
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File: manifest.mft (raw, json)
Hash identifier: zwQFHTgkikVIyRYCGXSaMDzTdj0xdafZFx+NW5A1Eqo=
Subject key identifier: B1:46:0C:64:EB:AC:3D:E0:B2:4F:11:80:2C:08:7D:96:C1:BF:CF:F5
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial: 712BDE50E159EAD2B13D88A601D6B0F51A5B5C30
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number: 0655
Signing time: Sat 18 Jul 2026 00:01:15 +0000
Manifest this update: Sat 18 Jul 2026 00:01:15 +0000
Manifest next update: Wed 22 Jul 2026 00:01:15 +0000
Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: XIuc6aaZq1tSA07CGRyvP4MCDQlkcu6aoJhdn2o+Nvo=)
2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=)
3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: 0OedyNMwjL1I1p7rzryfdYD0nslES0i+43AbthFPFmE=)
4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: aoaRIM84eruV/ISWBs3PJCPQb0sEmsLtTOcu1EdbsFA=)
5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: vbtxuyfgx9e6lLFR0CnUGCC1kgCTySw+Ljt4yM1fDb4=)
6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: q5bh3h1LHQcXwRDCiiiYn6TP5+N60E0SyV4QnQBQL8c=)
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 22 Jul 2026 00:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:2b:de:50:e1:59:ea:d2:b1:3d:88:a6:01:d6:b0:f5:1a:5b:5c:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Validity
Not Before: Jul 18 00:01:15 2026 GMT
Not After : Jul 22 00:01:15 2026 GMT
Subject: serialNumber=a041b442733cd3895f8802add12879aab0afb0373d849d1ccdb48116943ca87e, CN=bb9a9116-f615-462e-a680-5266b327e0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c1:74:e9:7e:25:6d:3f:d8:8b:af:6f:13:14:
16:2f:60:7f:df:ce:2c:72:35:94:8b:8c:68:eb:0b:
27:e1:db:73:88:f2:9d:35:4e:9e:bc:bc:b5:5b:3b:
13:49:90:9a:7b:4d:2a:b0:ee:e9:c9:af:16:c8:49:
55:e3:27:87:5a:b9:12:d6:2e:e1:e3:58:4e:0c:42:
a3:05:74:3b:aa:fa:2b:10:8b:70:3b:3c:db:ab:c9:
18:d1:6e:9d:ee:62:04:76:ab:42:df:32:4e:d6:ff:
67:8b:17:b1:0f:31:ad:34:85:3c:c3:e6:2d:ae:ac:
33:34:1d:af:10:65:82:5b:06:26:f6:f7:ed:87:21:
53:d9:21:14:88:e5:72:7c:dd:86:2a:e0:86:59:16:
a5:84:bb:ca:ae:db:21:b6:b0:56:52:47:c4:6f:0b:
af:9c:59:f8:80:6e:d0:d4:6d:9b:39:30:18:1b:57:
e8:6a:24:fe:34:b0:76:e0:40:45:a1:e8:0d:56:f8:
6e:65:d0:51:af:c7:0d:bf:ff:db:f6:4f:6d:05:32:
70:d7:ae:0b:a1:6c:67:29:7c:09:ec:86:1d:6b:93:
2f:39:d2:79:f9:14:b9:21:dc:24:66:92:83:12:66:
bb:34:2d:20:4e:2a:75:b6:1c:db:a6:17:ae:f2:97:
93:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:46:0C:64:EB:AC:3D:E0:B2:4F:11:80:2C:08:7D:96:C1:BF:CF:F5
X509v3 Authority Key Identifier:
keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:83:5d:d3:ec:5f:23:7f:c5:c2:7c:0b:12:81:ee:7d:a5:dc:
04:6b:88:4b:42:e7:9a:a0:25:f6:d3:41:94:86:69:6d:8b:f9:
a0:6c:69:59:c2:88:7a:9f:a0:46:dd:5e:31:56:8c:14:6e:7e:
80:24:71:8c:6d:1c:91:2a:b5:f0:21:b7:77:e5:20:6d:bf:74:
92:74:1b:88:c6:f8:28:c2:5a:d3:10:38:03:0a:7b:a0:e1:42:
02:a9:eb:d2:b8:94:15:2c:76:a3:6d:ca:14:22:d3:3b:10:4d:
29:64:1c:ed:8c:f2:96:0e:88:33:03:d1:9a:0d:89:85:7f:15:
93:cc:a8:d7:eb:e6:e0:50:0b:e6:fb:8f:b5:b8:b3:36:fb:15:
2c:73:96:c3:82:85:2e:fa:e9:c8:6f:a2:d7:7d:96:0b:3f:bc:
2f:2f:d3:01:ee:1b:29:36:14:6e:c9:db:65:02:be:c4:1b:38:
33:4e:06:c1:d3:d9:0e:cb:5a:c2:22:bc:f0:5c:e4:7e:3c:67:
24:91:c0:d5:63:a8:2f:b1:32:e5:63:98:16:a1:73:29:67:1e:
60:64:d2:4f:76:5e:48:3d:42:90:f1:c5:f2:69:b5:7e:07:80:
ff:a8:7b:9f:85:19:13:9b:13:6d:b5:c1:ff:a6:e0:6e:a9:74:
07:c6:0c:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 17:27:01 2026 by rpki-client