$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: pkdht3TCiDOhJlUQWOLVDTpq15LOGkOrdkb6LF4AnqI= Subject key identifier: 53:B5:D6:46:9C:FF:F5:87:A8:88:C0:B4:66:A9:94:27:6B:CD:94:42 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 17147F531D00A900E2D96FD46FFE03C2B85F904D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 062F Signing time: Wed 10 Jun 2026 00:05:18 +0000 Manifest this update: Wed 10 Jun 2026 00:05:18 +0000 Manifest next update: Sun 14 Jun 2026 00:05:18 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: Sb2Bwc2cq3N4/tVlZcZFYXlp2ynpJIWikC5oVoCz0xM=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 00:05:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:14:7f:53:1d:00:a9:00:e2:d9:6f:d4:6f:fe:03:c2:b8:5f:90:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 10 00:05:18 2026 GMT Not After : Jun 14 00:05:18 2026 GMT Subject: serialNumber=47bf17126b8599412332600c9abaf226c354d065d8a605fa4ae8b2e375cb365f, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:36:9d:5c:17:a4:0e:c1:cf:b2:db:8c:00:a4: 42:20:0e:fb:59:dc:08:a7:cb:6a:9e:bf:13:2f:a5: e4:b8:cb:5b:87:c8:6a:f0:c9:25:94:c9:d5:da:4b: e2:0e:e2:da:38:7c:e9:0c:b1:8f:41:df:5f:a4:81: dd:76:55:fb:11:2e:82:01:ae:d9:10:38:7e:8b:c3: 10:89:ab:ea:6e:3a:21:62:61:06:51:29:f1:67:0f: 1e:4e:00:1c:fd:f0:cb:f2:75:09:90:08:8e:c9:6e: a1:5a:74:89:6f:81:10:47:51:a8:7d:6c:40:e6:ff: 76:e2:45:51:a1:05:b6:d0:53:c6:68:9b:68:91:df: c0:c1:72:15:15:cc:9d:12:06:7a:ac:28:9a:22:48: f1:05:f3:f0:40:81:48:e4:39:8a:33:f8:a1:ee:40: 1c:27:83:11:32:4d:5a:85:a1:9e:4b:49:2b:4b:54: f6:88:1c:35:9c:d1:03:43:d9:96:14:a3:c0:cf:9d: c7:9b:7a:3e:c9:cd:c3:36:5a:99:1e:07:af:95:11: a0:4c:c5:b5:9f:c8:dd:f7:36:bb:1a:28:5a:b1:47: 09:8a:50:a7:c3:1e:21:f8:aa:65:bb:81:09:da:c2: c1:75:73:c7:37:7f:69:bf:f5:7d:53:80:fd:a1:00: 4c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:B5:D6:46:9C:FF:F5:87:A8:88:C0:B4:66:A9:94:27:6B:CD:94:42 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:87:1b:89:0a:b2:0b:0c:d2:56:1f:04:92:09:fc:2d:1b:77: bd:ca:49:20:88:96:11:ec:46:8f:99:8e:19:34:19:85:df:df: 74:b3:23:6b:9e:dc:cf:3f:de:35:f7:41:8d:d2:db:d2:3c:19: de:3a:5d:56:e7:c4:a4:83:e9:53:d9:e7:9c:d7:6d:2d:ac:7a: 08:85:71:82:6d:41:b8:a5:e5:2b:bc:0a:1a:bf:56:af:d6:a6: 39:4e:e5:ca:9a:f0:08:9e:6a:44:7b:08:93:6d:2f:9a:d1:22: f4:a6:d0:0b:7a:45:88:90:a3:de:2d:79:71:c8:e5:33:d8:ca: 50:5e:18:b0:dd:56:25:7a:2b:e6:6b:38:84:02:4b:95:7f:ae: c3:28:14:d0:69:43:8e:ba:5d:51:77:0c:ac:ab:9b:d1:2a:1f: 31:6e:76:50:e8:87:62:e1:df:41:63:7b:b6:e1:ec:32:c2:cc: dd:4e:7b:9e:b3:96:36:57:35:7f:15:d4:ec:0a:a7:54:75:43: 2d:69:66:7e:a9:e6:95:5f:45:8a:be:76:75:f3:eb:3e:fc:1c: f9:78:e0:b4:d4:90:5c:13:7c:2f:ae:a8:fb:d8:31:ee:97:cd: eb:5a:5c:99:e7:5d:f2:88:11:45:a7:1f:10:40:7a:59:99:c5: f3:1d:70:ed -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUFxR/Ux0AqQDi2W/Ub/4DwrhfkE0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYxMDAwMDUxOFoX DTI2MDYxNDAwMDUxOFowejFJMEcGA1UEBRNANDdiZjE3MTI2Yjg1OTk0MTIzMzI2 MDBjOWFiYWYyMjZjMzU0ZDA2NWQ4YTYwNWZhNGFlOGIyZTM3NWNiMzY1ZjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzDadXBekDsHPstuMAKRCIA77WdwI p8tqnr8TL6XkuMtbh8hq8MkllMnV2kviDuLaOHzpDLGPQd9fpIHddlX7ES6CAa7Z EDh+i8MQiavqbjohYmEGUSnxZw8eTgAc/fDL8nUJkAiOyW6hWnSJb4EQR1GofWxA 5v924kVRoQW20FPGaJtokd/AwXIVFcydEgZ6rCiaIkjxBfPwQIFI5DmKM/ih7kAc J4MRMk1ahaGeS0krS1T2iBw1nNEDQ9mWFKPAz53Hm3o+yc3DNlqZHgevlRGgTMW1 n8jd9za7GihasUcJilCnwx4h+Kplu4EJ2sLBdXPHN39pv/V9U4D9oQBMqQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFFO11kac//WHqIjAtGaplCdrzZRCMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBACeHG4kKsgsM0lYfBJIJ/C0bd73KSSCI lhHsRo+Zjhk0GYXf33SzI2ue3M8/3jX3QY3S29I8Gd46XVbnxKSD6VPZ55zXbS2s egiFcYJtQbil5Su8Chq/Vq/WpjlO5cqa8AieakR7CJNtL5rRIvSm0At6RYiQo94t eXHI5TPYylBeGLDdViV6K+ZrOIQCS5V/rsMoFNBpQ466XVF3DKyrm9EqHzFudlDo h2Lh30Fje7bh7DLCzN1Oe56zljZXNX8V1OwKp1R1Qy1pZn6p5pVfRYq+dnXz6z78 HPl44LTUkFwTfC+uqPvYMe6XzetaXJnnXfKIEUWnHxBAelmZxfMdcO0= -----END CERTIFICATE-----Generated at Wed Jun 10 11:30:23 2026 by rpki-client