$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: SmJ46IZbtgJbvW/sJoeOLJGzVDDe9Jcq5aFCFs8dmD4= Subject key identifier: 90:9F:45:BC:3B:44:6E:09:41:28:B5:6E:E3:86:D6:F6:0D:70:F6:59 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 0871E766B4C5E54D2AA1E3DA6C910DF709D8FAAF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0614 Signing time: Thu 14 May 2026 00:03:56 +0000 Manifest this update: Thu 14 May 2026 00:03:56 +0000 Manifest next update: Mon 18 May 2026 00:03:56 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: EIvAKQxoZbJSuE6uFcDeVAN6AVabC3YkWUftK2Z2Hq8=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 00:03:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:71:e7:66:b4:c5:e5:4d:2a:a1:e3:da:6c:91:0d:f7:09:d8:fa:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 14 00:03:56 2026 GMT Not After : May 18 00:03:56 2026 GMT Subject: serialNumber=f4fc0489db0e19801a9a749b004fef21501703b02fc914e1bb68004531983923, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c8:04:a6:b8:bc:c1:ee:c9:34:95:af:d2:08: 6a:96:95:6c:36:9b:e3:9a:c4:d9:ff:33:21:3f:8a: 9d:34:bd:72:d1:23:66:74:68:f2:8f:68:36:34:73: ae:e0:4a:8d:a2:e6:52:ec:fb:1e:42:07:83:e0:83: be:09:cc:23:48:c9:92:04:fd:a0:60:7a:a4:e4:60: c2:4f:8b:ee:b7:da:67:8f:62:80:2e:02:c7:9e:1c: 8f:f0:7a:12:09:37:4f:02:f3:82:3c:7c:b9:9f:8a: 39:00:7c:70:31:fd:17:ad:d2:33:18:21:df:25:e9: a1:aa:4a:4e:e3:fd:0b:69:13:2a:77:e1:1b:37:14: c0:65:29:25:ac:02:f1:f0:7f:51:58:b0:c2:13:fb: 19:c2:25:2a:8d:a9:34:7d:81:aa:1f:20:aa:9e:31: 41:b6:11:75:77:b8:5c:25:6b:93:23:ed:96:ff:0d: da:23:56:49:ef:29:84:93:86:87:51:22:86:5a:3b: 30:f4:d0:13:f9:33:7f:32:e3:0d:16:b6:de:f7:06: 82:a9:7d:73:cc:eb:fc:37:9c:89:56:29:83:b1:46: e0:39:1c:b3:6e:da:a7:c9:a2:2d:79:04:8b:f5:b3: 11:38:96:4d:5b:ac:db:16:74:05:f2:a3:0c:61:90: f1:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:9F:45:BC:3B:44:6E:09:41:28:B5:6E:E3:86:D6:F6:0D:70:F6:59 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:39:11:64:e4:5f:b9:ba:61:40:61:7d:ab:a7:b5:b2:25:a1: 1a:83:fd:37:c1:f9:df:a3:89:00:94:ab:d9:f2:4e:0f:49:26: 9b:1f:bc:d1:e9:fe:33:e6:d8:94:57:73:14:25:03:9f:ac:41: 3e:eb:99:66:00:5c:51:8c:c7:73:c5:d9:f6:69:d1:09:3b:09: ec:91:e4:b0:0f:21:42:16:b4:b9:5c:f3:28:b6:30:b2:b0:57: 49:c4:ad:da:8f:8f:8d:d7:c8:e5:64:cb:13:96:98:04:a0:68: c6:cf:ec:ba:0d:bd:4b:77:f1:39:01:7b:de:38:83:cc:9f:0c: 95:b7:bd:0b:15:7e:bc:b9:42:49:bf:83:e3:4d:37:20:82:cb: bc:ca:94:ba:a9:bc:aa:2b:91:16:d3:cb:f6:c2:fc:d0:4f:e4: 9c:65:12:fb:8b:47:32:68:d5:3c:6c:2a:d5:01:41:86:a6:c4: 6d:a5:2b:54:fd:f1:92:19:98:fe:f8:36:3a:94:0f:99:19:52: bb:db:9a:1e:d8:6e:6f:49:29:ad:6b:a4:b3:79:d1:77:11:0d: c2:c1:80:fe:70:35:3f:88:fa:0f:41:a2:a0:a8:48:1a:1c:dc: 55:8b:19:af:c3:89:ac:12:d0:f6:de:fa:81:35:89:c6:5d:dd: ad:b9:74:90 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUCHHnZrTF5U0qoePabJEN9wnY+q8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUxNDAwMDM1NloX DTI2MDUxODAwMDM1NlowejFJMEcGA1UEBRNAZjRmYzA0ODlkYjBlMTk4MDFhOWE3 NDliMDA0ZmVmMjE1MDE3MDNiMDJmYzkxNGUxYmI2ODAwNDUzMTk4MzkyMzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMgEpri8we7JNJWv0ghqlpVsNpvj msTZ/zMhP4qdNL1y0SNmdGjyj2g2NHOu4EqNouZS7PseQgeD4IO+CcwjSMmSBP2g YHqk5GDCT4vut9pnj2KALgLHnhyP8HoSCTdPAvOCPHy5n4o5AHxwMf0XrdIzGCHf JemhqkpO4/0LaRMqd+EbNxTAZSklrALx8H9RWLDCE/sZwiUqjak0fYGqHyCqnjFB thF1d7hcJWuTI+2W/w3aI1ZJ7ymEk4aHUSKGWjsw9NAT+TN/MuMNFrbe9waCqX1z zOv8N5yJVimDsUbgORyzbtqnyaIteQSL9bMROJZNW6zbFnQF8qMMYZDxTQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFJCfRbw7RG4JQSi1buOG1vYNcPZZMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBADE5EWTkX7m6YUBhfauntbIloRqD/TfB +d+jiQCUq9nyTg9JJpsfvNHp/jPm2JRXcxQlA5+sQT7rmWYAXFGMx3PF2fZp0Qk7 CeyR5LAPIUIWtLlc8yi2MLKwV0nErdqPj43XyOVkyxOWmASgaMbP7LoNvUt38TkB e944g8yfDJW3vQsVfry5Qkm/g+NNNyCCy7zKlLqpvKorkRbTy/bC/NBP5JxlEvuL RzJo1TxsKtUBQYamxG2lK1T98ZIZmP74NjqUD5kZUrvbmh7Ybm9JKa1rpLN50XcR DcLBgP5wNT+I+g9BoqCoSBoc3FWLGa/DiawS0Pbe+oE1icZd3a25dJA= -----END CERTIFICATE-----Generated at Thu May 14 07:47:27 2026 by rpki-client