$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: m9+71y1cSRPZ20DrA/cJUTnck3jpcrkmryH/OJcoSG0= Subject key identifier: 04:9A:A5:12:C4:BE:6A:7F:55:8A:E9:40:EB:A3:2B:C2:3C:9C:C5:71 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 2FA2D14161B5659A9695ECD0E544150623DE4708 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 062A Signing time: Fri 05 Jun 2026 00:04:25 +0000 Manifest this update: Fri 05 Jun 2026 00:04:25 +0000 Manifest next update: Tue 09 Jun 2026 00:04:25 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: 7fnnqOgbuAm79ZdrX9ORR2JCNPnG4PGhD08IMnJDglg=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 00:04:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:a2:d1:41:61:b5:65:9a:96:95:ec:d0:e5:44:15:06:23:de:47:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Jun 5 00:04:25 2026 GMT Not After : Jun 9 00:04:25 2026 GMT Subject: serialNumber=46916246a161490ff7d21e5f334d10a069ce328050d567afc5ad47f27ac3d1a1, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:29:5c:19:23:fd:e2:de:75:68:24:6e:a5:78: 44:e9:16:dc:93:92:22:c7:7d:89:0c:03:21:aa:fc: e1:82:71:c6:58:78:2d:b2:0d:6c:23:6d:4e:1f:c6: 00:b7:96:0c:3d:01:f0:7c:77:55:6b:75:28:f9:f4: 19:cd:1b:13:49:6f:e2:9d:40:35:9d:aa:18:fe:91: ab:99:ac:fe:57:37:8d:0c:dc:d5:af:fb:53:24:35: 4e:93:89:95:73:93:cd:d9:72:e2:47:75:6a:3f:79: 76:05:15:cb:d8:0e:90:05:9a:79:1b:be:69:55:95: 3d:22:a8:5c:e7:43:8b:a6:69:3f:96:46:51:07:0c: e6:d6:da:f6:3f:dd:18:79:3a:3c:63:c3:8e:4e:5a: 40:ba:e3:d3:53:24:bb:20:8a:0b:f6:59:ab:ab:2b: 77:b8:3d:6e:19:31:4a:6c:9c:e6:fb:02:db:dd:cf: c5:0d:30:44:8f:8b:31:59:88:6e:aa:92:47:4e:88: 4b:83:f0:19:cf:7a:6f:b5:70:71:c3:2e:3c:9f:b3: c4:cc:37:24:d9:d5:cb:cc:a9:08:57:ec:cb:a9:04: 0e:1e:89:ce:90:fb:7d:30:21:dc:43:71:7f:99:7b: 22:ee:d7:93:dd:15:60:18:5a:b1:a5:79:7f:a7:8c: 20:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:9A:A5:12:C4:BE:6A:7F:55:8A:E9:40:EB:A3:2B:C2:3C:9C:C5:71 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:ad:09:a8:d1:93:9c:c6:36:41:1d:8c:03:6f:47:79:4a:a2: 00:59:91:45:2a:31:55:97:23:17:7e:b4:84:3f:eb:b5:59:92: 37:88:eb:79:4b:09:84:cb:73:0b:17:02:65:7c:c6:e4:39:05: b7:47:5c:1b:74:d2:4c:7a:1b:7a:6b:86:13:d3:2b:22:4d:67: 85:ee:ef:e0:92:88:ac:3f:f5:00:e9:b8:98:fc:cb:30:c4:71: 21:b3:e9:1c:01:d1:c0:76:b0:ee:02:bb:2e:d8:5e:4b:7a:57: 1f:83:4e:46:05:80:69:a0:f1:50:11:44:14:67:40:21:3e:f3: 77:3f:80:ed:fe:3b:92:1f:79:48:27:24:21:61:b5:f8:c8:be: 0b:42:d6:67:45:ec:0a:4b:a9:44:b1:27:14:fe:f4:da:22:4d: 97:a1:4f:88:1e:2c:cb:19:37:d0:af:39:1e:9a:37:21:de:98: 22:a5:0c:92:1f:d1:ed:8a:bc:c7:82:6a:08:33:41:bb:fc:7d: 7c:53:b8:8f:5c:7e:68:72:e1:30:80:31:59:7b:a6:ab:55:a0: 58:7f:21:cf:d1:8a:ac:ff:a2:17:2c:f6:d6:48:a6:2d:e4:7c: cd:d7:55:30:7b:47:59:ba:a4:bf:01:30:9a:aa:60:f7:6b:c7: 12:fd:67:f5 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUL6LRQWG1ZZqWlezQ5UQVBiPeRwgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDYwNTAwMDQyNVoX DTI2MDYwOTAwMDQyNVowejFJMEcGA1UEBRNANDY5MTYyNDZhMTYxNDkwZmY3ZDIx ZTVmMzM0ZDEwYTA2OWNlMzI4MDUwZDU2N2FmYzVhZDQ3ZjI3YWMzZDFhMTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlClcGSP94t51aCRupXhE6Rbck5Ii x32JDAMhqvzhgnHGWHgtsg1sI21OH8YAt5YMPQHwfHdVa3Uo+fQZzRsTSW/inUA1 naoY/pGrmaz+VzeNDNzVr/tTJDVOk4mVc5PN2XLiR3VqP3l2BRXL2A6QBZp5G75p VZU9Iqhc50OLpmk/lkZRBwzm1tr2P90YeTo8Y8OOTlpAuuPTUyS7IIoL9lmrqyt3 uD1uGTFKbJzm+wLb3c/FDTBEj4sxWYhuqpJHTohLg/AZz3pvtXBxwy48n7PEzDck 2dXLzKkIV+zLqQQOHonOkPt9MCHcQ3F/mXsi7teT3RVgGFqxpXl/p4wglwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFASapRLEvmp/VYrpQOujK8I8nMVxMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGutCajRk5zGNkEdjANvR3lKogBZkUUq MVWXIxd+tIQ/67VZkjeI63lLCYTLcwsXAmV8xuQ5BbdHXBt00kx6G3prhhPTKyJN Z4Xu7+CSiKw/9QDpuJj8yzDEcSGz6RwB0cB2sO4Cuy7YXkt6Vx+DTkYFgGmg8VAR RBRnQCE+83c/gO3+O5IfeUgnJCFhtfjIvgtC1mdF7ApLqUSxJxT+9NoiTZehT4ge LMsZN9CvOR6aNyHemCKlDJIf0e2KvMeCaggzQbv8fXxTuI9cfmhy4TCAMVl7pqtV oFh/Ic/Riqz/ohcs9tZIpi3kfM3XVTB7R1m6pL8BMJqqYPdrxxL9Z/U= -----END CERTIFICATE-----Generated at Fri Jun 5 07:43:02 2026 by rpki-client