$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: gZr6rsM41n5Rrmf5Gy7tMRulDK06ECRdc1Q3obY5iwg= Subject key identifier: D4:93:6D:AB:3E:B3:D7:B2:4B:1E:76:F6:25:01:95:6F:96:74:9A:B6 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 564BA0B5CD76EA0EB51E15B298891D2050DEF20D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0636 Signing time: Wed 17 Jun 2026 00:06:27 +0000 Manifest this update: Wed 17 Jun 2026 00:06:27 +0000 Manifest next update: Sun 21 Jun 2026 00:06:27 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: WGh5K1Cp5rXhd2FOrG9UX/QQt5kzZQ0Bd3QLJUj65lo=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Jun 2026 00:06:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:4b:a0:b5:cd:76:ea:0e:b5:1e:15:b2:98:89:1d:20:50:de:f2:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 17 00:06:27 2026 GMT Not After : Jun 21 00:06:27 2026 GMT Subject: serialNumber=e8ed1ef0da4bb45915e2d621722405d93240d579f48df7720aec8ba1e8e1e02c, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:02:eb:1c:d9:77:38:a7:e6:61:9e:ba:87:f9: f9:2c:57:13:9e:76:8a:e6:8f:ba:ec:37:34:2f:c8: 2c:5f:0c:bb:e7:e9:e1:f8:ca:ed:90:4b:9e:03:ad: 3d:c1:86:f3:05:29:b9:91:7d:a3:c9:b7:22:2f:64: 44:f1:93:91:5e:65:8a:84:85:56:4f:13:aa:39:85: 35:04:6b:13:12:ac:9f:6f:99:76:30:82:05:cd:3d: 73:77:de:99:3a:4d:42:a2:d4:83:d7:46:eb:2b:a6: 38:4c:4d:0b:b5:6d:c9:47:d9:c7:a8:e6:07:7f:84: 1b:b9:68:e7:c1:96:b3:a4:05:26:aa:9c:b8:50:40: 68:8c:7d:91:5a:9a:b5:e2:2e:85:04:85:f5:2b:7e: b7:04:c9:9a:b9:97:f7:98:50:11:97:4f:5c:d3:a2: ee:a1:f7:59:f7:23:47:e6:52:fb:58:12:c5:ed:ba: 6e:9d:78:87:59:c8:ba:ce:33:26:ab:2b:e3:14:82: a9:eb:72:f3:b7:60:55:40:89:4c:c5:69:9f:b2:29: 14:7c:26:0b:73:e7:43:f4:c8:ac:45:4a:ad:26:7b: db:4d:9a:8b:fe:9b:1e:28:b2:46:8b:12:b8:56:f7: 1b:e4:48:a8:2c:c4:45:a2:f3:67:ba:ef:91:f1:b6: c9:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:93:6D:AB:3E:B3:D7:B2:4B:1E:76:F6:25:01:95:6F:96:74:9A:B6 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:dc:3b:eb:f5:18:2f:74:e0:93:00:a9:f1:d7:2f:66:dc:44: 4c:59:d5:eb:3d:ef:a1:c9:2b:c9:18:44:60:8e:23:71:e4:29: 80:64:2f:18:0a:f3:f1:85:9d:17:80:2b:4d:cb:be:14:1c:35: d9:f8:32:d9:73:52:85:6a:78:d9:3e:fe:be:c3:c0:ac:08:3b: 29:24:3e:b5:f7:5c:05:9b:c9:73:a1:9a:be:d7:ac:9c:22:8c: ab:68:9f:e8:6f:dc:c9:e7:b3:0d:da:ea:e6:24:55:44:ca:b4: 30:20:52:fb:62:aa:3c:b7:68:96:23:c5:07:91:00:69:08:db: 9f:3c:24:0d:a3:18:4f:a3:43:62:da:03:53:b5:3e:ff:82:50: 70:75:0f:7b:59:ed:59:95:f3:7b:19:cf:10:82:01:ce:be:59: b2:ef:1e:eb:79:7f:37:b8:1f:41:44:38:55:52:99:bd:30:55: d7:c2:f7:b4:06:b9:48:34:a4:2f:eb:ec:20:36:0f:e9:33:e2: 1e:1f:0e:15:e4:5b:88:8d:da:93:17:1c:de:6f:46:d2:18:39: f1:c1:9d:e6:5d:48:34:5a:22:63:8c:94:ac:07:61:72:04:19: 6e:aa:c2:2d:b3:1c:34:e6:c2:b5:e5:be:0c:d1:00:bb:25:e6: 7c:ae:2a:c9 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUVkugtc126g61HhWymIkdIFDe8g0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYxNzAwMDYyN1oX DTI2MDYyMTAwMDYyN1owejFJMEcGA1UEBRNAZThlZDFlZjBkYTRiYjQ1OTE1ZTJk NjIxNzIyNDA1ZDkzMjQwZDU3OWY0OGRmNzcyMGFlYzhiYTFlOGUxZTAyYzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAowLrHNl3OKfmYZ66h/n5LFcTnnaK 5o+67Dc0L8gsXwy75+nh+MrtkEueA609wYbzBSm5kX2jybciL2RE8ZORXmWKhIVW TxOqOYU1BGsTEqyfb5l2MIIFzT1zd96ZOk1CotSD10brK6Y4TE0LtW3JR9nHqOYH f4QbuWjnwZazpAUmqpy4UEBojH2RWpq14i6FBIX1K363BMmauZf3mFARl09c06Lu ofdZ9yNH5lL7WBLF7bpunXiHWci6zjMmqyvjFIKp63Lzt2BVQIlMxWmfsikUfCYL c+dD9MisRUqtJnvbTZqL/pseKLJGixK4Vvcb5EioLMRFovNnuu+R8bbJ4QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNSTbas+s9eySx529iUBlW+WdJq2MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAC3cO+v1GC904JMAqfHXL2bcRExZ1es9 76HJK8kYRGCOI3HkKYBkLxgK8/GFnReAK03LvhQcNdn4MtlzUoVqeNk+/r7DwKwI OykkPrX3XAWbyXOhmr7XrJwijKton+hv3Mnnsw3a6uYkVUTKtDAgUvtiqjy3aJYj xQeRAGkI2588JA2jGE+jQ2LaA1O1Pv+CUHB1D3tZ7VmV83sZzxCCAc6+WbLvHut5 fze4H0FEOFVSmb0wVdfC97QGuUg0pC/r7CA2D+kz4h4fDhXkW4iN2pMXHN5vRtIY OfHBneZdSDRaImOMlKwHYXIEGW6qwi2zHDTmwrXlvgzRALsl5nyuKsk= -----END CERTIFICATE-----Generated at Wed Jun 17 12:23:24 2026 by rpki-client