
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File: manifest.mft (raw, json)
Hash identifier: NypMDMN9rOPCZNOA1Cdlv4IoSCDDmriyRfLRIB8AZ/Q=
Subject key identifier: FE:6D:5E:49:E7:5B:40:C7:A1:E5:12:14:49:09:6A:65:48:6E:27:5B
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial: 1BF6F9C62F5F875090AB523F4EC2C92BEE1F727F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number: 05E6
Signing time: Sun 29 Mar 2026 00:08:08 +0000
Manifest this update: Sun 29 Mar 2026 00:08:08 +0000
Manifest next update: Thu 02 Apr 2026 00:08:08 +0000
Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: 4eUY/QlX7+tU7u5YUZmb6z0dGd1pJvMVdnAONwZluA8=)
2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=)
3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c=)
4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Op4Pxjv4bi/CyLc0yEqiMNSWXCCmLL5vj/qBevLlyto=)
5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo=)
6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE=)
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 Apr 2026 00:08:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:f6:f9:c6:2f:5f:87:50:90:ab:52:3f:4e:c2:c9:2b:ee:1f:72:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Validity
Not Before: Mar 29 00:08:08 2026 GMT
Not After : Apr 2 00:08:08 2026 GMT
Subject: serialNumber=a112733ffc286e56c39032813615f03fa9a70fabd633aa1dfba3b64a2cbc3e48, CN=bb9a9116-f615-462e-a680-5266b327e0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:33:15:55:ca:b3:9a:b4:ca:fe:e8:85:8a:4d:
42:ce:6c:d5:1c:fd:6d:26:9f:39:13:e4:60:da:22:
8f:a4:e0:88:00:9b:ba:6a:20:72:b3:ff:70:f5:08:
1d:57:15:66:9a:69:5a:a2:1f:98:62:ab:a4:82:b7:
3b:d2:f6:6a:4f:2d:b8:64:fc:8b:71:b4:42:2c:f2:
4c:9d:02:b9:ec:27:88:17:f5:bf:b0:9e:be:97:8d:
2f:37:43:51:ae:9d:0b:96:e3:dd:c9:c4:5c:fd:df:
95:12:86:b9:2e:4c:a5:4e:e1:99:99:73:ff:d1:65:
88:3a:6f:be:39:da:2e:e1:46:b6:7f:39:2f:50:05:
05:0e:dd:f1:52:36:28:7f:af:ed:da:06:60:d6:35:
2a:19:6a:7b:3a:71:85:ca:58:54:af:7a:2a:9d:c0:
90:a8:43:a7:a8:53:78:a6:15:c4:89:54:b1:ad:8c:
12:05:c4:11:96:b7:85:67:e6:c2:f3:34:69:58:ca:
17:18:03:41:de:ed:69:a2:2a:c0:b1:5e:be:a5:c6:
15:83:f4:2a:82:55:d8:43:40:d2:3e:31:f7:93:4e:
bd:e5:73:7e:92:a5:0c:5d:1a:0b:fd:54:c4:be:64:
24:61:02:d9:11:d0:51:b8:d2:08:02:0e:fb:37:ab:
79:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:6D:5E:49:E7:5B:40:C7:A1:E5:12:14:49:09:6A:65:48:6E:27:5B
X509v3 Authority Key Identifier:
keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:bb:3e:ea:ee:d6:6b:81:ee:36:72:ba:08:3e:01:34:23:9f:
3a:53:0e:b5:86:43:27:4f:f2:94:26:78:f7:68:64:e1:63:3b:
47:58:4f:b5:94:cb:65:03:aa:e0:13:b8:0f:e7:04:e0:58:9f:
da:94:0a:c2:3e:a1:70:77:7d:03:85:05:bf:89:be:4b:1c:41:
6a:5e:92:46:4c:49:e2:02:ad:98:d3:4c:bc:07:1a:b8:8e:07:
a1:02:a8:0d:69:5e:b4:98:81:6f:bc:2a:2d:4d:87:f2:2b:e5:
b6:f5:01:97:0b:c0:63:aa:8c:b0:af:aa:1c:07:a8:de:38:6f:
8b:42:97:5b:4c:f0:2e:8b:23:ac:db:5e:f8:89:08:c4:6f:de:
7a:5d:01:91:bf:5f:fd:38:c1:fe:bb:df:31:7e:04:37:e3:4c:
7f:a4:74:e1:99:42:ac:d9:43:98:8c:ac:2c:7d:af:f4:b3:4a:
9a:1b:23:4d:6f:36:61:91:13:ec:75:49:f4:49:ef:48:79:e9:
ec:78:2e:73:df:c5:b9:f8:02:ea:61:f6:0c:33:15:26:b6:03:
bc:0d:d6:71:29:2a:3e:c0:24:5b:c5:ed:52:0c:f1:27:89:85:
4f:6b:f9:99:d7:ac:86:98:22:b1:f7:c0:5d:aa:5e:7d:a3:1f:
ba:c5:17:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 30 01:49:49 2026 by rpki-client