$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: fWAVzTph9vkbf1r3qrHuoA0Pvc2Q41YiAQAiz/aBMJI= Subject key identifier: CD:1B:E4:CA:D2:85:90:05:20:BB:46:9E:2E:2E:10:A4:19:0D:E2:44 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 2BC4554F68853794A6BB432A43866A35999CD879 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 061B Signing time: Thu 21 May 2026 00:01:50 +0000 Manifest this update: Thu 21 May 2026 00:01:50 +0000 Manifest next update: Mon 25 May 2026 00:01:50 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: b4Yy1Qyf39ZtqkQNchfDVxJnM3SY2A7TKs1ATBowDyg=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 May 2026 00:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:c4:55:4f:68:85:37:94:a6:bb:43:2a:43:86:6a:35:99:9c:d8:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 21 00:01:50 2026 GMT Not After : May 25 00:01:50 2026 GMT Subject: serialNumber=9e618e112d94176bcc66760650a92f9d10802a9a21debccae07710ca8650e807, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a1:fa:50:35:2d:6d:ac:29:51:0d:3a:1d:70: 73:e2:6b:b8:21:50:da:0e:53:4d:86:46:fb:3d:13: b7:d8:35:7a:ee:73:f5:50:4e:90:cd:3f:a6:40:a4: f8:57:5c:b0:39:94:4e:5f:ba:14:76:d1:8e:29:d7: 7f:4f:40:20:2c:15:3a:c4:89:4b:71:da:a0:74:ea: 1e:8e:de:cb:16:51:d4:86:83:c3:61:9d:46:5a:7a: 70:82:f9:b8:03:74:33:a1:15:f4:5c:0d:49:e9:48: b7:94:d8:9e:63:47:aa:d0:b2:ff:f9:8b:ce:b9:ee: 5d:b0:17:07:b7:aa:bd:00:58:94:55:87:a6:7d:0e: 07:90:e1:74:51:b3:38:6a:ed:7a:c6:83:d0:6a:97: e8:ee:b3:1c:0e:2b:3a:e7:8a:1a:80:61:be:da:0c: 36:1c:ff:d6:84:86:b4:c0:41:c3:ed:fb:64:c2:1e: 38:b7:0c:2e:3a:ba:e4:05:b4:72:ff:39:00:ff:9d: 28:7d:4a:b7:11:2b:39:72:72:8d:3a:12:82:21:54: fe:04:12:61:1c:a0:5f:21:cf:4d:93:0d:8b:40:e8: 07:c7:de:f7:98:d3:3f:5f:49:57:fb:58:27:8c:97: 96:cf:d1:3e:2e:70:04:16:7c:80:f4:8b:47:ee:d1: ec:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:1B:E4:CA:D2:85:90:05:20:BB:46:9E:2E:2E:10:A4:19:0D:E2:44 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:bc:6d:95:a1:28:0f:44:72:b9:75:18:0d:c8:86:93:31:b5: 8d:8e:34:f2:42:e5:4a:16:8a:d5:69:c6:8e:80:6e:88:22:f0: 3d:f3:e0:c4:d3:dc:40:71:c8:f3:e0:da:6a:a7:13:43:db:3f: f3:85:43:d2:c3:dc:5c:72:ce:1a:d6:0c:cd:46:5f:b2:9e:83: f1:7f:e9:70:06:0e:54:3f:f5:0d:e0:d9:03:85:bf:bd:1f:ad: c0:ed:a6:56:45:ce:ce:f7:1d:24:7e:82:22:42:f2:7b:14:bf: 13:d0:fb:da:c9:63:b3:97:76:1f:eb:56:ac:a4:b1:cb:8f:e8: 4d:26:00:e8:ff:6b:6c:26:ac:80:b6:a7:51:25:9b:a1:18:cb: 03:a1:11:ed:fc:40:17:25:9f:5c:6a:0a:a0:cb:ef:64:88:86: 4e:a3:57:bb:c1:73:48:c6:26:6b:32:07:0f:e9:cc:60:07:31: 35:cb:8c:07:60:8e:75:14:02:c9:a6:45:22:a7:0e:c4:2e:ac: 3c:4d:01:10:91:23:96:34:46:96:63:0f:71:53:4a:41:89:55: 63:c7:8b:cf:53:f6:52:01:77:1e:9d:32:2f:fa:16:2e:80:ba: e4:0e:e3:ed:f7:75:ea:f8:f2:4e:74:00:23:76:ef:c7:fb:5f: 99:26:bb:7e -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUK8RVT2iFN5Smu0MqQ4ZqNZmc2HkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUyMTAwMDE1MFoX DTI2MDUyNTAwMDE1MFowejFJMEcGA1UEBRNAOWU2MThlMTEyZDk0MTc2YmNjNjY3 NjA2NTBhOTJmOWQxMDgwMmE5YTIxZGViY2NhZTA3NzEwY2E4NjUwZTgwNzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxaH6UDUtbawpUQ06HXBz4mu4IVDa DlNNhkb7PRO32DV67nP1UE6QzT+mQKT4V1ywOZROX7oUdtGOKdd/T0AgLBU6xIlL cdqgdOoejt7LFlHUhoPDYZ1GWnpwgvm4A3QzoRX0XA1J6Ui3lNieY0eq0LL/+YvO ue5dsBcHt6q9AFiUVYemfQ4HkOF0UbM4au16xoPQapfo7rMcDis654oagGG+2gw2 HP/WhIa0wEHD7ftkwh44twwuOrrkBbRy/zkA/50ofUq3ESs5cnKNOhKCIVT+BBJh HKBfIc9Nkw2LQOgHx973mNM/X0lX+1gnjJeWz9E+LnAEFnyA9ItH7tHs7QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFM0b5MrShZAFILtGni4uEKQZDeJEMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAHy8bZWhKA9Ecrl1GA3IhpMxtY2ONPJC 5UoWitVpxo6Abogi8D3z4MTT3EBxyPPg2mqnE0PbP/OFQ9LD3FxyzhrWDM1GX7Ke g/F/6XAGDlQ/9Q3g2QOFv70frcDtplZFzs73HSR+giJC8nsUvxPQ+9rJY7OXdh/r VqykscuP6E0mAOj/a2wmrIC2p1Elm6EYywOhEe38QBcln1xqCqDL72SIhk6jV7vB c0jGJmsyBw/pzGAHMTXLjAdgjnUUAsmmRSKnDsQurDxNARCRI5Y0RpZjD3FTSkGJ VWPHi89T9lIBdx6dMi/6Fi6AuuQO4+33der48k50ACN278f7X5kmu34= -----END CERTIFICATE-----Generated at Thu May 21 14:43:49 2026 by rpki-client