$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: o4v/M7gX+L++3kZ5yO0vuxUv6cP1RcvLDUk7UWaDrDw= Subject key identifier: 5B:7D:67:53:A2:58:67:54:26:42:C7:2F:17:FC:C7:65:25:7A:0E:DB Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 22226CA586980EABADDEEA4D547F89435779F276 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0622 Signing time: Thu 28 May 2026 00:03:13 +0000 Manifest this update: Thu 28 May 2026 00:03:13 +0000 Manifest next update: Mon 01 Jun 2026 00:03:13 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: YKKKkuF0iwkFZhOGr4sAfydYHlotSSfq9ezIDkTq7yY=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Jun 2026 00:03:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:22:6c:a5:86:98:0e:ab:ad:de:ea:4d:54:7f:89:43:57:79:f2:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 28 00:03:13 2026 GMT Not After : Jun 1 00:03:13 2026 GMT Subject: serialNumber=66c30085bd94fd6f273e15e77c4f1bf370a0f6a8a736f0cc8553bf43f0b7c0c3, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bb:2c:f8:05:78:69:0a:5d:ed:41:3b:20:b7: 80:70:03:a0:0a:a3:71:1e:6d:aa:04:d5:f8:a8:db: 4a:f9:15:ad:2b:4c:5b:f2:7f:bc:f4:71:56:22:b6: 23:7f:68:69:49:f3:5b:5f:b9:e3:ec:c2:8a:4f:42: ad:b5:9e:90:b3:91:42:7b:e9:ff:3c:ee:7f:2c:45: 8b:1f:a7:e4:a9:3b:94:16:49:6c:46:74:0c:65:48: 8a:11:64:93:4b:73:d2:c8:b4:bd:67:9d:0c:19:a4: 9e:82:81:5d:89:73:bf:88:2e:21:54:2f:c7:c6:2c: c3:d0:dc:2f:fb:23:85:80:85:d9:8e:fa:7c:14:95: 0e:d2:a9:78:14:7b:48:b4:f9:54:ef:e7:ae:50:ef: 1d:82:0d:69:85:4d:96:5d:9b:ff:1d:f5:6d:86:bc: 71:5e:2f:b8:46:49:f7:12:8a:f7:9f:99:fa:e8:b0: 2b:be:8b:51:55:59:89:04:ff:37:45:11:c7:dc:db: bc:09:dd:83:00:6a:a7:5a:af:10:f0:f8:bb:50:46: 8d:0a:64:c6:ec:70:7a:ec:6e:bf:ee:6e:93:f2:56: 93:a4:d4:23:ce:7d:98:92:8a:8c:86:11:2f:b3:a3: e0:c4:17:27:cb:40:10:59:66:b1:fd:7c:03:40:a7: 28:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:7D:67:53:A2:58:67:54:26:42:C7:2F:17:FC:C7:65:25:7A:0E:DB X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:05:a7:13:a4:2f:5b:ac:76:e0:e1:a1:cc:ed:25:33:f3:a2: c4:d0:e6:d0:59:a7:55:64:64:b1:d9:06:10:15:cc:c3:f8:23: 51:e9:af:8f:4e:f1:7d:69:9a:91:c5:2f:19:75:fe:2f:fa:ce: e2:9a:9b:ed:f1:28:fa:9f:2c:f4:38:71:ef:6c:f1:8a:df:6d: f8:db:0d:e5:17:77:17:1d:14:51:f5:4f:e2:69:53:96:16:6c: 7e:22:f2:df:19:cc:07:f3:bc:aa:8c:ae:d5:f7:24:68:d6:04: 56:b3:a9:48:e5:81:5c:d0:42:63:9e:50:4a:4d:9f:85:86:34: 85:0d:d8:64:94:10:1e:18:90:00:a6:db:e8:e3:67:fe:a6:87: b0:40:6b:00:a7:0c:6e:9b:b0:57:ef:01:e1:ce:0d:7b:c9:23: 0d:cd:03:1d:42:ea:a3:65:c3:d2:1f:c4:71:ee:4e:c1:6e:db: f4:ec:0f:5b:f8:48:eb:34:8d:60:7a:56:1e:db:2f:a0:f1:28: 98:40:59:37:69:2e:76:14:eb:4d:cb:fb:8d:22:e9:98:02:5f: fe:85:0a:e2:7d:3b:2e:65:0d:ec:3c:03:5c:c5:2e:06:ce:98: 0b:ba:19:c4:7d:b3:a4:77:a6:2a:ff:34:cd:c3:2b:af:d1:17: a0:5e:ab:bc -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUIiJspYaYDqut3upNVH+JQ1d58nYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUyODAwMDMxM1oX DTI2MDYwMTAwMDMxM1owejFJMEcGA1UEBRNANjZjMzAwODViZDk0ZmQ2ZjI3M2Ux NWU3N2M0ZjFiZjM3MGEwZjZhOGE3MzZmMGNjODU1M2JmNDNmMGI3YzBjMzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7ss+AV4aQpd7UE7ILeAcAOgCqNx Hm2qBNX4qNtK+RWtK0xb8n+89HFWIrYjf2hpSfNbX7nj7MKKT0KttZ6Qs5FCe+n/ PO5/LEWLH6fkqTuUFklsRnQMZUiKEWSTS3PSyLS9Z50MGaSegoFdiXO/iC4hVC/H xizD0Nwv+yOFgIXZjvp8FJUO0ql4FHtItPlU7+euUO8dgg1phU2WXZv/HfVthrxx Xi+4Rkn3Eor3n5n66LArvotRVVmJBP83RRHH3Nu8Cd2DAGqnWq8Q8Pi7UEaNCmTG 7HB67G6/7m6T8laTpNQjzn2YkoqMhhEvs6PgxBcny0AQWWax/XwDQKcoPQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFFt9Z1OiWGdUJkLHLxf8x2Uleg7bMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBABQFpxOkL1usduDhocztJTPzosTQ5tBZ p1VkZLHZBhAVzMP4I1Hpr49O8X1pmpHFLxl1/i/6zuKam+3xKPqfLPQ4ce9s8Yrf bfjbDeUXdxcdFFH1T+JpU5YWbH4i8t8ZzAfzvKqMrtX3JGjWBFazqUjlgVzQQmOe UEpNn4WGNIUN2GSUEB4YkACm2+jjZ/6mh7BAawCnDG6bsFfvAeHODXvJIw3NAx1C 6qNlw9IfxHHuTsFu2/TsD1v4SOs0jWB6Vh7bL6DxKJhAWTdpLnYU603L+40i6ZgC X/6FCuJ9Oy5lDew8A1zFLgbOmAu6GcR9s6R3pir/NM3DK6/RF6Beq7w= -----END CERTIFICATE-----Generated at Thu May 28 22:07:19 2026 by rpki-client