$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: bwQt3N276exYIm7rdeJ+F7gvVwbq9MNeiZlssp6ciqY= Subject key identifier: 6D:F8:B6:DE:1D:1F:4F:8E:1B:A2:D8:F3:82:C4:75:A8:14:6E:7E:72 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 43E8C44482B1172E5FA1999BC3BED0F8A8C16C29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 062B Signing time: Sat 06 Jun 2026 00:04:32 +0000 Manifest this update: Sat 06 Jun 2026 00:04:32 +0000 Manifest next update: Wed 10 Jun 2026 00:04:32 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: Q0AVojhdlmrJVvsoFk1RTiTYq6C5WjYDf1H+JquVkc0=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Jun 2026 00:04:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:e8:c4:44:82:b1:17:2e:5f:a1:99:9b:c3:be:d0:f8:a8:c1:6c:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 6 00:04:32 2026 GMT Not After : Jun 10 00:04:32 2026 GMT Subject: serialNumber=904d6ee757200385d4d12c91036debb96ee7cca2644194845b421a4788246975, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:59:6f:8d:ae:c5:98:f3:8b:01:d5:62:71:b9: a2:ed:9e:f8:3f:ec:ec:15:0f:f5:f2:81:14:ac:cc: 9b:ef:40:d0:12:ec:a0:5a:bf:08:dc:12:07:69:ff: 6c:1c:0b:08:80:ec:a1:b0:d4:a8:04:53:fe:11:15: 74:15:31:cc:1f:95:b1:ff:69:01:7e:d6:a2:69:70: 71:0a:00:bb:04:3c:28:8c:14:2e:ae:42:08:2e:c7: 6c:b1:12:1c:69:c2:8b:8a:5c:4f:43:01:9a:b1:6f: 83:49:b8:d1:e3:0d:ba:57:be:ee:de:e1:bf:9e:72: 4f:40:b5:4c:62:5d:a8:0f:93:bb:82:73:48:c9:30: d4:5a:ca:98:29:ad:31:fb:15:b8:f2:54:82:e2:27: e8:5b:93:1a:da:cc:b7:eb:94:1c:c6:7a:07:0e:4b: 48:9e:2f:7c:30:b0:b3:64:61:e3:30:f6:69:d9:f4: 91:c0:4c:7a:13:86:e9:67:1a:c6:1d:87:a8:a4:9e: 11:d0:f8:7d:77:63:24:42:70:9f:80:2b:d2:b1:64: 0e:51:09:5a:34:02:13:0c:80:0e:1a:da:1d:13:cc: a3:a9:5e:ef:48:1f:55:d4:d5:3d:49:a8:12:95:dd: aa:e3:af:1b:e7:2c:1b:e8:87:db:57:18:38:9d:c3: e2:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F8:B6:DE:1D:1F:4F:8E:1B:A2:D8:F3:82:C4:75:A8:14:6E:7E:72 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:ea:35:e7:cc:12:3e:2f:e7:14:5f:44:3a:82:17:01:35:03: e8:41:3d:c4:23:b6:11:c8:18:d1:60:46:f0:4f:70:df:9f:cb: f3:ea:e6:0e:e3:55:5f:89:a4:0e:9c:d4:0a:9b:06:6f:18:6b: f9:c9:1d:d4:67:f1:3e:5e:a0:f6:2e:e9:1d:6e:d7:64:73:62: fd:90:c7:11:1a:46:8d:d3:49:84:67:cc:c1:ff:e7:58:39:5b: b8:21:19:53:43:7c:5d:e4:a2:8b:de:2b:20:af:6c:7c:6e:69: 66:9d:2e:c7:28:35:9a:99:92:57:20:0e:0e:69:ae:03:fd:0a: c9:c6:c4:2d:f4:11:19:13:04:a6:19:c1:fb:b6:08:ab:ed:b5: e2:aa:b3:d9:09:d5:e7:21:5b:7a:8e:8d:29:ec:3a:f8:cb:de: 26:ef:f4:d2:9c:20:0b:a7:98:b8:e0:53:b3:71:cb:ca:b5:4a: 32:ff:1b:f5:13:94:df:6c:c4:ce:3d:09:06:9f:75:a5:b8:27: d6:3b:a2:f7:1e:6c:13:a6:cd:09:1d:b1:d4:00:a5:9a:ac:6d: 62:75:aa:b1:6f:bb:93:a7:83:71:be:c2:1b:5e:bb:5f:de:2f: 8a:b9:d0:8a:e1:d8:de:32:26:18:7e:b1:53:ff:32:55:a7:8b: b2:f9:cc:2c -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUQ+jERIKxFy5foZmbw77Q+KjBbCkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYwNjAwMDQzMloX DTI2MDYxMDAwMDQzMlowejFJMEcGA1UEBRNAOTA0ZDZlZTc1NzIwMDM4NWQ0ZDEy YzkxMDM2ZGViYjk2ZWU3Y2NhMjY0NDE5NDg0NWI0MjFhNDc4ODI0Njk3NTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA21lvja7FmPOLAdVicbmi7Z74P+zs FQ/18oEUrMyb70DQEuygWr8I3BIHaf9sHAsIgOyhsNSoBFP+ERV0FTHMH5Wx/2kB ftaiaXBxCgC7BDwojBQurkIILsdssRIcacKLilxPQwGasW+DSbjR4w26V77u3uG/ nnJPQLVMYl2oD5O7gnNIyTDUWsqYKa0x+xW48lSC4ifoW5Ma2sy365QcxnoHDktI ni98MLCzZGHjMPZp2fSRwEx6E4bpZxrGHYeopJ4R0Ph9d2MkQnCfgCvSsWQOUQla NAITDIAOGtodE8yjqV7vSB9V1NU9SagSld2q468b5ywb6IfbVxg4ncPi/QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFG34tt4dH0+OG6LY84LEdagUbn5yMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGvqNefMEj4v5xRfRDqCFwE1A+hBPcQj thHIGNFgRvBPcN+fy/Pq5g7jVV+JpA6c1AqbBm8Ya/nJHdRn8T5eoPYu6R1u12Rz Yv2QxxEaRo3TSYRnzMH/51g5W7ghGVNDfF3kooveKyCvbHxuaWadLscoNZqZklcg Dg5prgP9CsnGxC30ERkTBKYZwfu2CKvtteKqs9kJ1echW3qOjSnsOvjL3ibv9NKc IAunmLjgU7Nxy8q1SjL/G/UTlN9sxM49CQafdaW4J9Y7ovcebBOmzQkdsdQApZqs bWJ1qrFvu5Ong3G+whteu1/eL4q50Irh2N4yJhh+sVP/MlWni7L5zCw= -----END CERTIFICATE-----Generated at Sat Jun 6 17:49:11 2026 by rpki-client