$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: fj10x4Nkbt2uthSr1lO+VVkpX61RFY16uVRcthxLs1s= Subject key identifier: 68:6B:2D:B7:33:FE:EC:6F:BC:1E:94:68:70:21:A4:92:41:12:CB:E0 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 445060953E732D4CD2CE2139169D04AD24563C8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0615 Signing time: Fri 15 May 2026 00:04:08 +0000 Manifest this update: Fri 15 May 2026 00:04:08 +0000 Manifest next update: Tue 19 May 2026 00:04:08 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: k/Bf2lpaE0x2YhYX7UVxY+vt+ok/Ve6r50JyRKZVv6E=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 00:04:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:50:60:95:3e:73:2d:4c:d2:ce:21:39:16:9d:04:ad:24:56:3c:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 15 00:04:08 2026 GMT Not After : May 19 00:04:08 2026 GMT Subject: serialNumber=76e85ce107f3052d5bf955663f265991de0dc843709392e2c08f3b7b46674d4b, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:89:16:81:30:53:77:d7:c7:4a:50:8b:d3:a2: 47:66:de:fa:dd:cc:53:cf:75:c9:80:f3:e3:3a:84: b6:e9:3a:e1:f4:86:94:6f:3d:40:ab:c4:75:20:99: 8f:de:ae:82:f2:fc:b5:47:2c:a4:8b:23:7a:c9:34: 5b:4b:38:2d:4e:f8:f7:f5:92:9c:50:8b:c5:c9:fc: 9e:8d:1c:07:db:85:83:63:d7:69:42:58:40:5d:f6: ed:ba:26:d6:d1:c1:8a:3c:dc:b5:bd:03:b7:2c:cf: 53:6b:d1:95:cc:bf:78:c7:21:8e:c0:4c:6a:c9:37: eb:cf:62:23:0b:6c:ad:88:69:ad:57:6c:8d:67:27: ca:8c:51:93:bc:5f:07:89:be:87:55:34:5a:31:61: 20:dc:d2:7d:f8:e9:27:9d:ee:c2:d3:13:fa:5b:0c: a7:eb:c2:19:c2:00:09:da:35:23:3d:c5:a5:d0:a7: a2:fa:d4:47:6f:c3:5a:13:99:41:cf:95:1e:ea:5f: a4:b5:11:00:b4:30:4a:8c:94:71:c7:0e:a2:99:f6: 23:4f:7e:ac:87:7d:63:26:dd:2c:fd:78:15:91:04: cb:60:71:a0:60:9e:68:c2:3b:4e:7c:93:ee:a1:23: a0:39:30:13:8e:a5:01:53:b2:49:a2:47:28:49:40: 2b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:6B:2D:B7:33:FE:EC:6F:BC:1E:94:68:70:21:A4:92:41:12:CB:E0 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:8b:94:cc:2b:4a:56:df:c8:8a:59:84:c4:e1:d1:c2:ae:e0: 62:35:10:76:50:11:cc:71:00:0d:6a:72:a7:21:96:ef:55:7b: 07:0f:7d:16:27:6a:ae:e9:16:85:b0:23:17:46:d1:cf:78:5f: 91:85:22:3e:a4:b7:b4:93:51:e7:47:30:70:5e:00:de:b7:eb: 58:ad:ac:d5:b8:cd:03:15:af:a8:67:e5:27:c0:39:63:35:a2: 4e:db:ae:6a:ff:d5:29:92:79:e3:4a:4b:ee:f8:57:59:34:1f: 14:2f:a4:25:22:e4:3a:33:2c:b9:c1:b3:46:fe:0f:74:16:3f: d5:ac:56:d0:31:88:e8:a9:17:f3:e8:c0:3f:66:66:be:d4:5b: 1a:75:87:44:01:6b:b9:a0:5e:35:c6:fd:eb:ee:b2:e1:f8:cf: e4:e9:1e:28:0f:57:18:16:3c:a1:0f:51:2e:af:03:c8:6f:ee: f7:02:f2:01:bd:cc:64:b5:a7:f5:d8:f2:67:00:d9:bf:6e:01: 88:dd:6c:c0:7f:d6:6a:a1:e1:cf:68:d8:ee:4e:cb:0b:f1:94: e3:bb:97:97:21:df:e8:18:51:8f:4a:b9:58:c2:ef:01:01:0a: 69:de:9d:11:bc:c0:ea:53:bc:61:e2:1e:19:5d:44:22:41:11: 71:0c:e0:23 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIURFBglT5zLUzSziE5Fp0ErSRWPI4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUxNTAwMDQwOFoX DTI2MDUxOTAwMDQwOFowejFJMEcGA1UEBRNANzZlODVjZTEwN2YzMDUyZDViZjk1 NTY2M2YyNjU5OTFkZTBkYzg0MzcwOTM5MmUyYzA4ZjNiN2I0NjY3NGQ0YjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApIkWgTBTd9fHSlCL06JHZt763cxT z3XJgPPjOoS26Trh9IaUbz1Aq8R1IJmP3q6C8vy1RyykiyN6yTRbSzgtTvj39ZKc UIvFyfyejRwH24WDY9dpQlhAXfbtuibW0cGKPNy1vQO3LM9Ta9GVzL94xyGOwExq yTfrz2IjC2ytiGmtV2yNZyfKjFGTvF8Hib6HVTRaMWEg3NJ9+Oknne7C0xP6Wwyn 68IZwgAJ2jUjPcWl0Kei+tRHb8NaE5lBz5Ue6l+ktREAtDBKjJRxxw6imfYjT36s h31jJt0s/XgVkQTLYHGgYJ5owjtOfJPuoSOgOTATjqUBU7JJokcoSUArbwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFGhrLbcz/uxvvB6UaHAhpJJBEsvgMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGKLlMwrSlbfyIpZhMTh0cKu4GI1EHZQ EcxxAA1qcqchlu9VewcPfRYnaq7pFoWwIxdG0c94X5GFIj6kt7STUedHMHBeAN63 61itrNW4zQMVr6hn5SfAOWM1ok7brmr/1SmSeeNKS+74V1k0HxQvpCUi5DozLLnB s0b+D3QWP9WsVtAxiOipF/PowD9mZr7UWxp1h0QBa7mgXjXG/evusuH4z+TpHigP VxgWPKEPUS6vA8hv7vcC8gG9zGS1p/XY8mcA2b9uAYjdbMB/1mqh4c9o2O5Oywvx lOO7l5ch3+gYUY9KuVjC7wEBCmnenRG8wOpTvGHiHhldRCJBEXEM4CM= -----END CERTIFICATE-----Generated at Fri May 15 11:03:16 2026 by rpki-client