$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: uwBz2VTwYpuPXU5AZ5in94VImZ0s//hCVKXquPWrU+c= Subject key identifier: DE:B3:29:0F:6E:CB:25:F0:28:65:78:81:EC:13:E8:73:1D:4B:0C:8D Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 33FACC67DF8CEC80EC0D1DF500E875CA6BD24CF6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0642 Signing time: Mon 29 Jun 2026 00:08:54 +0000 Manifest this update: Mon 29 Jun 2026 00:08:54 +0000 Manifest next update: Fri 03 Jul 2026 00:08:54 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: uF5DlshsOPxqfMFkSl+pS01g+TbfvLtt9CPV8zSbpKk=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Jul 2026 00:08:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:fa:cc:67:df:8c:ec:80:ec:0d:1d:f5:00:e8:75:ca:6b:d2:4c:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 29 00:08:54 2026 GMT Not After : Jul 3 00:08:54 2026 GMT Subject: serialNumber=a57b492ae6b0eef1a2afecc86736357d07e1e1f8e77a259092fae1c904d24de5, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:99:b9:74:30:f1:af:11:f9:68:3e:e9:bc:d7: 1a:47:d0:a8:7e:83:03:9e:0e:e2:a4:bd:03:0e:1f: 8a:58:c1:61:2f:74:01:aa:20:63:29:e1:86:28:ea: 4d:0d:90:8b:14:5c:4e:b6:2f:a5:5a:aa:9f:de:82: 08:7e:40:93:0d:2b:37:ed:ac:98:28:a2:fa:c7:ad: 30:e1:82:ef:d8:4f:db:0c:a2:aa:62:20:b1:38:ee: 46:b4:99:da:09:7f:33:84:98:bc:ec:c8:1d:fc:da: 4f:68:b3:9a:d5:4c:1e:b1:d4:91:71:cf:ef:74:9c: f2:fd:92:76:e6:88:5e:2a:fd:25:e2:6a:4e:61:04: 5a:a8:8d:f7:6c:07:02:84:5b:d4:40:b9:93:cb:c8: 24:56:63:99:1b:40:96:e3:f7:fd:18:36:91:3e:24: d2:88:d4:ae:7c:6e:4b:d2:e5:10:1f:93:ec:51:46: 63:9c:89:6b:33:a6:b1:94:ae:46:c7:fe:90:06:93: d6:4a:eb:26:8a:18:c7:0e:55:12:51:a7:4e:1b:6f: 4a:67:03:e0:6e:82:1d:44:d5:d8:a8:70:90:e4:a6: bf:fc:05:31:a7:fa:88:34:2d:2b:f2:07:04:d7:52: fa:c1:ef:8d:5d:24:41:f1:d1:d3:1d:a5:56:89:86: 3f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:B3:29:0F:6E:CB:25:F0:28:65:78:81:EC:13:E8:73:1D:4B:0C:8D X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:d1:3a:57:ad:19:58:73:bf:34:2e:6f:c3:f8:a7:45:ea:f3: 59:84:4f:a1:cd:6b:cf:f9:dd:71:2b:b7:7e:36:e8:9b:52:21: 7d:cd:d1:cf:14:47:4d:1c:b8:5d:83:59:b4:a7:69:7b:f1:ed: 14:ea:4c:1a:6c:67:24:44:91:6c:29:ea:65:ed:6f:f7:95:51: d4:40:8f:4f:68:59:14:df:c0:f8:fa:7e:5e:93:7f:79:4e:33: e8:98:68:42:03:80:3a:fd:16:c5:17:1e:be:87:c5:76:05:b1: 39:dc:7b:86:db:2c:11:56:2d:57:12:4e:68:b7:52:42:96:e7: 60:60:25:0f:0a:8b:c2:90:2b:4a:f7:38:41:6e:42:01:ac:e4: ff:ad:f2:9c:5b:40:a0:66:10:5c:cb:d4:dd:a9:c0:a3:7e:27: ab:2a:fa:ff:de:22:48:78:c4:d2:6b:b8:1a:e9:e3:d8:e5:59: 15:65:90:40:9c:88:8f:d5:b3:fe:fd:a3:2b:a6:a8:69:af:34: 14:80:e5:f7:0b:0a:a4:c9:28:3b:b7:59:9d:18:23:1f:d8:44: 8d:0d:59:9d:42:b0:f4:a1:0f:f2:57:8f:50:2c:05:12:40:2a: 4c:ff:22:3d:c2:5d:3f:67:2f:06:53:95:2a:e3:3e:74:ca:b1: 0b:49:d5:7b -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUM/rMZ9+M7IDsDR31AOh1ymvSTPYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYyOTAwMDg1NFoX DTI2MDcwMzAwMDg1NFowejFJMEcGA1UEBRNAYTU3YjQ5MmFlNmIwZWVmMWEyYWZl Y2M4NjczNjM1N2QwN2UxZTFmOGU3N2EyNTkwOTJmYWUxYzkwNGQyNGRlNTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw5m5dDDxrxH5aD7pvNcaR9CofoMD ng7ipL0DDh+KWMFhL3QBqiBjKeGGKOpNDZCLFFxOti+lWqqf3oIIfkCTDSs37ayY KKL6x60w4YLv2E/bDKKqYiCxOO5GtJnaCX8zhJi87Mgd/NpPaLOa1UwesdSRcc/v dJzy/ZJ25oheKv0l4mpOYQRaqI33bAcChFvUQLmTy8gkVmOZG0CW4/f9GDaRPiTS iNSufG5L0uUQH5PsUUZjnIlrM6axlK5Gx/6QBpPWSusmihjHDlUSUadOG29KZwPg boIdRNXYqHCQ5Ka//AUxp/qINC0r8gcE11L6we+NXSRB8dHTHaVWiYY/xwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFN6zKQ9uyyXwKGV4gewT6HMdSwyNMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBACfROletGVhzvzQub8P4p0Xq81mET6HN a8/53XErt3426JtSIX3N0c8UR00cuF2DWbSnaXvx7RTqTBpsZyREkWwp6mXtb/eV UdRAj09oWRTfwPj6fl6Tf3lOM+iYaEIDgDr9FsUXHr6HxXYFsTnce4bbLBFWLVcS Tmi3UkKW52BgJQ8Ki8KQK0r3OEFuQgGs5P+t8pxbQKBmEFzL1N2pwKN+J6sq+v/e Ikh4xNJruBrp49jlWRVlkECciI/Vs/79oyumqGmvNBSA5fcLCqTJKDu3WZ0YIx/Y RI0NWZ1CsPShD/JXj1AsBRJAKkz/Ij3CXT9nLwZTlSrjPnTKsQtJ1Xs= -----END CERTIFICATE-----Generated at Mon Jun 29 02:01:46 2026 by rpki-client