$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: 3JtLVb3U8suLCYbfRwFEWeC32TkiVIXrnKp//GSQnJo= Subject key identifier: 53:5D:3C:EA:76:75:8A:BF:AE:0D:2B:D6:36:3B:16:47:06:25:4D:FE Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 703CFA815C140F9398D5C9487916BCEDC2804CAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0633 Signing time: Sun 14 Jun 2026 00:05:53 +0000 Manifest this update: Sun 14 Jun 2026 00:05:53 +0000 Manifest next update: Thu 18 Jun 2026 00:05:53 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: a1cdCxbqHCpYDUfGBN3xhNQKfgrCrm/5mQzzch6Bxso=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 00:05:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:3c:fa:81:5c:14:0f:93:98:d5:c9:48:79:16:bc:ed:c2:80:4c:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 14 00:05:53 2026 GMT Not After : Jun 18 00:05:53 2026 GMT Subject: serialNumber=30dd00552701c93a53b414921dfb6f059656d3dc3d59e2fc9abed7a2f364249b, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7c:c0:75:bd:e0:ff:7b:e8:97:74:de:ec:d1: fb:af:37:27:91:92:ac:ba:0f:50:ba:17:96:21:17: 53:c2:f1:88:b0:e0:5e:cd:6d:5f:b6:43:d2:b0:84: b3:ae:c3:95:c5:f0:d7:c6:a3:b5:af:fd:da:2e:fb: 57:fb:f2:09:03:56:ff:0f:20:64:13:86:5a:86:e5: c9:d5:b4:0d:8e:86:21:4a:53:4e:f8:cf:1d:7d:4a: 53:f0:27:c4:1b:4a:5a:b1:a4:08:d5:cb:63:e3:b8: af:b5:de:f0:36:9a:4f:3a:e8:90:68:0e:ca:72:13: 3c:3f:1d:52:d8:de:4b:dc:fe:0e:99:df:02:68:dc: 29:b2:43:ba:f7:02:2e:89:18:11:7e:bb:1a:d0:50: 77:ef:95:64:95:e5:c0:8d:22:f4:a3:53:66:dd:51: 0f:5f:c6:1f:05:60:42:5d:bb:ca:0f:0e:85:d7:96: d1:ee:c3:5b:b0:f2:47:e7:65:04:c9:79:b4:10:11: 2b:71:bf:b8:ef:f6:16:70:bd:d5:79:54:0f:52:96: 9c:31:b8:ed:56:71:aa:f6:1f:dd:df:a1:bf:ed:91: 49:6f:38:cb:43:31:7a:23:03:86:41:db:1a:e1:c1: c4:43:70:ee:42:23:e5:69:87:fb:cd:f8:f4:b3:d0: c9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:5D:3C:EA:76:75:8A:BF:AE:0D:2B:D6:36:3B:16:47:06:25:4D:FE X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:aa:3c:aa:23:b3:2e:40:53:4b:e6:56:b7:18:23:c7:02:03: b4:bf:2b:6f:43:9f:05:1a:f5:0f:1e:06:52:e6:e6:e1:12:9b: 21:45:57:5b:bc:5b:53:be:b9:d2:39:40:da:72:5a:69:5e:c1: 16:02:b6:30:b4:69:83:ee:75:75:d4:84:21:33:6f:e4:b0:4e: 13:8a:11:7a:37:88:85:50:e5:49:7e:27:a4:1c:37:8c:b4:52: bc:fc:9a:1d:74:cb:60:14:d9:8d:e8:bb:78:3e:f6:0d:a5:8a: e6:eb:d6:72:1b:b8:c5:19:50:47:b7:f3:88:45:f3:02:bf:dc: 53:8f:f0:f7:c7:5e:c7:0f:05:c3:ee:7d:8d:06:ac:8e:2d:f2: be:ea:35:e1:84:2c:48:19:bd:0c:54:e6:52:80:a7:12:70:ea: 9a:0a:87:60:b0:a9:ca:03:09:91:3c:9b:47:36:3a:f9:ee:e8: b4:9c:34:04:52:d1:e6:43:1c:78:78:86:1e:46:2a:02:25:98: 8c:77:a2:5e:d7:26:e7:d8:64:19:e4:c2:57:c5:00:96:95:c2: a4:32:ea:d6:74:7f:ab:a5:84:af:30:6d:c6:4c:14:dd:cb:93: 91:aa:75:a9:6e:4e:58:ba:86:e7:61:b4:a4:d0:fb:2c:6e:3d: ae:c1:24:ea -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUcDz6gVwUD5OY1clIeRa87cKATK0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYxNDAwMDU1M1oX DTI2MDYxODAwMDU1M1owejFJMEcGA1UEBRNAMzBkZDAwNTUyNzAxYzkzYTUzYjQx NDkyMWRmYjZmMDU5NjU2ZDNkYzNkNTllMmZjOWFiZWQ3YTJmMzY0MjQ5YjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXzAdb3g/3vol3Te7NH7rzcnkZKs ug9QuheWIRdTwvGIsOBezW1ftkPSsISzrsOVxfDXxqO1r/3aLvtX+/IJA1b/DyBk E4ZahuXJ1bQNjoYhSlNO+M8dfUpT8CfEG0pasaQI1ctj47ivtd7wNppPOuiQaA7K chM8Px1S2N5L3P4Omd8CaNwpskO69wIuiRgRfrsa0FB375VkleXAjSL0o1Nm3VEP X8YfBWBCXbvKDw6F15bR7sNbsPJH52UEyXm0EBErcb+47/YWcL3VeVQPUpacMbjt VnGq9h/d36G/7ZFJbzjLQzF6IwOGQdsa4cHEQ3DuQiPlaYf7zfj0s9DJ0wIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFFNdPOp2dYq/rg0r1jY7FkcGJU3+MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAAmqPKojsy5AU0vmVrcYI8cCA7S/K29D nwUa9Q8eBlLm5uESmyFFV1u8W1O+udI5QNpyWmlewRYCtjC0aYPudXXUhCEzb+Sw ThOKEXo3iIVQ5Ul+J6QcN4y0Urz8mh10y2AU2Y3ou3g+9g2liubr1nIbuMUZUEe3 84hF8wK/3FOP8PfHXscPBcPufY0GrI4t8r7qNeGELEgZvQxU5lKApxJw6poKh2Cw qcoDCZE8m0c2Ovnu6LScNARS0eZDHHh4hh5GKgIlmIx3ol7XJufYZBnkwlfFAJaV wqQy6tZ0f6ulhK8wbcZMFN3Lk5GqdaluTli6hudhtKTQ+yxuPa7BJOo= -----END CERTIFICATE-----Generated at Sun Jun 14 12:31:09 2026 by rpki-client