
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File: manifest.mft (raw, json)
Hash identifier: F9N7wtsCAbK4OhJ8WNiWq9Z5hpTK295S9+zzBjDLo7o=
Subject key identifier: 26:BB:E5:C0:CA:30:3E:0F:2F:14:BC:41:20:5F:34:E7:EF:2D:74:5C
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial: 4ACB005E229CF2E1209909E560DBA2060C377711
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number: 064B
Signing time: Wed 08 Jul 2026 00:10:57 +0000
Manifest this update: Wed 08 Jul 2026 00:10:57 +0000
Manifest next update: Sun 12 Jul 2026 00:10:57 +0000
Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: VpJ8OdOEZzcqb0NjrgYvSczR8lDEuyvqOW9k4RM84fw=)
2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=)
3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=)
4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=)
5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=)
6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=)
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 00:10:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:cb:00:5e:22:9c:f2:e1:20:99:09:e5:60:db:a2:06:0c:37:77:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Validity
Not Before: Jul 8 00:10:57 2026 GMT
Not After : Jul 12 00:10:57 2026 GMT
Subject: serialNumber=22777768ba93ba329e9519911977435765ed074d1e8d3febcd055169b7451ca4, CN=bb9a9116-f615-462e-a680-5266b327e0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:50:7a:f5:90:ed:12:b2:8d:c2:e5:d6:51:66:
2c:97:46:6b:2f:67:76:59:86:49:f2:fc:43:bb:14:
9a:b6:bf:7a:3b:bf:f2:95:5c:d7:73:fd:b1:24:a3:
5c:79:99:42:fc:46:6a:5d:66:1b:ae:95:a2:bc:d3:
a8:ee:fa:c9:55:a9:15:40:d3:f6:4c:be:d7:5f:19:
80:f0:27:e8:d4:c3:17:81:02:eb:d5:60:e3:56:6e:
49:45:73:88:56:1d:61:f4:3d:52:c7:92:48:5e:25:
e2:b4:8c:39:2f:79:1b:43:36:ca:67:c1:43:95:25:
c6:31:17:9c:72:e0:4f:fa:29:8b:ff:36:32:1f:f6:
b2:ff:42:28:43:a1:b7:cc:1e:5b:27:98:0c:67:6a:
6a:78:da:5f:f9:ea:46:fd:a2:92:58:a0:db:a2:c6:
c1:4f:87:6a:a7:6e:1a:8e:63:c7:a3:25:6c:a1:ca:
78:b0:74:20:c8:dd:5a:90:e7:64:85:90:9f:d3:72:
ab:61:44:de:b2:9b:3e:26:22:a4:d8:e7:1e:2c:60:
13:96:77:31:15:3c:42:46:80:ab:28:d9:7f:0e:2f:
16:ab:c0:b7:f1:34:b6:42:51:cf:b3:d7:e0:c2:a2:
4d:17:61:ed:de:cc:a5:a8:42:dd:43:a4:a7:97:d3:
1d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:BB:E5:C0:CA:30:3E:0F:2F:14:BC:41:20:5F:34:E7:EF:2D:74:5C
X509v3 Authority Key Identifier:
keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:dc:f9:e2:d2:e3:26:a7:67:3b:e9:f0:75:06:7c:3f:a9:9d:
09:a7:70:1f:79:92:de:51:dc:d2:37:f0:9c:80:0e:17:08:6b:
dd:f3:fb:20:07:8e:86:9e:19:49:aa:e2:de:36:5d:e9:d5:7e:
49:53:ce:ad:f9:0c:07:d3:35:61:d6:57:80:d4:08:cf:f7:ab:
5e:c1:7d:f9:34:3d:f4:af:f3:95:ce:49:b5:97:e3:c8:f3:ef:
37:c8:fa:b3:0c:e8:06:6d:50:68:ee:6d:10:c1:06:a1:ef:3b:
cb:48:90:f1:29:52:68:c3:38:53:58:45:4d:43:75:96:61:63:
3b:5f:76:36:3e:8e:62:69:a6:68:1a:71:9f:0c:47:a4:56:6f:
dd:7d:c1:e3:33:2c:1f:2a:17:d7:36:aa:3e:c5:99:f2:0f:1b:
75:1f:b5:82:f4:89:08:60:a7:b4:c0:5c:49:39:eb:63:2d:c5:
0d:e4:46:dc:cd:43:98:63:20:f5:f8:68:47:5d:ed:c5:bf:f8:
56:3e:bd:bf:9f:8e:b3:63:a2:5d:ed:1b:a7:df:dc:d9:ac:88:
6a:14:68:77:a7:49:ca:c1:84:5e:dd:67:a4:c7:db:8c:bb:5d:
88:dd:00:f0:b8:5d:f7:0b:8f:1d:4a:0f:b9:b4:42:0e:05:22:
2c:a4:a5:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 03:11:29 2026 by rpki-client