$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: TBIrFNnHdjtx2s52Yx5uxVpEEwDqXGA7WmS9nXUGeqM= Subject key identifier: 93:D8:C1:3C:DA:D2:04:1A:0A:10:5D:81:51:2A:7A:63:19:A5:7D:EC Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 5D8717434E1644350212FECFA95C70F5F5CFDFFA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 061E Signing time: Sun 24 May 2026 00:02:28 +0000 Manifest this update: Sun 24 May 2026 00:02:28 +0000 Manifest next update: Thu 28 May 2026 00:02:28 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: /G/EcxWfE5I3KwNnhsVFEqjUXz0lRMN7wmAjn9E0VyQ=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 00:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:87:17:43:4e:16:44:35:02:12:fe:cf:a9:5c:70:f5:f5:cf:df:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 24 00:02:28 2026 GMT Not After : May 28 00:02:28 2026 GMT Subject: serialNumber=03bf537535928208d1f545a0ae210e286bbe644725c3d7452ec004d1771e8082, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:95:20:ba:9f:06:28:77:e4:74:19:63:4c:96: 35:0f:36:c0:bb:d0:f3:33:39:d2:7e:d4:e0:7c:e9: 8c:42:96:49:f5:61:f0:c8:8d:03:68:03:98:ae:2f: 4a:f1:73:e1:15:1b:f4:f5:26:a9:31:86:84:40:4c: d0:e0:ca:f7:d3:a7:bb:25:d2:be:e3:7a:4f:3f:3b: 62:d4:88:74:74:b0:6f:2c:46:3e:24:b5:9a:b0:ac: 95:c8:8f:06:e5:8f:79:3b:ef:cc:ca:8e:67:97:98: ca:65:83:a9:10:a4:d8:90:6c:ca:ad:37:e1:7b:09: 9a:e4:4d:99:e0:21:2b:e7:56:50:4d:7a:cc:b1:62: 91:b7:27:12:1a:bb:ae:8c:57:87:2a:49:5f:28:8a: fa:29:27:d9:84:98:88:79:69:36:e9:3a:13:6f:a0: 9b:4e:e4:21:92:0a:3b:75:91:e1:46:f9:57:05:ba: d3:19:95:f4:3e:d3:69:da:34:ec:29:fc:65:b9:8a: 71:f0:cb:17:da:6a:03:85:b5:c5:70:8f:8a:72:4a: a4:38:44:e9:a7:f9:be:65:b2:e8:60:ec:e2:12:5e: d2:ed:d1:2f:be:ac:bc:37:d8:27:6d:b5:8f:90:b2: 00:f5:1b:03:40:27:70:72:e5:ac:e5:73:17:0d:cc: 80:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:D8:C1:3C:DA:D2:04:1A:0A:10:5D:81:51:2A:7A:63:19:A5:7D:EC X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:23:5b:1c:e7:25:88:9b:a6:f6:50:ff:aa:6c:7f:30:85:4a: 31:6d:7a:9c:66:a8:0c:f5:7d:5c:a3:a2:3e:a1:07:ca:37:d3: 62:84:f3:51:ea:a9:20:13:34:44:e9:19:72:c6:e7:ac:31:f0: f0:14:39:21:10:ff:0f:1c:42:25:02:29:e6:66:c6:9e:99:7a: 92:f2:72:56:5d:31:a6:a7:a1:1b:b4:85:c3:93:cb:37:95:13: e3:db:ed:a1:d7:94:34:8d:8d:59:7f:50:f7:c2:a0:90:17:f1: d0:89:b7:13:1e:ce:61:90:c5:02:41:fa:f4:47:68:ef:75:c1: 8f:3b:25:ad:11:ce:7b:91:9d:5e:79:58:16:46:69:f9:c5:f9: a3:6c:96:96:33:5d:fa:f3:a4:7d:b0:f7:f2:ef:56:a0:37:29: b3:74:d7:f7:bd:29:fb:8b:75:05:74:b8:b4:e1:21:71:3a:76: 45:f4:51:81:f0:d4:66:9e:b6:9b:9d:45:c7:de:11:ce:41:47: 8e:99:5b:a8:f7:61:aa:0e:aa:16:1f:62:84:a0:eb:29:90:0b: 2e:87:98:77:5e:e0:a2:a4:d2:74:37:12:d3:5f:32:86:cc:1b: 8d:0c:df:9f:66:94:64:a8:19:69:b9:4a:3f:f3:d4:f4:8b:43: c5:ba:4a:3c -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUXYcXQ04WRDUCEv7PqVxw9fXP3/owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUyNDAwMDIyOFoX DTI2MDUyODAwMDIyOFowejFJMEcGA1UEBRNAMDNiZjUzNzUzNTkyODIwOGQxZjU0 NWEwYWUyMTBlMjg2YmJlNjQ0NzI1YzNkNzQ1MmVjMDA0ZDE3NzFlODA4MjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzJUgup8GKHfkdBljTJY1DzbAu9Dz MznSftTgfOmMQpZJ9WHwyI0DaAOYri9K8XPhFRv09SapMYaEQEzQ4Mr306e7JdK+ 43pPPzti1Ih0dLBvLEY+JLWasKyVyI8G5Y95O+/Myo5nl5jKZYOpEKTYkGzKrTfh ewma5E2Z4CEr51ZQTXrMsWKRtycSGruujFeHKklfKIr6KSfZhJiIeWk26ToTb6Cb TuQhkgo7dZHhRvlXBbrTGZX0PtNp2jTsKfxluYpx8MsX2moDhbXFcI+KckqkOETp p/m+ZbLoYOziEl7S7dEvvqy8N9gnbbWPkLIA9RsDQCdwcuWs5XMXDcyAGwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFJPYwTza0gQaChBdgVEqemMZpX3sMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGIjWxznJYibpvZQ/6psfzCFSjFtepxm qAz1fVyjoj6hB8o302KE81HqqSATNETpGXLG56wx8PAUOSEQ/w8cQiUCKeZmxp6Z epLyclZdMaanoRu0hcOTyzeVE+Pb7aHXlDSNjVl/UPfCoJAX8dCJtxMezmGQxQJB +vRHaO91wY87Ja0RznuRnV55WBZGafnF+aNslpYzXfrzpH2w9/LvVqA3KbN01/e9 KfuLdQV0uLThIXE6dkX0UYHw1GaetpudRcfeEc5BR46ZW6j3YaoOqhYfYoSg6ymQ Cy6HmHde4KKk0nQ3EtNfMobMG40M359mlGSoGWm5Sj/z1PSLQ8W6Sjw= -----END CERTIFICATE-----Generated at Sun May 24 07:01:22 2026 by rpki-client