$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: 66OdAiU12nH5qp0TDtU9ZT7zuYPbk41urri96AHH8VY= Subject key identifier: C0:71:6C:8F:35:20:B6:23:EE:52:EE:34:B3:C5:96:CC:85:5D:16:64 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 363046F13A610F933A9EE6EDB90DD3E140A77A7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0627 Signing time: Tue 02 Jun 2026 00:03:57 +0000 Manifest this update: Tue 02 Jun 2026 00:03:57 +0000 Manifest next update: Sat 06 Jun 2026 00:03:57 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: u4U3AOPeT0gGBoWPMgP7rI0CQ+qdCdVz4bHSxQJX/5c=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Jun 2026 00:03:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:30:46:f1:3a:61:0f:93:3a:9e:e6:ed:b9:0d:d3:e1:40:a7:7a:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 2 00:03:57 2026 GMT Not After : Jun 6 00:03:57 2026 GMT Subject: serialNumber=091603d1d50153bc57217748ff557c6d272d18a3fb433c8cace3f0c65dea1b97, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8e:f6:6b:ab:9d:e4:87:22:51:33:55:3f:9c: 91:ec:78:a9:1b:8b:19:23:03:e2:d3:72:82:7c:97: f9:fe:33:7a:3a:3e:c3:9d:f1:4e:89:60:ce:ba:c1: 4f:57:8d:29:28:fe:d7:c2:63:8a:51:f3:72:cb:5c: ef:1f:51:45:c6:07:7a:9b:10:d4:67:24:3b:30:60: 1a:41:04:58:33:2e:54:d8:8b:0c:5f:13:55:be:87: 43:0e:1e:32:44:81:75:af:2e:9e:9f:4b:fa:d8:c7: d0:cf:e2:54:0f:d4:25:87:8c:3c:40:cc:50:84:7b: e0:50:e6:31:64:a1:e0:3b:25:b6:44:79:1a:04:3d: 1d:39:46:8f:ef:ea:cb:16:2e:c4:69:97:12:4c:e8: 44:89:58:62:d7:03:9c:ee:59:3f:e9:85:c6:e8:94: d0:31:f3:38:3d:57:be:be:d3:d8:6d:be:a0:77:bb: 35:8f:c7:d3:64:3d:64:ec:23:bc:46:3c:68:37:9d: a7:bf:28:c4:18:3e:ae:50:a5:e0:96:63:de:2f:bd: 62:5c:83:fb:42:96:8e:f4:67:d3:70:da:9e:9b:fc: 60:70:b0:cd:83:70:2f:39:2c:af:35:40:30:7b:ca: a6:a0:47:ea:d7:f7:6d:42:90:91:d0:36:05:45:61: f4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:71:6C:8F:35:20:B6:23:EE:52:EE:34:B3:C5:96:CC:85:5D:16:64 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:b8:e1:15:da:2b:70:6a:8b:13:7f:a2:cc:4f:57:e3:10:48: 6b:1d:51:5e:5b:90:35:51:44:0b:a4:3e:91:d1:cf:bb:63:fe: 8a:8a:60:f8:4e:c2:0e:d9:d2:f9:f7:e3:f7:2d:cb:49:65:5c: 67:dc:9b:96:86:33:e4:aa:ae:6c:b1:e6:b2:0e:71:88:df:aa: 09:d1:53:eb:59:ba:ad:43:6b:6c:d7:70:f7:78:b6:ac:3f:af: 10:0b:1b:67:bf:9d:6c:b5:3a:dc:1c:08:db:08:ed:92:cb:37: 40:13:37:19:11:d3:d1:ac:a0:6f:78:aa:0e:d9:be:46:6e:bd: 4e:84:b0:30:d2:5e:a8:8f:d8:7a:ee:fe:78:87:23:74:62:f2: c9:dd:25:32:67:bb:c8:fa:da:55:85:c0:1e:2c:89:db:6d:33: 53:60:05:f3:15:72:ca:9c:94:70:99:ac:94:52:1f:4e:c0:04: 56:12:2c:27:c9:f3:d6:1d:1d:8e:94:23:f0:35:78:42:15:44: 81:f7:73:be:29:1d:26:27:63:40:66:59:b7:ab:b9:73:66:7c: 8b:23:1e:e7:92:ec:bd:41:d1:de:d9:81:6c:5f:0d:d5:ef:09: 74:31:b7:6b:60:59:40:f8:c9:50:f3:d6:22:02:ef:2d:db:7d: 44:61:dd:2b -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUNjBG8TphD5M6nubtuQ3T4UCnenswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYwMjAwMDM1N1oX DTI2MDYwNjAwMDM1N1owejFJMEcGA1UEBRNAMDkxNjAzZDFkNTAxNTNiYzU3MjE3 NzQ4ZmY1NTdjNmQyNzJkMThhM2ZiNDMzYzhjYWNlM2YwYzY1ZGVhMWI5NzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwo72a6ud5IciUTNVP5yR7HipG4sZ IwPi03KCfJf5/jN6Oj7DnfFOiWDOusFPV40pKP7XwmOKUfNyy1zvH1FFxgd6mxDU ZyQ7MGAaQQRYMy5U2IsMXxNVvodDDh4yRIF1ry6en0v62MfQz+JUD9Qlh4w8QMxQ hHvgUOYxZKHgOyW2RHkaBD0dOUaP7+rLFi7EaZcSTOhEiVhi1wOc7lk/6YXG6JTQ MfM4PVe+vtPYbb6gd7s1j8fTZD1k7CO8RjxoN52nvyjEGD6uUKXglmPeL71iXIP7 QpaO9GfTcNqem/xgcLDNg3AvOSyvNUAwe8qmoEfq1/dtQpCR0DYFRWH0WQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFMBxbI81ILYj7lLuNLPFlsyFXRZkMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAAO44RXaK3BqixN/osxPV+MQSGsdUV5b kDVRRAukPpHRz7tj/oqKYPhOwg7Z0vn34/cty0llXGfcm5aGM+Sqrmyx5rIOcYjf qgnRU+tZuq1Da2zXcPd4tqw/rxALG2e/nWy1OtwcCNsI7ZLLN0ATNxkR09GsoG94 qg7ZvkZuvU6EsDDSXqiP2Hru/niHI3Ri8sndJTJnu8j62lWFwB4sidttM1NgBfMV csqclHCZrJRSH07ABFYSLCfJ89YdHY6UI/A1eEIVRIH3c74pHSYnY0BmWberuXNm fIsjHueS7L1B0d7ZgWxfDdXvCXQxt2tgWUD4yVDz1iIC7y3bfURh3Ss= -----END CERTIFICATE-----Generated at Tue Jun 2 04:44:02 2026 by rpki-client