
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft
File: manifest.mft (raw, json)
Hash identifier: feh+vlkri0puxjriEnVUyP59wAxWXNvXKveEaBAYnMw=
Subject key identifier: 9D:9E:C0:EC:57:65:12:66:98:BF:01:E5:7B:45:DC:57:0E:BB:9F:76
Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83
Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883
Certificate serial: 04E83C28758546E297015E12CAF8A39FA4AACD63
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft
Manifest number: 0672
Signing time: Mon 13 Jul 2026 00:12:19 +0000
Manifest this update: Mon 13 Jul 2026 00:12:19 +0000
Manifest next update: Fri 17 Jul 2026 00:12:19 +0000
Files and hashes: 1: 018dea0d-42eb-4d58-8914-636d25ca3b3c.roa (hash: zn6GS3tpGK8t9xsZPmz1Hb01Ff9Eiva2e/Won/sOYG0=)
2: 0ae05889-eb6d-414c-88e9-bc293171f532.roa (hash: O7xERBWmKGXiU3+Lu63ccz7zcgN006rbbs19IE8sqqE=)
3: 0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa (hash: MYMWnZHcSyBQFvPmaCu+Nbe5VqiKpVOfSFAh3Pc1hEw=)
4: 0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa (hash: 0B3l9Xay6gxTU2+2IFo805mCCbbk2AolCgkE+VadgcI=)
5: 205af9d8-3799-4d38-b1fb-da840e362ff1.roa (hash: Mb3Bo5tEIGpk3RrWV/UIHa6zO28sCM7675b9ww639sg=)
6: 2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa (hash: ICAh72ItVDsjfPO/1ox9zrzy/3GjSdpEeafNEMjTlAs=)
7: 2720640e-9111-44dd-a0b8-a005f04956a0.roa (hash: RJVkCDsrMa5Dn2DLEROSRhJXD5W2Gzdukwsq//igmN4=)
8: 29fe4454-f7a8-42fd-8c35-77a6d6f8e60f.roa (hash: N8pWFbURiPQly1H8nJTYYtgbVQ+zSNSnrHLvoVci+1c=)
9: 2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa (hash: RN3gq0d5l8UO2f8dM2+nDB2TFpurV3xuSYqwS3edWWI=)
10: 31d36ece-9039-43a2-82a2-03e7d8e7f563.roa (hash: Yp8wVL94ej6AwYCuCvP+aOw3JMLFwpWAHsjszuICrIs=)
11: 33dd31e0-7039-4ff8-aafe-97f7b95b07d0.roa (hash: MHfuOnXqfkSyFmQ9XZIPzObkIorFSudF25sH5i1orM0=)
12: 3523c675-14b3-4d2d-90e1-e439500ecaca.roa (hash: 0BO79U/rK8kyMwYsE401FS1qHwMWRe9+oCXwSGV4jE8=)
13: 3537691c-1a10-4699-a8a0-4cec50a35534.roa (hash: 4o3mEKe38RTaHd8O/QcDBvPoPLHZkKqn1wLn/spjgBs=)
14: 453c01e0-c333-4283-987c-be2c8b71798c.roa (hash: 2w9SK0lF0eHsz3p2d385EXBDGKDxWHlLsRHLMKkUY/E=)
15: 5484d331-446c-4042-9500-dd3002e6a910.roa (hash: 98zA4UOzUXiN7z2KCXAAWwp9L5f4c8JIK01F6/kJdmo=)
16: 57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa (hash: 3Gu7CdIO9HSM3O5suQqBktFbIDrJbLlLI/BaxUz6BVU=)
