$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: FgK6K39at477nNchFtfsduWISfTWRPfIbX0LhFvLxz8= Subject key identifier: C7:F9:96:A2:63:A5:86:70:E0:E0:21:1E:AC:13:DF:59:C2:F4:10:0B Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 0275D8BAEC56769D93984ABF594121041CD1D820 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 063D Signing time: Wed 24 Jun 2026 00:07:54 +0000 Manifest this update: Wed 24 Jun 2026 00:07:54 +0000 Manifest next update: Sun 28 Jun 2026 00:07:54 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: 0faW1WRF511MFgwlZTBdH1PHqKeZNj0W/cypLQpFFsw=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Jun 2026 00:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:75:d8:ba:ec:56:76:9d:93:98:4a:bf:59:41:21:04:1c:d1:d8:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 24 00:07:54 2026 GMT Not After : Jun 28 00:07:54 2026 GMT Subject: serialNumber=c29ec62bd35bb9da45168a143810460d20ca46b2d65574986cf29ed72858bc45, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5f:b1:02:c5:2c:54:20:48:13:77:40:97:6b: 5e:3f:ff:5d:73:d1:84:7d:91:25:aa:b9:b4:fd:74: 02:23:b6:bb:1c:9a:0f:0c:c1:bd:df:1a:37:36:44: a6:57:a3:5c:48:75:cc:2f:90:5f:21:cc:c7:f1:6c: 05:61:5d:56:db:70:3c:39:0c:cb:da:e2:c0:19:5d: 7f:2f:01:83:53:3f:b9:52:ad:ea:7b:5c:9d:e5:b7: e0:75:a8:59:ba:28:5d:57:a0:cf:c0:22:91:3e:58: 2f:92:22:5a:3d:1c:37:b3:6c:03:0e:fd:bb:2a:e5: cb:f9:1e:df:d0:fc:6d:37:95:b6:ca:dd:7b:12:41: 23:35:84:87:02:37:35:c1:a4:70:2c:72:cb:40:35: 70:9b:78:21:16:3a:3b:5b:8f:12:57:f6:5b:f4:84: 65:36:90:70:e9:a8:97:87:6a:0f:3b:2a:f0:4d:77: e8:16:a8:e3:1d:0a:df:a6:6b:d1:54:40:be:2b:4d: d3:62:71:e7:a0:be:ce:2c:a4:b3:75:cb:fb:e3:5a: 2f:56:b6:65:1b:46:6a:f4:0e:16:5b:26:50:1f:c4: a8:45:d1:99:a6:0a:92:a3:56:5d:94:3d:4f:3d:c9: 35:26:3b:51:42:c6:07:70:85:20:e9:7b:d3:16:be: f6:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:F9:96:A2:63:A5:86:70:E0:E0:21:1E:AC:13:DF:59:C2:F4:10:0B X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:5b:60:52:4a:69:14:a9:33:e6:a2:ed:d1:fc:31:18:dd:b6: b8:a4:1a:68:0f:ac:3d:28:47:d6:88:8a:79:d2:61:ba:ec:ce: 84:0f:71:b1:bf:df:f9:09:54:d1:6e:75:34:1f:04:c3:0d:4b: 5a:0e:22:c1:b6:a3:44:ea:ed:42:34:9e:c2:d0:b6:17:ba:0f: ed:1a:31:9c:b6:ef:0f:13:81:7b:e0:16:26:0f:e8:b6:80:2d: 17:99:97:d0:48:f4:b7:d9:fe:a8:21:87:67:b1:12:a3:91:73: cb:fb:5b:91:14:03:66:5e:db:42:94:a9:19:82:ed:00:0f:b5: d3:90:a3:ed:6e:e9:94:ba:7a:87:13:92:a0:50:3f:7b:0b:29: 54:04:24:08:82:2e:fb:62:2c:02:e5:f1:e4:04:aa:cc:fe:06: 28:eb:c1:c3:16:26:98:3e:bb:c0:b8:a6:21:38:82:f0:a9:2a: df:6d:e7:ae:bb:a0:5d:b0:8a:dc:2a:4c:cb:c4:e1:bd:4a:a4: 57:24:ac:04:6a:b3:fd:ea:f8:95:c3:24:5b:fb:72:88:4e:aa: b8:4d:de:6a:fe:7a:26:b4:24:a7:12:46:04:6f:93:f4:03:10: be:8a:04:3e:a1:68:20:54:58:b9:e2:75:be:17:5c:56:b9:4c: 26:39:9a:53 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUAnXYuuxWdp2TmEq/WUEhBBzR2CAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYyNDAwMDc1NFoX DTI2MDYyODAwMDc1NFowejFJMEcGA1UEBRNAYzI5ZWM2MmJkMzViYjlkYTQ1MTY4 YTE0MzgxMDQ2MGQyMGNhNDZiMmQ2NTU3NDk4NmNmMjllZDcyODU4YmM0NTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApl+xAsUsVCBIE3dAl2teP/9dc9GE fZElqrm0/XQCI7a7HJoPDMG93xo3NkSmV6NcSHXML5BfIczH8WwFYV1W23A8OQzL 2uLAGV1/LwGDUz+5Uq3qe1yd5bfgdahZuihdV6DPwCKRPlgvkiJaPRw3s2wDDv27 KuXL+R7f0PxtN5W2yt17EkEjNYSHAjc1waRwLHLLQDVwm3ghFjo7W48SV/Zb9IRl NpBw6aiXh2oPOyrwTXfoFqjjHQrfpmvRVEC+K03TYnHnoL7OLKSzdcv741ovVrZl G0Zq9A4WWyZQH8SoRdGZpgqSo1ZdlD1PPck1JjtRQsYHcIUg6XvTFr72kwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFMf5lqJjpYZw4OAhHqwT31nC9BALMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAAZbYFJKaRSpM+ai7dH8MRjdtrikGmgP rD0oR9aIinnSYbrszoQPcbG/3/kJVNFudTQfBMMNS1oOIsG2o0Tq7UI0nsLQthe6 D+0aMZy27w8TgXvgFiYP6LaALReZl9BI9LfZ/qghh2exEqORc8v7W5EUA2Ze20KU qRmC7QAPtdOQo+1u6ZS6eocTkqBQP3sLKVQEJAiCLvtiLALl8eQEqsz+BijrwcMW Jpg+u8C4piE4gvCpKt9t5667oF2witwqTMvE4b1KpFckrARqs/3q+JXDJFv7cohO qrhN3mr+eia0JKcSRgRvk/QDEL6KBD6haCBUWLnidb4XXFa5TCY5mlM= -----END CERTIFICATE-----Generated at Wed Jun 24 09:56:25 2026 by rpki-client