$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: YamYFaN9scfbuiUlIAyt1yG2Yv/B9rQXf/HBlzDv9Y8= Subject key identifier: 4B:30:00:52:EF:DE:BF:C1:E7:77:D2:81:F4:70:86:C0:EA:7A:11:55 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 0F658F30A73C5EB187BD673CCEB085A356E513BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 060A Signing time: Mon 04 May 2026 00:02:04 +0000 Manifest this update: Mon 04 May 2026 00:02:04 +0000 Manifest next update: Fri 08 May 2026 00:02:04 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: u1IhdZ9d76JUDMTCQ9uyOCJdfZiqB7dyiG4KShCy7R8=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 00:02:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:65:8f:30:a7:3c:5e:b1:87:bd:67:3c:ce:b0:85:a3:56:e5:13:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 4 00:02:04 2026 GMT Not After : May 8 00:02:04 2026 GMT Subject: serialNumber=3222d19c9b7f216b1818fe7e82830e84876997e651ebe17436d539511ea7f10a, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7f:42:ba:9a:69:cc:f9:de:59:9f:c6:5b:c7: 95:db:01:1c:c6:df:ae:22:29:89:77:6e:2e:56:12: 49:c5:c4:88:d6:6f:5a:10:9f:2a:9f:95:cf:fa:fa: 39:89:03:0c:22:65:99:76:c0:92:4a:f4:07:55:a7: 33:82:bf:77:8c:19:fb:37:1c:07:09:6f:d3:4b:b8: ce:ac:b3:97:56:a7:b8:d0:48:88:51:94:4b:f2:e2: 2d:6c:b3:18:90:86:3e:a3:4e:4e:52:d6:79:99:55: f6:7e:23:b0:18:ed:f3:2e:7f:9c:eb:40:c7:27:fa: c8:73:4d:4d:78:1b:b1:91:10:97:e2:c5:ca:0a:81: e6:51:c0:06:21:ac:66:9d:c7:c2:c1:c5:e7:81:1e: a2:b2:3d:11:13:c4:f1:a2:16:d0:4b:87:05:a6:2a: bd:86:4b:7c:93:31:6c:1b:13:6f:b9:a2:3e:9f:7b: 18:13:1f:b5:96:0e:6d:f0:e8:64:10:71:61:84:25: 9a:59:77:ab:5c:7e:89:fd:14:ed:4d:a5:13:d1:f2: 27:7b:c5:7b:7d:8f:0c:45:52:dd:3d:0f:f6:6f:cd: 3c:c5:32:59:19:93:db:28:a1:20:e5:45:6e:8e:d0: 8b:94:e6:97:c3:db:88:1b:bc:cf:12:c8:73:ca:b6: 0b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:30:00:52:EF:DE:BF:C1:E7:77:D2:81:F4:70:86:C0:EA:7A:11:55 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:64:aa:db:15:52:03:04:1a:f1:fe:a5:e6:64:f8:67:94:be: eb:cb:a9:cc:c0:93:29:68:94:8c:5b:b8:c1:e0:69:8c:0b:4c: 2f:6d:d2:4f:c4:35:08:69:cc:54:c1:4c:03:31:b0:e0:61:c8: e0:ef:46:92:73:ec:38:18:09:61:24:3f:18:1d:3a:58:b1:40: 16:4f:c1:5c:81:9d:45:01:57:f9:c2:f3:9a:ec:ad:57:e6:d5: dc:f0:c6:ff:62:ca:e1:9d:04:d5:b7:c2:dc:ba:dd:b1:47:ae: 88:32:1a:43:ca:76:bf:07:34:40:0f:a6:0c:b4:ff:6c:ed:db: f3:68:2d:6f:56:64:09:a7:d3:a0:6e:3d:b5:a2:45:31:c1:e1: f4:97:dc:4f:ea:80:2e:bf:ae:ed:4a:00:34:60:8a:f1:b1:5c: 0e:45:6b:63:ee:0c:a8:e1:7e:3c:0f:3c:67:82:d8:ca:8e:2d: 1d:55:71:5f:34:07:1b:fa:2a:65:22:fc:99:3a:65:51:15:5f: e2:89:59:db:69:0f:25:29:66:c9:67:0b:9d:b8:ac:b1:13:b9: 7b:b3:71:50:e9:00:06:1e:67:b0:b6:a9:5e:b2:2e:37:8f:ad: cc:6e:79:93:35:5b:3d:5d:f7:63:fd:c7:e2:4b:61:04:cd:d1: e1:dc:ca:47 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUD2WPMKc8XrGHvWc8zrCFo1blE74wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUwNDAwMDIwNFoX DTI2MDUwODAwMDIwNFowejFJMEcGA1UEBRNAMzIyMmQxOWM5YjdmMjE2YjE4MThm ZTdlODI4MzBlODQ4NzY5OTdlNjUxZWJlMTc0MzZkNTM5NTExZWE3ZjEwYTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtX9CupppzPneWZ/GW8eV2wEcxt+u IimJd24uVhJJxcSI1m9aEJ8qn5XP+vo5iQMMImWZdsCSSvQHVaczgr93jBn7NxwH CW/TS7jOrLOXVqe40EiIUZRL8uItbLMYkIY+o05OUtZ5mVX2fiOwGO3zLn+c60DH J/rIc01NeBuxkRCX4sXKCoHmUcAGIaxmncfCwcXngR6isj0RE8TxohbQS4cFpiq9 hkt8kzFsGxNvuaI+n3sYEx+1lg5t8OhkEHFhhCWaWXerXH6J/RTtTaUT0fIne8V7 fY8MRVLdPQ/2b808xTJZGZPbKKEg5UVujtCLlOaXw9uIG7zPEshzyrYLNQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFEswAFLv3r/B53fSgfRwhsDqehFVMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBADJkqtsVUgMEGvH+peZk+GeUvuvLqczA kylolIxbuMHgaYwLTC9t0k/ENQhpzFTBTAMxsOBhyODvRpJz7DgYCWEkPxgdOlix QBZPwVyBnUUBV/nC85rsrVfm1dzwxv9iyuGdBNW3wty63bFHrogyGkPKdr8HNEAP pgy0/2zt2/NoLW9WZAmn06BuPbWiRTHB4fSX3E/qgC6/ru1KADRgivGxXA5Fa2Pu DKjhfjwPPGeC2MqOLR1VcV80Bxv6KmUi/Jk6ZVEVX+KJWdtpDyUpZslnC524rLET uXuzcVDpAAYeZ7C2qV6yLjePrcxueZM1Wz1d92P9x+JLYQTN0eHcykc= -----END CERTIFICATE-----Generated at Mon May 4 05:54:07 2026 by rpki-client