$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: yYIHs0uJfoCI4HGmLCaRlMkjhzilpBJgvtNDFXiHW1c= Subject key identifier: 93:EE:03:E8:9D:E7:C9:C0:9A:B4:47:00:E4:4F:A7:D9:88:84:13:C6 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 1293C24B3F548B029E6958BD82703053D01B0119 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 063F Signing time: Fri 26 Jun 2026 00:08:10 +0000 Manifest this update: Fri 26 Jun 2026 00:08:10 +0000 Manifest next update: Tue 30 Jun 2026 00:08:10 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: GCeElKExhA+xMshOJ/vi8vtU9D49XphpRtZDDkx5uxM=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 00:08:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:93:c2:4b:3f:54:8b:02:9e:69:58:bd:82:70:30:53:d0:1b:01:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 26 00:08:10 2026 GMT Not After : Jun 30 00:08:10 2026 GMT Subject: serialNumber=8bf115c3c9615b3973a07eee16bf07760688a8efdb27d7e1746c655fe96867dc, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0b:3d:27:7e:07:9b:21:aa:d8:c2:f5:cd:5b: 63:5b:90:ae:da:65:36:c0:41:75:39:b2:c8:e2:53: 22:dd:74:db:a4:38:83:af:c7:41:9e:bf:45:71:17: fd:01:63:51:aa:ec:ac:9e:60:2b:90:0d:71:bd:88: 5e:18:e8:91:03:9e:ab:80:d0:42:17:2b:02:b8:3a: c7:aa:67:fd:48:8f:c4:12:45:bc:3d:8d:9a:e0:ea: 6d:03:bd:27:2d:ce:a3:74:d4:eb:5c:16:eb:f8:c8: 65:81:b9:2e:66:9f:0b:8c:19:e4:a2:f6:34:1c:5c: a6:8b:9b:26:d9:41:2d:73:13:1a:9d:c5:e7:60:01: 3e:73:18:1f:ef:48:c0:0b:9c:33:c5:3d:6c:12:5e: d1:31:99:89:e7:c5:b6:a1:bf:3b:72:32:5b:0a:29: 37:1d:49:d0:48:0a:23:36:86:ad:c3:15:2f:49:f3: 40:20:29:4a:4c:00:88:88:3b:b1:72:ef:68:65:5b: d1:38:8e:d1:a9:f0:dc:ea:bc:0a:99:eb:1b:39:48: f9:e9:6d:7c:85:97:f2:3d:50:bc:02:07:34:d9:ff: 8c:01:cc:a0:16:8a:98:22:36:9a:32:52:74:86:90: ba:4c:46:79:86:69:0c:3e:33:01:1b:cc:10:a4:e2: 70:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:EE:03:E8:9D:E7:C9:C0:9A:B4:47:00:E4:4F:A7:D9:88:84:13:C6 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:0b:a4:e4:a9:b0:af:ed:79:8d:0d:00:fa:d4:44:86:d8:4a: ab:1b:fe:4d:e7:63:07:43:ca:51:f3:e6:66:4b:6a:2a:60:66: f1:14:c0:ec:2d:39:c9:c2:46:ec:43:01:36:a6:99:67:e7:49: de:81:5b:3f:db:95:07:de:2b:e2:c7:c0:97:33:e5:48:87:ba: 30:f0:0f:c3:ff:eb:55:2e:51:19:75:4b:8b:b1:48:f3:62:ad: 50:4a:2a:8f:00:d2:67:b7:b4:e8:09:4d:19:a5:bc:c1:3e:0a: 78:8e:d3:df:27:59:8c:ef:57:57:cf:15:14:e0:a1:74:31:5f: c3:94:ba:12:48:8d:97:77:41:5c:7d:44:2f:cc:c3:db:22:93: 51:34:cb:9f:dd:9f:24:d6:28:f3:27:01:a1:2c:8c:ad:1e:3b: 9a:2b:51:50:bb:2b:73:a3:4a:d9:73:4f:c7:46:37:a0:0a:75: dd:24:66:b6:ce:23:ce:40:cc:fd:3c:3b:9d:6c:3f:00:8d:5f: dd:5a:1b:ed:36:f0:18:3e:61:94:dd:0b:5e:d1:a7:4b:02:de: 68:ff:bd:e8:be:00:b2:7c:27:44:72:00:71:3e:89:80:ae:0c: 3b:6d:73:2e:c3:08:3a:ac:16:69:e2:48:d9:89:b0:1b:4a:b3: 79:29:eb:69 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUEpPCSz9UiwKeaVi9gnAwU9AbARkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYyNjAwMDgxMFoX DTI2MDYzMDAwMDgxMFowejFJMEcGA1UEBRNAOGJmMTE1YzNjOTYxNWIzOTczYTA3 ZWVlMTZiZjA3NzYwNjg4YThlZmRiMjdkN2UxNzQ2YzY1NWZlOTY4NjdkYzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2ws9J34HmyGq2ML1zVtjW5Cu2mU2 wEF1ObLI4lMi3XTbpDiDr8dBnr9FcRf9AWNRquysnmArkA1xvYheGOiRA56rgNBC FysCuDrHqmf9SI/EEkW8PY2a4OptA70nLc6jdNTrXBbr+MhlgbkuZp8LjBnkovY0 HFymi5sm2UEtcxMancXnYAE+cxgf70jAC5wzxT1sEl7RMZmJ58W2ob87cjJbCik3 HUnQSAojNoatwxUvSfNAIClKTACIiDuxcu9oZVvROI7RqfDc6rwKmesbOUj56W18 hZfyPVC8Agc02f+MAcygFoqYIjaaMlJ0hpC6TEZ5hmkMPjMBG8wQpOJw6wIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFJPuA+id58nAmrRHAORPp9mIhBPGMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAAwLpOSpsK/teY0NAPrURIbYSqsb/k3n YwdDylHz5mZLaipgZvEUwOwtOcnCRuxDATammWfnSd6BWz/blQfeK+LHwJcz5UiH ujDwD8P/61UuURl1S4uxSPNirVBKKo8A0me3tOgJTRmlvME+CniO098nWYzvV1fP FRTgoXQxX8OUuhJIjZd3QVx9RC/Mw9sik1E0y5/dnyTWKPMnAaEsjK0eO5orUVC7 K3OjStlzT8dGN6AKdd0kZrbOI85AzP08O51sPwCNX91aG+028Bg+YZTdC17Rp0sC 3mj/vei+ALJ8J0RyAHE+iYCuDDttcy7DCDqsFmniSNmJsBtKs3kp62k= -----END CERTIFICATE-----Generated at Fri Jun 26 20:08:08 2026 by rpki-client