
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File: manifest.mft (raw, json)
Hash identifier: uvnSpd3F7ozrdrjc6BRqGNJnCzI8znEEgyL0LK/QFi8=
Subject key identifier: BF:86:B2:47:B6:32:0B:A1:3C:CF:CE:9F:79:62:2B:EA:5E:60:61:7E
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial: 74D3E522F280AE74ABC5DE9A37F33C9C4698C6AC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number: 064A
Signing time: Tue 07 Jul 2026 00:10:45 +0000
Manifest this update: Tue 07 Jul 2026 00:10:45 +0000
Manifest next update: Sat 11 Jul 2026 00:10:45 +0000
Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: Zwn3Zo/D8POeRTaK7/8KJ1QykrxacQGA8KbDBfvxbQs=)
2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=)
3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=)
4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=)
5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=)
6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=)
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 00:10:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:d3:e5:22:f2:80:ae:74:ab:c5:de:9a:37:f3:3c:9c:46:98:c6:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Validity
Not Before: Jul 7 00:10:45 2026 GMT
Not After : Jul 11 00:10:45 2026 GMT
Subject: serialNumber=874e1cb2197eaa507c4456d15f44e4068f0c67f8c4879962220d68090c85e10f, CN=bb9a9116-f615-462e-a680-5266b327e0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:82:53:b6:52:c3:8b:e6:b8:e2:d5:5e:d1:37:
59:3d:58:48:c1:69:96:ca:25:51:2b:2f:73:9e:fe:
67:01:5a:15:46:d4:a1:06:e1:e6:db:5c:48:1a:de:
41:ef:bf:e7:c6:65:3c:0f:b4:3c:30:1a:61:5e:76:
1b:e7:42:bc:24:7d:81:0a:c9:01:53:68:29:34:60:
35:1d:06:40:58:e0:b1:7c:a5:9d:3f:38:6d:7d:e8:
eb:f6:af:fd:05:2b:2c:7c:3c:c7:5f:1e:7c:dc:1a:
3f:35:49:be:95:0f:35:c9:51:5e:46:b3:17:5a:75:
1a:6f:95:80:ea:0f:bd:90:46:de:eb:b0:46:00:39:
30:44:b4:63:2b:28:f0:9f:4e:dc:31:8e:e8:c8:ca:
bd:f2:0c:be:95:67:8c:8f:b7:81:64:c9:0d:27:20:
56:dc:18:e8:e9:ce:29:61:9a:2a:0b:ec:b1:c0:8e:
b1:14:5c:5b:97:4f:ef:5e:17:6d:89:0d:53:cc:c7:
ec:af:4a:02:43:12:5a:d4:ea:f8:a8:24:4c:40:a2:
7e:1a:83:1e:9c:dc:82:46:33:1f:b3:50:32:91:54:
c7:8b:fe:67:a9:c7:30:00:f0:b2:c4:51:52:1e:b2:
81:94:0a:7f:96:bd:3d:45:26:b3:1a:15:e4:66:b7:
59:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:86:B2:47:B6:32:0B:A1:3C:CF:CE:9F:79:62:2B:EA:5E:60:61:7E
X509v3 Authority Key Identifier:
keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:e5:a5:ef:a7:f4:44:81:fd:f4:3d:53:67:32:e4:64:93:5e:
68:62:7a:00:a6:47:e8:5c:67:b9:53:7c:2d:f4:77:01:67:56:
a3:9b:b5:c8:0b:59:d1:78:84:24:2d:dc:66:ca:24:4b:3b:53:
5a:50:0e:db:11:0e:77:ea:a2:11:19:52:3f:a9:31:57:c7:fa:
95:08:71:19:b6:82:a3:07:3d:93:28:9a:ba:40:b3:37:11:3c:
e4:66:6b:c7:ed:5e:ec:57:bb:77:23:3a:da:85:fa:7c:04:a2:
25:cc:a6:90:af:e6:ae:37:5a:e7:28:15:9f:11:e4:4d:81:b9:
03:42:a3:9b:42:37:2d:8e:31:ed:91:9f:58:12:de:1b:5d:84:
97:c4:dd:ce:ae:f5:51:a8:bb:93:f2:02:ca:b8:66:62:2f:94:
34:3f:10:3d:33:e5:43:03:1c:fb:fa:b6:8d:a7:e4:c4:39:e6:
1f:61:4b:0b:69:2c:24:cd:b3:e5:a0:22:44:c0:37:79:5b:88:
b7:55:4d:4f:cb:50:6a:40:51:5b:d3:24:38:5e:cd:1e:80:fa:
52:7a:aa:bd:3a:73:9f:e1:7e:31:57:06:26:43:52:69:db:b9:
65:99:3b:dd:99:a6:b8:f1:f3:0a:c0:4a:db:a8:6e:5c:04:27:
6a:07:70:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 06:09:02 2026 by rpki-client