$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: lza5r8WypSfRgrhvOif0mgkJb25/63YIQ6YP3mNyVhY= Subject key identifier: FF:B1:9B:61:3E:37:F8:4C:BD:11:A1:34:CB:96:EF:A8:0F:56:49:3B Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 6CF2D516855852935A0C2D674895CA9E8DD573AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0621 Signing time: Wed 27 May 2026 00:03:04 +0000 Manifest this update: Wed 27 May 2026 00:03:04 +0000 Manifest next update: Sun 31 May 2026 00:03:04 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: DXIWNUb64Q3a2EEzn1tnHpt7SW4T+lWdAdbMxmNJH68=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 May 2026 00:03:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:f2:d5:16:85:58:52:93:5a:0c:2d:67:48:95:ca:9e:8d:d5:73:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 27 00:03:04 2026 GMT Not After : May 31 00:03:04 2026 GMT Subject: serialNumber=c984a3de69b9d20ac0af80beea8ccaf0ef9d0dcad4ffbeec01fbea8731984a45, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:55:28:f3:40:4f:71:75:ba:f6:c0:bf:92:45: 7d:fc:bb:ed:4a:de:21:16:b2:05:4d:e5:68:bf:14: 1d:9b:21:9a:4d:19:31:0b:4b:e0:77:a9:a6:7a:1e: 48:88:4b:ee:df:04:9b:99:95:9a:1d:ff:c3:36:af: 66:e7:6e:8d:f0:4c:fc:19:40:ea:fa:36:fd:69:af: 3d:97:bf:a1:65:a7:27:dc:bd:10:17:28:f0:b0:aa: 51:fd:f4:e0:f3:16:73:ed:33:d8:24:b3:e0:6e:b4: 20:3b:62:8b:5d:65:97:8c:1d:7a:fa:d2:b3:72:2e: b1:fd:2e:0a:44:9c:67:6c:e6:b8:f5:de:ac:e2:40: aa:44:0b:1c:ec:dc:ee:11:56:a7:d0:c1:40:ce:42: ac:22:c0:68:60:02:1d:31:60:12:e2:a4:d2:c1:b7: 2c:0a:75:56:d5:29:dd:e1:73:f6:b8:78:92:de:47: fc:fa:cd:db:e8:a7:63:5a:98:1c:69:5a:16:2c:87: 4e:28:20:56:c6:bd:dc:8a:03:dd:dc:52:d4:e9:5e: 67:77:0a:96:2a:22:8a:4f:81:31:cb:32:b0:31:e9: 07:18:6b:ec:25:ed:5e:b6:35:86:4a:2b:48:06:ea: f8:e1:5b:2d:ab:a9:6c:cf:bf:67:07:2a:b4:ec:3e: d5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:B1:9B:61:3E:37:F8:4C:BD:11:A1:34:CB:96:EF:A8:0F:56:49:3B X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:ab:b0:8b:07:f8:77:8c:39:87:e3:96:5d:2c:c4:68:f5:90: 36:5b:15:39:03:7a:a2:93:cf:09:20:be:d0:8a:95:72:fb:53: 8a:6d:0e:52:69:38:cb:af:ba:fc:3a:47:f7:eb:68:26:81:ae: 41:db:45:29:22:75:25:4c:2e:c7:6f:65:92:76:c2:8e:2f:c9: be:9a:d0:df:cc:88:57:db:4c:a9:39:1b:87:9e:9f:16:89:09: 13:e4:15:85:77:8d:56:86:29:d6:04:70:17:b5:1b:66:72:c7: 35:34:17:6e:48:65:51:d1:8b:3f:33:73:89:18:f7:7e:22:f2: 41:e7:a1:a7:98:42:20:3e:03:58:cc:c6:90:33:40:bd:29:fa: 3a:b8:11:0b:25:5c:a7:7a:c6:01:8e:1b:65:bb:ab:1e:4e:42: 24:e2:68:92:2e:3e:82:19:d2:d0:93:2e:7c:13:11:8d:b4:40: d9:a5:cc:aa:f9:77:92:cd:47:15:c7:ab:a1:f7:20:1f:20:f1: 87:d1:bc:79:d0:1b:a3:6d:c6:0a:94:4e:0a:78:9f:91:7f:ee: 30:ee:a3:30:82:36:71:52:2d:29:9c:f1:44:3b:7d:8b:67:44: 53:15:fe:5c:5b:ec:b4:7e:15:dc:b8:38:d8:6e:7b:01:0e:bc: 65:e8:c2:e4 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUbPLVFoVYUpNaDC1nSJXKno3Vc68wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUyNzAwMDMwNFoX DTI2MDUzMTAwMDMwNFowejFJMEcGA1UEBRNAYzk4NGEzZGU2OWI5ZDIwYWMwYWY4 MGJlZWE4Y2NhZjBlZjlkMGRjYWQ0ZmZiZWVjMDFmYmVhODczMTk4NGE0NTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1Uo80BPcXW69sC/kkV9/LvtSt4h FrIFTeVovxQdmyGaTRkxC0vgd6mmeh5IiEvu3wSbmZWaHf/DNq9m526N8Ez8GUDq +jb9aa89l7+hZacn3L0QFyjwsKpR/fTg8xZz7TPYJLPgbrQgO2KLXWWXjB16+tKz ci6x/S4KRJxnbOa49d6s4kCqRAsc7NzuEVan0MFAzkKsIsBoYAIdMWAS4qTSwbcs CnVW1Snd4XP2uHiS3kf8+s3b6KdjWpgcaVoWLIdOKCBWxr3cigPd3FLU6V5ndwqW KiKKT4ExyzKwMekHGGvsJe1etjWGSitIBur44Vstq6lsz79nByq07D7VlQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFP+xm2E+N/hMvRGhNMuW76gPVkk7MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAESrsIsH+HeMOYfjll0sxGj1kDZbFTkD eqKTzwkgvtCKlXL7U4ptDlJpOMuvuvw6R/fraCaBrkHbRSkidSVMLsdvZZJ2wo4v yb6a0N/MiFfbTKk5G4eenxaJCRPkFYV3jVaGKdYEcBe1G2ZyxzU0F25IZVHRiz8z c4kY934i8kHnoaeYQiA+A1jMxpAzQL0p+jq4EQslXKd6xgGOG2W7qx5OQiTiaJIu PoIZ0tCTLnwTEY20QNmlzKr5d5LNRxXHq6H3IB8g8YfRvHnQG6NtxgqUTgp4n5F/ 7jDuozCCNnFSLSmc8UQ7fYtnRFMV/lxb7LR+Fdy4ONhuewEOvGXowuQ= -----END CERTIFICATE-----Generated at Wed May 27 11:09:17 2026 by rpki-client