$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: MjurvMKsZ/pjAsm2IlA0jthk6EBkoUUoFZl3gaz7lH8= Subject key identifier: 90:04:53:09:9C:F5:CB:B6:B9:33:14:D6:36:EB:7A:4B:E9:29:6C:ED Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 5D49CFFF2731EB5E22EAA424C85316689487826F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 063B Signing time: Mon 22 Jun 2026 00:07:28 +0000 Manifest this update: Mon 22 Jun 2026 00:07:28 +0000 Manifest next update: Fri 26 Jun 2026 00:07:28 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: /JIMdTxvVtVanMYnPHGvUKf+P9I21iLQQZUjfzlRFsI=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Jun 2026 00:07:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:49:cf:ff:27:31:eb:5e:22:ea:a4:24:c8:53:16:68:94:87:82:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 22 00:07:28 2026 GMT Not After : Jun 26 00:07:28 2026 GMT Subject: serialNumber=7d4fdc4dc2c745e8e88e6edee7d918b2cd1bf46e381eff6f64ba1b36b170be63, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:48:16:ce:79:cc:bc:25:2a:6b:ae:26:d6:e8: 10:89:fd:af:94:f5:56:51:68:23:b1:65:3e:e1:b0: d9:6c:d3:86:ff:c8:21:63:c6:a3:b0:fc:9b:09:2b: c6:2b:06:66:94:e5:50:08:aa:a3:49:e1:51:db:d6: da:09:d5:49:20:0a:5f:31:c3:b9:32:70:a2:a3:e2: fa:6a:ee:c0:b5:18:ac:de:5e:c5:4e:38:b6:f0:67: a1:86:9a:e5:55:2a:23:92:04:6d:7c:96:5a:1c:80: ea:ed:10:70:83:6c:55:69:77:a9:fe:88:cd:20:1b: 10:0c:a6:d1:22:22:46:bc:94:07:61:5d:18:18:02: 63:4b:78:e8:9f:0d:f6:b3:74:e0:9c:fe:41:52:27: aa:ee:53:50:e7:5b:63:16:d6:14:e4:67:59:f9:c1: ce:f8:a9:42:a3:ab:e9:21:c5:70:75:4b:e6:20:aa: b0:c2:2c:fc:be:40:ac:ff:c7:60:c3:2f:da:9d:b0: 43:7e:92:f4:45:f6:41:9f:98:07:4f:cb:94:4d:e4: ff:7e:5d:a6:f4:79:0a:3e:9b:74:78:bc:51:a2:b0: 52:3f:ed:a9:99:0b:8a:8f:7d:e1:76:45:4f:df:b0: 4b:6e:4c:ec:6b:3c:07:f3:dc:68:47:9c:d2:cd:c6: fe:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:04:53:09:9C:F5:CB:B6:B9:33:14:D6:36:EB:7A:4B:E9:29:6C:ED X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:40:d0:6d:ce:8e:62:57:2a:92:5b:bf:ad:c7:4f:21:75:86: 3d:a6:49:1c:36:08:d6:99:ad:4e:67:8b:a7:e6:d5:e7:47:ed: d5:4b:c2:c0:ba:10:24:66:8f:70:2e:7c:95:c1:5d:d7:d7:d8: be:43:05:d7:ce:27:de:e8:02:ec:39:29:f7:f3:69:18:0a:10: ff:55:ac:79:66:3f:1f:a6:0e:e4:55:29:7f:46:12:c3:35:53: 90:a5:0a:a6:ff:24:84:e1:7d:8a:7f:c8:a1:25:cd:85:6d:47: 91:44:1c:b0:24:fe:79:07:b8:83:9a:cd:1a:5e:13:98:dc:52: 40:c6:95:a7:51:ea:e4:46:5a:65:79:96:ec:4b:18:05:c2:b5: e3:8d:bf:79:5f:83:23:7e:a1:ca:30:94:2f:c7:3a:e9:b1:4f: 1b:03:c4:eb:9d:18:b8:20:aa:e6:fa:c1:5a:26:2c:6d:ae:f5: 3f:21:84:04:7f:16:91:ec:95:0b:5d:b8:83:65:82:a8:42:f7: a6:eb:d7:3d:fc:29:71:24:bc:08:2c:54:13:c1:56:c7:db:74: b1:6d:2f:fd:1e:38:a7:00:31:82:7e:d8:d3:f3:ce:68:26:57: e1:dc:54:d1:63:67:5a:79:08:f9:67:b5:24:eb:f6:68:b1:03: 6b:57:45:f3 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUXUnP/ycx614i6qQkyFMWaJSHgm8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYyMjAwMDcyOFoX DTI2MDYyNjAwMDcyOFowejFJMEcGA1UEBRNAN2Q0ZmRjNGRjMmM3NDVlOGU4OGU2 ZWRlZTdkOTE4YjJjZDFiZjQ2ZTM4MWVmZjZmNjRiYTFiMzZiMTcwYmU2MzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1kgWznnMvCUqa64m1ugQif2vlPVW UWgjsWU+4bDZbNOG/8ghY8ajsPybCSvGKwZmlOVQCKqjSeFR29baCdVJIApfMcO5 MnCio+L6au7AtRis3l7FTji28GehhprlVSojkgRtfJZaHIDq7RBwg2xVaXep/ojN IBsQDKbRIiJGvJQHYV0YGAJjS3jonw32s3TgnP5BUieq7lNQ51tjFtYU5GdZ+cHO +KlCo6vpIcVwdUvmIKqwwiz8vkCs/8dgwy/anbBDfpL0RfZBn5gHT8uUTeT/fl2m 9HkKPpt0eLxRorBSP+2pmQuKj33hdkVP37BLbkzsazwH89xoR5zSzcb+JQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFJAEUwmc9cu2uTMU1jbrekvpKWztMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGVA0G3OjmJXKpJbv63HTyF1hj2mSRw2 CNaZrU5ni6fm1edH7dVLwsC6ECRmj3AufJXBXdfX2L5DBdfOJ97oAuw5KffzaRgK EP9VrHlmPx+mDuRVKX9GEsM1U5ClCqb/JIThfYp/yKElzYVtR5FEHLAk/nkHuIOa zRpeE5jcUkDGladR6uRGWmV5luxLGAXCteONv3lfgyN+ocowlC/HOumxTxsDxOud GLggqub6wVomLG2u9T8hhAR/FpHslQtduINlgqhC96br1z38KXEkvAgsVBPBVsfb dLFtL/0eOKcAMYJ+2NPzzmgmV+HcVNFjZ1p5CPlntSTr9mixA2tXRfM= -----END CERTIFICATE-----Generated at Mon Jun 22 04:24:08 2026 by rpki-client