$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: b4Y++C4n0cY331M7fBRH73bj7W7Zcmm1B2PWWlTYYho= Subject key identifier: DF:10:9A:4C:33:42:E6:A3:FC:24:C9:51:A3:8B:F4:0A:2A:19:F3:81 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 6789E1AA95EEC182BBC24A7CC89732449382909E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0639 Signing time: Sat 20 Jun 2026 00:07:04 +0000 Manifest this update: Sat 20 Jun 2026 00:07:04 +0000 Manifest next update: Wed 24 Jun 2026 00:07:04 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: eIVkc4sOEh6AHUWqhcff3UP+f4QNNR/tdG+5e/irVcY=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Jun 2026 00:07:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:89:e1:aa:95:ee:c1:82:bb:c2:4a:7c:c8:97:32:44:93:82:90:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 20 00:07:04 2026 GMT Not After : Jun 24 00:07:04 2026 GMT Subject: serialNumber=987d19ca7bfd7b4f588215561c43aed2c3c645b43ef556a31035188a4beb39ad, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f3:21:22:2a:32:b0:b5:c4:cb:d2:85:7d:2c: b2:73:a0:49:f8:20:be:a9:25:dd:82:74:d1:1f:b7: 4c:e3:88:98:83:47:c3:a1:b4:80:a5:7e:ef:95:81: 02:d4:8d:19:09:89:4f:f3:fd:d5:0e:bf:dc:cd:1e: 13:4f:45:76:cb:46:88:45:ef:63:46:dc:0c:5e:aa: a8:db:f0:9d:a5:c0:19:65:06:5e:96:39:9d:06:ea: 21:c1:6f:bd:cd:a5:6d:a1:ae:41:78:4b:c3:6d:51: 56:15:14:02:da:14:d1:1d:be:d6:c9:a7:7a:98:4f: b4:68:0e:3b:50:d3:5b:16:15:a6:3c:c4:b2:a6:dd: 2e:a5:4d:6c:16:ba:33:4b:38:41:88:c2:bd:75:d3: 37:55:de:0a:2f:8f:7f:b3:fc:4e:2d:b6:11:9e:b6: 81:ca:d6:4b:45:0c:71:8f:07:2f:72:d6:72:b4:c9: d1:31:f8:14:74:11:91:72:a9:54:8f:46:3e:65:c2: a3:dc:a4:97:a0:d7:cc:e5:5c:50:68:5d:40:99:25: e3:be:c7:02:a3:46:8b:d9:95:f7:07:19:f8:00:60: d1:66:e7:7b:46:3f:a5:a3:09:81:63:14:d5:99:cd: 83:b9:ea:e4:10:7c:be:31:3c:b9:d2:c9:86:7e:54: 8b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:10:9A:4C:33:42:E6:A3:FC:24:C9:51:A3:8B:F4:0A:2A:19:F3:81 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:8b:f9:b7:4b:f1:a0:24:a5:30:d2:36:dd:91:f0:e1:c6:27: 87:78:46:fe:11:a1:b7:1d:c6:7e:8c:6f:2a:82:5c:9c:cb:88: b9:3b:48:5a:40:97:e3:6d:31:5c:d2:f3:b2:18:f5:19:eb:96: f2:d4:5f:01:51:fb:08:d7:3a:69:65:c9:11:ca:64:0d:f2:73: 92:82:f3:4e:ac:91:77:1f:0d:2c:9e:18:c8:c3:90:2c:ca:6e: 3e:df:49:43:1a:36:ef:1d:85:13:d2:80:9e:eb:c3:3c:b1:6d: 56:dd:59:29:e7:74:92:34:f1:6d:ca:ed:22:e6:62:14:c7:3b: 24:39:9d:61:1c:41:15:95:39:2c:3e:5d:5a:29:42:3e:76:b4: 11:0c:ae:3b:f3:46:53:38:d0:a5:f3:c9:77:1d:94:d4:90:db: 84:9a:19:a1:43:ac:8f:96:08:71:1f:0e:7c:95:8d:f6:a0:74: 51:14:e5:e7:9f:a7:6d:d5:b2:6a:52:17:25:98:59:2d:14:81: 43:8f:2c:68:58:27:b0:2e:cd:18:c0:fd:fd:50:6e:19:13:4a: 82:cd:6d:cf:c0:41:98:70:0c:8b:f6:c9:3b:49:0b:eb:cb:f1: 67:78:f4:f5:ac:95:2f:8a:fa:0c:32:d8:5e:be:8f:03:70:3a: 46:a4:1e:e0 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUZ4nhqpXuwYK7wkp8yJcyRJOCkJ4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYyMDAwMDcwNFoX DTI2MDYyNDAwMDcwNFowejFJMEcGA1UEBRNAOTg3ZDE5Y2E3YmZkN2I0ZjU4ODIx NTU2MWM0M2FlZDJjM2M2NDViNDNlZjU1NmEzMTAzNTE4OGE0YmViMzlhZDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7PMhIioysLXEy9KFfSyyc6BJ+CC+ qSXdgnTRH7dM44iYg0fDobSApX7vlYEC1I0ZCYlP8/3VDr/czR4TT0V2y0aIRe9j RtwMXqqo2/CdpcAZZQZeljmdBuohwW+9zaVtoa5BeEvDbVFWFRQC2hTRHb7Wyad6 mE+0aA47UNNbFhWmPMSypt0upU1sFrozSzhBiMK9ddM3Vd4KL49/s/xOLbYRnraB ytZLRQxxjwcvctZytMnRMfgUdBGRcqlUj0Y+ZcKj3KSXoNfM5VxQaF1AmSXjvscC o0aL2ZX3Bxn4AGDRZud7Rj+lowmBYxTVmc2DuerkEHy+MTy50smGflSLswIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFN8QmkwzQuaj/CTJUaOL9AoqGfOBMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBACyL+bdL8aAkpTDSNt2R8OHGJ4d4Rv4R obcdxn6MbyqCXJzLiLk7SFpAl+NtMVzS87IY9RnrlvLUXwFR+wjXOmllyRHKZA3y c5KC806skXcfDSyeGMjDkCzKbj7fSUMaNu8dhRPSgJ7rwzyxbVbdWSnndJI08W3K 7SLmYhTHOyQ5nWEcQRWVOSw+XVopQj52tBEMrjvzRlM40KXzyXcdlNSQ24SaGaFD rI+WCHEfDnyVjfagdFEU5eefp23VsmpSFyWYWS0UgUOPLGhYJ7AuzRjA/f1QbhkT SoLNbc/AQZhwDIv2yTtJC+vL8Wd49PWslS+K+gwy2F6+jwNwOkakHuA= -----END CERTIFICATE-----Generated at Sat Jun 20 22:29:32 2026 by rpki-client