$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: ItUW+kDVrKfB6OlSMuKjnMUeW+8I4Dv70Cp3B494FSs= Subject key identifier: FC:22:ED:4D:EF:C7:DA:D3:2A:6A:30:27:43:F4:8A:EB:F7:20:30:84 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 703013AD4E61606D68357B937181DB373E7CEBFC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0606 Signing time: Thu 30 Apr 2026 00:01:17 +0000 Manifest this update: Thu 30 Apr 2026 00:01:17 +0000 Manifest next update: Mon 04 May 2026 00:01:17 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: /SWY1tMPfQzDej5jyDD578GURFmC7j2QqKWI5jeWIv0=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 00:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:30:13:ad:4e:61:60:6d:68:35:7b:93:71:81:db:37:3e:7c:eb:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 30 00:01:17 2026 GMT Not After : May 4 00:01:17 2026 GMT Subject: serialNumber=5e25effbe9b54f986df5c46ee47d05d8dccbf93f908540f8ed2786390b00a30e, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:66:48:97:63:0a:76:a2:4a:04:36:55:6e:bd: 83:8d:5c:27:75:01:f0:7f:f0:c2:82:2b:e1:46:16: fc:e7:0f:92:8c:ae:24:98:51:c8:91:fa:c4:1c:fa: 18:a4:e3:b0:da:d9:90:6b:28:e0:18:6b:3c:22:96: a2:54:20:b6:8c:87:a9:cb:a8:f0:14:6f:15:12:65: 13:1d:31:e1:dc:08:05:80:33:70:c2:13:0e:54:63: 62:41:ef:de:2a:7d:c3:49:dc:f2:69:15:a8:6c:93: a4:fa:3b:96:0e:c7:ff:9f:0b:de:00:76:1a:ee:fc: 3b:9c:55:a8:06:60:41:91:e9:56:a5:ce:85:f6:9f: ff:7d:e1:88:ca:75:cf:78:e1:34:e5:a2:92:af:f8: be:92:94:20:da:e9:e0:04:8e:a9:93:df:a5:0c:91: eb:e8:44:cc:44:c0:93:62:d2:ad:0b:fc:4b:00:8d: 16:42:3f:4c:a4:24:01:cf:85:ef:38:3c:82:15:ad: 66:fd:77:6a:d2:14:af:fd:60:6e:a2:35:c5:d6:4a: 00:fa:92:b7:80:47:de:90:f7:48:f9:7f:9d:f4:87: 16:1b:a0:21:79:4e:aa:b4:09:4f:82:41:a4:eb:5d: 89:4f:fc:fc:ca:26:ce:cf:17:c0:22:f4:71:62:05: d1:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:22:ED:4D:EF:C7:DA:D3:2A:6A:30:27:43:F4:8A:EB:F7:20:30:84 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:1e:be:2b:9f:b9:ef:ec:aa:53:55:11:dc:75:54:a2:58:f0: df:d4:65:3b:f0:86:be:43:97:19:40:50:ed:a3:82:7c:15:8a: 8a:1e:d3:22:18:39:ee:4b:24:00:be:04:54:aa:d9:3d:b1:fb: 8e:68:48:a5:c2:ae:7f:30:d3:fe:8f:32:75:2c:4f:10:dd:2c: ef:e2:2a:5e:7c:8f:9d:4e:e9:dd:78:99:d9:21:0c:99:85:37: 0b:e2:95:f9:d6:d0:b5:a1:72:2f:90:b0:41:94:25:be:5a:0e: 08:a2:26:4c:e3:24:ee:4c:bc:4d:4e:ff:2b:82:07:55:9e:ab: 2d:87:08:80:52:ce:2a:dd:96:3e:da:2e:56:4c:0b:38:da:4f: 1e:9e:b6:9c:6a:b2:28:72:72:db:6e:8c:b6:4b:87:27:48:ea: 31:b6:c8:96:7a:fa:52:71:bc:85:93:5c:48:da:5d:c5:46:36: 75:43:c7:a5:31:f3:84:22:d1:9e:a2:35:94:7b:29:32:99:6e: 1a:2d:af:a5:08:b1:f1:87:77:0c:0d:eb:27:0f:46:aa:7c:7c: bd:27:ee:d1:bd:29:d7:a7:24:bc:2b:bb:44:1f:e8:98:f0:e1: 4a:73:07:38:12:40:c8:2c:2a:b9:8a:b9:70:da:f3:82:26:ae: 5d:aa:35:79 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUcDATrU5hYG1oNXuTcYHbNz586/wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDQzMDAwMDExN1oX DTI2MDUwNDAwMDExN1owejFJMEcGA1UEBRNANWUyNWVmZmJlOWI1NGY5ODZkZjVj NDZlZTQ3ZDA1ZDhkY2NiZjkzZjkwODU0MGY4ZWQyNzg2MzkwYjAwYTMwZTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA52ZIl2MKdqJKBDZVbr2DjVwndQHw f/DCgivhRhb85w+SjK4kmFHIkfrEHPoYpOOw2tmQayjgGGs8IpaiVCC2jIepy6jw FG8VEmUTHTHh3AgFgDNwwhMOVGNiQe/eKn3DSdzyaRWobJOk+juWDsf/nwveAHYa 7vw7nFWoBmBBkelWpc6F9p//feGIynXPeOE05aKSr/i+kpQg2ungBI6pk9+lDJHr 6ETMRMCTYtKtC/xLAI0WQj9MpCQBz4XvODyCFa1m/Xdq0hSv/WBuojXF1koA+pK3 gEfekPdI+X+d9IcWG6AheU6qtAlPgkGk612JT/z8yibOzxfAIvRxYgXRywIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFPwi7U3vx9rTKmowJ0P0iuv3IDCEMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGUeviufue/sqlNVEdx1VKJY8N/UZTvw hr5DlxlAUO2jgnwViooe0yIYOe5LJAC+BFSq2T2x+45oSKXCrn8w0/6PMnUsTxDd LO/iKl58j51O6d14mdkhDJmFNwvilfnW0LWhci+QsEGUJb5aDgiiJkzjJO5MvE1O /yuCB1Weqy2HCIBSzirdlj7aLlZMCzjaTx6etpxqsihycttujLZLhydI6jG2yJZ6 +lJxvIWTXEjaXcVGNnVDx6Ux84Qi0Z6iNZR7KTKZbhotr6UIsfGHdwwN6ycPRqp8 fL0n7tG9KdenJLwru0Qf6Jjw4UpzBzgSQMgsKrmKuXDa84Imrl2qNXk= -----END CERTIFICATE-----Generated at Thu Apr 30 13:08:57 2026 by rpki-client