$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: JpZ6W01d8IxLYdjTsz9021cV21bN5xfFvleD2//9fiQ= Subject key identifier: 10:72:BC:E3:2F:57:91:4F:C2:45:68:A7:F7:79:A9:15:9B:51:EB:FF Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 3AAC917A1843ADC6ED21E37AA2B3F01A0A7D526E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0643 Signing time: Tue 30 Jun 2026 00:09:04 +0000 Manifest this update: Tue 30 Jun 2026 00:09:04 +0000 Manifest next update: Sat 04 Jul 2026 00:09:04 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: n8qX9OvBCLIf7u03U/NfurJ/gYJR2ZwYziirs7rkDhU=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Jul 2026 00:09:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:ac:91:7a:18:43:ad:c6:ed:21:e3:7a:a2:b3:f0:1a:0a:7d:52:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 30 00:09:04 2026 GMT Not After : Jul 4 00:09:04 2026 GMT Subject: serialNumber=b4d2bb72e4e3a3b1ad00c051bc3e6c050264dd54256af63fa1d0b78d060f1633, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d3:c9:8d:6d:e3:12:63:25:1a:5f:8e:b7:f0: fc:34:b6:21:e2:ef:5c:18:74:50:a9:45:03:c1:73: 13:11:51:a3:80:52:c9:ea:e7:fa:be:82:e1:4f:0c: 20:ca:4c:98:25:de:e6:66:01:37:2a:4e:31:72:bc: 0d:36:da:bf:db:a2:a9:cf:a9:ae:ee:8f:ca:a5:42: cf:5d:0b:2c:64:61:c4:52:37:49:02:cc:61:30:34: cf:40:08:30:4c:05:e0:9c:29:f0:d1:c8:dd:17:f0: c4:a4:9c:1b:24:fb:ec:c6:6d:6e:e6:db:bf:8a:70: 58:76:bb:70:22:1b:99:e5:e2:31:ba:94:11:47:fa: 77:f6:7d:35:73:d0:a8:9f:73:c8:35:b0:93:c8:a6: 39:c5:49:3a:e0:52:60:8a:09:c5:65:5e:45:14:c0: d8:a5:59:98:7c:c5:4e:8f:c2:7b:86:0e:1f:ee:99: 76:09:03:8f:e3:5f:bc:13:e5:ff:00:f5:3c:83:5e: 8e:e0:7c:c6:6a:a0:21:fc:da:6a:3d:e3:1b:2b:0d: 61:0c:02:4e:ab:fc:11:dc:02:49:18:98:f8:89:ba: 51:f9:45:2c:ef:b0:09:55:21:2b:03:0f:61:8c:7a: bd:25:af:f4:05:82:98:1b:59:55:34:9d:05:2f:91: b9:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:72:BC:E3:2F:57:91:4F:C2:45:68:A7:F7:79:A9:15:9B:51:EB:FF X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:ff:33:ea:e5:7d:d8:b9:2f:4a:13:47:ff:63:12:75:a6:eb: 2a:ce:c7:c2:e5:cd:a6:9a:90:1f:51:2b:31:e9:84:fd:c1:79: 75:76:8c:d3:1e:a7:cd:02:66:35:33:31:d2:11:fd:d2:ff:43: 8d:05:79:49:f7:db:9e:6d:b2:4a:f7:c4:74:44:bb:af:64:79: 95:3e:87:8c:06:9e:fe:26:1a:59:c5:8f:26:53:39:4a:bf:8b: 24:07:ab:25:b7:03:5c:5f:26:68:05:8a:24:2a:a0:75:39:71: 67:64:b0:54:37:94:50:8b:45:3f:8b:bc:c8:5a:02:2b:bc:37: c8:d4:9a:3e:c0:29:83:85:50:de:2c:b7:4f:89:f6:b6:6f:62: fa:b4:fe:6a:06:ff:a6:c2:15:be:9a:0b:bd:43:58:14:f7:1d: 5b:79:4e:9c:47:df:55:8c:cc:f3:51:cc:d8:1c:77:c0:d7:11: 7a:c8:0c:fc:83:5e:f8:4a:bd:67:72:87:b1:e4:68:97:cf:60: c0:41:46:ad:48:e3:c1:58:de:07:b4:99:38:39:96:94:87:7d: c2:e7:51:f9:0f:3e:5a:95:65:82:db:04:d2:bd:83:df:d1:b1: e5:91:29:f0:fa:0d:08:7f:b9:ff:fe:68:b6:ef:15:0d:9e:c1: 40:a0:e1:fc -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUOqyRehhDrcbtIeN6orPwGgp9Um4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYzMDAwMDkwNFoX DTI2MDcwNDAwMDkwNFowejFJMEcGA1UEBRNAYjRkMmJiNzJlNGUzYTNiMWFkMDBj MDUxYmMzZTZjMDUwMjY0ZGQ1NDI1NmFmNjNmYTFkMGI3OGQwNjBmMTYzMzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmdPJjW3jEmMlGl+Ot/D8NLYh4u9c GHRQqUUDwXMTEVGjgFLJ6uf6voLhTwwgykyYJd7mZgE3Kk4xcrwNNtq/26Kpz6mu 7o/KpULPXQssZGHEUjdJAsxhMDTPQAgwTAXgnCnw0cjdF/DEpJwbJPvsxm1u5tu/ inBYdrtwIhuZ5eIxupQRR/p39n01c9Con3PINbCTyKY5xUk64FJgignFZV5FFMDY pVmYfMVOj8J7hg4f7pl2CQOP41+8E+X/APU8g16O4HzGaqAh/NpqPeMbKw1hDAJO q/wR3AJJGJj4ibpR+UUs77AJVSErAw9hjHq9Ja/0BYKYG1lVNJ0FL5G5qQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFBByvOMvV5FPwkVop/d5qRWbUev/MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAFD/M+rlfdi5L0oTR/9jEnWm6yrOx8Ll zaaakB9RKzHphP3BeXV2jNMep80CZjUzMdIR/dL/Q40FeUn3255tskr3xHREu69k eZU+h4wGnv4mGlnFjyZTOUq/iyQHqyW3A1xfJmgFiiQqoHU5cWdksFQ3lFCLRT+L vMhaAiu8N8jUmj7AKYOFUN4st0+J9rZvYvq0/moG/6bCFb6aC71DWBT3HVt5TpxH 31WMzPNRzNgcd8DXEXrIDPyDXvhKvWdyh7HkaJfPYMBBRq1I48FY3ge0mTg5lpSH fcLnUfkPPlqVZYLbBNK9g9/RseWRKfD6DQh/uf/+aLbvFQ2ewUCg4fw= -----END CERTIFICATE-----Generated at Tue Jun 30 16:09:59 2026 by rpki-client