$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: yBXh5/LBzH2+ga8T/SiDnNNL+/xjNKdUDkUR/nMclJ4= Subject key identifier: 0C:7A:1D:69:1D:E9:13:D6:A5:05:F7:66:22:8B:34:42:40:9E:9B:AD Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 5685E21FB0E2DDF96F993D8974ED5700FE1236AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 060F Signing time: Sat 09 May 2026 00:03:06 +0000 Manifest this update: Sat 09 May 2026 00:03:06 +0000 Manifest next update: Wed 13 May 2026 00:03:06 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: YEZwo0BYDXoWwmd2A5we4d4LpkEOsJadSoQbwYfS0oI=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 00:03:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:85:e2:1f:b0:e2:dd:f9:6f:99:3d:89:74:ed:57:00:fe:12:36:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 9 00:03:06 2026 GMT Not After : May 13 00:03:06 2026 GMT Subject: serialNumber=971527c463760b4315fb6c87691120f940137d30f69923be0d6a4847fea1fdfa, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:c5:90:06:0f:db:dd:0d:49:22:f0:d1:02:fb: c9:76:16:9d:5c:d7:5b:0e:d8:f3:b4:68:f4:ff:46: 98:b3:24:78:60:e8:68:83:94:5f:eb:c6:36:2a:51: ab:81:81:37:ea:2a:ba:2f:e4:4e:ed:d3:4a:c4:14: fa:5b:e5:fe:68:59:12:f5:52:34:01:01:82:16:18: 52:4c:1f:e6:07:71:76:34:c4:b9:90:86:85:01:0f: 52:e7:cc:0c:42:99:5a:48:92:f5:69:29:21:e6:01: 5a:3f:77:07:65:53:a1:04:b3:7a:d3:0e:27:52:5d: 83:79:7d:28:e4:37:85:6c:81:84:70:5b:25:b1:75: 3e:43:3b:de:08:8e:1d:c6:b6:a4:23:25:3c:b5:cb: d2:15:60:f7:f6:32:23:82:df:81:e1:ff:74:81:e0: 9d:a5:9a:a1:b6:f5:63:3b:70:78:2c:fd:f5:0f:20: ba:87:51:8f:5a:3f:5c:0b:10:9f:69:3b:bd:25:74: 48:4a:9c:b2:45:04:d8:86:a9:f7:8f:f0:f1:2c:7b: 17:f8:5a:dd:21:64:c3:0d:13:e9:e7:33:e0:4e:49: 10:7d:7a:3a:79:1e:83:13:5d:7a:6e:d9:57:cf:fe: 56:4e:6d:51:67:6c:54:3e:dd:d2:02:39:81:8a:f5: b8:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:7A:1D:69:1D:E9:13:D6:A5:05:F7:66:22:8B:34:42:40:9E:9B:AD X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:9d:0a:ac:03:35:eb:93:57:13:47:b8:c7:7b:fc:b9:a3:5a: 87:1e:41:15:f7:fa:90:5f:b7:21:28:3b:2f:14:b8:6c:89:ca: d6:b0:27:60:38:fb:2b:58:95:ea:a7:16:ec:0b:c1:25:32:37: 09:af:bf:af:64:6b:a9:59:f7:cd:2b:4e:b8:ab:3b:98:5a:86: bb:ec:35:f9:68:d3:10:8f:0c:b8:b4:83:87:ee:bd:d4:c9:56: b4:d9:6b:ed:25:92:d7:e1:a3:a1:c5:07:56:23:5e:c5:2d:e3: 8e:3d:8c:24:b8:52:c5:17:ed:b9:db:17:b9:9c:d1:5d:33:c7: 52:02:39:99:6a:02:53:d7:79:f3:2b:0f:ea:cc:04:ee:22:8a: 2a:b9:dc:8f:43:8f:f8:2f:82:fe:16:34:42:39:05:b1:d3:6c: c9:99:71:99:a1:e5:2b:a9:1d:f1:65:40:f0:77:c6:88:9e:85: 4f:b6:f1:bd:b4:12:ee:b2:2f:6d:1a:74:51:a4:c5:aa:8f:83: 92:f5:51:13:be:84:aa:dc:a5:b8:fa:1e:c1:38:3b:98:f8:ae: 30:fe:8e:0c:9a:83:34:47:88:39:2d:54:bf:70:d0:29:f6:2f: 93:f2:dc:77:0e:04:59:11:03:f6:28:ac:c0:4a:a2:7f:c7:e3: b7:78:37:9f -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUVoXiH7Di3flvmT2JdO1XAP4SNqswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUwOTAwMDMwNloX DTI2MDUxMzAwMDMwNlowejFJMEcGA1UEBRNAOTcxNTI3YzQ2Mzc2MGI0MzE1ZmI2 Yzg3NjkxMTIwZjk0MDEzN2QzMGY2OTkyM2JlMGQ2YTQ4NDdmZWExZmRmYTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA68WQBg/b3Q1JIvDRAvvJdhadXNdb DtjztGj0/0aYsyR4YOhog5Rf68Y2KlGrgYE36iq6L+RO7dNKxBT6W+X+aFkS9VI0 AQGCFhhSTB/mB3F2NMS5kIaFAQ9S58wMQplaSJL1aSkh5gFaP3cHZVOhBLN60w4n Ul2DeX0o5DeFbIGEcFslsXU+QzveCI4dxrakIyU8tcvSFWD39jIjgt+B4f90geCd pZqhtvVjO3B4LP31DyC6h1GPWj9cCxCfaTu9JXRISpyyRQTYhqn3j/DxLHsX+Frd IWTDDRPp5zPgTkkQfXo6eR6DE116btlXz/5WTm1RZ2xUPt3SAjmBivW4HwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFAx6HWkd6RPWpQX3ZiKLNEJAnputMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAF+dCqwDNeuTVxNHuMd7/LmjWoceQRX3 +pBftyEoOy8UuGyJytawJ2A4+ytYleqnFuwLwSUyNwmvv69ka6lZ980rTrirO5ha hrvsNflo0xCPDLi0g4fuvdTJVrTZa+0lktfho6HFB1YjXsUt4449jCS4UsUX7bnb F7mc0V0zx1ICOZlqAlPXefMrD+rMBO4iiiq53I9Dj/gvgv4WNEI5BbHTbMmZcZmh 5SupHfFlQPB3xoiehU+28b20Eu6yL20adFGkxaqPg5L1URO+hKrcpbj6HsE4O5j4 rjD+jgyagzRHiDktVL9w0Cn2L5Py3HcOBFkRA/YorMBKon/H47d4N58= -----END CERTIFICATE-----Generated at Sat May 9 08:24:50 2026 by rpki-client