$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: YdoMuLRumVk21nGZEdwYFDR5FOgCeXiWSCoTq1pG1Wg= Subject key identifier: 1B:56:49:0B:80:74:AB:DE:A3:C2:35:5B:6C:8A:96:B3:AA:20:5E:6D Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 54DED5D67A32EA3096FD27DCAED008DF1F21CC67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0620 Signing time: Tue 26 May 2026 00:02:53 +0000 Manifest this update: Tue 26 May 2026 00:02:53 +0000 Manifest next update: Sat 30 May 2026 00:02:53 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: UdhPq3OF2fGbbiRF5u6yOhTH4iNqnoGaNQ+nQI1OZDY=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 00:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:de:d5:d6:7a:32:ea:30:96:fd:27:dc:ae:d0:08:df:1f:21:cc:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 26 00:02:53 2026 GMT Not After : May 30 00:02:53 2026 GMT Subject: serialNumber=1bc1c47441c4a56d025ca4e9e3546d5a12031558aba0a9b4a9bd77fb41dd7ff3, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:7d:f3:fe:2e:b2:2d:8e:3c:c2:18:44:27:0a: 31:88:ad:4c:da:9c:f2:7c:8d:2c:93:49:b8:fc:31: 34:09:8c:3e:9d:46:4d:ba:c1:97:b1:5b:b5:d8:18: e2:d8:b0:e7:89:3e:f9:57:c7:ee:59:8d:01:96:bb: 45:69:72:16:aa:cc:c9:5a:79:18:5f:66:bd:12:09: 7c:b2:06:dd:3b:25:0b:11:01:6e:a3:cc:ad:24:bb: b1:89:98:8c:47:f3:74:7f:11:d4:21:10:57:a2:4f: 12:c5:7a:d8:cf:50:4c:ba:cb:9d:c8:7a:9c:3f:3d: 32:5a:4c:bd:b9:d2:50:e7:08:62:6c:34:50:54:d7: bf:02:e1:7b:68:5c:6c:e3:96:bc:d5:a6:ea:1d:e8: e0:69:b2:7c:a5:88:69:4e:48:bf:94:3c:af:68:3b: 85:fa:65:1b:df:90:d6:12:49:b6:51:7b:1c:69:d6: 39:cc:a5:bc:44:11:16:ff:80:75:aa:e7:bc:74:78: 98:6c:a1:4c:05:da:ef:96:32:e1:be:37:7f:8b:f0: 38:64:8e:08:a2:5b:3c:c5:4b:08:ef:77:8f:87:46: 39:86:91:38:39:a6:54:1b:4b:69:52:c1:12:f2:c2: 87:26:8c:ca:05:3e:43:f1:a4:ac:5c:d2:bb:6c:35: c9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:56:49:0B:80:74:AB:DE:A3:C2:35:5B:6C:8A:96:B3:AA:20:5E:6D X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:36:16:66:49:eb:67:43:15:3c:06:af:e1:84:69:41:bf:6b: e8:7e:8e:82:73:2c:73:2f:d6:50:b1:f5:5a:1f:17:b2:be:e8: 80:d2:ed:c1:b7:3d:76:db:8a:db:ba:a5:67:ef:9e:8b:f0:34: 26:3f:c1:ab:bc:6a:5a:0c:7a:b3:9e:e2:9a:1f:3f:14:a3:0e: 6c:8e:d9:6a:3b:98:64:5c:30:4a:3c:f5:df:86:a2:f6:df:d8: 95:dd:98:f6:22:72:15:b2:24:08:30:08:dc:0c:04:52:82:93: 44:53:e2:be:30:15:52:2d:53:25:a2:29:58:4b:5a:ee:c5:b8: 55:73:ad:09:07:db:69:19:39:ae:63:f1:bb:f7:e9:31:7c:76: c5:0e:0b:21:57:ee:76:ab:ac:43:09:f3:b9:f3:07:aa:7f:aa: 57:a1:b2:31:7b:d6:c3:d0:e3:9a:75:c9:ed:b6:89:bb:98:c8: 63:19:68:6d:78:ef:f3:bf:2c:41:54:69:07:c8:7b:99:3f:3c: d1:2a:dc:14:fa:2d:82:82:cf:f3:15:7f:0b:c3:b0:bc:c7:5b: 9f:a7:c7:24:19:1d:5e:b5:01:9e:80:06:f1:f0:15:ba:36:e0: 39:60:15:ab:c3:09:e0:55:93:b5:79:d5:d8:12:6e:45:47:41: a3:38:dd:c7 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUVN7V1noy6jCW/SfcrtAI3x8hzGcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUyNjAwMDI1M1oX DTI2MDUzMDAwMDI1M1owejFJMEcGA1UEBRNAMWJjMWM0NzQ0MWM0YTU2ZDAyNWNh NGU5ZTM1NDZkNWExMjAzMTU1OGFiYTBhOWI0YTliZDc3ZmI0MWRkN2ZmMzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1n3z/i6yLY48whhEJwoxiK1M2pzy fI0sk0m4/DE0CYw+nUZNusGXsVu12Bji2LDniT75V8fuWY0BlrtFaXIWqszJWnkY X2a9Egl8sgbdOyULEQFuo8ytJLuxiZiMR/N0fxHUIRBXok8SxXrYz1BMusudyHqc Pz0yWky9udJQ5whibDRQVNe/AuF7aFxs45a81abqHejgabJ8pYhpTki/lDyvaDuF +mUb35DWEkm2UXscadY5zKW8RBEW/4B1que8dHiYbKFMBdrvljLhvjd/i/A4ZI4I ols8xUsI73ePh0Y5hpE4OaZUG0tpUsES8sKHJozKBT5D8aSsXNK7bDXJ8QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFBtWSQuAdKveo8I1W2yKlrOqIF5tMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBACo2FmZJ62dDFTwGr+GEaUG/a+h+joJz LHMv1lCx9VofF7K+6IDS7cG3PXbbitu6pWfvnovwNCY/wau8aloMerOe4pofPxSj DmyO2Wo7mGRcMEo89d+Govbf2JXdmPYichWyJAgwCNwMBFKCk0RT4r4wFVItUyWi KVhLWu7FuFVzrQkH22kZOa5j8bv36TF8dsUOCyFX7narrEMJ87nzB6p/qlehsjF7 1sPQ45p1ye22ibuYyGMZaG147/O/LEFUaQfIe5k/PNEq3BT6LYKCz/MVfwvDsLzH W5+nxyQZHV61AZ6ABvHwFbo24DlgFavDCeBVk7V51dgSbkVHQaM43cc= -----END CERTIFICATE-----Generated at Tue May 26 22:32:07 2026 by rpki-client