$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: sWJJ/dNXhsNPU7yILPQAtv7eQcyLK1ZqkVQama9WU+A= Subject key identifier: 11:9E:A8:EE:07:1F:1E:8B:FE:C3:F9:67:F7:ED:D4:9F:FB:70:62:9D Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 49EC01737ABC0DAF64E94164CE1C570EBAFD4C30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0624 Signing time: Sat 30 May 2026 00:03:28 +0000 Manifest this update: Sat 30 May 2026 00:03:28 +0000 Manifest next update: Wed 03 Jun 2026 00:03:28 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: W5eoZEBV2ftLbV6uXO/xVLly1icsigShEmHZlpb/tPk=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 00:03:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:ec:01:73:7a:bc:0d:af:64:e9:41:64:ce:1c:57:0e:ba:fd:4c:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 30 00:03:28 2026 GMT Not After : Jun 3 00:03:28 2026 GMT Subject: serialNumber=ed9839161ea77ba208f8859ff02bce4975e04ec0c27776d226ec6b1e43a88648, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:3d:26:2e:27:c0:3b:b7:a5:e6:da:de:65:57: 59:74:89:3e:57:74:e3:a2:71:98:27:d2:4f:e2:69: db:be:be:7e:6f:0b:43:c2:25:e3:4f:af:c2:bc:ae: 94:09:d7:5d:01:d4:59:16:83:11:6f:eb:ba:29:e4: cc:dc:27:73:d9:cb:6f:86:66:48:c3:27:89:fd:7f: 0a:27:bb:82:cc:98:f8:da:b6:28:2d:18:85:d8:3b: 29:cd:db:15:85:12:62:96:60:fd:0a:de:db:d2:cb: 4f:23:bb:df:f6:31:e5:9c:46:e5:72:0b:51:4a:a8: c5:62:d3:fd:61:cd:9f:41:ee:9f:47:35:f5:29:60: 56:51:ae:f1:c7:50:6d:95:1c:19:47:64:73:3f:90: a9:92:bf:39:42:cc:bc:d0:fb:18:50:16:ea:c4:e7: e8:73:d9:3b:af:75:cd:9d:77:c3:59:03:38:a2:a6: ee:58:48:a7:51:f2:8a:0b:d4:aa:37:56:8a:82:6d: ce:14:c4:94:13:54:60:27:5e:3b:11:5b:e5:f4:3e: 5f:27:d8:e0:96:3e:1b:bb:db:88:3e:9b:f8:2c:01: b8:e2:af:f2:3d:cc:8b:9a:cd:4a:a5:f9:d1:6d:e4: 0a:5d:55:88:6c:6d:4f:83:88:3c:33:28:9a:73:88: 76:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:9E:A8:EE:07:1F:1E:8B:FE:C3:F9:67:F7:ED:D4:9F:FB:70:62:9D X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:3c:d2:db:53:e4:b5:76:b2:44:17:f7:2e:f0:9f:6e:c6:ac: 98:3c:55:fe:7b:a7:3d:d0:8e:7c:3c:78:29:ec:84:37:92:af: 1c:26:d0:b2:3e:15:e4:7e:81:16:e4:82:15:1f:e6:e5:86:7a: 05:ba:4f:33:f5:2a:69:41:8b:4d:a1:86:aa:ec:bf:d6:32:65: 78:c7:2b:57:db:53:09:8c:14:61:35:4f:f4:5b:ad:ee:1d:ac: d9:77:5d:14:68:ac:c4:5e:56:ca:32:d2:20:8a:f1:ee:0f:10: e9:a4:09:32:85:8a:70:65:27:af:cd:34:b6:bf:46:56:2f:13: a5:22:9c:42:5a:67:63:ce:02:4a:c6:f5:9c:02:2a:b7:52:b1: 04:12:06:55:b8:e4:71:07:3e:f6:b6:9f:c3:0b:64:ce:8b:06: 16:50:3e:de:be:ed:44:cb:34:bc:57:83:23:bf:c0:50:30:2e: 56:e5:15:ae:12:24:62:2a:01:a3:fe:fa:b6:88:54:f6:a4:2a: bc:5a:72:8f:7b:ee:5b:19:91:01:db:bb:91:32:a3:98:82:16: eb:16:3c:64:f4:d9:3c:e0:58:e9:48:66:4c:b3:ab:b0:51:c1: 16:92:6d:62:20:18:c4:61:30:27:67:9a:bf:99:35:49:0b:90: 68:a6:00:28 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUSewBc3q8Da9k6UFkzhxXDrr9TDAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUzMDAwMDMyOFoX DTI2MDYwMzAwMDMyOFowejFJMEcGA1UEBRNAZWQ5ODM5MTYxZWE3N2JhMjA4Zjg4 NTlmZjAyYmNlNDk3NWUwNGVjMGMyNzc3NmQyMjZlYzZiMWU0M2E4ODY0ODEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoD0mLifAO7el5treZVdZdIk+V3Tj onGYJ9JP4mnbvr5+bwtDwiXjT6/CvK6UCdddAdRZFoMRb+u6KeTM3Cdz2ctvhmZI wyeJ/X8KJ7uCzJj42rYoLRiF2DspzdsVhRJilmD9Ct7b0stPI7vf9jHlnEblcgtR SqjFYtP9Yc2fQe6fRzX1KWBWUa7xx1BtlRwZR2RzP5Cpkr85Qsy80PsYUBbqxOfo c9k7r3XNnXfDWQM4oqbuWEinUfKKC9SqN1aKgm3OFMSUE1RgJ147EVvl9D5fJ9jg lj4bu9uIPpv4LAG44q/yPcyLms1KpfnRbeQKXVWIbG1Pg4g8Myiac4h2SwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFBGeqO4HHx6L/sP5Z/ft1J/7cGKdMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAAs80ttT5LV2skQX9y7wn27GrJg8Vf57 pz3Qjnw8eCnshDeSrxwm0LI+FeR+gRbkghUf5uWGegW6TzP1KmlBi02hhqrsv9Yy ZXjHK1fbUwmMFGE1T/Rbre4drNl3XRRorMReVsoy0iCK8e4PEOmkCTKFinBlJ6/N NLa/RlYvE6UinEJaZ2POAkrG9ZwCKrdSsQQSBlW45HEHPva2n8MLZM6LBhZQPt6+ 7UTLNLxXgyO/wFAwLlblFa4SJGIqAaP++raIVPakKrxaco977lsZkQHbu5Eyo5iC FusWPGT02TzgWOlIZkyzq7BRwRaSbWIgGMRhMCdnmr+ZNUkLkGimACg= -----END CERTIFICATE-----Generated at Sat May 30 03:53:14 2026 by rpki-client