$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: 6SqqrdX/k/fVjiW3E7LbvmJSqRij/iz7Dnb11RBqXjc= Subject key identifier: A2:4A:9A:EF:B3:75:84:2A:04:62:A6:19:33:15:12:23:BB:60:B4:13 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 752E0EB7B854FAA913CCD8A28C6F5DA623F2B557 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 061D Signing time: Sat 23 May 2026 00:02:12 +0000 Manifest this update: Sat 23 May 2026 00:02:12 +0000 Manifest next update: Wed 27 May 2026 00:02:12 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: /KmX9UkqQJL4AnoWbi/hMTi/WzBRKGwSKYaKOYHhse0=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 00:02:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:2e:0e:b7:b8:54:fa:a9:13:cc:d8:a2:8c:6f:5d:a6:23:f2:b5:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 23 00:02:12 2026 GMT Not After : May 27 00:02:12 2026 GMT Subject: serialNumber=beeb586f92eab4367c85fbe2c9795fd79116aeb6d9a22697f492ea6ba5908111, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:2b:61:14:ee:c5:f0:c1:c2:83:3b:33:d7:61: 86:aa:51:00:98:73:43:6a:1d:fa:c5:4c:54:e1:1f: 17:39:6c:42:18:22:64:37:62:8d:37:43:ba:82:81: a8:2c:97:85:e5:ea:67:c7:91:23:f7:ae:2a:82:1c: d8:4f:3d:97:52:ba:85:59:af:bf:17:e7:86:b5:30: 92:d6:c5:5c:20:26:d0:57:8e:dc:3a:ea:eb:c6:90: 7d:ca:d0:5c:ca:c7:4f:53:0e:28:7e:15:db:7f:8d: a3:5d:40:99:a7:1d:28:eb:fc:e9:46:8a:c3:5d:24: ec:41:8e:90:08:f5:6d:6e:bc:d5:80:e8:d1:ab:34: 13:ee:36:dc:fd:8e:47:a0:dc:b0:f2:a6:4a:ad:17: 6a:3d:41:6e:84:d9:f2:c2:1d:5c:6b:c9:79:b0:4d: a2:5a:fa:f8:33:15:77:96:56:fc:cb:0e:6f:e9:9a: f8:f3:71:8b:0f:86:4e:fb:41:a2:79:ba:26:4f:0d: 5f:7d:e0:f1:50:26:07:9d:08:8a:84:0f:62:b7:2d: 6b:9c:a5:39:90:c1:f3:0d:26:d4:48:4b:85:29:bf: 4d:5b:24:66:59:f7:64:d2:f5:fb:b7:da:d9:00:a8: 0e:2b:13:88:8a:1b:99:68:ad:c9:a3:9f:ee:b9:7b: 40:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:4A:9A:EF:B3:75:84:2A:04:62:A6:19:33:15:12:23:BB:60:B4:13 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:e8:86:38:4a:2a:32:90:94:de:b4:2a:64:3e:8b:d7:c4:3e: 73:74:50:4c:0e:05:ed:0a:8b:66:c5:f2:8b:53:e2:18:ff:c1: 37:a8:40:7d:d1:ff:40:3b:be:79:4d:8c:8d:3e:a7:b6:21:46: d3:53:4e:70:6e:71:44:bc:e8:fc:8d:af:78:16:6a:79:c7:ef: 35:a4:10:18:75:b2:8a:3a:f7:3e:b7:f2:3a:35:32:55:5c:bd: 69:1d:5b:6e:e6:f9:6d:50:a2:af:43:c6:38:90:b1:31:5e:7f: 20:18:3d:9e:10:67:15:0c:bd:18:5b:37:b0:10:e7:eb:05:ee: 90:f0:c3:8d:0d:a9:8d:c7:8f:1e:50:12:85:58:b4:d9:13:21: f5:72:cb:13:06:12:8c:5f:35:23:cf:42:0e:39:5a:39:bb:55: b0:15:a2:02:9e:d4:60:e5:e3:6d:f2:bc:ed:43:07:f6:b8:58: 74:52:33:95:cf:72:8c:97:78:54:06:f3:b5:58:8c:56:b1:ab: 37:df:c9:f4:7f:0d:30:bf:e3:99:30:16:e3:3b:16:72:96:c0: f6:94:a9:ee:e6:2b:11:74:07:67:8e:c3:0f:d9:e5:8f:82:56: c7:4a:cc:31:55:91:26:bf:f8:b1:19:d0:15:ae:99:6c:25:07: d0:e8:af:46 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUdS4Ot7hU+qkTzNiijG9dpiPytVcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUyMzAwMDIxMloX DTI2MDUyNzAwMDIxMlowejFJMEcGA1UEBRNAYmVlYjU4NmY5MmVhYjQzNjdjODVm YmUyYzk3OTVmZDc5MTE2YWViNmQ5YTIyNjk3ZjQ5MmVhNmJhNTkwODExMTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiythFO7F8MHCgzsz12GGqlEAmHND ah36xUxU4R8XOWxCGCJkN2KNN0O6goGoLJeF5epnx5Ej964qghzYTz2XUrqFWa+/ F+eGtTCS1sVcICbQV47cOurrxpB9ytBcysdPUw4ofhXbf42jXUCZpx0o6/zpRorD XSTsQY6QCPVtbrzVgOjRqzQT7jbc/Y5HoNyw8qZKrRdqPUFuhNnywh1ca8l5sE2i Wvr4MxV3llb8yw5v6Zr483GLD4ZO+0GiebomTw1ffeDxUCYHnQiKhA9ity1rnKU5 kMHzDSbUSEuFKb9NWyRmWfdk0vX7t9rZAKgOKxOIihuZaK3Jo5/uuXtAlQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFKJKmu+zdYQqBGKmGTMVEiO7YLQTMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAEbohjhKKjKQlN60KmQ+i9fEPnN0UEwO Be0Ki2bF8otT4hj/wTeoQH3R/0A7vnlNjI0+p7YhRtNTTnBucUS86PyNr3gWannH 7zWkEBh1soo69z638jo1MlVcvWkdW27m+W1Qoq9DxjiQsTFefyAYPZ4QZxUMvRhb N7AQ5+sF7pDww40NqY3Hjx5QEoVYtNkTIfVyyxMGEoxfNSPPQg45Wjm7VbAVogKe 1GDl423yvO1DB/a4WHRSM5XPcoyXeFQG87VYjFaxqzffyfR/DTC/45kwFuM7FnKW wPaUqe7mKxF0B2eOww/Z5Y+CVsdKzDFVkSa/+LEZ0BWumWwlB9Dor0Y= -----END CERTIFICATE-----Generated at Sat May 23 14:58:34 2026 by rpki-client