$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: 5e3z/WGmVmgSpmKa040i6JhRmIvHZZzTICYNGLd0wEU= Subject key identifier: 9D:C0:5D:01:B4:1C:92:42:F5:CF:55:3D:F0:ED:57:F4:BB:CF:74:23 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 5EF3A399D794CCB7892438F33DF2B92A202C7F14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 063A Signing time: Sun 21 Jun 2026 00:07:15 +0000 Manifest this update: Sun 21 Jun 2026 00:07:15 +0000 Manifest next update: Thu 25 Jun 2026 00:07:15 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: k1KJxBnG4BP/CRSRDX6rtUn50vLfMI1/UnBKisk5IdQ=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Jun 2026 00:07:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:f3:a3:99:d7:94:cc:b7:89:24:38:f3:3d:f2:b9:2a:20:2c:7f:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 21 00:07:15 2026 GMT Not After : Jun 25 00:07:15 2026 GMT Subject: serialNumber=26182228561977d788a347012595828d0d36dc900756482b5e84e9312792ca61, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a0:33:5c:6a:c9:0e:76:b2:7a:b3:fd:4c:08: 76:d5:b5:1b:21:0c:d9:aa:dc:6c:b4:00:9c:38:a3: e4:44:e0:e1:61:3d:d0:05:6d:18:f1:0d:01:48:e5: 55:8a:34:69:06:a8:40:1c:35:4b:38:23:9d:ec:cb: 39:f6:47:81:eb:40:10:fd:dc:c6:68:2c:a6:f2:55: e6:d0:8b:28:3d:c2:2b:8d:00:b8:f0:ba:39:77:47: 07:e8:41:f8:08:82:85:ef:02:61:dc:c4:4d:41:33: 85:b1:0a:6c:cd:2e:70:6a:0a:d9:bf:51:52:62:73: c2:21:40:2c:3b:3f:e6:a7:af:08:43:55:b6:d2:20: 51:d1:5c:08:50:eb:04:52:66:15:a9:60:fd:6c:5a: 09:ce:23:33:f0:d4:6b:83:17:61:c4:be:12:21:4f: 84:6e:e3:21:f2:ac:2f:d9:6f:f9:ec:8e:e4:89:f5: c5:8c:b6:99:e4:18:01:b5:8d:f0:86:51:8b:d4:c3: 7e:75:05:1c:d7:41:44:95:d2:11:9f:3d:b4:02:cc: ea:4e:0a:e0:bf:12:e3:0e:99:0b:7d:90:82:a2:e4: ee:77:06:71:93:1b:d3:9c:25:f8:f7:40:17:03:2c: 6b:00:4f:59:81:12:08:5b:19:8c:74:be:1f:05:58: 63:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:C0:5D:01:B4:1C:92:42:F5:CF:55:3D:F0:ED:57:F4:BB:CF:74:23 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:2f:a5:f4:e2:5b:52:5a:8a:56:a7:b3:54:52:eb:9c:ff:16: ca:34:f6:fb:f4:7d:32:43:db:44:36:72:50:ec:cd:a8:b9:ea: 6a:55:08:48:c1:a4:d2:b1:ab:29:d0:36:76:5d:39:5a:93:cf: eb:2d:33:b8:38:fa:18:b0:88:65:98:c4:fa:10:6e:fa:87:24: d4:f2:66:23:20:b2:50:c8:b7:cf:be:ec:64:c0:95:74:b9:1c: c9:8e:38:13:8e:c5:3f:0f:08:f3:f3:03:49:0e:d9:6c:d3:2e: 80:a5:32:38:21:42:0a:4d:de:aa:2a:2f:df:99:fa:12:84:7d: 0d:75:57:67:4d:79:0f:c5:30:b4:c9:99:e4:a4:21:b6:4f:30: 89:07:94:57:66:a4:b8:35:ca:38:c5:3c:13:91:95:3d:18:f2: 2e:98:88:d1:2e:5c:17:23:d1:cc:4b:b8:4d:a9:9d:ec:d5:54: 5f:95:d7:4f:e4:31:c9:c1:46:ca:7e:ef:8a:14:61:6e:84:c5: 42:a9:76:40:70:3d:bd:81:af:7d:f6:99:77:e5:73:83:2a:58: 4f:41:f8:d3:c7:57:f7:dd:f9:fe:5f:61:d1:e3:c3:f1:b6:65: 2f:c7:f3:ec:44:3a:31:b3:7b:87:a9:96:00:a3:ff:17:fa:be: 7c:96:b2:31 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUXvOjmdeUzLeJJDjzPfK5KiAsfxQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYyMTAwMDcxNVoX DTI2MDYyNTAwMDcxNVowejFJMEcGA1UEBRNAMjYxODIyMjg1NjE5NzdkNzg4YTM0 NzAxMjU5NTgyOGQwZDM2ZGM5MDA3NTY0ODJiNWU4NGU5MzEyNzkyY2E2MTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzKAzXGrJDnayerP9TAh21bUbIQzZ qtxstACcOKPkRODhYT3QBW0Y8Q0BSOVVijRpBqhAHDVLOCOd7Ms59keB60AQ/dzG aCym8lXm0IsoPcIrjQC48Lo5d0cH6EH4CIKF7wJh3MRNQTOFsQpszS5wagrZv1FS YnPCIUAsOz/mp68IQ1W20iBR0VwIUOsEUmYVqWD9bFoJziMz8NRrgxdhxL4SIU+E buMh8qwv2W/57I7kifXFjLaZ5BgBtY3whlGL1MN+dQUc10FEldIRnz20AszqTgrg vxLjDpkLfZCCouTudwZxkxvTnCX490AXAyxrAE9ZgRIIWxmMdL4fBVhjEQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFJ3AXQG0HJJC9c9VPfDtV/S7z3QjMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBADkvpfTiW1Jailans1RS65z/Fso09vv0 fTJD20Q2clDszai56mpVCEjBpNKxqynQNnZdOVqTz+stM7g4+hiwiGWYxPoQbvqH JNTyZiMgslDIt8++7GTAlXS5HMmOOBOOxT8PCPPzA0kO2WzTLoClMjghQgpN3qoq L9+Z+hKEfQ11V2dNeQ/FMLTJmeSkIbZPMIkHlFdmpLg1yjjFPBORlT0Y8i6YiNEu XBcj0cxLuE2pnezVVF+V10/kMcnBRsp+74oUYW6ExUKpdkBwPb2Br332mXflc4Mq WE9B+NPHV/fd+f5fYdHjw/G2ZS/H8+xEOjGze4eplgCj/xf6vnyWsjE= -----END CERTIFICATE-----Generated at Sun Jun 21 08:03:37 2026 by rpki-client