$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: VuBPwuQtkYWbzwNUeDZH7PRLEvkFDanlmnw6XlILtxI= Subject key identifier: 57:EC:42:D2:B5:5E:82:75:BA:F6:A9:61:4A:CC:A3:2D:67:A3:F5:88 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 22685B65D703B70576E836550B08B94B9EE8CBBC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 062E Signing time: Tue 09 Jun 2026 00:05:00 +0000 Manifest this update: Tue 09 Jun 2026 00:05:00 +0000 Manifest next update: Sat 13 Jun 2026 00:05:00 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: s1oKz8afg9ykEyipSUsZ8CSbdc7jViPeSEjdJn1Qd1g=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 00:05:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:68:5b:65:d7:03:b7:05:76:e8:36:55:0b:08:b9:4b:9e:e8:cb:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 9 00:05:00 2026 GMT Not After : Jun 13 00:05:00 2026 GMT Subject: serialNumber=3d0e73b322ee8f4ac640f718021d6589c542065a9e10bc8579160d9cbc607962, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:61:30:74:29:e7:0a:38:19:65:c7:27:86:8e: 97:47:d3:af:1d:9b:93:7b:cf:62:2f:47:a9:18:6c: db:3e:16:aa:93:c9:41:a6:19:d6:57:f9:f9:44:48: 86:d3:c9:fb:e8:5f:46:cd:f3:0b:62:84:a2:d6:75: 98:8b:41:3c:85:fb:a5:23:c8:c5:85:d3:f8:92:81: 0f:e0:73:8d:d1:e3:f0:1b:86:5c:26:29:46:90:ab: c4:00:4b:21:61:05:95:dc:82:11:7d:19:43:71:42: 20:a2:71:49:d2:7e:6a:b0:83:72:7f:01:3f:5e:25: fe:38:7e:28:98:b1:a1:62:37:3d:53:95:55:de:69: 11:0a:3f:34:f8:18:74:eb:c8:da:f2:28:c1:85:cb: ad:13:b6:50:64:9a:d3:fb:88:31:ee:07:c1:85:67: 57:1d:33:27:e1:9c:7e:28:56:ba:f1:f1:74:8e:ce: 32:f0:11:f4:41:e6:b8:c9:5b:8f:04:c4:3a:83:46: 80:65:79:ea:65:09:1e:c3:fd:6c:fe:8f:04:d5:a7: 97:ef:8f:8e:86:3b:cd:e6:b8:76:55:31:37:bf:33: cd:4f:7c:51:d3:c3:9b:f7:e4:4b:19:11:7f:47:87: 72:3d:aa:6d:05:73:27:d3:8b:45:fd:5e:a1:5e:19: 02:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:EC:42:D2:B5:5E:82:75:BA:F6:A9:61:4A:CC:A3:2D:67:A3:F5:88 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:ce:9b:b0:99:c2:f9:db:b1:a0:18:7e:63:2a:b8:a0:0c:3b: bb:b7:53:22:17:00:a0:73:f8:94:38:9f:e4:a2:c8:0c:a4:a7: ed:ce:35:8e:4c:b0:7b:0b:db:9a:9a:e0:89:df:6f:64:e6:a2: 8f:c4:a3:8b:cb:26:a1:43:4c:59:a7:e8:50:1a:b5:90:1b:27: 7d:97:eb:dd:c5:a0:92:0b:2d:65:2a:31:5f:f9:f9:0c:44:c2: af:ce:6c:8d:ad:3c:91:82:9a:2e:64:ab:0c:66:41:c5:2e:55: 83:69:fb:2b:64:58:ee:77:80:4c:69:e5:0e:10:e0:c9:69:e0: 30:89:2a:50:95:9d:32:fb:f5:af:ed:0d:0f:94:03:ed:6d:87: 6c:8a:9b:3d:b0:f1:34:3f:24:24:28:62:f1:15:c0:c0:8f:87: b5:46:03:38:7a:49:c4:e1:0f:6a:9b:c8:5a:49:b9:2b:e3:e3: 42:ae:66:4d:9c:c0:a7:80:6c:d5:70:cb:47:d2:ea:60:3d:40: 67:9a:de:ed:6f:dc:ea:2d:2b:34:04:58:d5:e2:59:a4:7a:3d: 82:97:28:cb:f0:88:64:77:16:5e:32:7c:68:04:63:b8:c2:86: dc:01:1c:99:36:63:76:e0:23:fa:e5:ba:78:c7:6c:fa:f3:9d: 66:47:16:d0 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUImhbZdcDtwV26DZVCwi5S57oy7wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYwOTAwMDUwMFoX DTI2MDYxMzAwMDUwMFowejFJMEcGA1UEBRNAM2QwZTczYjMyMmVlOGY0YWM2NDBm NzE4MDIxZDY1ODljNTQyMDY1YTllMTBiYzg1NzkxNjBkOWNiYzYwNzk2MjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGEwdCnnCjgZZccnho6XR9OvHZuT e89iL0epGGzbPhaqk8lBphnWV/n5REiG08n76F9GzfMLYoSi1nWYi0E8hfulI8jF hdP4koEP4HON0ePwG4ZcJilGkKvEAEshYQWV3IIRfRlDcUIgonFJ0n5qsINyfwE/ XiX+OH4omLGhYjc9U5VV3mkRCj80+Bh068ja8ijBhcutE7ZQZJrT+4gx7gfBhWdX HTMn4Zx+KFa68fF0js4y8BH0Qea4yVuPBMQ6g0aAZXnqZQkew/1s/o8E1aeX74+O hjvN5rh2VTE3vzPNT3xR08Ob9+RLGRF/R4dyPaptBXMn04tF/V6hXhkCJQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFFfsQtK1XoJ1uvapYUrMoy1no/WIMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAEPOm7CZwvnbsaAYfmMquKAMO7u3UyIX AKBz+JQ4n+SiyAykp+3ONY5MsHsL25qa4Infb2Tmoo/Eo4vLJqFDTFmn6FAatZAb J32X693FoJILLWUqMV/5+QxEwq/ObI2tPJGCmi5kqwxmQcUuVYNp+ytkWO53gExp 5Q4Q4Mlp4DCJKlCVnTL79a/tDQ+UA+1th2yKmz2w8TQ/JCQoYvEVwMCPh7VGAzh6 ScThD2qbyFpJuSvj40KuZk2cwKeAbNVwy0fS6mA9QGea3u1v3OotKzQEWNXiWaR6 PYKXKMvwiGR3Fl4yfGgEY7jChtwBHJk2Y3bgI/rlunjHbPrznWZHFtA= -----END CERTIFICATE-----Generated at Tue Jun 9 22:11:17 2026 by rpki-client