$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: PFPlPKwiKpq5MO2iFumVU+tjhS51rRG0Lo6qgDlWPrs= Subject key identifier: 13:2B:03:38:43:13:FE:CC:BE:D9:49:1D:0A:32:BA:EB:11:D6:8E:E6 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 321F5C546A1351657505045AA86A73480D85463D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 061C Signing time: Fri 22 May 2026 00:02:01 +0000 Manifest this update: Fri 22 May 2026 00:02:01 +0000 Manifest next update: Tue 26 May 2026 00:02:01 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: cVD7pjDnoug2bjZgt1vwp2H4fPgfuTpBfh2Vb7CBKXE=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 May 2026 00:02:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:1f:5c:54:6a:13:51:65:75:05:04:5a:a8:6a:73:48:0d:85:46:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 22 00:02:01 2026 GMT Not After : May 26 00:02:01 2026 GMT Subject: serialNumber=ec76adc57fbca71e8a087fa84319ae2ac25c6919827f2e58ca3750d806a44c79, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:8a:48:80:bb:a1:14:ee:30:33:a6:6c:0f:0d: d6:43:10:44:60:7e:a0:81:e2:b9:e4:43:dc:d2:c9: 36:0c:b2:49:9b:c3:26:2c:79:86:15:9c:e9:67:15: bb:7c:48:e6:69:f2:48:32:64:76:aa:3e:7f:a7:59: ef:73:85:d2:f9:aa:90:15:c4:45:f0:e7:23:aa:be: 06:77:c0:a6:50:13:aa:92:36:f4:e0:2e:f1:f2:51: ae:4b:cd:da:04:dc:d0:b4:c6:15:d9:3e:e0:7f:40: ce:0f:b4:ef:8d:f1:d3:54:a3:ec:52:ae:04:d3:8d: db:c2:00:38:05:af:89:3d:4f:e6:87:16:da:0b:4b: 76:14:1a:e5:e2:49:b9:1b:17:fb:18:a0:fb:63:58: ba:a2:ee:c7:b7:db:80:0c:f0:d7:50:cb:61:d9:52: 05:20:b0:2d:2a:69:d4:ac:56:cc:59:82:64:a3:93: 61:46:fb:75:bd:c8:b1:71:ac:b8:11:19:ee:2a:5f: d6:5b:5d:56:87:a1:32:94:03:5f:f3:26:e1:99:b7: 39:78:bb:2d:c0:8d:91:dc:e2:c5:8b:24:4a:3f:3e: 68:33:d2:54:cb:01:aa:73:77:d0:47:da:49:71:02: 37:42:7c:a3:ba:01:e1:e8:5e:92:cf:72:f9:77:e4: 93:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:2B:03:38:43:13:FE:CC:BE:D9:49:1D:0A:32:BA:EB:11:D6:8E:E6 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:b2:90:66:4d:9d:a2:59:08:ec:42:0c:84:35:87:1a:b1:b8: 0e:35:70:8e:d8:41:09:b3:0e:d4:54:2e:f5:18:ed:e3:2e:2e: f4:bc:77:1a:36:8b:74:11:74:34:76:df:16:8c:10:2f:c9:70: 7e:f0:dc:f0:b7:46:c8:79:7a:d9:a0:fc:67:fd:36:0a:a4:95: fe:17:56:53:78:c0:e4:0e:d7:03:d1:cd:f2:e3:17:b7:b2:25: dc:fe:6e:48:47:53:97:ee:2e:9e:91:3b:06:f8:56:ca:98:de: b6:55:97:d2:23:53:01:f3:65:de:b2:03:4f:1a:45:c2:2c:e0: f5:db:0b:94:81:27:40:cc:c5:c7:62:23:81:69:9f:1e:d6:1c: 19:40:d5:c0:5d:26:dd:a8:fc:99:e4:46:52:13:82:1c:8f:a5: d8:58:ca:2d:9a:52:1c:1d:d1:36:25:f8:8e:86:11:1a:4f:46: d2:a8:ec:9d:23:d0:82:2c:4b:9e:38:79:23:e4:1e:31:f2:6c: ac:d0:9e:4e:ec:c7:ce:d0:9a:8a:5a:77:ca:21:0b:17:53:d6: e7:48:0b:b5:ec:62:26:5f:ab:93:aa:c3:0a:b5:ac:79:66:5f: b3:c6:0f:5f:67:8a:e3:92:0a:be:b0:36:82:9f:54:61:a4:81: f9:c0:57:8e -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUMh9cVGoTUWV1BQRaqGpzSA2FRj0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUyMjAwMDIwMVoX DTI2MDUyNjAwMDIwMVowejFJMEcGA1UEBRNAZWM3NmFkYzU3ZmJjYTcxZThhMDg3 ZmE4NDMxOWFlMmFjMjVjNjkxOTgyN2YyZTU4Y2EzNzUwZDgwNmE0NGM3OTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlopIgLuhFO4wM6ZsDw3WQxBEYH6g geK55EPc0sk2DLJJm8MmLHmGFZzpZxW7fEjmafJIMmR2qj5/p1nvc4XS+aqQFcRF 8Ocjqr4Gd8CmUBOqkjb04C7x8lGuS83aBNzQtMYV2T7gf0DOD7TvjfHTVKPsUq4E 043bwgA4Ba+JPU/mhxbaC0t2FBrl4km5Gxf7GKD7Y1i6ou7Ht9uADPDXUMth2VIF ILAtKmnUrFbMWYJko5NhRvt1vcixcay4ERnuKl/WW11Wh6EylANf8ybhmbc5eLst wI2R3OLFiyRKPz5oM9JUywGqc3fQR9pJcQI3QnyjugHh6F6Sz3L5d+STQwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFBMrAzhDE/7MvtlJHQoyuusR1o7mMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBADuykGZNnaJZCOxCDIQ1hxqxuA41cI7Y QQmzDtRULvUY7eMuLvS8dxo2i3QRdDR23xaMEC/JcH7w3PC3Rsh5etmg/Gf9Ngqk lf4XVlN4wOQO1wPRzfLjF7eyJdz+bkhHU5fuLp6ROwb4VsqY3rZVl9IjUwHzZd6y A08aRcIs4PXbC5SBJ0DMxcdiI4Fpnx7WHBlA1cBdJt2o/JnkRlITghyPpdhYyi2a Uhwd0TYl+I6GERpPRtKo7J0j0IIsS544eSPkHjHybKzQnk7sx87Qmopad8ohCxdT 1udIC7XsYiZfq5Oqwwq1rHlmX7PGD19niuOSCr6wNoKfVGGkgfnAV44= -----END CERTIFICATE-----Generated at Fri May 22 14:56:57 2026 by rpki-client