$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: zUItL7oUXWVZx0FTSN4D2v6vZPoFN8GH3AcSZxvVGGA= Subject key identifier: B7:3A:96:F1:9B:6B:A0:43:FF:16:63:78:7C:89:91:AA:F5:BA:18:30 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 50E3558BD4CE6030941E3C384331B006AC2237C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0638 Signing time: Fri 19 Jun 2026 00:06:52 +0000 Manifest this update: Fri 19 Jun 2026 00:06:52 +0000 Manifest next update: Tue 23 Jun 2026 00:06:52 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: aXFOvArrf2KqZDpoSLQ2+XOtSu6N8EJ8rv1qsKv5EZk=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Jun 2026 00:06:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:e3:55:8b:d4:ce:60:30:94:1e:3c:38:43:31:b0:06:ac:22:37:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 19 00:06:52 2026 GMT Not After : Jun 23 00:06:52 2026 GMT Subject: serialNumber=9aee5f7140a465a7c5d67b3a795c63356c7a108d0608d0dd950e19064d23be29, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:4a:32:ef:20:3c:8c:1f:4e:76:f5:f1:10:19: dd:c9:79:d1:87:20:31:ef:c3:63:49:e2:d5:4e:a7: 0a:39:df:ab:f2:0d:6d:c5:a9:ba:c3:27:74:4c:cc: fe:1f:47:e2:f2:a6:e6:aa:84:c6:41:44:af:96:5c: f2:1d:58:02:41:d7:71:90:39:cc:9f:e2:84:83:4a: d7:e5:03:c9:76:08:09:8a:b9:53:66:21:0c:4e:20: c3:b1:85:c9:ce:62:db:34:4d:6b:9e:86:12:36:ab: a3:be:34:ed:d1:c7:46:18:f3:61:74:3a:23:6c:cd: d8:d1:d4:a2:23:5b:1c:de:27:8a:31:3d:07:36:45: 69:cb:5d:c2:63:8a:fa:63:f0:48:0f:ee:6a:bb:2b: fc:d5:1b:12:d1:40:56:3b:7a:b1:76:9c:7d:7e:7b: fc:82:10:24:d1:be:fd:21:07:ee:c2:f1:08:af:13: dc:32:2a:49:3f:f3:f6:9f:cb:9d:cc:c6:dd:37:c7: 43:71:ef:04:91:bb:0e:89:39:f0:83:91:5d:4d:90: ab:5f:ac:63:d8:92:cb:9c:25:b3:b8:06:ad:77:68: c1:9b:60:ce:6c:42:7e:86:9d:f6:ce:2b:ca:8e:55: 40:be:28:6d:81:cb:ad:2d:a2:c0:6e:e8:d3:17:d3: ba:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:3A:96:F1:9B:6B:A0:43:FF:16:63:78:7C:89:91:AA:F5:BA:18:30 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:65:fe:a0:67:b6:63:2e:05:c0:df:52:83:a2:06:8b:5c:5a: a8:a8:cf:f6:82:7f:2c:57:93:1f:23:2c:18:5c:b4:9b:10:dc: 28:87:5d:83:b2:46:ca:80:f8:03:36:45:99:7d:16:10:8c:a4: 8e:ec:a8:e5:20:33:53:b0:38:cd:33:75:4c:79:37:9a:e0:c7: d8:28:c6:bf:21:ef:14:f4:29:00:c6:50:0e:d5:1e:9a:e2:7a: 7f:8a:59:dc:08:94:8e:65:53:c1:71:11:d2:9c:e5:80:0f:4a: 37:7e:11:2e:48:5c:29:61:20:61:6c:ef:9d:dd:82:64:c9:64: ab:f9:a0:74:3f:4a:0f:8e:6e:70:21:ad:2c:69:09:3a:0f:cb: 55:1f:23:db:2c:65:ec:0d:b9:a2:3e:6a:26:fa:97:6e:4e:e7: d4:90:62:17:29:35:a5:6e:7e:8b:37:6b:56:1b:a4:53:33:a8: f3:74:f7:be:41:a8:f6:ac:a8:be:bc:4e:48:49:08:fc:2e:bd: 86:fe:27:e8:32:46:76:6e:65:72:c7:55:9a:0c:6b:94:71:c6: f2:c0:06:13:99:7c:fb:d8:86:b5:08:fa:e6:cf:81:9d:28:c7: ba:d8:bb:0c:12:2c:67:80:80:8e:cc:02:26:e1:3a:00:1e:ae: ce:31:82:ff -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUUONVi9TOYDCUHjw4QzGwBqwiN8QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYxOTAwMDY1MloX DTI2MDYyMzAwMDY1MlowejFJMEcGA1UEBRNAOWFlZTVmNzE0MGE0NjVhN2M1ZDY3 YjNhNzk1YzYzMzU2YzdhMTA4ZDA2MDhkMGRkOTUwZTE5MDY0ZDIzYmUyOTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgkoy7yA8jB9OdvXxEBndyXnRhyAx 78NjSeLVTqcKOd+r8g1txam6wyd0TMz+H0fi8qbmqoTGQUSvllzyHVgCQddxkDnM n+KEg0rX5QPJdggJirlTZiEMTiDDsYXJzmLbNE1rnoYSNqujvjTt0cdGGPNhdDoj bM3Y0dSiI1sc3ieKMT0HNkVpy13CY4r6Y/BID+5quyv81RsS0UBWO3qxdpx9fnv8 ghAk0b79IQfuwvEIrxPcMipJP/P2n8udzMbdN8dDce8EkbsOiTnwg5FdTZCrX6xj 2JLLnCWzuAatd2jBm2DObEJ+hp32zivKjlVAvihtgcutLaLAbujTF9O69QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFLc6lvGba6BD/xZjeHyJkar1uhgwMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAIdl/qBntmMuBcDfUoOiBotcWqioz/aC fyxXkx8jLBhctJsQ3CiHXYOyRsqA+AM2RZl9FhCMpI7sqOUgM1OwOM0zdUx5N5rg x9goxr8h7xT0KQDGUA7VHprien+KWdwIlI5lU8FxEdKc5YAPSjd+ES5IXClhIGFs 753dgmTJZKv5oHQ/Sg+ObnAhrSxpCToPy1UfI9ssZewNuaI+aib6l25O59SQYhcp NaVufos3a1YbpFMzqPN0975BqPasqL68TkhJCPwuvYb+J+gyRnZuZXLHVZoMa5Rx xvLABhOZfPvYhrUI+ubPgZ0ox7rYuwwSLGeAgI7MAibhOgAers4xgv8= -----END CERTIFICATE-----Generated at Fri Jun 19 15:05:36 2026 by rpki-client