$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: gIptkItYdYVhIwysg95Ru4j8+tHxzLJ8n0OBgAZ8Kkk= Subject key identifier: 45:54:EC:85:FB:83:68:6B:95:6B:E6:CB:AC:BE:57:EF:A1:31:13:58 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 24945BD0B54BAE78782B116035DEB85672145812 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0635 Signing time: Tue 16 Jun 2026 00:06:17 +0000 Manifest this update: Tue 16 Jun 2026 00:06:17 +0000 Manifest next update: Sat 20 Jun 2026 00:06:17 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: R+0Dw+/7Esi6aNY7sMnhm8QQSiqSdgfRXhlhJrS34K4=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 00:06:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:94:5b:d0:b5:4b:ae:78:78:2b:11:60:35:de:b8:56:72:14:58:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 16 00:06:17 2026 GMT Not After : Jun 20 00:06:17 2026 GMT Subject: serialNumber=bca739159e9dde21a693c639e862c17424b22798856be89b85aa37d6333e5518, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:92:09:ac:d2:c3:19:f9:4d:91:1d:78:20:9a: 4a:92:54:80:16:ef:75:e1:78:be:be:b6:b9:8f:dc: 72:f7:0d:4d:77:fc:83:75:a9:8a:9f:02:6c:3e:88: 7f:f0:92:3f:23:fa:3d:29:cd:a2:49:6c:91:f2:a1: c2:a1:5b:76:a4:2f:c3:2b:fc:67:d7:48:5e:7c:df: 71:c9:ba:74:35:90:a6:90:12:9d:4c:4c:3c:c0:03: 36:68:9d:d7:a2:d6:da:b4:ae:de:19:4c:f4:a5:aa: 1d:00:d4:0e:62:83:ab:4a:26:12:6d:3b:6c:66:82: 1c:fc:d0:b6:c9:09:4e:28:c5:7a:ed:a0:19:bc:4c: 65:6a:e5:58:ce:f3:a5:ce:49:fa:4b:99:18:3b:4e: 4f:e5:30:82:9a:ee:39:d8:8a:72:d1:a5:42:d9:b2: 77:43:4a:e0:cb:e0:8c:6a:8f:75:5c:0b:9f:1d:79: 60:d9:7e:07:5c:71:9f:3c:54:85:21:e6:82:66:66: fc:52:f2:f2:85:10:4f:6e:5d:3b:24:c5:03:27:f4: 48:5d:26:47:b0:ce:63:9b:af:f7:e7:6e:ba:44:f4: 8c:fe:72:a6:be:2f:ec:c8:e6:fc:9d:cb:0d:7f:7a: a1:42:ac:4d:74:71:05:0a:e6:1d:0f:2f:d8:bc:28: bf:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:54:EC:85:FB:83:68:6B:95:6B:E6:CB:AC:BE:57:EF:A1:31:13:58 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:63:60:a3:44:31:75:c9:09:26:fd:32:ce:34:77:83:37:b5: 8d:11:e5:f9:59:36:d2:33:be:0f:58:51:93:eb:ea:50:ec:58: ed:fd:e7:aa:ff:69:60:5a:aa:f7:ad:2b:51:98:c6:ca:b3:25: 06:e1:b5:db:95:22:21:b1:2c:5b:b0:2e:c5:db:86:37:80:9a: 94:cb:56:96:24:f2:5e:dd:7e:3b:b7:ed:4c:b3:0c:a5:b2:7c: 8a:5c:c5:dd:21:a9:0a:51:b0:62:ce:25:9f:33:fa:05:98:71: a4:23:5f:31:e7:66:bb:f6:0b:89:4c:15:72:15:0f:cf:88:6e: e9:d3:a5:cb:8c:45:42:2b:5b:a0:c5:98:03:07:ba:0f:ff:0e: 39:cf:73:84:ae:8e:f1:4d:1f:1c:8c:ff:34:60:1e:ac:62:47: 51:2a:49:51:f4:62:be:a1:bd:51:e4:ea:3b:df:5f:55:f3:fa: 41:b4:8b:6e:05:d9:27:af:39:76:64:4a:6e:88:77:ee:0f:b2: ed:55:5f:12:67:66:71:cd:07:7f:36:ca:6f:33:0a:fd:79:00: a6:d4:d5:ab:be:d2:3c:a0:de:b8:c6:1c:74:66:76:0a:b1:d4: 03:7b:55:47:ad:45:3f:9f:1d:41:8a:fa:cb:39:4d:4e:ea:dd: dc:41:89:ec -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUJJRb0LVLrnh4KxFgNd64VnIUWBIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYxNjAwMDYxN1oX DTI2MDYyMDAwMDYxN1owejFJMEcGA1UEBRNAYmNhNzM5MTU5ZTlkZGUyMWE2OTNj NjM5ZTg2MmMxNzQyNGIyMjc5ODg1NmJlODliODVhYTM3ZDYzMzNlNTUxODEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0pIJrNLDGflNkR14IJpKklSAFu91 4Xi+vra5j9xy9w1Nd/yDdamKnwJsPoh/8JI/I/o9Kc2iSWyR8qHCoVt2pC/DK/xn 10hefN9xybp0NZCmkBKdTEw8wAM2aJ3XotbatK7eGUz0paodANQOYoOrSiYSbTts ZoIc/NC2yQlOKMV67aAZvExlauVYzvOlzkn6S5kYO05P5TCCmu452Ipy0aVC2bJ3 Q0rgy+CMao91XAufHXlg2X4HXHGfPFSFIeaCZmb8UvLyhRBPbl07JMUDJ/RIXSZH sM5jm6/35266RPSM/nKmvi/syOb8ncsNf3qhQqxNdHEFCuYdDy/YvCi/yQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFEVU7IX7g2hrlWvmy6y+V++hMRNYMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBACNjYKNEMXXJCSb9Ms40d4M3tY0R5flZ NtIzvg9YUZPr6lDsWO3956r/aWBaqvetK1GYxsqzJQbhtduVIiGxLFuwLsXbhjeA mpTLVpYk8l7dfju37UyzDKWyfIpcxd0hqQpRsGLOJZ8z+gWYcaQjXzHnZrv2C4lM FXIVD8+IbunTpcuMRUIrW6DFmAMHug//DjnPc4SujvFNHxyM/zRgHqxiR1EqSVH0 Yr6hvVHk6jvfX1Xz+kG0i24F2SevOXZkSm6Id+4Psu1VXxJnZnHNB382ym8zCv15 AKbU1au+0jyg3rjGHHRmdgqx1AN7VUetRT+fHUGK+ss5TU7q3dxBiew= -----END CERTIFICATE-----Generated at Tue Jun 16 22:36:20 2026 by rpki-client