$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: cFUn6C/XF4XDhNtYrmm1PgwAoWV7a4qQdS+szW5faQY= Subject key identifier: D8:45:F3:7E:04:97:49:1F:BF:DC:4B:A6:45:78:BD:24:BB:0F:D1:AF Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 68A0B9ACBC0E3A4F4E0BEA507067B66682E3879E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0609 Signing time: Sun 03 May 2026 00:01:49 +0000 Manifest this update: Sun 03 May 2026 00:01:49 +0000 Manifest next update: Thu 07 May 2026 00:01:49 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: qJjv+Bkr8pRR+LHGlGcTVALpz2/fLI6XcaqMeWGViq4=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 00:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:a0:b9:ac:bc:0e:3a:4f:4e:0b:ea:50:70:67:b6:66:82:e3:87:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 3 00:01:49 2026 GMT Not After : May 7 00:01:49 2026 GMT Subject: serialNumber=fb01117485fb643078bc05498925d487f32c05050b142cf1fe212ccdcb7a5308, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:96:1a:bc:7a:64:58:b8:db:52:09:f5:2b:f3: cf:0a:31:92:e2:22:4e:0c:30:bb:47:99:ab:ee:79: c7:c4:ac:5b:f1:02:ea:fc:56:f7:bb:68:8a:20:45: 53:63:71:b6:f2:ae:1a:fd:5f:23:58:50:84:49:ab: 3d:63:4f:5b:02:b2:e0:1e:30:14:5f:15:af:23:66: 7b:35:96:58:1d:79:22:cd:27:0c:b2:ff:d7:a1:da: 2c:7d:72:d7:67:3d:24:32:f3:60:0b:c6:95:16:9b: 6d:70:b5:80:4d:94:28:79:08:86:3c:20:c8:05:ee: 40:b0:18:c1:d6:c7:26:6e:2c:04:56:81:d3:cf:1b: 8b:23:a1:18:83:e3:a6:55:dd:09:3a:c5:4f:f3:ca: be:3e:85:95:5f:aa:85:9c:54:ad:19:0f:bd:50:d0: 0d:56:7b:01:1c:72:f6:37:d1:c6:04:17:b5:68:0a: 0c:03:a6:52:8b:47:25:cd:dd:ee:1d:c6:a8:29:cc: 10:69:97:b7:a2:d5:c2:8a:d3:70:f7:f4:f9:06:e5: 71:73:c6:9c:31:8a:d4:32:6f:cc:c1:80:57:32:22: 86:21:db:83:be:d2:60:06:50:35:09:dc:9b:25:50: 4d:c9:3c:28:ad:c8:b1:76:3e:b0:44:b9:ac:91:8a: 62:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:45:F3:7E:04:97:49:1F:BF:DC:4B:A6:45:78:BD:24:BB:0F:D1:AF X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:6b:57:60:12:f0:e8:f2:71:06:af:b1:56:c8:a7:e8:5e:2d: 57:0d:21:ef:99:c9:8f:d5:f9:6e:9f:02:73:69:7c:6f:80:08: 9a:48:aa:ff:e8:79:9b:cc:3e:1b:1b:66:d3:64:0b:ee:46:55: 8c:38:3d:14:37:97:d6:4e:90:f1:4c:78:9c:11:63:1a:23:30: f5:85:db:9a:dc:cd:19:43:65:3c:0a:a3:1c:a6:7d:5b:4f:63: 1e:aa:d8:e4:14:a6:8e:ba:4c:42:c0:a6:7b:b6:94:0f:20:0c: 21:6b:6d:e6:c1:0c:58:78:7a:be:c6:9e:df:c4:55:cb:f9:89: 7b:1e:86:4b:aa:3a:ce:ef:50:01:dc:15:9b:95:b3:8f:91:57: 37:1c:a1:6c:df:6a:04:c6:d5:b9:5a:00:18:17:b4:b8:d9:6e: 1c:6b:c7:1a:2e:15:90:82:7e:f0:c2:57:41:01:59:b0:19:ad: 24:32:ab:be:5e:c3:8d:3e:c3:38:dc:83:7d:7b:0c:82:0c:2e: 6c:b3:f8:56:27:14:da:ae:bb:70:09:55:73:b5:43:b1:ac:d9: 73:8d:3f:75:a3:26:4b:d5:12:d9:49:0f:d1:f7:fc:e8:fc:22: 19:83:4d:67:09:84:ef:05:ef:db:3c:50:d3:02:71:99:ec:09: 58:fe:18:45 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUaKC5rLwOOk9OC+pQcGe2ZoLjh54wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUwMzAwMDE0OVoX DTI2MDUwNzAwMDE0OVowejFJMEcGA1UEBRNAZmIwMTExNzQ4NWZiNjQzMDc4YmMw NTQ5ODkyNWQ0ODdmMzJjMDUwNTBiMTQyY2YxZmUyMTJjY2RjYjdhNTMwODEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJYavHpkWLjbUgn1K/PPCjGS4iJO DDC7R5mr7nnHxKxb8QLq/Fb3u2iKIEVTY3G28q4a/V8jWFCESas9Y09bArLgHjAU XxWvI2Z7NZZYHXkizScMsv/XodosfXLXZz0kMvNgC8aVFpttcLWATZQoeQiGPCDI Be5AsBjB1scmbiwEVoHTzxuLI6EYg+OmVd0JOsVP88q+PoWVX6qFnFStGQ+9UNAN VnsBHHL2N9HGBBe1aAoMA6ZSi0clzd3uHcaoKcwQaZe3otXCitNw9/T5BuVxc8ac MYrUMm/MwYBXMiKGIduDvtJgBlA1CdybJVBNyTworcixdj6wRLmskYpiKwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNhF834El0kfv9xLpkV4vSS7D9GvMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBADlrV2AS8OjycQavsVbIp+heLVcNIe+Z yY/V+W6fAnNpfG+ACJpIqv/oeZvMPhsbZtNkC+5GVYw4PRQ3l9ZOkPFMeJwRYxoj MPWF25rczRlDZTwKoxymfVtPYx6q2OQUpo66TELApnu2lA8gDCFrbebBDFh4er7G nt/EVcv5iXsehkuqOs7vUAHcFZuVs4+RVzccoWzfagTG1blaABgXtLjZbhxrxxou FZCCfvDCV0EBWbAZrSQyq75ew40+wzjcg317DIIMLmyz+FYnFNquu3AJVXO1Q7Gs 2XONP3WjJkvVEtlJD9H3/Oj8IhmDTWcJhO8F79s8UNMCcZnsCVj+GEU= -----END CERTIFICATE-----Generated at Sun May 3 17:31:48 2026 by rpki-client