$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: ptc0aXp9CLTSS2hc7/+nVnYYgSgrTaslcj3O4qP+oRE= Subject key identifier: 52:1A:0A:2A:7C:EE:5E:0D:62:29:EC:24:61:D6:2C:79:F8:7B:98:5F Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 12D97359F87B6CE91F0EA1C4A5574A9B386AF9B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0526 Signing time: Fri 19 Sep 2025 00:03:56 +0000 Manifest this update: Fri 19 Sep 2025 00:03:56 +0000 Manifest next update: Tue 23 Sep 2025 00:03:56 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: r/Yr/X8JY2h1hLd8NXJuGZimU6vLkfLZQU6hDIzhhoE=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: XZxonlAk17wWA8ZRKT8RJRMt1gRMVjFfJWAFEBeC3uM=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: VTxK64xho+3DBIeRo2RiiUuCgNDrOq/Fkct2BeHtPuA=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: MnnFNur5nyy7IO3KMXOxN4PNVmc+TGncHg14pnzPlQg=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: jTUwf57l9eDkjfjOnpsNHg0cVc9/lQv2mRS2hQSXzXo=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: OCkKEK3EZBhaX3B9SOMldlU6Xps/Y2Femd0/fjGT8BU=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 00:03:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:d9:73:59:f8:7b:6c:e9:1f:0e:a1:c4:a5:57:4a:9b:38:6a:f9:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Sep 19 00:03:56 2025 GMT Not After : Sep 23 00:03:56 2025 GMT Subject: serialNumber=81551a95cdaeb5e3f984c63ff26adc206d8a13c1b918fd0ace82177404bd706b, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:64:9c:c3:50:62:de:81:23:c8:7b:dc:45:57: a4:d2:0b:c2:32:bf:84:b9:ab:3d:92:c3:08:60:03: b8:58:f5:2b:40:61:e5:75:23:c5:bb:21:c7:c7:bc: 9b:35:e0:8f:13:06:b1:a3:c0:1a:a4:02:55:20:b2: 38:74:5d:09:89:09:2f:51:da:b0:48:b4:78:5a:3a: bc:85:0b:8c:b7:6b:00:a1:78:b9:53:38:7d:4c:9e: 72:a5:7f:54:37:cb:12:13:1b:95:38:ed:91:f9:bc: 44:d4:a3:cf:89:fb:02:b6:aa:2e:ba:7b:03:05:12: aa:33:c1:48:91:f6:59:29:f8:60:d4:13:51:62:31: 37:e2:c5:46:6f:09:73:0b:c8:f0:e9:6a:ef:78:fa: a2:51:ee:84:bb:49:14:c2:59:ec:0a:f5:93:c6:be: 0c:22:6e:db:64:c8:c6:94:f3:71:c6:57:f4:fb:0a: 72:0b:d0:2f:ed:dc:79:f6:c5:c7:da:5c:3a:cb:2b: 16:e5:e2:e1:91:41:bd:dd:7c:b5:32:fe:53:96:06: 61:ee:7d:42:0d:98:fa:5e:69:b9:31:4d:0c:97:0f: 34:58:51:1b:7a:8c:f6:db:e8:28:e4:42:a1:02:33: b0:d1:5b:d2:fe:ec:b7:8a:19:14:f5:02:2a:c7:52: 8b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:1A:0A:2A:7C:EE:5E:0D:62:29:EC:24:61:D6:2C:79:F8:7B:98:5F X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:15:97:42:bb:da:05:30:4d:2f:dc:4e:78:04:6c:ed:c5:d9: 68:75:b4:32:03:19:e1:09:4f:8a:b4:44:1c:f3:df:fd:73:d4: a6:dc:9d:b8:1c:50:fe:b4:dc:c5:dd:85:03:49:09:f6:cb:67: bc:66:ea:e1:a5:66:bc:18:66:1f:70:43:6e:2d:c5:85:69:50: f3:48:d8:6e:ca:ec:a9:54:45:d4:31:ac:bb:6f:e1:7e:56:3f: ca:67:d1:59:8c:2b:46:ee:62:2b:bc:1e:e6:07:15:66:77:a8: b8:06:8e:13:eb:02:3e:e2:46:4f:1c:c4:7b:ef:25:ae:ca:8e: 1b:b6:63:8f:0b:2a:f1:b3:31:7c:79:a6:28:30:42:9c:e1:0a: f8:e6:2d:81:13:2d:45:b4:15:81:a5:f9:09:30:09:f0:49:84: 7e:19:e6:39:97:f7:72:f8:22:56:a6:c1:1f:a0:61:79:cb:d0: d8:c2:9b:2f:90:ee:d9:8e:3e:e5:eb:76:f8:9f:0b:04:86:ee: 89:13:9b:b0:4d:ae:d6:36:e1:ea:e1:d8:0c:53:d5:6c:2f:c1: 7f:58:ec:85:f4:8e:b0:76:03:b7:ce:07:1b:a2:b4:ab:6d:b0: db:26:a2:ec:78:26:5d:15:ad:53:75:6d:07:4f:22:7b:0c:48: 8b:35:99:4d -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUEtlzWfh7bOkfDqHEpVdKmzhq+bMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MDkxOTAwMDM1NloX DTI1MDkyMzAwMDM1NlowejFJMEcGA1UEBRNAODE1NTFhOTVjZGFlYjVlM2Y5ODRj NjNmZjI2YWRjMjA2ZDhhMTNjMWI5MThmZDBhY2U4MjE3NzQwNGJkNzA2YjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0mScw1Bi3oEjyHvcRVek0gvCMr+E uas9ksMIYAO4WPUrQGHldSPFuyHHx7ybNeCPEwaxo8AapAJVILI4dF0JiQkvUdqw SLR4Wjq8hQuMt2sAoXi5Uzh9TJ5ypX9UN8sSExuVOO2R+bxE1KPPifsCtqouunsD BRKqM8FIkfZZKfhg1BNRYjE34sVGbwlzC8jw6WrvePqiUe6Eu0kUwlnsCvWTxr4M Im7bZMjGlPNxxlf0+wpyC9Av7dx59sXH2lw6yysW5eLhkUG93Xy1Mv5TlgZh7n1C DZj6Xmm5MU0Mlw80WFEbeoz22+go5EKhAjOw0VvS/uy3ihkU9QIqx1KLQQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFFIaCip87l4NYinsJGHWLHn4e5hfMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBABAVl0K72gUwTS/cTngEbO3F2Wh1tDID GeEJT4q0RBzz3/1z1KbcnbgcUP603MXdhQNJCfbLZ7xm6uGlZrwYZh9wQ24txYVp UPNI2G7K7KlURdQxrLtv4X5WP8pn0VmMK0buYiu8HuYHFWZ3qLgGjhPrAj7iRk8c xHvvJa7Kjhu2Y48LKvGzMXx5pigwQpzhCvjmLYETLUW0FYGl+QkwCfBJhH4Z5jmX 93L4IlamwR+gYXnL0NjCmy+Q7tmOPuXrdvifCwSG7okTm7BNrtY24erh2AxT1Wwv wX9Y7IX0jrB2A7fOBxuitKttsNsmoux4Jl0VrVN1bQdPInsMSIs1mU0= -----END CERTIFICATE-----Generated at Fri Sep 19 10:12:04 2025 by rpki-client