODAwMDY0MVoX DTI2MDYyMjAwMDY0MVowejFJMEcGA1UEBRNAYmFkYTRkNGFhNDNiYjA5NTZkM2Mx Y2IzYmI5NGNkODlkODdiZGZlMzFiYjEyNzhkY2ZkYmQxMTMxOTZjNmQ0MjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoOEsZMXRlogkzEnXaT5lsr2zBkFc vkttnuqq4Mfs7I4xgcgySCjkcCa32OuX0EL9BwR7rvpneuvm3nryJZs7bNjIG1JQ MuMPrHEd5FRLCu0pRXB0aeXFuCzvmDfG44okLRfVkWwEABUeYKev0BQF8FP8izs8 rXk0Igi1w6sTy1hmD+C+MlrJqcOgpQtBE0sA6zFaobrwx88Xj2X8u2NnyjpU2KXA dRD29kl+4ylokwJq3mNvXeTSKSgyp4+u1VBZpHditUYmkxtMG8Pfmq/A+ysmlOxI IFMjtiFRwc48jzfrogWeA7tAp79oyZNPP2X5YpFv+Acsa7Std7T2TSLdiQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNqgGT/2PQ9nJmSy2kYvCZxw9dM0MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBACcWWK/P380WbeL3NvAP6Y/DbdMy4s/I 74mrhvQ/vTbjJOKyo7AhjbAJgolnoadnBwoKSehYq4Yb7Z0XaI4urmcGl4G4yhx/ dRLnILmB54JY89LsK03fsdRUBTQHthA0kllVut6MUPU/JGOtLUl7esfDxed4NwfB i99K5jJ2PhS/rT6KZwbzibF5/NjoavMzZ5kq4EGvz9ojHtGTaiBslD2Vuljd/I1A 8DpidcxpzvvAXoFDGymiL4bdJP1WeVDM0+77UdPdXIoEw7tYTKZ2e+C7vvReaPSO kzYfuAi17bLcKrF1pWmH7hfbZJp5FgoRYPKRnaLIA01rC7r7v+DujTU= -----END CERTIFICATE-----Generated at Thu Jun 18 18:26:55 2026 by rpki-client