
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File: manifest.mft (raw, json)
Hash identifier: KSyy7LLKyD4uaeRroFotkIM7uBs2LMCwhehXQrx9rFM=
Subject key identifier: 57:64:21:5A:5C:75:C2:CB:36:61:6C:D9:87:AE:BF:28:7B:BB:BD:EF
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial: 544526FCB536F272300CEA3C3319B0B4286F7879
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number: 0645
Signing time: Thu 02 Jul 2026 00:09:28 +0000
Manifest this update: Thu 02 Jul 2026 00:09:28 +0000
Manifest next update: Mon 06 Jul 2026 00:09:28 +0000
Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: TJ5GtN/SpIIxkx3dCKZODHEBwcYkxmRvQiv9iVygglU=)
2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=)
3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=)
4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=)
5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=)
6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=)
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 06 Jul 2026 00:09:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:45:26:fc:b5:36:f2:72:30:0c:ea:3c:33:19:b0:b4:28:6f:78:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Validity
Not Before: Jul 2 00:09:28 2026 GMT
Not After : Jul 6 00:09:28 2026 GMT
Subject: serialNumber=8e7ea841dd1c565a2b946aa860cdf81c2824246e60cefb7001c24cdd112a1e43, CN=bb9a9116-f615-462e-a680-5266b327e0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a6:14:be:42:f8:47:e6:74:8c:85:1e:52:07:
af:b4:83:e2:43:b7:ab:38:fb:b0:7e:7e:46:71:70:
a0:7c:d4:81:0c:03:60:0a:0d:e8:77:7c:14:f9:5d:
fd:5b:a7:c1:a4:b0:0d:56:19:4b:df:c0:15:29:e7:
56:69:71:53:a9:3d:fd:fe:03:3f:1e:03:df:5a:25:
92:5b:09:75:03:91:1e:7f:eb:c9:09:6e:72:8a:43:
a3:d4:ba:67:54:47:42:ca:46:35:ab:53:81:59:85:
01:3d:bb:09:5e:04:9d:18:4a:07:9c:4e:fc:87:b6:
b8:6e:c7:63:1d:52:c9:f9:43:b9:bd:b5:b1:ad:f0:
48:5a:b6:66:b0:d5:e0:17:9e:1a:d0:9e:29:ab:f5:
53:70:09:5d:a3:5f:44:5d:6c:80:ad:7e:c7:08:15:
90:29:c6:e1:49:bf:7a:7b:38:d8:96:35:98:f4:77:
fa:73:e6:90:4a:f2:60:18:44:90:d5:63:2e:78:a6:
04:c5:80:41:1d:19:e4:fa:44:10:64:87:7a:dc:45:
fe:5a:29:ba:f5:e6:b3:94:9d:11:29:06:c6:6a:74:
fa:d7:d6:b0:6b:d1:e2:c6:96:63:f8:a4:8d:fa:e2:
dc:14:b6:59:1e:5e:17:4e:0e:e4:f3:34:ec:f6:07:
15:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:64:21:5A:5C:75:C2:CB:36:61:6C:D9:87:AE:BF:28:7B:BB:BD:EF
X509v3 Authority Key Identifier:
keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:fb:65:b5:15:c2:f3:c1:8f:b2:f8:cb:87:96:f3:45:fa:e6:
23:9a:dd:51:4c:ff:11:90:20:4b:dd:e5:99:68:fb:2c:3c:62:
8a:47:e4:a9:2e:36:23:62:74:1c:93:df:a6:55:31:83:d9:16:
95:77:b2:6c:72:9d:78:1e:a8:09:75:d9:b8:3f:12:d5:ae:2e:
cc:bd:35:1b:9a:4d:49:05:dc:36:f6:63:99:0d:48:57:68:4c:
1d:f0:5e:c4:75:51:55:92:92:b8:48:48:6f:85:cb:fa:aa:8d:
1a:8b:45:f5:e1:c4:64:b5:c6:96:02:68:19:03:4e:ba:30:4d:
d5:7b:c6:68:09:7e:a4:bd:eb:59:60:7c:d6:9d:7c:0f:33:58:
5b:c0:d3:5d:c8:71:bb:8e:be:be:db:1c:50:57:5b:ec:9b:d2:
76:a0:36:9d:a6:71:2b:bf:a1:ac:69:3b:38:99:b8:b2:e2:8b:
2a:9d:7a:fb:e3:c6:0a:70:1d:94:c2:15:65:f7:56:b3:d0:26:
f1:8e:7a:fc:6d:fd:05:cf:28:c6:e6:4f:2d:a3:c7:21:80:02:
e6:40:c4:af:4a:79:3c:38:a5:81:14:47:71:2e:dd:f7:40:04:
f0:f4:2f:b4:d4:a5:c4:e6:ff:6c:90:b6:f8:97:04:66:0d:6c:
9e:c7:72:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 2 11:58:09 2026 by rpki-client