$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: 6r6yrp3BRIVcukNytyIe26RJevYHzEDL2m/nL6Wo5Nk= Subject key identifier: AB:10:D6:0A:A1:A0:16:34:8B:86:E5:A1:7A:17:40:9F:17:AD:4F:E5 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 01EA2908947F49DBA503B9BC80689DC93B1616D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0617 Signing time: Sun 17 May 2026 00:00:56 +0000 Manifest this update: Sun 17 May 2026 00:00:56 +0000 Manifest next update: Thu 21 May 2026 00:00:56 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: 3WAlW/Kwjd/mX0Z7tf4pgxLU5/3z8YhYHBQifuXP5Gs=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 21 May 2026 00:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:ea:29:08:94:7f:49:db:a5:03:b9:bc:80:68:9d:c9:3b:16:16:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 17 00:00:56 2026 GMT Not After : May 21 00:00:56 2026 GMT Subject: serialNumber=4c5bc3224da4094b9538ca8c1ee1ca283986438dd96c8a8f69b2599d11576e29, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:59:c0:5f:87:5f:e6:5c:88:17:d5:58:54:2d: 77:51:87:eb:10:d5:ae:43:89:83:19:eb:07:48:d3: 3b:c8:4a:88:31:b9:06:ea:77:1a:ca:d4:3a:a3:a2: b9:5e:62:13:1e:f1:5c:10:ff:fa:0d:6e:e8:a0:7b: 39:e9:f1:c2:7c:15:70:49:cf:ea:f2:03:cb:a4:56: b0:3b:72:f9:ad:73:ec:0d:68:f5:d9:e1:3e:93:18: 83:52:01:81:25:54:9c:5d:13:b7:1f:22:db:05:21: 0d:41:3f:f1:50:55:19:1e:56:94:fb:58:82:ed:cc: 8f:40:71:88:a2:a6:8c:12:4d:82:77:f9:de:5e:70: d4:96:8a:a8:a8:86:18:d4:9f:78:f3:e2:9f:65:7d: 1c:22:50:d2:9a:76:80:44:e2:c1:2d:05:c9:22:c4: d4:c0:a0:0c:2e:86:dc:f9:51:82:0e:ac:61:62:8e: a6:4f:81:cf:d8:02:87:38:0e:c9:5b:11:5d:c6:da: 73:24:87:42:fc:84:72:ea:ad:8c:6a:af:f4:40:2d: 58:73:6e:ab:00:ca:6f:a8:24:36:e2:4a:94:48:f3: cf:38:51:55:07:7f:91:ba:42:c5:5b:f1:84:cf:98: a2:9c:44:38:82:19:ab:dd:7d:66:2b:3e:45:a4:93: 2e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:10:D6:0A:A1:A0:16:34:8B:86:E5:A1:7A:17:40:9F:17:AD:4F:E5 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:e9:14:61:ca:3c:76:0f:df:3c:ce:43:ff:b3:04:59:f8:2a: 7d:33:f6:01:97:3d:bd:5b:7f:9f:e6:9d:19:18:4a:83:45:79: 47:ad:62:1f:ea:97:23:09:ef:8a:05:f2:45:14:6e:cb:a9:52: 56:62:af:d2:21:02:9c:ee:ba:f3:7f:a6:59:cc:83:77:c4:94: 29:9f:a0:29:22:1d:6d:a7:80:67:8e:d9:1f:f4:d1:72:a6:bd: 52:87:2d:83:8e:fd:40:f9:45:a9:e2:de:e9:5b:16:0a:5e:47: 91:0f:69:3b:95:61:d5:63:e6:6b:96:19:63:2d:d7:f0:5c:23: 20:36:7f:2a:18:e7:b8:5a:ad:fd:ea:e9:b9:5f:da:a3:b0:d8: 41:eb:91:5d:8e:0a:32:db:cb:38:e2:9f:72:e1:00:fd:28:cb: 3d:b4:cc:1f:65:49:ad:b9:ef:72:d3:d5:3d:21:0b:01:63:e7: 08:4c:ea:5b:30:cc:7f:64:a9:97:11:ad:0f:e6:4e:32:80:8c: e9:62:d2:4c:37:13:31:c0:9a:84:9f:1c:fd:c6:08:dd:f3:81: 95:d2:a5:f1:5f:1c:90:11:61:8e:c7:2a:96:71:b3:a9:10:6d: 38:f8:9f:55:30:28:af:f3:3a:ec:d6:be:bc:34:89:5d:18:0c: 63:b0:2c:5e -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUAeopCJR/SdulA7m8gGidyTsWFtkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUxNzAwMDA1NloX DTI2MDUyMTAwMDA1NlowejFJMEcGA1UEBRNANGM1YmMzMjI0ZGE0MDk0Yjk1Mzhj YThjMWVlMWNhMjgzOTg2NDM4ZGQ5NmM4YThmNjliMjU5OWQxMTU3NmUyOTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkFnAX4df5lyIF9VYVC13UYfrENWu Q4mDGesHSNM7yEqIMbkG6ncaytQ6o6K5XmITHvFcEP/6DW7ooHs56fHCfBVwSc/q 8gPLpFawO3L5rXPsDWj12eE+kxiDUgGBJVScXRO3HyLbBSENQT/xUFUZHlaU+1iC 7cyPQHGIoqaMEk2Cd/neXnDUloqoqIYY1J948+KfZX0cIlDSmnaAROLBLQXJIsTU wKAMLobc+VGCDqxhYo6mT4HP2AKHOA7JWxFdxtpzJIdC/IRy6q2Maq/0QC1Yc26r AMpvqCQ24kqUSPPPOFFVB3+RukLFW/GEz5iinEQ4ghmr3X1mKz5FpJMuVQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFKsQ1gqhoBY0i4bloXoXQJ8XrU/lMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAFDpFGHKPHYP3zzOQ/+zBFn4Kn0z9gGX Pb1bf5/mnRkYSoNFeUetYh/qlyMJ74oF8kUUbsupUlZir9IhApzuuvN/plnMg3fE lCmfoCkiHW2ngGeO2R/00XKmvVKHLYOO/UD5Rani3ulbFgpeR5EPaTuVYdVj5muW GWMt1/BcIyA2fyoY57harf3q6blf2qOw2EHrkV2OCjLbyzjin3LhAP0oyz20zB9l Sa2573LT1T0hCwFj5whM6lswzH9kqZcRrQ/mTjKAjOli0kw3EzHAmoSfHP3GCN3z gZXSpfFfHJARYY7HKpZxs6kQbTj4n1UwKK/zOuzWvrw0iV0YDGOwLF4= -----END CERTIFICATE-----Generated at Sun May 17 11:41:35 2026 by rpki-client