$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: +owN99+HOPWJNVEOSC9qT2Br7mbyHeXL+ryMcTIijVM= Subject key identifier: C1:6E:1A:FD:74:B6:17:1C:7D:BF:52:10:41:A1:09:D1:B5:F2:16:F3 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 5087A40ED42DCE051375284635BF58ED8209D65D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0616 Signing time: Sat 16 May 2026 00:00:46 +0000 Manifest this update: Sat 16 May 2026 00:00:46 +0000 Manifest next update: Wed 20 May 2026 00:00:46 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: xIH2VOo4Qdk18dbUqgjl8KL6IKMkrRRUrFIOQgeP/+Q=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:87:a4:0e:d4:2d:ce:05:13:75:28:46:35:bf:58:ed:82:09:d6:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 16 00:00:46 2026 GMT Not After : May 20 00:00:46 2026 GMT Subject: serialNumber=68cc6c75b59e0b81fc9f3446aae3929a362f8fbee4ca7fb1d06e768d940fa024, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6d:dc:2d:3a:23:23:37:1d:0d:fd:6f:fc:ed: a7:8f:6d:84:ed:ce:4f:b4:fc:7d:a0:12:c3:7e:e4: 2c:4a:0f:db:fc:85:0c:be:dd:ec:27:43:d4:d3:5a: be:59:1b:cc:64:30:41:93:c7:e9:1c:b5:bf:e4:24: e7:55:97:f1:e7:c7:69:63:51:34:10:a0:f4:0f:dd: bd:df:f5:cf:31:52:25:86:f0:6f:9b:15:81:b2:75: 2b:f4:68:33:14:3e:77:cb:a7:c7:c7:d4:be:07:f4: 90:dd:f8:7a:ab:85:99:ca:84:c4:98:d8:9a:77:d8: 19:36:7f:d6:e9:3d:21:1f:0c:f5:1d:2e:9b:3f:23: 65:41:de:94:31:f7:64:62:f5:53:a6:ed:d5:79:ac: 10:fa:29:ec:02:b8:c1:ad:05:b8:28:ce:44:81:d3: c1:59:0c:82:01:3f:23:3e:3c:e7:81:9f:6d:49:ee: e1:da:f8:94:0d:15:1a:98:87:b8:a1:d4:7c:16:4f: ea:b9:7b:76:07:bf:48:01:4d:a1:ef:31:c7:b6:dc: 63:b9:2a:7e:a5:f1:fe:96:35:ba:3c:e0:f0:69:e5: 37:72:c0:2d:41:3c:7b:86:17:1f:43:8f:54:9a:71: 20:5c:99:12:b6:89:be:db:40:a4:a9:b6:6f:9f:85: 9e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:6E:1A:FD:74:B6:17:1C:7D:BF:52:10:41:A1:09:D1:B5:F2:16:F3 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:b5:26:98:e9:b5:60:05:7c:67:e6:74:3d:59:18:e7:12:47: 4e:86:36:f4:68:2d:7c:aa:d3:d3:b9:87:2e:95:a2:06:30:f1: e3:1c:e1:62:1b:c5:7e:42:44:32:4d:7e:1c:da:0f:c7:af:7b: 30:ad:58:3c:91:7a:dd:1b:85:b2:3c:05:48:26:61:f5:30:9d: 12:fa:1c:18:6b:ee:bc:39:83:e3:7e:84:00:d2:f7:38:cc:0d: c7:0e:d1:35:4e:3b:87:ea:b1:35:e9:5b:d7:9c:62:0b:fa:9d: 15:ea:ca:25:1d:2a:1e:9c:3e:4d:d8:66:14:13:8a:db:f3:8d: 03:a4:03:1e:46:48:ee:fe:63:f7:7b:82:c6:e6:95:74:03:25: 81:bb:72:5e:3b:99:f0:6e:20:6d:7f:34:da:b1:1f:a8:ed:65: c9:81:ca:e0:3b:fc:28:76:7a:4c:bd:51:a8:c0:f1:dc:ad:a1: 84:67:e5:e7:24:b4:74:64:ed:06:c1:57:aa:52:8d:0a:f3:32: 7a:ea:cb:49:1f:9f:47:37:73:6f:1a:87:3b:b0:40:4c:0a:9f: 46:60:ea:5c:7a:0b:30:7b:10:f1:ed:f0:85:1a:0c:77:51:ac: d8:9a:c0:d1:f1:19:3e:78:2b:83:b5:7b:47:4e:09:cd:65:2f: d6:ac:b4:5c -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUUIekDtQtzgUTdShGNb9Y7YIJ1l0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUxNjAwMDA0NloX DTI2MDUyMDAwMDA0NlowejFJMEcGA1UEBRNANjhjYzZjNzViNTllMGI4MWZjOWYz NDQ2YWFlMzkyOWEzNjJmOGZiZWU0Y2E3ZmIxZDA2ZTc2OGQ5NDBmYTAyNDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy23cLTojIzcdDf1v/O2nj22E7c5P tPx9oBLDfuQsSg/b/IUMvt3sJ0PU01q+WRvMZDBBk8fpHLW/5CTnVZfx58dpY1E0 EKD0D9293/XPMVIlhvBvmxWBsnUr9GgzFD53y6fHx9S+B/SQ3fh6q4WZyoTEmNia d9gZNn/W6T0hHwz1HS6bPyNlQd6UMfdkYvVTpu3VeawQ+insArjBrQW4KM5EgdPB WQyCAT8jPjzngZ9tSe7h2viUDRUamIe4odR8Fk/quXt2B79IAU2h7zHHttxjuSp+ pfH+ljW6PODwaeU3csAtQTx7hhcfQ49UmnEgXJkStom+20CkqbZvn4WeHwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFMFuGv10thccfb9SEEGhCdG18hbzMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBACu1JpjptWAFfGfmdD1ZGOcSR06GNvRo LXyq09O5hy6VogYw8eMc4WIbxX5CRDJNfhzaD8evezCtWDyRet0bhbI8BUgmYfUw nRL6HBhr7rw5g+N+hADS9zjMDccO0TVOO4fqsTXpW9ecYgv6nRXqyiUdKh6cPk3Y ZhQTitvzjQOkAx5GSO7+Y/d7gsbmlXQDJYG7cl47mfBuIG1/NNqxH6jtZcmByuA7 /Ch2eky9UajA8dytoYRn5ecktHRk7QbBV6pSjQrzMnrqy0kfn0c3c28ahzuwQEwK n0Zg6lx6CzB7EPHt8IUaDHdRrNiawNHxGT54K4O1e0dOCc1lL9astFw= -----END CERTIFICATE-----Generated at Sat May 16 11:22:43 2026 by rpki-client