17: 62639af2-026a-4677-b13e-0aeb266620d5.roa (hash: VAlAznFadTg6ulCXiVPFlMgIv07sNYoyGor/rwJzOpg=)
18: 64aa0337-4cf9-42c7-b236-4cd36e69005e.roa (hash: eq2nnJ+Cm96Jv0auvF+VIFRama3wPCkeRgJGSIg4CxM=)
19: 788c3900-e4d5-439b-b231-3a69b5354901.roa (hash: +Vd4GeFgLflmvtu8CpQBsNjifV8tOjci4FF+5xKZ/Fo=)
20: 7cba22a5-dc61-4413-aed2-8fb4cc8e3a49.roa (hash: OvNcDNAgvAvm0Cc9R6Pd/p7Hdvf0pBAYiRkiQJo3sHE=)
21: 7cf17e61-b049-438c-8aaf-2d4714b51857.roa (hash: D71mPCSCdDc5l/ouJ/zsp/dcO4O3FCtqHc5HEaPtqtI=)
22: 8bf311e9-d27f-46fa-8f05-2ed6b176b5b9.roa (hash: +ZuzKW34Pgl/oRT6fNdBUs8wZfWDJGNwmfxXvgHQGzM=)
23: 90ca90a9-a10a-44e7-82b9-1365746ba55e.crl (hash: vhEiZUqKJ/asEPoGNa9oEVbLY+LCdXlyvo7SEuFsFLo=)
24: 977f90e2-d257-4dde-9740-b0391458d8ed.roa (hash: PBJqDWFN+HylSPqXi/37A0gU1V9ejp8qvLgo6Ar+OPo=)
25: 9a94ee8c-7029-4ffb-af7f-435e161333de.roa (hash: /CQ1H0BIofIjrcH/Wi5CsiNEKnF4h8J9IhsppsxHsQs=)
26: a3080b31-8684-4ce8-b4e6-33db63d13627.roa (hash: W1sQ4LIriRjTIQmtOJrJiJPb2b2HUs+/5b786m7aFcA=)
27: a3f80673-8b1b-4af1-ae60-e74663f3df69.roa (hash: ZIdLonqGtREsWpmc/YKycfyLm9gBDbtl8teHAE1KtPY=)
28: ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa (hash: wAZ2xLfBS0TNfgTxdfGt4+TvDAZi/RAJVlGyotQ9It0=)
29: b0c38f03-3ced-484e-aa5b-7b06f125ad74.roa (hash: bEDP7S/ywUipJKWAzBTd34AFBXtmjt92LipoOMsISMA=)
30: baa1273d-7883-4b5d-8e1c-23ebac490846.roa (hash: nDuzOluVy8LvQSrfMojqgcTxqQ7tEac+1uaXDnEa0e0=)
31: c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa (hash: zjpqXMG62mILyCYWLWntVNUXaDpg0TIux3Khv+u9/do=)
32: c759ed47-7de1-4858-b207-c77b1f7d2c35.roa (hash: v1mQhaNBHeRZZGpSLqsBO85ZyIKKsq5mINVtSm5DapU=)
33: c7b491e4-76ae-4305-8132-a670b41c66fd.roa (hash: qpdxOV6ItKd2QxUp3mnqw7kb5w/qXFoRJMq9eMIZoeg=)
34: c886fdcc-d9c4-485a-a941-7aa2c7d093e3.roa (hash: qFkqpuay3U75h1O1Yl1Z8EfngEyMcBhqskzcvMxVNbA=)
35: c9f7dbd2-1c7e-42e8-a7f9-00bd76e70248.roa (hash: 9BOc5YYf+ZKUDQPWPgWHSGVjfNeq2DFw0qON9h/uqWU=)
36: efdcb43b-2f19-4107-a0a3-c55daccb2714.roa (hash: 4OSggW8aTFyJIJsH6t1PDMpsDJ6501ZzAuCusnwpciE=)
37: f54cd21d-ebef-4509-8295-1f7547d0d717.roa (hash: UKHmfGmNYdP+Ue5qgCMktCjXBkL9NYKmKPyVWzMcgZI=)
38: fcc4293c-b24f-4fac-9395-546f748b3b13.roa (hash: 3YP/58D4NOdzhWRXbC9vAJOsievECq/irINvg3eRq08=)
