$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: dvVn2qD4FViZCAD9MJ3qWEMZcLeDlFfqOxrzFIWPehQ= Subject key identifier: 95:09:01:6D:86:3A:B2:13:E0:81:05:14:94:83:C9:37:FE:CF:97:03 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 56872D0E9BD82E57468206D9BCA828D5A6D75D43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0623 Signing time: Fri 29 May 2026 00:03:19 +0000 Manifest this update: Fri 29 May 2026 00:03:19 +0000 Manifest next update: Tue 02 Jun 2026 00:03:19 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: hNyXs7ImuluDyAGmt7KMS2akP7hq+sHs1wx/OHbowUo=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Jun 2026 00:03:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:87:2d:0e:9b:d8:2e:57:46:82:06:d9:bc:a8:28:d5:a6:d7:5d:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 29 00:03:19 2026 GMT Not After : Jun 2 00:03:19 2026 GMT Subject: serialNumber=ac99714f04d6d249aad391ef2878002d9616ec3e7af9cf6c763dd02d7dc4a551, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:36:18:14:5b:61:e8:86:a8:d2:35:22:de:c4: af:47:26:d6:ee:b0:c0:94:c1:08:06:ce:d0:c6:7d: 20:f2:36:ca:86:cd:97:04:7d:f4:63:27:3d:b1:e2: 76:2f:83:fe:e3:cb:45:78:9f:c6:7e:8b:43:06:d2: b3:c9:80:1a:bb:21:a9:c8:89:e8:b8:77:19:3a:d7: be:b6:3f:a7:d0:72:48:f4:ca:8b:95:a9:79:d2:9e: e6:f9:fb:e5:2c:46:0e:26:07:23:d8:10:34:66:1c: d3:97:35:3e:11:17:c7:a8:26:08:70:27:66:82:98: 4b:30:2b:ae:46:18:95:89:a2:f5:c3:18:71:01:cd: c4:9d:19:6d:e9:e3:55:1d:8d:4b:3c:c2:aa:2d:ba: ca:3e:30:af:68:0d:11:68:f2:f5:cc:15:d7:30:1a: a9:9a:28:e5:e7:54:1e:96:c2:56:a2:ad:8e:54:8c: 0d:3f:18:ee:15:6c:0d:ad:32:ab:63:5a:a8:e7:c6: 77:cd:c1:2c:a1:d0:9e:0e:5c:1e:fe:ee:3b:4e:58: f2:35:c7:6d:b4:56:f0:3a:e2:24:2b:90:a7:32:26: 2b:cf:84:6d:cb:a1:41:75:a2:23:74:d9:d4:db:72: e9:ea:96:0b:1b:6f:8d:00:af:99:a9:7a:54:a2:26: 88:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:09:01:6D:86:3A:B2:13:E0:81:05:14:94:83:C9:37:FE:CF:97:03 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:09:b0:c8:40:e6:74:ad:fd:b5:76:41:e9:83:f4:eb:a5:b5: 0b:6a:96:c0:97:a5:c0:64:61:3e:74:a7:78:52:29:9f:e2:17: d7:2d:d7:f2:ff:6b:24:20:47:68:f8:8f:08:74:dd:4b:e2:10: 50:4b:d9:96:de:fb:2a:e8:b3:a9:a2:bf:7d:e2:25:96:fc:20: 3b:b6:41:f6:c4:73:6b:57:a3:e9:d8:b9:b9:d1:da:4e:cd:a9: 70:9f:12:e0:fd:1c:c6:12:96:0e:90:a5:e0:2d:75:d5:26:cb: 48:d2:22:01:41:a4:38:76:d3:dc:89:83:96:55:51:68:be:3c: 9e:b0:3e:73:fc:08:bc:38:9c:9f:db:0d:a7:4a:34:b1:6d:f9: bf:d1:75:59:d5:bc:2e:ed:42:80:98:a8:6b:35:20:33:5c:04: f5:91:46:08:c1:f4:94:98:46:6e:45:ca:8a:21:c5:af:90:69: c4:60:6a:9c:28:e8:25:d4:64:7a:27:61:cc:62:88:b4:f9:b9: 36:67:6f:d4:c8:b9:9a:83:bf:70:1c:9b:c3:80:c2:47:d6:0d: e1:8d:2a:97:39:9c:41:c4:e7:9e:5d:8f:3e:f2:6d:47:52:25: 72:1a:9e:4e:84:17:01:f0:25:11:1a:f2:87:fa:5a:3f:0a:16: ed:3e:04:5d -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUVoctDpvYLldGggbZvKgo1abXXUMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUyOTAwMDMxOVoX DTI2MDYwMjAwMDMxOVowejFJMEcGA1UEBRNAYWM5OTcxNGYwNGQ2ZDI0OWFhZDM5 MWVmMjg3ODAwMmQ5NjE2ZWMzZTdhZjljZjZjNzYzZGQwMmQ3ZGM0YTU1MTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxjYYFFth6Iao0jUi3sSvRybW7rDA lMEIBs7Qxn0g8jbKhs2XBH30Yyc9seJ2L4P+48tFeJ/GfotDBtKzyYAauyGpyIno uHcZOte+tj+n0HJI9MqLlal50p7m+fvlLEYOJgcj2BA0ZhzTlzU+ERfHqCYIcCdm gphLMCuuRhiViaL1wxhxAc3EnRlt6eNVHY1LPMKqLbrKPjCvaA0RaPL1zBXXMBqp mijl51QelsJWoq2OVIwNPxjuFWwNrTKrY1qo58Z3zcEsodCeDlwe/u47TljyNcdt tFbwOuIkK5CnMiYrz4Rty6FBdaIjdNnU23Lp6pYLG2+NAK+ZqXpUoiaIhQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFJUJAW2GOrIT4IEFFJSDyTf+z5cDMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBACQJsMhA5nSt/bV2QemD9OultQtqlsCX pcBkYT50p3hSKZ/iF9ct1/L/ayQgR2j4jwh03UviEFBL2Zbe+yros6miv33iJZb8 IDu2QfbEc2tXo+nYubnR2k7NqXCfEuD9HMYSlg6QpeAtddUmy0jSIgFBpDh209yJ g5ZVUWi+PJ6wPnP8CLw4nJ/bDadKNLFt+b/RdVnVvC7tQoCYqGs1IDNcBPWRRgjB 9JSYRm5Fyoohxa+QacRgapwo6CXUZHonYcxiiLT5uTZnb9TIuZqDv3Acm8OAwkfW DeGNKpc5nEHE555djz7ybUdSJXIank6EFwHwJREa8of6Wj8KFu0+BF0= -----END CERTIFICATE-----Generated at Fri May 29 21:25:32 2026 by rpki-client