$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: mDJeGZCyBTMmYaErMzZxdEha29JkvQrJ0HAviVsgGQM= Subject key identifier: BC:06:82:07:30:82:A7:68:DB:03:6A:FB:24:EF:03:4B:75:59:F5:E0 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 130F566457ED2E421036A4091088F17D8F74EC63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 060E Signing time: Fri 08 May 2026 00:02:52 +0000 Manifest this update: Fri 08 May 2026 00:02:52 +0000 Manifest next update: Tue 12 May 2026 00:02:52 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: vG1gPb4s6YPbTuLF3FAyl0wEY22lIFo7AXC+sWWQu/k=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 May 2026 00:02:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:0f:56:64:57:ed:2e:42:10:36:a4:09:10:88:f1:7d:8f:74:ec:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 8 00:02:52 2026 GMT Not After : May 12 00:02:52 2026 GMT Subject: serialNumber=a3cc8bb5c9353c9da6b8a4685082c706bd9542eca8da82c8a9557af697bea8ca, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:dd:58:b6:ef:ca:1d:45:35:36:cd:93:be:b7: cd:92:7c:ef:71:0d:e9:f8:1a:9a:21:de:38:29:7b: 43:ef:e6:6c:4f:5b:a2:23:88:69:ee:f1:1a:7a:13: f9:5e:dc:84:a3:c1:27:1c:83:75:30:3e:50:2b:e4: 99:bd:85:0b:5e:4f:b8:7a:5e:8b:50:e4:f1:1b:57: b1:f3:b6:d2:90:a6:74:2d:0b:33:d8:1c:3c:98:36: 9f:ca:c4:5d:f5:d1:09:1f:4b:c1:af:8f:a2:a3:72: 4c:46:df:5b:f6:54:05:b3:14:7f:22:c8:01:4d:e3: 75:f4:ea:23:b1:83:1d:4e:5f:81:9b:fc:59:53:ef: c9:8a:85:14:39:a9:05:65:94:15:4b:82:8d:5a:ba: 64:f6:18:3d:f2:e0:c8:62:26:ef:41:bd:bb:79:7e: 26:93:c7:2a:8b:b9:a1:1d:95:c2:a1:19:31:da:73: 25:e4:87:5a:34:43:d4:df:a3:41:a0:0a:a3:92:28: 4b:84:1c:b8:e8:9b:cd:c9:18:a0:cc:8e:8a:6a:42: 3a:71:d8:86:25:d1:f4:a3:d6:77:a2:02:d1:7b:d9: f4:fd:70:09:48:39:6e:21:78:97:ea:2b:c5:a8:c1: 44:03:10:f6:8a:aa:60:eb:17:80:c4:59:14:72:75: c9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:06:82:07:30:82:A7:68:DB:03:6A:FB:24:EF:03:4B:75:59:F5:E0 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:15:1a:1f:8e:cc:4e:06:9d:08:ca:8e:2a:c5:0f:ed:b9:a3: 47:d2:79:38:70:7b:d6:f3:21:9f:49:29:75:8e:8e:7b:8b:87: 0f:25:b9:80:0b:2d:bf:69:0f:21:07:96:40:39:30:fb:ee:59: 71:3f:4d:04:1b:46:91:3e:1e:57:49:dd:36:2d:45:0d:93:b6: 63:b0:fe:5a:ce:5b:82:44:9c:6f:2a:e2:cb:94:a6:00:51:0d: 52:08:e7:29:b0:83:a2:7e:7d:56:b1:ec:04:d6:3d:e9:9d:cd: 11:a2:0b:6f:c4:bf:57:e5:32:ea:5a:dc:cc:37:17:5f:04:74: 97:1b:3b:32:13:55:ce:54:7a:db:5d:4e:0a:91:d8:06:be:25: 7c:77:ea:ef:00:62:55:19:b7:b3:a5:d2:bc:e5:a6:79:d7:93: 9e:90:0f:1c:be:8d:ac:71:f4:1d:ea:78:b1:e2:53:cc:7f:59: 28:b3:1a:2f:00:15:90:cc:da:f2:1a:3c:0c:79:f6:44:8e:bb: e4:97:b0:fc:8d:7e:59:89:dc:49:26:19:6e:90:b8:d1:31:56: 92:fb:b7:71:01:4e:c1:b7:43:03:28:18:b2:91:8a:7b:a8:0e: c9:18:d7:56:a0:8b:7d:1d:9b:4a:bc:09:6c:dc:1c:d6:36:2a: f7:3d:c8:e8 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUEw9WZFftLkIQNqQJEIjxfY907GMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUwODAwMDI1MloX DTI2MDUxMjAwMDI1MlowejFJMEcGA1UEBRNAYTNjYzhiYjVjOTM1M2M5ZGE2Yjhh NDY4NTA4MmM3MDZiZDk1NDJlY2E4ZGE4MmM4YTk1NTdhZjY5N2JlYThjYTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt91Ytu/KHUU1Ns2TvrfNknzvcQ3p +BqaId44KXtD7+ZsT1uiI4hp7vEaehP5XtyEo8EnHIN1MD5QK+SZvYULXk+4el6L UOTxG1ex87bSkKZ0LQsz2Bw8mDafysRd9dEJH0vBr4+io3JMRt9b9lQFsxR/IsgB TeN19OojsYMdTl+Bm/xZU+/JioUUOakFZZQVS4KNWrpk9hg98uDIYibvQb27eX4m k8cqi7mhHZXCoRkx2nMl5IdaNEPU36NBoAqjkihLhBy46JvNyRigzI6KakI6cdiG JdH0o9Z3ogLRe9n0/XAJSDluIXiX6ivFqMFEAxD2iqpg6xeAxFkUcnXJ5QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFLwGggcwgqdo2wNq+yTvA0t1WfXgMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGwVGh+OzE4GnQjKjirFD+25o0fSeThw e9bzIZ9JKXWOjnuLhw8luYALLb9pDyEHlkA5MPvuWXE/TQQbRpE+HldJ3TYtRQ2T tmOw/lrOW4JEnG8q4suUpgBRDVII5ymwg6J+fVax7ATWPemdzRGiC2/Ev1flMupa 3Mw3F18EdJcbOzITVc5UettdTgqR2Aa+JXx36u8AYlUZt7Ol0rzlpnnXk56QDxy+ jaxx9B3qeLHiU8x/WSizGi8AFZDM2vIaPAx59kSOu+SXsPyNflmJ3EkmGW6QuNEx VpL7t3EBTsG3QwMoGLKRinuoDskY11agi30dm0q8CWzcHNY2Kvc9yOg= -----END CERTIFICATE-----Generated at Fri May 8 08:05:20 2026 by rpki-client