$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: /ym+vyHHjo+NHYHZKjcD133Ls3SvQo2WyyL/qp7vHzs= Subject key identifier: 82:B4:F1:7D:2E:8C:B2:87:1C:D4:F0:5F:6D:C3:09:1D:E6:68:57:D1 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 1400D106D8E37434CDA93970D06CBE035744983D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 063C Signing time: Tue 23 Jun 2026 00:07:38 +0000 Manifest this update: Tue 23 Jun 2026 00:07:38 +0000 Manifest next update: Sat 27 Jun 2026 00:07:38 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: lW3oqxL7bDykTJWUCa19CWByutX7ARUsBB/eQ3rU8VE=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Jun 2026 00:07:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:00:d1:06:d8:e3:74:34:cd:a9:39:70:d0:6c:be:03:57:44:98:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 23 00:07:38 2026 GMT Not After : Jun 27 00:07:38 2026 GMT Subject: serialNumber=b03caed1d07c2834b62419191e0fd5eaca5a28d0f0a67aa39007702f1412e986, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:9a:32:05:b1:dd:7b:40:74:ef:bd:58:c3:78: df:3b:dc:b7:18:80:3d:91:cc:2f:36:1c:33:fe:27: 5d:80:01:91:cb:65:42:b1:aa:42:8a:cb:a7:23:db: 9f:06:e0:b5:19:f0:88:50:ad:3d:63:c6:a7:59:34: 3b:8d:9f:74:3d:a4:1a:4f:c2:c2:25:99:01:8d:78: db:e7:44:ea:7f:4e:59:09:7d:7d:6d:12:2e:39:4e: fc:5d:c4:39:e9:02:e3:86:61:aa:5e:a4:f3:be:44: b4:ed:e7:1e:4d:3d:2d:cd:c9:56:c4:0a:5b:97:c3: 02:2c:19:4a:24:bf:b8:55:18:97:04:b6:a8:e7:8d: 3b:d0:11:cf:75:19:1c:12:fb:3d:c6:f3:0c:43:31: 94:1d:7e:6c:04:7e:b0:63:b9:d1:06:b3:47:1b:8c: 15:10:71:51:40:48:93:cd:2c:5c:de:87:51:3a:5f: 2f:13:e9:dc:71:9f:74:ea:3b:cb:14:b7:f9:b1:3e: 5e:76:d2:2d:2d:52:33:ec:e1:ec:49:6a:c7:c6:b4: 8c:03:2c:3b:c3:d1:f1:0b:03:ea:33:b4:b1:2c:12: 57:07:49:d8:3f:e1:6b:bd:19:70:c8:5f:79:8c:cf: 3e:7d:bb:15:7e:8c:0d:a8:bd:8f:3f:fd:05:d8:03: 48:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:B4:F1:7D:2E:8C:B2:87:1C:D4:F0:5F:6D:C3:09:1D:E6:68:57:D1 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:62:7c:cb:24:e1:fe:f7:c0:bb:60:a1:35:80:3d:51:b5:de: a8:d6:53:a4:b1:2b:45:b4:e1:62:97:ae:7d:c0:d1:d7:38:21: 4f:23:8f:a1:6f:e0:b0:d4:36:12:8d:a7:85:d1:d0:70:80:56: 2d:07:54:29:50:fb:42:36:b7:cc:9c:93:c0:d8:d1:dd:99:bb: bf:9d:ff:2b:68:ca:d9:12:e8:56:43:9d:37:d4:9a:dd:7c:53: 49:de:4c:97:d5:f8:be:bf:02:f0:6d:5a:93:02:ad:45:38:7a: 80:a0:6c:30:8f:54:f1:61:fd:85:3a:26:1a:f6:e1:e6:8b:70: a1:e3:87:9a:43:3f:da:92:d3:49:80:08:e9:44:93:b6:18:6b: e0:33:ee:b9:d7:71:96:5d:ce:3e:dc:de:13:c6:07:90:93:99: 7d:ba:70:4a:2e:d9:13:86:6c:51:82:eb:9e:f1:2d:c4:ce:85: e7:bc:50:50:0a:d6:6c:84:7d:1e:35:13:86:ae:79:49:b2:ff: d9:b9:d3:5d:3d:a7:64:7b:8e:11:16:64:4e:79:e4:64:c7:35: 2c:39:ea:36:6c:01:37:64:34:5f:e8:ea:09:71:25:13:46:ac: 6e:6d:c4:e9:bd:c3:14:0e:9e:2b:54:3e:eb:aa:86:bb:57:e7: 63:f7:cd:bb -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUFADRBtjjdDTNqTlw0Gy+A1dEmD0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYyMzAwMDczOFoX DTI2MDYyNzAwMDczOFowejFJMEcGA1UEBRNAYjAzY2FlZDFkMDdjMjgzNGI2MjQx OTE5MWUwZmQ1ZWFjYTVhMjhkMGYwYTY3YWEzOTAwNzcwMmYxNDEyZTk4NjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA25oyBbHde0B0771Yw3jfO9y3GIA9 kcwvNhwz/iddgAGRy2VCsapCisunI9ufBuC1GfCIUK09Y8anWTQ7jZ90PaQaT8LC JZkBjXjb50Tqf05ZCX19bRIuOU78XcQ56QLjhmGqXqTzvkS07eceTT0tzclWxApb l8MCLBlKJL+4VRiXBLao54070BHPdRkcEvs9xvMMQzGUHX5sBH6wY7nRBrNHG4wV EHFRQEiTzSxc3odROl8vE+nccZ906jvLFLf5sT5edtItLVIz7OHsSWrHxrSMAyw7 w9HxCwPqM7SxLBJXB0nYP+FrvRlwyF95jM8+fbsVfowNqL2PP/0F2ANI4wIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFIK08X0ujLKHHNTwX23DCR3maFfRMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAENifMsk4f73wLtgoTWAPVG13qjWU6Sx K0W04WKXrn3A0dc4IU8jj6Fv4LDUNhKNp4XR0HCAVi0HVClQ+0I2t8yck8DY0d2Z u7+d/ytoytkS6FZDnTfUmt18U0neTJfV+L6/AvBtWpMCrUU4eoCgbDCPVPFh/YU6 Jhr24eaLcKHjh5pDP9qS00mACOlEk7YYa+Az7rnXcZZdzj7c3hPGB5CTmX26cEou 2ROGbFGC657xLcTOhee8UFAK1myEfR41E4aueUmy/9m50109p2R7jhEWZE555GTH NSw56jZsATdkNF/o6glxJRNGrG5txOm9wxQOnitUPuuqhrtX52P3zbs= -----END CERTIFICATE-----Generated at Tue Jun 23 07:07:14 2026 by rpki-client