$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: 4yqiKMCBwuRtLZw3m2vsEE6s5qupv26rSpeFbol5sk0= Subject key identifier: 46:A0:3B:57:5C:D8:E2:21:B4:13:08:8B:9F:CC:4B:FC:4B:F2:C1:CE Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 2EE7B540D1A8A4E6C006036A9CA12E4FD6DC0C4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0612 Signing time: Tue 12 May 2026 00:03:39 +0000 Manifest this update: Tue 12 May 2026 00:03:39 +0000 Manifest next update: Sat 16 May 2026 00:03:39 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: kdlFnHF3amTwZ12qBO0riiRmrPVSlDpOCoIhJxz3P0M=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:03:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:e7:b5:40:d1:a8:a4:e6:c0:06:03:6a:9c:a1:2e:4f:d6:dc:0c:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: May 12 00:03:39 2026 GMT Not After : May 16 00:03:39 2026 GMT Subject: serialNumber=f5d709738f8e00404635e0e20a8c1ddbde7e5e83ae4cb2216676bb880f7564e1, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:df:a6:24:2d:28:3c:d2:4c:c5:d0:cd:5d:0b: f8:16:dc:8d:6d:b5:5e:f4:e7:10:34:ea:0e:2f:69: ef:69:32:61:df:2f:8b:28:be:e3:ce:b3:40:4a:90: 15:e1:45:a7:78:fe:16:e7:5f:8e:32:47:aa:63:03: 8e:f3:4e:fe:03:df:75:59:9e:1e:ba:f0:41:02:02: f5:3c:f9:55:9b:1f:56:a8:4b:78:92:49:d2:58:dc: 3b:79:d3:e2:54:c6:b6:91:74:72:9d:18:44:ae:ee: 43:a9:eb:aa:4d:31:95:5c:2c:3d:ca:91:fe:b4:ac: 77:db:08:ce:72:d4:27:ad:94:74:6b:ef:82:b5:7b: c0:e8:9d:b7:9b:12:94:2a:73:64:3b:e5:f1:ba:b9: 92:eb:2e:2f:34:a2:64:18:9c:31:42:62:0f:ac:2f: 20:78:68:dd:d9:93:70:28:95:50:df:2d:74:81:85: aa:18:eb:35:75:56:f6:be:af:91:4e:b3:8a:e0:0b: c0:85:a6:e1:b3:59:d1:51:86:c4:4a:86:6d:59:f9: e5:69:2d:57:26:b9:84:8d:20:43:91:19:8d:f1:6c: 51:50:26:de:43:37:3e:b0:bd:56:15:e6:5c:3e:b6: 61:a8:1c:cd:81:a2:9f:11:c7:41:88:13:4e:0c:1e: df:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:A0:3B:57:5C:D8:E2:21:B4:13:08:8B:9F:CC:4B:FC:4B:F2:C1:CE X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:37:b5:a2:a3:c7:af:50:13:b9:a3:a1:cb:84:8e:4e:8d:a8: b4:13:30:02:7b:45:37:45:32:0c:1b:7f:7a:9f:3e:aa:be:78: 33:29:ba:50:42:af:f8:75:43:d8:b5:21:70:35:0f:b1:84:ef: 88:cd:26:4e:f5:73:4c:ec:88:27:4f:c4:05:f3:2e:36:03:af: 48:24:9e:41:4e:36:c0:94:08:55:8f:a0:0d:72:62:b5:d8:e7: 50:f2:2d:b0:f2:da:1c:78:19:39:cb:f8:a8:8f:77:30:c2:ce: a4:84:97:07:6e:50:f8:28:4d:bf:04:01:66:61:88:1d:36:9a: db:d7:6c:d0:7e:b8:64:51:be:0b:e1:a9:1f:27:f9:03:1d:c6: 1a:ae:b1:da:f2:27:1f:4e:41:47:09:66:30:8a:3d:c9:08:d0: da:d5:a7:51:76:04:1d:4d:85:0d:f6:37:a7:b6:3c:33:5d:29: 6a:f3:6a:39:43:9f:bb:48:8d:db:96:57:2d:b4:4b:02:d1:20: 6b:61:e8:19:a1:7c:e9:ad:de:14:e6:9d:7a:98:9f:ee:a3:da: 01:d9:ff:d6:5e:2c:93:b6:a1:b0:2c:63:68:68:13:1e:76:dd: 71:de:10:b7:33:1e:d9:f1:48:8c:ca:d8:a2:87:07:ad:0c:c7: 53:81:db:dd -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIULue1QNGopObABgNqnKEuT9bcDEswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDUxMjAwMDMzOVoX DTI2MDUxNjAwMDMzOVowejFJMEcGA1UEBRNAZjVkNzA5NzM4ZjhlMDA0MDQ2MzVl MGUyMGE4YzFkZGJkZTdlNWU4M2FlNGNiMjIxNjY3NmJiODgwZjc1NjRlMTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyt+mJC0oPNJMxdDNXQv4FtyNbbVe 9OcQNOoOL2nvaTJh3y+LKL7jzrNASpAV4UWneP4W51+OMkeqYwOO807+A991WZ4e uvBBAgL1PPlVmx9WqEt4kknSWNw7edPiVMa2kXRynRhEru5DqeuqTTGVXCw9ypH+ tKx32wjOctQnrZR0a++CtXvA6J23mxKUKnNkO+XxurmS6y4vNKJkGJwxQmIPrC8g eGjd2ZNwKJVQ3y10gYWqGOs1dVb2vq+RTrOK4AvAhabhs1nRUYbESoZtWfnlaS1X JrmEjSBDkRmN8WxRUCbeQzc+sL1WFeZcPrZhqBzNgaKfEcdBiBNODB7fzwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFEagO1dc2OIhtBMIi5/MS/xL8sHOMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAFI3taKjx69QE7mjocuEjk6NqLQTMAJ7 RTdFMgwbf3qfPqq+eDMpulBCr/h1Q9i1IXA1D7GE74jNJk71c0zsiCdPxAXzLjYD r0gknkFONsCUCFWPoA1yYrXY51DyLbDy2hx4GTnL+KiPdzDCzqSElwduUPgoTb8E AWZhiB02mtvXbNB+uGRRvgvhqR8n+QMdxhqusdryJx9OQUcJZjCKPckI0NrVp1F2 BB1NhQ32N6e2PDNdKWrzajlDn7tIjduWVy20SwLRIGth6BmhfOmt3hTmnXqYn+6j 2gHZ/9ZeLJO2obAsY2hoEx523XHeELczHtnxSIzK2KKHB60Mx1OB290= -----END CERTIFICATE-----Generated at Tue May 12 23:46:42 2026 by rpki-client