$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: mHq7nhnabbg2nd7/Z5nPj631+JJqKvI5Lts4WEUh2/Q= Subject key identifier: A9:2C:9C:3B:DA:A0:54:89:BD:DE:6D:B7:68:9F:09:79:29:AB:86:7D Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 1FF3D42BFE5E18655A3542C414DB2345E61DAE9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 061A Signing time: Wed 20 May 2026 00:01:39 +0000 Manifest this update: Wed 20 May 2026 00:01:39 +0000 Manifest next update: Sun 24 May 2026 00:01:39 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: bx5koMpTLYHiaoiio4iITidcYWVq22jyXSUmGtwd0zM=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 May 2026 00:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:f3:d4:2b:fe:5e:18:65:5a:35:42:c4:14:db:23:45:e6:1d:ae:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 20 00:01:39 2026 GMT Not After : May 24 00:01:39 2026 GMT Subject: serialNumber=1bceba245ebc211d331d8630494849e8a9e3b2e99324039d86deaa4b35566a77, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a8:3f:59:a8:fa:20:6c:82:75:89:c1:3f:08: a6:34:1b:63:a0:98:4b:00:5b:46:58:7d:14:ea:51: 2b:00:4d:2e:d7:52:b7:65:ed:31:fb:94:87:a1:5c: 21:c4:d0:e3:5e:68:9d:d1:e6:bc:aa:ab:90:a1:69: f0:29:0f:a1:1e:a7:43:91:07:bb:0b:78:49:d5:82: 16:ba:6b:8b:92:35:15:20:37:5d:a5:2b:70:78:c7: f2:72:32:7e:4b:f7:a0:69:59:b3:73:55:59:32:8e: c9:9a:a0:d4:70:07:b5:0f:07:45:7e:3a:20:a3:25: fb:59:99:94:21:7c:bd:29:a8:7d:ec:9d:0e:d6:8d: 74:2c:81:6a:b4:ce:7c:0a:a2:dd:5e:92:7c:94:04: d4:5b:38:b2:3a:3f:f3:38:aa:6e:ba:1e:6d:e2:24: 73:46:2a:05:fc:b3:8d:90:d9:e3:0e:81:a6:28:c0: 95:0a:82:0b:a4:37:e9:d4:b2:a3:66:0d:c6:18:a6: f1:df:fa:00:7b:bc:ac:07:16:79:1b:d5:29:de:ce: ad:47:05:50:5d:b0:5e:f1:6f:a3:5e:0f:93:07:f0: 8a:df:8a:57:52:f7:5b:ad:cc:f3:bd:ad:84:2b:4d: 50:93:01:c4:90:7c:8f:bc:0f:f5:a7:da:de:ad:31: d3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:2C:9C:3B:DA:A0:54:89:BD:DE:6D:B7:68:9F:09:79:29:AB:86:7D X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:41:9b:6f:05:c7:cf:92:62:ef:7c:48:a3:10:c3:eb:23:3d: 26:44:a1:fd:3d:a1:1a:c5:f6:78:12:17:e4:10:db:05:ed:b9: 55:17:a2:66:fb:b2:ed:db:4a:87:3b:ae:93:18:2e:eb:20:d4: 0e:57:64:4b:f9:fb:1c:ef:2a:cd:b7:d8:b3:62:a5:b9:0e:90: f4:be:b8:65:6a:a8:73:27:2a:f7:03:d5:73:f3:02:82:ee:4b: 0b:c0:38:4c:92:85:c1:03:af:9c:3b:30:58:ea:16:92:3b:86: 45:26:72:46:eb:e7:1d:e2:42:3b:f2:6c:b2:86:44:82:44:ad: 12:4f:92:a0:d0:32:46:b5:4c:4c:9f:77:c4:43:ea:40:31:40: 13:52:75:72:09:bc:fb:4c:39:40:56:b0:44:67:4d:0d:6e:3c: ef:b9:4d:4c:29:be:ae:79:79:2d:85:9d:9c:0f:43:ce:23:84: d3:d9:3e:7f:16:0b:ee:71:31:58:01:e1:18:66:51:a3:e9:0a: 16:5a:81:96:5d:b2:26:ca:01:44:12:23:ee:ce:a3:93:92:5e: b7:89:ae:89:15:4f:22:eb:3a:f2:6f:bf:dc:a2:f2:45:87:28: 24:88:5f:d7:5a:6d:16:2b:78:90:7a:ad:77:9b:4b:f5:df:e7: 87:fb:8f:77 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUH/PUK/5eGGVaNULEFNsjReYdrp4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUyMDAwMDEzOVoX DTI2MDUyNDAwMDEzOVowejFJMEcGA1UEBRNAMWJjZWJhMjQ1ZWJjMjExZDMzMWQ4 NjMwNDk0ODQ5ZThhOWUzYjJlOTkzMjQwMzlkODZkZWFhNGIzNTU2NmE3NzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoag/Waj6IGyCdYnBPwimNBtjoJhL AFtGWH0U6lErAE0u11K3Ze0x+5SHoVwhxNDjXmid0ea8qquQoWnwKQ+hHqdDkQe7 C3hJ1YIWumuLkjUVIDddpStweMfycjJ+S/egaVmzc1VZMo7JmqDUcAe1DwdFfjog oyX7WZmUIXy9Kah97J0O1o10LIFqtM58CqLdXpJ8lATUWziyOj/zOKpuuh5t4iRz RioF/LONkNnjDoGmKMCVCoILpDfp1LKjZg3GGKbx3/oAe7ysBxZ5G9Up3s6tRwVQ XbBe8W+jXg+TB/CK34pXUvdbrczzva2EK01QkwHEkHyPvA/1p9rerTHT+wIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFKksnDvaoFSJvd5tt2ifCXkpq4Z9MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGNBm28Fx8+SYu98SKMQw+sjPSZEof09 oRrF9ngSF+QQ2wXtuVUXomb7su3bSoc7rpMYLusg1A5XZEv5+xzvKs232LNipbkO kPS+uGVqqHMnKvcD1XPzAoLuSwvAOEyShcEDr5w7MFjqFpI7hkUmckbr5x3iQjvy bLKGRIJErRJPkqDQMka1TEyfd8RD6kAxQBNSdXIJvPtMOUBWsERnTQ1uPO+5TUwp vq55eS2FnZwPQ84jhNPZPn8WC+5xMVgB4RhmUaPpChZagZZdsibKAUQSI+7Oo5OS XreJrokVTyLrOvJvv9yi8kWHKCSIX9dabRYreJB6rXebS/Xf54f7j3c= -----END CERTIFICATE-----Generated at Wed May 20 12:07:52 2026 by rpki-client