
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File: manifest.mft (raw, json)
Hash identifier: RmtbfzQpMJ33LK28g7ZcOolQLKGow8n/2QJ4a7V8XMY=
Subject key identifier: 4F:7E:FD:F3:39:38:A3:5D:66:38:4A:62:36:FE:01:2A:6C:0A:E2:F1
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial: 1A5013944ECD3C4DBE9AC7FCED292D9C64611FE1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number: 0646
Signing time: Fri 03 Jul 2026 00:09:46 +0000
Manifest this update: Fri 03 Jul 2026 00:09:46 +0000
Manifest next update: Tue 07 Jul 2026 00:09:46 +0000
Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: E1aZcWrqQWkgS8ZRyznQjlz3B6/V776TrQNRSwf8cWs=)
2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=)
3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=)
4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=)
5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=)
6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=)
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 07 Jul 2026 00:09:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:50:13:94:4e:cd:3c:4d:be:9a:c7:fc:ed:29:2d:9c:64:61:1f:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Validity
Not Before: Jul 3 00:09:46 2026 GMT
Not After : Jul 7 00:09:46 2026 GMT
Subject: serialNumber=7ba27a09a8cc5b9e188ec01f99497b9e4e89ab6797f48fcf26ce1e7e2652debf, CN=bb9a9116-f615-462e-a680-5266b327e0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c1:e2:69:ec:79:c5:3a:86:9e:0f:b9:46:ef:
48:6a:07:c1:99:72:43:bb:b2:c4:5a:61:bc:18:a7:
21:72:ee:b0:28:b6:b0:45:76:e8:57:f0:80:8d:e7:
d1:aa:14:c4:80:b1:67:e8:45:d0:c5:70:40:bd:86:
20:ce:c0:b6:50:c9:45:a4:06:31:c8:f5:41:6d:d2:
60:e8:00:2c:76:2b:29:38:c2:02:90:18:11:56:64:
3b:3f:68:be:7f:7f:cc:9d:5b:25:52:a3:08:0c:37:
ac:14:5f:6a:75:ad:e0:96:19:dc:72:de:eb:8e:89:
d2:d0:63:76:e3:a2:57:4a:48:37:89:1f:f6:33:d2:
2e:82:79:c5:2e:95:b4:91:7d:57:6e:66:bd:cd:f5:
0c:11:4f:9c:31:aa:99:1b:55:24:28:07:27:38:38:
d6:f0:cf:0b:97:6c:c1:c0:57:3d:14:eb:34:9f:9a:
88:57:d7:83:df:c1:0b:24:05:78:9a:7c:db:cf:22:
18:42:db:32:5f:a7:8b:52:62:5b:03:b8:d3:64:4f:
47:cf:b2:f2:2f:04:56:8b:ad:e1:bd:86:d7:7d:94:
31:79:84:e1:21:4d:92:63:c2:8c:40:95:c0:fd:70:
73:e7:0d:6c:59:d0:07:e1:fb:1f:79:4d:39:0c:c9:
87:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:7E:FD:F3:39:38:A3:5D:66:38:4A:62:36:FE:01:2A:6C:0A:E2:F1
X509v3 Authority Key Identifier:
keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:1d:f2:d2:86:8b:b4:bc:f8:9b:43:66:bf:0b:b3:b9:fd:8c:
1e:ec:03:ae:3c:6f:cb:f4:5f:df:41:16:6c:1b:47:97:09:6d:
83:8d:c2:b6:6d:6d:11:51:3d:62:f3:35:3c:fc:f4:64:dc:4f:
cb:08:29:dd:67:f4:b2:29:83:bc:c1:f5:a5:55:26:5c:3f:66:
e7:72:eb:1b:7e:48:69:33:dc:e1:c1:51:af:39:55:f7:6e:80:
b9:7b:02:71:aa:1d:4d:59:c4:30:f0:c8:f5:53:0c:f6:3c:f3:
19:46:d8:53:f7:4f:de:ac:1b:01:5b:52:dc:38:11:5c:64:c6:
c2:b5:36:c8:d4:00:7b:91:b1:c7:07:aa:85:65:5f:c7:eb:8e:
f4:6a:69:c0:21:90:3d:0e:24:fa:0a:8d:bc:28:dc:51:fa:be:
67:b3:18:bd:47:74:a3:cc:1c:48:d5:2f:e4:81:2e:b1:5b:72:
bd:07:76:13:2a:00:07:d4:fe:6c:db:90:0d:8f:c2:e0:6e:ae:
97:87:88:49:c6:9c:78:0f:4b:eb:54:91:71:4b:9f:c2:8b:a6:
2e:72:b0:28:d8:30:b2:d3:01:05:6b:3b:64:6c:9f:72:dc:03:
19:21:88:9a:d2:4a:64:c8:e3:19:ea:4c:2a:29:6f:88:a3:a5:
7d:8b:df:fa
-----BEGIN CERTIFICATE-----
MIIFlTCCBH2gAwIBAgIUGlATlE7NPE2+msf87SktnGRhH+EwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4
ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDcwMzAwMDk0NloX
DTI2MDcwNzAwMDk0NlowejFJMEcGA1UEBRNAN2JhMjdhMDlhOGNjNWI5ZTE4OGVj
MDFmOTk0OTdiOWU0ZTg5YWI2Nzk3ZjQ4ZmNmMjZjZTFlN2UyNjUyZGViZjEtMCsG
A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtsHiaex5xTqGng+5Ru9IagfBmXJD
u7LEWmG8GKchcu6wKLawRXboV/CAjefRqhTEgLFn6EXQxXBAvYYgzsC2UMlFpAYx
yPVBbdJg6AAsdispOMICkBgRVmQ7P2i+f3/MnVslUqMIDDesFF9qda3glhncct7r
jonS0GN246JXSkg3iR/2M9IugnnFLpW0kX1Xbma9zfUMEU+cMaqZG1UkKAcnODjW
8M8Ll2zBwFc9FOs0n5qIV9eD38ELJAV4mnzbzyIYQtsyX6eLUmJbA7jTZE9Hz7Ly
LwRWi63hvYbXfZQxeYThIU2SY8KMQJXA/XBz5w1sWdAH4fsfeU05DMmHRwIDAQAB
o4ICQTCCAj0wHQYDVR0OBBYEFE9+/fM5OKNdZjhKYjb+ASpsCuLxMB8GA1UdIwQY
MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp
QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF
BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t
L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu
aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y
c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi
NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm
LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw
BKACBQAwDQYJKoZIhvcNAQELBQADggEBAHsd8tKGi7S8+JtDZr8Ls7n9jB7sA648
b8v0X99BFmwbR5cJbYONwrZtbRFRPWLzNTz89GTcT8sIKd1n9LIpg7zB9aVVJlw/
Zudy6xt+SGkz3OHBUa85VfdugLl7AnGqHU1ZxDDwyPVTDPY88xlG2FP3T96sGwFb
Utw4EVxkxsK1NsjUAHuRsccHqoVlX8frjvRqacAhkD0OJPoKjbwo3FH6vmezGL1H
dKPMHEjVL+SBLrFbcr0HdhMqAAfU/mzbkA2PwuBurpeHiEnGnHgPS+tUkXFLn8KL
pi5ysCjYMLLTAQVrO2Rsn3LcAxkhiJrSSmTI4xnqTCopb4ijpX2L3/o=
-----END CERTIFICATE-----
Generated at Fri Jul 3 04:35:33 2026 by rpki-client