$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: 0pn34KfEunGxpR3TcTw67zYbkuytuZUFEUKMc+O5ddg= Subject key identifier: 6D:BA:82:CB:B4:2E:2F:A6:CF:0D:D8:CE:BD:5E:02:FA:53:29:31:48 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 1AD49115A20AF843AF46481BCD1F76421A36C28B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 062D Signing time: Mon 08 Jun 2026 00:04:48 +0000 Manifest this update: Mon 08 Jun 2026 00:04:48 +0000 Manifest next update: Fri 12 Jun 2026 00:04:48 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: c4finwrdES61+bqD8K+5XYwyF+bqPh22gya6AJ8TXHA=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 00:04:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:d4:91:15:a2:0a:f8:43:af:46:48:1b:cd:1f:76:42:1a:36:c2:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 8 00:04:48 2026 GMT Not After : Jun 12 00:04:48 2026 GMT Subject: serialNumber=e90d99fe330800b6b374b05dcb315b1f40852f0c7eb613deab33333588639978, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:be:08:fe:cb:53:b8:a6:ae:59:97:73:22:21: 0d:13:8e:6c:82:2a:f3:b7:40:26:18:b0:09:ff:8c: c7:91:96:38:59:e9:59:48:65:51:ab:9d:3a:8a:da: 9d:a7:43:77:e5:1f:75:54:6c:0a:47:4c:21:42:d4: 21:e4:04:e3:8f:ea:06:9f:7c:c2:7d:39:ec:d2:3d: 9b:36:1f:0b:5e:1f:fa:8d:c4:86:71:68:7e:0d:5a: 24:0e:9d:6b:ac:d8:f8:53:f1:a4:ee:8e:0d:6c:f5: b3:c1:6f:10:70:a2:27:b1:07:52:7a:71:a7:d6:38: ab:2c:2b:63:b7:7d:84:43:b7:fe:4f:a8:dd:fc:4b: 31:06:20:61:a3:12:13:6e:4e:1a:d0:03:8c:80:f9: 2a:ee:77:18:d9:7d:5b:1d:a5:6b:ff:3a:22:8b:6f: 83:69:da:38:7a:b5:65:c5:0e:74:71:9d:9f:61:76: 31:f2:be:77:59:5d:ad:ef:03:b1:a7:d1:1d:6d:a3: 70:17:2c:62:24:21:54:a4:f3:99:0e:fd:ee:8a:e6: df:a3:00:40:de:70:1d:f6:f9:bf:4e:8d:36:49:86: ec:ed:8c:c6:2f:be:40:18:c2:20:53:e2:76:eb:f9: 3b:34:0a:0a:e1:b4:1b:3f:02:26:4b:ba:47:33:f0: c6:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:BA:82:CB:B4:2E:2F:A6:CF:0D:D8:CE:BD:5E:02:FA:53:29:31:48 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:2d:18:2e:c6:fe:1c:20:00:23:e2:ba:ff:42:33:9b:15:8f: 34:b4:61:ff:27:e1:7b:70:91:48:2f:12:f1:da:ca:5d:9b:51: a4:13:12:c9:31:45:54:39:c0:17:52:50:00:95:5c:4e:18:3c: 0a:be:fd:f0:05:07:cc:c0:b0:0a:60:b0:00:83:81:68:09:c6: b1:9a:63:1e:8d:d1:18:d7:87:21:33:48:90:ca:c3:1e:a9:64: 98:77:f5:55:b1:ce:cf:1c:32:b2:88:0e:c8:d1:6c:d6:0a:c7: 1d:41:cc:c2:a5:e6:d1:1c:c8:84:15:4e:27:0a:15:4a:2a:30: 7d:56:77:e9:0c:6d:33:c8:d1:35:9d:4b:60:e7:ea:04:ba:e0: 71:45:3f:bd:36:bd:55:89:dc:cb:ba:63:27:c8:f4:a6:1d:94: 7d:54:f6:b9:2d:fe:8d:10:b1:85:a0:cc:0f:6f:ea:e5:b7:da: 7e:ea:ce:8b:94:60:3d:21:da:2a:92:ce:fc:69:d0:4a:a0:20: 05:66:95:3e:19:0c:ad:30:e8:de:54:17:cc:9d:4a:5d:20:3a: 89:ad:da:d9:ce:46:3b:2a:3d:6e:d1:2a:88:6f:f3:dc:7b:b9: ca:bd:db:e5:c8:0e:a3:dc:16:b1:59:04:eb:f1:9b:e6:cf:53: e2:08:08:55 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUGtSRFaIK+EOvRkgbzR92Qho2woswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYwODAwMDQ0OFoX DTI2MDYxMjAwMDQ0OFowejFJMEcGA1UEBRNAZTkwZDk5ZmUzMzA4MDBiNmIzNzRi MDVkY2IzMTViMWY0MDg1MmYwYzdlYjYxM2RlYWIzMzMzMzU4ODYzOTk3ODEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzr4I/stTuKauWZdzIiENE45sgirz t0AmGLAJ/4zHkZY4WelZSGVRq506itqdp0N35R91VGwKR0whQtQh5ATjj+oGn3zC fTns0j2bNh8LXh/6jcSGcWh+DVokDp1rrNj4U/Gk7o4NbPWzwW8QcKInsQdSenGn 1jirLCtjt32EQ7f+T6jd/EsxBiBhoxITbk4a0AOMgPkq7ncY2X1bHaVr/zoii2+D ado4erVlxQ50cZ2fYXYx8r53WV2t7wOxp9EdbaNwFyxiJCFUpPOZDv3uiubfowBA 3nAd9vm/To02SYbs7YzGL75AGMIgU+J26/k7NAoK4bQbPwImS7pHM/DG9QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFG26gsu0Li+mzw3Yzr1eAvpTKTFIMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAIQtGC7G/hwgACPiuv9CM5sVjzS0Yf8n 4XtwkUgvEvHayl2bUaQTEskxRVQ5wBdSUACVXE4YPAq+/fAFB8zAsApgsACDgWgJ xrGaYx6N0RjXhyEzSJDKwx6pZJh39VWxzs8cMrKIDsjRbNYKxx1BzMKl5tEcyIQV TicKFUoqMH1Wd+kMbTPI0TWdS2Dn6gS64HFFP702vVWJ3Mu6YyfI9KYdlH1U9rkt /o0QsYWgzA9v6uW32n7qzouUYD0h2iqSzvxp0EqgIAVmlT4ZDK0w6N5UF8ydSl0g Oomt2tnORjsqPW7RKohv89x7ucq92+XIDqPcFrFZBOvxm+bPU+IICFU= -----END CERTIFICATE-----Generated at Mon Jun 8 23:09:53 2026 by rpki-client