
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File: manifest.mft (raw, json)
Hash identifier: wGwqO2T2+O/NlzvaMaFxB6RfpQ5HKWXOe0a4vvbmMRM=
Subject key identifier: 26:98:05:E7:56:B1:A2:49:8A:06:1B:F8:A9:30:34:C3:1F:F0:52:97
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial: 656F717155B5A7F63BF49F9B4068EB5A5EE04DED
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number: 064C
Signing time: Thu 09 Jul 2026 00:11:13 +0000
Manifest this update: Thu 09 Jul 2026 00:11:13 +0000
Manifest next update: Mon 13 Jul 2026 00:11:13 +0000
Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: nq4I54qX2HY2uXmWOMsFlS7TGKLE7gDqEH0eGi2ixIA=)
2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=)
3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=)
4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=)
5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=)
6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=)
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Jul 2026 00:11:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:6f:71:71:55:b5:a7:f6:3b:f4:9f:9b:40:68:eb:5a:5e:e0:4d:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Validity
Not Before: Jul 9 00:11:13 2026 GMT
Not After : Jul 13 00:11:13 2026 GMT
Subject: serialNumber=77fde812df8f21075718ac806e154586bb806771fd0117ff2b81843da23d2d3f, CN=bb9a9116-f615-462e-a680-5266b327e0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0d:64:00:f1:17:f8:10:b8:6d:82:75:38:aa:
34:71:c4:03:1f:0e:8b:ce:cc:f9:09:d0:b7:1c:67:
d8:9a:d9:b9:db:05:e3:f6:37:e1:35:04:9d:37:00:
aa:95:b6:34:5b:68:0b:94:d2:5a:21:2a:b1:59:12:
60:64:09:8f:4e:7b:97:65:67:f4:74:f4:ea:11:53:
89:5e:4a:bd:3d:01:a0:0b:3c:5f:fe:4c:ba:cd:f2:
d8:28:d0:4c:d7:8a:4e:7e:dd:58:55:5d:4b:3a:d1:
06:a7:e1:a4:f6:2b:49:ca:43:59:f3:4e:23:a3:55:
90:3b:2d:97:9e:d7:f4:33:e4:e6:80:4c:a2:4c:8b:
24:32:8d:f0:96:8c:64:1b:f6:c8:31:71:63:55:b3:
fd:01:e8:d8:0b:23:80:d8:0a:49:92:f8:a1:91:53:
ef:6a:5e:47:7e:bc:27:c2:da:b1:10:fd:fa:17:86:
57:5f:43:65:b6:fd:a2:4c:64:63:b4:7b:4a:d1:72:
a2:aa:06:ed:40:47:7a:d9:0a:47:d1:27:6c:f6:4e:
e7:59:30:28:94:69:c7:72:a8:80:ef:3b:70:0d:99:
b4:4b:35:df:f2:78:76:68:5c:cf:98:e3:d1:f2:03:
7b:9f:78:5b:ef:a9:d0:40:d7:54:4b:62:2a:c9:eb:
30:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:98:05:E7:56:B1:A2:49:8A:06:1B:F8:A9:30:34:C3:1F:F0:52:97
X509v3 Authority Key Identifier:
keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:9a:c0:c8:75:e8:55:43:af:17:60:1a:45:51:6a:6f:dc:ef:
8c:bc:43:1e:36:2e:76:3e:64:4f:80:9e:32:52:04:94:5b:6e:
2e:99:cb:bf:c5:12:06:33:9c:48:43:44:eb:e9:d1:e9:5f:79:
b1:f0:71:f6:77:30:bf:a3:6e:c8:a6:10:e5:ff:86:96:e9:a5:
3c:66:a9:2c:22:05:3c:4a:c7:f4:ce:1c:e0:c1:14:a2:90:84:
3f:b6:41:f8:23:ad:6a:bb:32:4a:9d:97:95:5c:37:95:75:6c:
ae:d5:67:88:1a:ae:0e:21:30:f2:3d:62:c4:41:29:37:ac:26:
fe:66:24:b5:7c:b9:22:80:6b:e7:b7:20:8d:92:d3:4c:1b:27:
3e:f9:fa:72:35:79:a7:ce:ec:6c:c0:7f:08:44:7c:81:51:4e:
af:e4:13:b5:09:10:21:88:65:34:f0:b3:cf:47:ae:31:a9:a7:
49:02:3e:52:04:5a:14:fe:d3:33:9d:a0:f4:6c:53:09:3c:76:
f7:a4:25:d1:39:53:48:9e:19:ca:7d:ab:19:80:30:a9:8a:70:
73:26:0b:24:e0:6a:e0:fc:b7:16:7f:60:d0:54:f8:77:f6:b8:
64:66:a6:31:d6:a0:4c:8e:a8:d5:5a:9b:3c:8d:1f:4f:9a:ad:
8b:cc:c3:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 9 21:33:25 2026 by rpki-client