$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: TfXbzIwMSK4b0ITF7qJh5lSp0ZcXKFk7RvurHRnfgSM= Subject key identifier: F4:3B:46:26:8B:44:B9:B9:84:A7:2D:82:E7:61:CB:E9:44:C7:10:73 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 5F7C23F8E1BC1E481E25DE3AFDC5BDD9ABB8DECF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 061F Signing time: Mon 25 May 2026 00:02:40 +0000 Manifest this update: Mon 25 May 2026 00:02:40 +0000 Manifest next update: Fri 29 May 2026 00:02:40 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: kB/orsE/9vZzYz23RrEW88eXoQDhnS1CRpnn8nLa2OU=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 May 2026 00:02:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:7c:23:f8:e1:bc:1e:48:1e:25:de:3a:fd:c5:bd:d9:ab:b8:de:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 25 00:02:40 2026 GMT Not After : May 29 00:02:40 2026 GMT Subject: serialNumber=b1f2947b2a17b8ff3f80fde9d33ea36b6d654796fc11f92f61b4a1cc56aab6b6, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:29:28:20:24:50:71:15:fa:81:d4:9f:cb:e6: 7b:ff:34:c8:7a:a2:f2:b0:ac:c6:fc:b4:14:48:20: 29:98:71:ff:82:f7:c5:20:62:1c:c9:d0:30:ae:09: cb:dc:ee:4d:ba:d6:20:6f:8a:54:e9:7e:d9:6d:76: 7f:bf:43:00:60:63:ca:5d:06:d0:99:0d:eb:e2:9c: 0f:1b:1e:f8:62:72:1d:b2:de:09:16:be:96:ba:f2: a0:06:3b:ad:c7:0e:29:ab:b6:f4:d0:3d:93:ae:06: 9f:56:63:58:ce:4a:91:64:68:d1:df:a2:29:7a:eb: e2:00:22:df:53:96:bd:a6:f9:d7:da:aa:75:ab:b2: 4f:6d:7b:7b:20:43:ae:06:70:e5:d7:81:5c:85:c2: 3c:b5:20:2b:5f:a3:34:cc:62:4b:2a:4d:89:bb:fd: 4e:06:a4:0f:a5:cd:7e:95:67:3c:a2:48:5a:63:99: fd:a4:7f:e2:0f:ea:8f:5a:25:d3:fb:78:d2:5a:cc: 8d:fe:43:fd:4b:c9:cb:64:63:5b:29:d0:9b:93:0e: dc:fc:ca:ce:6b:71:b9:e7:48:82:ba:5f:2c:3f:a9: f1:be:76:07:f7:4c:9a:3e:a9:e3:40:ea:9d:24:f3: ad:1d:61:18:93:87:a8:02:b7:d9:c8:8d:ff:b8:41: fb:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:3B:46:26:8B:44:B9:B9:84:A7:2D:82:E7:61:CB:E9:44:C7:10:73 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:4e:ad:52:20:b7:3c:06:c4:cc:5c:66:53:38:4d:5c:63:60: d7:c2:b6:30:1c:76:4b:67:6a:c5:6e:16:43:3b:65:05:dc:09: c1:28:9a:f1:a4:7c:52:90:e5:b6:32:cf:58:2a:59:73:73:99: 49:ee:76:b0:56:e7:91:6f:d8:0c:91:59:e3:f3:8c:08:98:a0: df:a3:4c:78:d5:34:f4:22:5e:58:f2:3c:05:41:6a:c5:18:a0: 26:a4:a6:31:90:30:40:80:13:28:0c:3d:81:f9:46:bb:98:52: fd:e0:40:b4:24:9e:9a:6e:fb:76:44:f3:38:99:8a:fb:f4:a7: e9:42:4a:ff:ba:0f:5f:3a:12:b8:53:c2:0e:01:e2:fe:21:b1: 77:48:68:5f:58:23:f3:6a:99:84:08:6a:c1:dc:dd:f4:99:f0: cb:13:76:e3:e9:08:66:95:e6:37:e5:ac:58:37:1d:0c:ae:c3: 46:5f:4e:cf:82:a4:86:6e:8e:45:27:e2:4d:40:78:fa:96:14: b1:94:19:33:af:4f:cb:29:5c:fc:cf:8e:03:be:84:ba:3b:37: 2f:9c:76:8d:00:bc:46:b5:8d:74:bc:6b:eb:3e:a7:82:b2:d8: a2:4d:93:f0:fb:f5:38:e5:dd:d3:98:15:df:81:85:aa:88:15: be:67:f9:fd -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUX3wj+OG8HkgeJd46/cW92au43s8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUyNTAwMDI0MFoX DTI2MDUyOTAwMDI0MFowejFJMEcGA1UEBRNAYjFmMjk0N2IyYTE3YjhmZjNmODBm ZGU5ZDMzZWEzNmI2ZDY1NDc5NmZjMTFmOTJmNjFiNGExY2M1NmFhYjZiNjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnykoICRQcRX6gdSfy+Z7/zTIeqLy sKzG/LQUSCApmHH/gvfFIGIcydAwrgnL3O5NutYgb4pU6X7ZbXZ/v0MAYGPKXQbQ mQ3r4pwPGx74YnIdst4JFr6WuvKgBjutxw4pq7b00D2TrgafVmNYzkqRZGjR36Ip euviACLfU5a9pvnX2qp1q7JPbXt7IEOuBnDl14FchcI8tSArX6M0zGJLKk2Ju/1O BqQPpc1+lWc8okhaY5n9pH/iD+qPWiXT+3jSWsyN/kP9S8nLZGNbKdCbkw7c/MrO a3G550iCul8sP6nxvnYH90yaPqnjQOqdJPOtHWEYk4eoArfZyI3/uEH7uwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFPQ7RiaLRLm5hKctgudhy+lExxBzMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAENOrVIgtzwGxMxcZlM4TVxjYNfCtjAc dktnasVuFkM7ZQXcCcEomvGkfFKQ5bYyz1gqWXNzmUnudrBW55Fv2AyRWePzjAiY oN+jTHjVNPQiXljyPAVBasUYoCakpjGQMECAEygMPYH5RruYUv3gQLQknppu+3ZE 8ziZivv0p+lCSv+6D186ErhTwg4B4v4hsXdIaF9YI/NqmYQIasHc3fSZ8MsTduPp CGaV5jflrFg3HQyuw0ZfTs+CpIZujkUn4k1AePqWFLGUGTOvT8spXPzPjgO+hLo7 Ny+cdo0AvEa1jXS8a+s+p4Ky2KJNk/D79Tjl3dOYFd+BhaqIFb5n+f0= -----END CERTIFICATE-----Generated at Mon May 25 21:17:52 2026 by rpki-client