
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File: manifest.mft (raw, json)
Hash identifier: wKhDJ84Q5zKnDjPTFdkkE4T1hoe3M0S0ELVTzT3WBr8=
Subject key identifier: 7B:D6:78:0C:55:5C:A5:54:C5:51:83:A1:32:BD:A2:D0:AA:10:63:CB
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial: 304F32486C337F632509F0CD5EF8B4A8CC16090D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number: 064F
Signing time: Sun 12 Jul 2026 00:11:55 +0000
Manifest this update: Sun 12 Jul 2026 00:11:55 +0000
Manifest next update: Thu 16 Jul 2026 00:11:55 +0000
Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: CWFG5m5fzCCgGk6uPs+V9ZB4mxl45yxLglYvlp4dVJw=)
2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=)
3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=)
4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=)
5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=)
6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=)
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 16 Jul 2026 00:11:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:4f:32:48:6c:33:7f:63:25:09:f0:cd:5e:f8:b4:a8:cc:16:09:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Validity
Not Before: Jul 12 00:11:55 2026 GMT
Not After : Jul 16 00:11:55 2026 GMT
Subject: serialNumber=ce1c555fa5fe3fb04c890545372e5a4d5574a845238eb62bb52b03a87949c8e2, CN=bb9a9116-f615-462e-a680-5266b327e0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a9:c3:e5:5c:bf:b3:79:4f:ee:16:88:0d:56:
2b:1c:d2:70:43:aa:92:2a:9d:6a:ad:c3:0f:51:5a:
a8:ab:83:42:67:e5:d4:52:d6:e1:2d:5a:35:50:b7:
77:b1:f7:53:e1:3d:19:db:0f:bb:ee:0d:9b:fc:d2:
95:10:ba:68:e2:e4:fc:7d:e5:9f:8f:76:e7:9f:c8:
9e:f9:d6:2a:b4:75:97:c7:03:95:f7:71:b8:2d:85:
b3:f6:aa:6d:b5:c3:fc:39:b3:5b:e2:ca:41:08:47:
fe:4b:a9:31:c1:ef:91:12:f1:28:54:fc:56:ce:bd:
2a:de:a4:39:1e:9f:74:00:b7:0d:c3:91:23:2c:87:
fc:51:b6:e8:fe:7d:f7:bf:a1:46:94:06:d8:cf:9f:
75:d2:0e:87:c4:f0:48:6f:a1:ac:68:f9:7c:75:83:
48:79:7a:d4:44:79:02:c7:2e:4e:49:c5:3f:61:13:
94:d1:bb:26:92:98:87:e4:ad:bb:a3:38:5d:16:4e:
5f:da:93:e8:dd:53:ea:73:eb:84:7a:5a:48:8f:3a:
11:e0:5e:5c:98:2f:60:d1:c5:66:09:d7:92:91:9d:
6d:9e:08:d4:96:e8:5c:6a:dd:ca:41:6e:ef:65:c0:
60:ec:70:57:13:ab:aa:cd:07:77:de:04:e0:0c:62:
6a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:D6:78:0C:55:5C:A5:54:C5:51:83:A1:32:BD:A2:D0:AA:10:63:CB
X509v3 Authority Key Identifier:
keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:82:d8:27:27:d2:ea:df:50:92:99:fc:e3:09:91:8b:32:b6:
cb:ea:81:0f:38:a1:7d:e1:63:2d:d5:9e:05:b4:61:11:e7:fa:
cd:4b:28:c2:b1:fa:2d:70:6f:1e:6b:bb:5d:fa:00:c0:5d:62:
42:4c:b7:f8:60:ef:e4:45:d2:2e:59:51:dd:66:39:e0:4b:68:
13:08:5a:33:f1:52:1d:37:99:51:4a:cc:5f:4c:7f:15:f3:d9:
01:67:15:46:9a:c3:61:74:c9:17:b9:fc:49:36:87:1e:99:f4:
03:d6:2f:72:cd:fd:42:7c:d2:6f:c4:c3:19:7a:d7:6b:18:4e:
bf:57:71:74:53:34:76:fd:e9:4d:bd:b4:02:3e:c9:da:50:91:
31:c9:76:43:dd:02:99:07:ff:23:22:7c:6c:f1:1c:29:25:74:
6c:d1:db:b4:d0:e6:25:53:f2:cf:46:4a:4f:67:fc:32:a5:89:
e1:ee:90:7c:75:33:08:79:95:62:63:b5:5a:ab:31:2f:89:6d:
43:b0:f7:01:7f:a0:4b:7f:69:44:10:0a:41:5f:75:d0:e9:01:
9c:0b:03:19:c9:41:6d:5a:89:d2:77:7a:bc:02:80:58:fb:0d:
a3:71:fe:cd:60:9d:50:e9:0e:b9:37:d7:ef:b9:d8:51:2c:54:
76:80:1f:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 12 05:38:17 2026 by rpki-client