$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: +7wIiJjCme2RjqRyPCH1BZrxuriQyCE3z4KPUg2blB8= Subject key identifier: 86:67:DB:62:DE:AF:30:4A:E9:C1:E5:F9:02:C9:93:08:A4:A6:21:69 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 0DF2274D9065C6B2657042552803BFFF409BCEE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0629 Signing time: Thu 04 Jun 2026 00:04:18 +0000 Manifest this update: Thu 04 Jun 2026 00:04:18 +0000 Manifest next update: Mon 08 Jun 2026 00:04:18 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: SOnwQMbaIgG8FWg7tRN1qM4NU45oIOTtuL5s15qPBQo=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 00:04:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:f2:27:4d:90:65:c6:b2:65:70:42:55:28:03:bf:ff:40:9b:ce:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 4 00:04:18 2026 GMT Not After : Jun 8 00:04:18 2026 GMT Subject: serialNumber=65d61643a0df6eed35f48e58c64705ea6aa5f3941fdea3fbe10172b77ea51028, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:39:d5:85:9b:77:e1:27:65:35:98:a4:65:82: 8d:ba:46:da:ed:00:18:37:4d:9e:b4:68:ff:d9:93: 2e:9c:34:a0:ae:33:ce:6e:eb:6b:15:81:b6:57:87: a5:ee:71:da:67:4b:6b:19:d9:7e:06:bf:84:d9:38: 9f:80:ce:12:71:98:0b:c9:f1:05:aa:2d:49:2a:90: c9:be:10:f1:a0:48:3d:00:c0:01:39:b5:a8:5d:d3: 05:48:75:a5:d2:1a:9b:19:4f:bc:94:e1:7d:94:1b: 42:ef:53:6d:ee:8d:06:1b:65:66:c7:04:fb:ab:f0: b5:ef:5e:19:1d:49:82:67:8d:53:0b:4a:77:91:d3: b8:37:2c:e8:35:a9:ad:02:5a:55:ac:a1:44:b9:3b: df:b8:87:4c:92:97:a4:0d:b5:4e:11:39:54:92:dd: d4:66:84:31:e8:e7:53:f7:c2:67:37:b0:c4:2f:9d: e0:75:cc:b0:31:67:e7:7f:69:81:d1:8d:cc:0f:24: 92:ec:ed:ff:07:76:f6:9d:60:d2:8b:75:82:0a:76: ea:ee:87:c9:36:33:7d:96:d6:c5:8e:aa:dc:7f:67: f3:4f:e8:4b:58:88:25:f9:a7:2d:82:94:0e:44:44: ce:48:91:cf:a6:36:3e:86:f0:f0:af:59:0e:69:27: 14:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:67:DB:62:DE:AF:30:4A:E9:C1:E5:F9:02:C9:93:08:A4:A6:21:69 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:29:61:d7:2e:ad:a5:8f:cf:71:9d:2c:7e:63:e3:cd:02:e6: ba:12:e0:55:e4:d4:bc:ca:93:6a:ed:4e:75:b5:84:11:e3:d4: 63:61:11:a5:89:f9:f1:ae:32:71:68:5a:16:02:fe:5a:89:66: 18:11:96:90:dd:c6:bc:7d:d5:07:99:bb:ba:55:f1:51:08:22: a5:84:58:6a:22:ef:a8:f4:9c:c4:4b:6c:06:de:db:0a:3f:36: 86:33:60:34:a5:2c:1d:4b:fd:4c:b4:6a:d6:b4:e9:d1:cf:75: de:36:da:73:20:92:fb:fc:d1:23:51:f1:28:dc:42:2c:56:4b: 38:a1:75:16:52:78:ae:98:34:61:97:30:67:53:21:c8:12:14: 5a:0b:77:dd:db:9a:99:f3:7c:20:30:2d:b8:56:9b:f4:11:21: 72:5b:06:6b:45:e7:16:1f:1f:b4:a3:f6:90:cc:9b:e8:27:78: b4:6a:bd:c3:13:f0:15:19:33:74:2c:38:66:08:01:3a:1b:aa: c9:8f:0a:ca:41:ed:98:2b:89:e5:51:b4:b1:a2:9a:a2:d9:cd: 44:63:d9:64:f5:50:7d:42:5e:03:38:cf:3b:f6:66:a9:31:8b: 3a:b2:a9:78:22:7e:be:6f:31:b1:2f:13:e1:4c:05:2f:e8:ca: 97:0e:24:28 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUDfInTZBlxrJlcEJVKAO//0CbzuEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYwNDAwMDQxOFoX DTI2MDYwODAwMDQxOFowejFJMEcGA1UEBRNANjVkNjE2NDNhMGRmNmVlZDM1ZjQ4 ZTU4YzY0NzA1ZWE2YWE1ZjM5NDFmZGVhM2ZiZTEwMTcyYjc3ZWE1MTAyODEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzTnVhZt34SdlNZikZYKNukba7QAY N02etGj/2ZMunDSgrjPObutrFYG2V4el7nHaZ0trGdl+Br+E2TifgM4ScZgLyfEF qi1JKpDJvhDxoEg9AMABObWoXdMFSHWl0hqbGU+8lOF9lBtC71Nt7o0GG2VmxwT7 q/C1714ZHUmCZ41TC0p3kdO4NyzoNamtAlpVrKFEuTvfuIdMkpekDbVOETlUkt3U ZoQx6OdT98JnN7DEL53gdcywMWfnf2mB0Y3MDySS7O3/B3b2nWDSi3WCCnbq7ofJ NjN9ltbFjqrcf2fzT+hLWIgl+actgpQORETOSJHPpjY+hvDwr1kOaScURwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFIZn22LerzBK6cHl+QLJkwikpiFpMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAC8pYdcuraWPz3GdLH5j480C5roS4FXk 1LzKk2rtTnW1hBHj1GNhEaWJ+fGuMnFoWhYC/lqJZhgRlpDdxrx91QeZu7pV8VEI IqWEWGoi76j0nMRLbAbe2wo/NoYzYDSlLB1L/Uy0ata06dHPdd422nMgkvv80SNR 8SjcQixWSzihdRZSeK6YNGGXMGdTIcgSFFoLd93bmpnzfCAwLbhWm/QRIXJbBmtF 5xYfH7Sj9pDMm+gneLRqvcMT8BUZM3QsOGYIATobqsmPCspB7ZgrieVRtLGimqLZ zURj2WT1UH1CXgM4zzv2ZqkxizqyqXgifr5vMbEvE+FMBS/oypcOJCg= -----END CERTIFICATE-----Generated at Thu Jun 4 05:36:34 2026 by rpki-client