$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: h/1KoIwMlDqf8kZRh7sV14+mQ2xB3HLtrfDbsmAtXGA= Subject key identifier: D4:72:9F:45:B4:B4:92:B7:DD:E3:25:E1:5C:4F:71:C6:9D:8F:D2:A2 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 5C60B9A4C9D528EF505C4B2487F37CE84535556D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0640 Signing time: Sat 27 Jun 2026 00:08:26 +0000 Manifest this update: Sat 27 Jun 2026 00:08:26 +0000 Manifest next update: Wed 01 Jul 2026 00:08:26 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: OFWFIIxsMoNOZi57QOrStbIPkQm7+LQtsUZro5cUTJc=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 00:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:60:b9:a4:c9:d5:28:ef:50:5c:4b:24:87:f3:7c:e8:45:35:55:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 27 00:08:26 2026 GMT Not After : Jul 1 00:08:26 2026 GMT Subject: serialNumber=a20e5620a63c8193f11072abd3f1b5e2c195e2d257bec11b80ba091ccc9cef96, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:27:82:78:e1:6a:d4:16:00:87:9a:09:3f:f7: 3a:89:fa:7f:fa:c5:1b:8c:a5:a3:6c:86:96:1f:05: a1:ed:6d:34:18:b1:5b:d0:ab:bf:e5:9c:02:56:7a: 45:d0:45:aa:8a:41:ae:8b:8f:f0:23:2d:00:62:e3: a3:9b:d3:97:a2:f8:5d:d6:a0:32:fd:d7:97:4d:fc: 84:da:b2:f1:84:e0:83:5d:8d:93:16:0c:70:88:b2: de:b6:2f:b7:01:da:05:c6:c8:a3:66:b7:c0:76:de: 8f:7f:d0:86:92:21:45:f8:39:ec:a6:c6:c4:75:67: e8:d9:d6:46:70:a7:f8:c2:ff:24:0c:49:e0:66:b5: 51:8d:b8:70:e6:e9:2d:88:03:6f:3b:fe:29:ee:1e: 4f:7e:7d:e5:81:d3:1e:a8:29:21:6f:49:9f:9d:00: 39:4d:05:c8:ae:24:ea:7a:af:a8:96:27:51:31:06: db:7b:c5:f5:3f:ee:e8:56:60:2f:56:d8:2e:d4:c3: 34:87:13:6a:46:19:0b:72:61:1b:53:fb:4e:04:55: 2a:ec:a9:00:fe:48:f2:20:00:90:81:21:02:51:a3: 08:af:a1:30:10:8f:7e:d7:82:3a:65:5f:a2:5e:25: 86:15:eb:bd:d3:b1:57:0d:31:c4:dd:d5:f1:4c:fb: 38:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:72:9F:45:B4:B4:92:B7:DD:E3:25:E1:5C:4F:71:C6:9D:8F:D2:A2 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:b6:98:f8:07:cc:63:b6:c8:97:5d:b0:c6:bd:9d:c5:85:aa: cb:ba:b0:6f:a7:8f:10:6c:cb:60:f3:42:e2:5b:b5:c8:34:82: 22:57:ac:2f:73:39:e8:f0:ac:ee:cf:a8:04:5b:bc:26:5b:5e: 58:12:d8:5e:56:dd:05:3a:a3:92:db:dc:63:47:cb:32:a9:05: f6:68:39:18:9f:d6:d6:ed:fa:7b:57:12:0c:5f:14:a6:0d:f3: 81:7e:e7:7b:bd:df:5e:eb:1f:b0:6d:77:87:8c:59:95:73:22: 9e:3d:e9:88:9f:d4:7f:35:45:8d:c3:15:00:b6:99:fa:36:58: 53:89:eb:ce:61:29:5f:ca:34:22:02:da:95:5d:e3:d8:a4:9b: ff:ae:e3:9d:16:b1:18:f2:ab:bb:0e:dd:28:0d:bf:18:8e:50: a8:c8:0d:77:bb:f1:a2:b6:24:58:8d:38:b9:40:92:1a:a9:0d: 01:3e:db:ce:97:d8:9f:39:3d:16:4d:77:25:7a:89:2e:ee:e1: 49:25:86:d3:7d:5e:98:fc:64:11:0a:b4:d1:be:44:bf:7f:ec: 6e:f0:85:b0:21:9f:82:d3:54:89:9e:72:16:6f:0f:78:ac:34: 3d:d2:ab:ac:eb:76:39:6f:a8:b0:14:a4:4d:7f:7a:8f:0e:23: 28:f2:78:66 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUXGC5pMnVKO9QXEskh/N86EU1VW0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYyNzAwMDgyNloX DTI2MDcwMTAwMDgyNlowejFJMEcGA1UEBRNAYTIwZTU2MjBhNjNjODE5M2YxMTA3 MmFiZDNmMWI1ZTJjMTk1ZTJkMjU3YmVjMTFiODBiYTA5MWNjYzljZWY5NjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApSeCeOFq1BYAh5oJP/c6ifp/+sUb jKWjbIaWHwWh7W00GLFb0Ku/5ZwCVnpF0EWqikGui4/wIy0AYuOjm9OXovhd1qAy /deXTfyE2rLxhOCDXY2TFgxwiLLeti+3AdoFxsijZrfAdt6Pf9CGkiFF+DnspsbE dWfo2dZGcKf4wv8kDEngZrVRjbhw5uktiANvO/4p7h5Pfn3lgdMeqCkhb0mfnQA5 TQXIriTqeq+olidRMQbbe8X1P+7oVmAvVtgu1MM0hxNqRhkLcmEbU/tOBFUq7KkA /kjyIACQgSECUaMIr6EwEI9+14I6ZV+iXiWGFeu907FXDTHE3dXxTPs4MQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNRyn0W0tJK33eMl4VxPccadj9KiMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAIa2mPgHzGO2yJddsMa9ncWFqsu6sG+n jxBsy2DzQuJbtcg0giJXrC9zOejwrO7PqARbvCZbXlgS2F5W3QU6o5Lb3GNHyzKp BfZoORif1tbt+ntXEgxfFKYN84F+53u9317rH7Btd4eMWZVzIp496Yif1H81RY3D FQC2mfo2WFOJ685hKV/KNCIC2pVd49ikm/+u450WsRjyq7sO3SgNvxiOUKjIDXe7 8aK2JFiNOLlAkhqpDQE+286X2J85PRZNdyV6iS7u4UklhtN9Xpj8ZBEKtNG+RL9/ 7G7whbAhn4LTVImechZvD3isND3Sq6zrdjlvqLAUpE1/eo8OIyjyeGY= -----END CERTIFICATE-----Generated at Sat Jun 27 19:03:32 2026 by rpki-client