$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: tyXj+igXE2mo0wPYOhlvx9EdGmHPC02Mr1rufsp8PF8= Subject key identifier: FB:15:AC:C1:C8:C2:A7:BD:54:D0:54:C4:CC:00:91:55:75:72:83:D3 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 076AF2261F5AB6923ABDA817897803E5110414B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0631 Signing time: Fri 12 Jun 2026 00:05:33 +0000 Manifest this update: Fri 12 Jun 2026 00:05:33 +0000 Manifest next update: Tue 16 Jun 2026 00:05:33 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: wj06tNTS3FH03uIjFEibvhk5lmtvTX8jZa/9MTd9Qxc=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Jun 2026 00:05:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:6a:f2:26:1f:5a:b6:92:3a:bd:a8:17:89:78:03:e5:11:04:14:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 12 00:05:33 2026 GMT Not After : Jun 16 00:05:33 2026 GMT Subject: serialNumber=ca6ee6a64968dde27d1d707b384943108235349f1c99f3986dd8d959b2b1566d, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:c2:d4:60:24:9f:f9:0c:85:e9:10:4e:b2:a0: 92:13:28:62:3b:20:2d:09:e6:aa:24:ee:e2:4f:15: 83:de:4a:6f:52:e2:2f:94:07:8f:42:44:91:40:8c: 13:39:b4:65:98:23:d1:d4:67:06:23:a4:3b:3a:10: a5:13:cc:dc:24:e6:bb:7b:f3:08:dc:4d:d5:ff:d3: 84:72:1c:27:28:71:82:10:a3:a5:9b:78:91:76:a8: a3:0c:14:49:37:10:e9:4a:db:bc:b5:48:06:74:7b: aa:d2:ed:7f:78:ea:6c:47:81:9e:6d:45:d7:e6:f7: 93:f6:fb:50:e8:c0:e4:e9:e6:ae:7e:2b:31:a7:75: 52:4e:e4:27:a1:d0:eb:f2:a2:76:e9:f4:af:11:8c: 95:22:a3:ee:bb:6e:b2:2d:1e:4b:30:67:15:a7:71: b0:c2:33:76:98:e9:6f:ee:5c:8f:04:22:bb:36:77: 35:29:3c:4f:2d:d4:61:9a:1c:85:5d:c1:95:9b:ca: af:b0:d0:a7:63:70:da:8d:8b:8d:2f:f9:d9:39:d1: 4e:05:89:67:6a:d1:f8:e7:56:76:94:9a:50:f0:90: 43:94:78:76:ef:7b:2b:20:2e:b9:28:3f:bd:f5:20: 79:34:02:33:8b:f7:a8:12:55:88:b0:93:cc:4d:75: 07:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:15:AC:C1:C8:C2:A7:BD:54:D0:54:C4:CC:00:91:55:75:72:83:D3 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:ca:97:d0:00:8e:38:b0:88:70:9d:67:62:ad:c5:1a:1f:f3: 34:52:2f:4d:8d:d7:c5:f9:39:1e:1b:7e:30:b7:42:a4:c7:1d: c1:5a:47:56:7f:3f:b9:5e:bd:06:07:03:d5:e6:9a:74:68:11: a4:78:d0:d7:de:5f:9e:75:66:e5:89:23:c8:dd:98:7d:db:c7: 55:05:67:b5:d6:db:fa:12:26:13:9f:ea:5e:8e:96:37:42:e8: 26:25:df:20:59:79:76:01:8f:c8:a7:55:5b:06:f7:0f:74:9a: 41:ce:7f:7b:a1:13:1c:5b:6b:2a:89:f9:1c:66:94:f3:82:25: ac:ec:a2:f8:64:e7:34:a0:ef:fc:85:f6:be:ab:65:3b:3d:37: 28:fd:9a:a6:31:9d:42:2f:f5:59:d9:3c:ca:5a:c4:2c:8b:b1: 1c:53:93:4e:53:eb:bf:d5:c2:a0:8d:71:3d:80:69:07:f6:51: 89:51:a8:99:af:47:e3:e7:3d:07:03:d4:11:2e:b1:7d:2a:9e: 5e:26:21:4f:d0:19:35:ce:33:72:70:b8:d0:aa:aa:7f:e1:3f: 8c:25:37:a9:b7:ea:f1:f6:57:80:e1:64:5a:5a:86:50:d0:e3: 8b:85:f3:5d:e2:9a:92:c6:4e:35:13:c9:45:65:12:64:3d:bf: 7f:31:8e:a6 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUB2ryJh9atpI6vagXiXgD5REEFLcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYxMjAwMDUzM1oX DTI2MDYxNjAwMDUzM1owejFJMEcGA1UEBRNAY2E2ZWU2YTY0OTY4ZGRlMjdkMWQ3 MDdiMzg0OTQzMTA4MjM1MzQ5ZjFjOTlmMzk4NmRkOGQ5NTliMmIxNTY2ZDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4sLUYCSf+QyF6RBOsqCSEyhiOyAt CeaqJO7iTxWD3kpvUuIvlAePQkSRQIwTObRlmCPR1GcGI6Q7OhClE8zcJOa7e/MI 3E3V/9OEchwnKHGCEKOlm3iRdqijDBRJNxDpStu8tUgGdHuq0u1/eOpsR4GebUXX 5veT9vtQ6MDk6eaufisxp3VSTuQnodDr8qJ26fSvEYyVIqPuu26yLR5LMGcVp3Gw wjN2mOlv7lyPBCK7Nnc1KTxPLdRhmhyFXcGVm8qvsNCnY3DajYuNL/nZOdFOBYln atH451Z2lJpQ8JBDlHh273srIC65KD+99SB5NAIzi/eoElWIsJPMTXUHgQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFPsVrMHIwqe9VNBUxMwAkVV1coPTMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAI7Kl9AAjjiwiHCdZ2KtxRof8zRSL02N 18X5OR4bfjC3QqTHHcFaR1Z/P7levQYHA9XmmnRoEaR40NfeX551ZuWJI8jdmH3b x1UFZ7XW2/oSJhOf6l6OljdC6CYl3yBZeXYBj8inVVsG9w90mkHOf3uhExxbayqJ +RxmlPOCJazsovhk5zSg7/yF9r6rZTs9Nyj9mqYxnUIv9VnZPMpaxCyLsRxTk05T 67/VwqCNcT2AaQf2UYlRqJmvR+PnPQcD1BEusX0qnl4mIU/QGTXOM3JwuNCqqn/h P4wlN6m36vH2V4DhZFpahlDQ44uF813impLGTjUTyUVlEmQ9v38xjqY= -----END CERTIFICATE-----Generated at Fri Jun 12 23:41:08 2026 by rpki-client