$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: yh8t/MOhl/1Ffnrf5Cfiv2vG9Hj07e+rjL73w6inLnY= Subject key identifier: 24:CB:9F:B1:D8:7A:E2:98:B9:88:B7:85:52:D1:B5:E1:12:A3:1A:4A Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 4CFDD6483912B554AD2DD0BD5B1AA71C6E819EEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0625 Signing time: Sun 31 May 2026 00:03:39 +0000 Manifest this update: Sun 31 May 2026 00:03:39 +0000 Manifest next update: Thu 04 Jun 2026 00:03:39 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: bE9D2mZfrVTY+HTwLl3aErru6TpimtYYckR3xUvTG18=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Jun 2026 00:03:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:fd:d6:48:39:12:b5:54:ad:2d:d0:bd:5b:1a:a7:1c:6e:81:9e:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 31 00:03:39 2026 GMT Not After : Jun 4 00:03:39 2026 GMT Subject: serialNumber=6ab0897b7117b2f8aec49d36f9746f31e8ef159e380093abfc6f499320df4621, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:bd:2b:9b:17:04:0a:11:67:88:5b:29:23:5f: 24:c1:4f:d3:a0:fc:a7:26:6a:1f:74:61:a0:bd:c7: c9:e5:5a:96:0e:90:45:71:e9:1f:1d:de:6f:c7:24: 34:0d:f7:cf:4d:84:a7:07:2c:69:c2:da:86:8c:e4: 43:57:b2:18:06:68:e4:c1:a0:67:81:b9:de:6c:81: a6:c5:b3:45:fa:2d:d3:aa:e1:4c:7c:17:5b:88:57: 9e:fe:72:03:2e:bd:a7:d6:83:a3:6a:3b:f0:91:c6: c7:35:97:10:fd:7c:1f:aa:30:5f:47:9d:dd:30:a1: 20:26:eb:0e:c6:56:ac:77:b9:f7:9d:36:a5:b0:16: 7d:b7:f7:11:7c:69:6d:86:b3:f9:5d:5f:de:cb:e5: 21:d8:27:fb:ad:ee:fc:2d:70:ae:19:f3:f7:50:8d: 1c:84:2b:55:f5:8f:31:09:e0:2c:43:38:2f:17:73: a5:76:05:e9:ed:83:3d:84:7c:33:eb:2a:56:82:ef: 41:bf:22:8b:c3:f0:40:67:1f:6f:5f:39:ff:b0:7f: 84:85:c9:4d:8e:22:cd:87:cf:39:9e:e9:68:dd:76: 31:20:ed:fe:1d:8e:ea:d2:3c:86:6c:d7:d8:c8:ad: 1d:37:31:b9:7e:a2:a3:e9:d6:8b:dc:7c:f5:ac:a8: e4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:CB:9F:B1:D8:7A:E2:98:B9:88:B7:85:52:D1:B5:E1:12:A3:1A:4A X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:9c:fe:ef:e5:20:c1:28:74:5e:7f:66:f3:3f:aa:af:39:8f: 61:35:11:74:1a:e1:b8:45:f1:45:57:09:95:a9:31:82:14:3e: 1f:03:73:e2:93:12:7f:e0:7e:90:77:91:5d:59:e3:9e:23:f9: f4:42:95:b6:36:a1:41:e2:74:bc:74:b9:88:3a:bd:94:ee:b2: 71:14:d2:bc:2d:ca:97:cb:58:62:0b:9d:4a:29:06:9e:94:15: b0:dd:a1:52:16:7a:32:fc:b6:d9:37:f8:ca:ba:a8:5f:e0:11: ce:31:d3:a5:55:8d:e0:3c:ac:a5:81:fb:d9:84:3d:a6:f1:6f: 86:14:ae:bd:1c:36:84:f0:ba:25:e7:23:a6:1b:d8:56:5a:cb: 95:8f:9b:b0:b3:cf:c6:45:e3:a0:bc:ef:ac:a4:81:36:91:22: 58:47:5a:3b:67:9f:55:b4:34:91:78:d4:0e:58:1b:85:43:5d: f6:d0:0b:02:3f:35:12:b9:28:68:80:25:6e:f1:b7:41:62:ac: 25:ca:bf:b7:fa:b5:2f:5c:65:3e:ed:c9:3e:53:b7:7c:33:f0: 4e:f6:05:5d:a8:5e:1f:be:45:fd:6c:9f:a6:4a:9c:07:97:da: ef:35:d7:22:35:8f:86:63:af:81:c4:ce:d6:d4:af:2e:c0:52: d3:ec:9f:ad -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUTP3WSDkStVStLdC9WxqnHG6BnuowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUzMTAwMDMzOVoX DTI2MDYwNDAwMDMzOVowejFJMEcGA1UEBRNANmFiMDg5N2I3MTE3YjJmOGFlYzQ5 ZDM2Zjk3NDZmMzFlOGVmMTU5ZTM4MDA5M2FiZmM2ZjQ5OTMyMGRmNDYyMTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4r0rmxcEChFniFspI18kwU/ToPyn JmofdGGgvcfJ5VqWDpBFcekfHd5vxyQ0DffPTYSnByxpwtqGjORDV7IYBmjkwaBn gbnebIGmxbNF+i3TquFMfBdbiFee/nIDLr2n1oOjajvwkcbHNZcQ/XwfqjBfR53d MKEgJusOxlasd7n3nTalsBZ9t/cRfGlthrP5XV/ey+Uh2Cf7re78LXCuGfP3UI0c hCtV9Y8xCeAsQzgvF3OldgXp7YM9hHwz6ypWgu9BvyKLw/BAZx9vXzn/sH+EhclN jiLNh885nulo3XYxIO3+HY7q0jyGbNfYyK0dNzG5fqKj6daL3Hz1rKjksQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFCTLn7HYeuKYuYi3hVLRteESoxpKMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBABCc/u/lIMEodF5/ZvM/qq85j2E1EXQa 4bhF8UVXCZWpMYIUPh8Dc+KTEn/gfpB3kV1Z454j+fRClbY2oUHidLx0uYg6vZTu snEU0rwtypfLWGILnUopBp6UFbDdoVIWejL8ttk3+Mq6qF/gEc4x06VVjeA8rKWB +9mEPabxb4YUrr0cNoTwuiXnI6Yb2FZay5WPm7Czz8ZF46C876ykgTaRIlhHWjtn n1W0NJF41A5YG4VDXfbQCwI/NRK5KGiAJW7xt0FirCXKv7f6tS9cZT7tyT5Tt3wz 8E72BV2oXh++Rf1sn6ZKnAeX2u811yI1j4Zjr4HEztbUry7AUtPsn60= -----END CERTIFICATE-----Generated at Sun May 31 19:12:48 2026 by rpki-client