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 17 Jul 2026 00:12:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:e8:3c:28:75:85:46:e2:97:01:5e:12:ca:f8:a3:9f:a4:aa:cd:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883
Validity
Not Before: Jul 13 00:12:19 2026 GMT
Not After : Jul 17 00:12:19 2026 GMT
Subject: serialNumber=3599ee7bffa9b496542e16e583048149a06f67ef34cb730810c7ec75a8b0b414, CN=4257e925-715f-47a2-893e-0e3f97ec7e22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:31:94:cf:78:cc:5f:cd:f0:f3:81:5a:08:f9:
9a:dc:93:df:9b:1f:d1:bc:93:df:0a:50:d1:6d:29:
ea:91:b6:71:02:ef:33:ec:a8:51:bc:3a:38:a3:ed:
27:42:6c:14:ee:91:5b:19:4d:09:ec:00:c8:7c:d1:
cf:bc:c5:0b:70:15:5c:02:d9:a8:cf:e0:b9:e4:c2:
e5:e8:24:8f:c4:2a:7e:fb:a0:57:d0:83:88:72:94:
cc:8f:2c:b2:bf:f1:f9:d0:ab:c5:2f:27:19:ff:f0:
c7:b6:25:21:b6:f9:33:2d:0d:13:60:d7:df:74:fc:
ab:0b:78:5e:d2:6a:35:34:d4:8b:59:83:e7:d8:af:
94:c9:59:e0:aa:e9:cb:58:5c:81:3f:9b:d1:08:33:
80:90:3a:15:a6:ed:6e:2f:0e:f1:f6:0e:7e:a9:46:
28:47:b3:a0:6a:8f:c9:97:e7:4a:79:93:db:b1:3e:
b7:49:f4:a3:e7:e2:07:1a:d1:49:5a:b3:d8:fa:14:
04:56:f0:7d:e0:57:22:1a:b5:99:20:3a:ca:57:8c:
94:a4:94:d3:87:37:ec:1d:a9:c5:78:81:e7:59:26:
2f:b7:61:c9:b1:a0:15:80:05:5c:1b:45:66:b3:53:
87:0c:23:e1:b8:43:48:8f:16:5a:ce:7c:f6:09:64:
6c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:9E:C0:EC:57:65:12:66:98:BF:01:E5:7B:45:DC:57:0E:BB:9F:76
X509v3 Authority Key Identifier:
keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:ab:f8:2f:95:f1:6c:33:7c:de:0d:03:d7:7d:7e:1e:a2:f8:
f5:6b:c8:20:78:32:a6:3b:f5:12:85:6f:82:0e:52:b8:c2:78:
48:24:7f:80:83:9d:0f:84:89:49:a1:49:18:2a:55:fc:b4:57:
ee:2a:5b:94:a9:b9:1e:b0:ff:5b:9e:65:78:23:ae:91:ce:bf:
d4:99:75:fd:a1:bd:aa:15:2c:7d:1a:40:c4:3d:16:d8:fc:a3:
0e:22:3c:ef:e1:51:0c:3d:c2:4e:20:cb:78:ea:39:c6:13:cb:
81:19:fb:fc:23:32:47:3a:66:c6:bb:3d:2a:09:02:80:7d:84:
6c:09:ad:db:95:8e:9c:13:8e:f7:33:ce:5f:bb:39:64:59:ac:
fd:8f:2a:14:3d:3e:6b:ce:1a:30:22:93:87:73:fa:bf:64:8f:
2e:a2:c5:42:c2:82:f7:5c:e1:7f:50:39:bc:0b:42:ef:4d:5a:
d4:a0:da:a4:64:03:30:9b:87:80:3c:e9:bb:da:9e:ee:ff:ba:
d4:96:64:80:d6:05:fd:4d:f2:f0:e3:ae:9a:d7:c8:8e:5a:6c:
47:3b:3c:d5:56:54:95:b9:2c:b4:8e:cb:bc:b7:49:16:24:96:
74:0b:ba:a6:77:13:cb:59:30:16:52:15:c7:c6:2b:5b:ff:35:
a2:1b:1f:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 13 01:54:23 2026 by rpki-client