$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft File: manifest.mft (raw, json) Hash identifier: toCDkYA8NSpEUh6rEjObpsbi6pyixiEjSPs85nyK6M0= Subject key identifier: F5:15:7F:3A:91:CC:FC:CC:9D:EC:5C:A0:9A:19:90:01:94:34:41:9C Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 413CC39363FD35C80E1697F006BBE0702FFD2CE9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft Manifest number: 0465 Signing time: Sat 14 Jun 2025 00:00:24 +0000 Manifest this update: Sat 14 Jun 2025 00:00:24 +0000 Manifest next update: Wed 18 Jun 2025 00:00:24 +0000 Files and hashes: 1: 098c0cc3-be06-46b9-86e2-aeb99985dd07.roa (hash: Hu1BNYXgE+yfAhvYEqRcvx3QfypZN3jPp1nsRgU8CUg=) 2: 2e40ee0b-9aa9-4919-a079-9712212e127c.roa (hash: 3oSXNolcHKNGEJkwTZ+B3pw7iqSbBcfrhUcODxmnlwA=) 3: 32bf2c39-b536-43d0-b557-f68d8ee64091.roa (hash: Hn0yrarDFF3NBciEqACTqAaEL0HBm3M81e8f7so2lzk=) 4: 3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa (hash: bCB/1Q5i8vsuxJQ/RgS78i9KtNoQzI1Vx/oBRclCOlQ=) 5: 40956690-3661-49f2-8ebc-2fa5a47a98ad.roa (hash: 96ETOGdT/eL+sOz3tGVLpsmSJc3p/Tblid3LASY6HMU=) 6: 4cb3e9f9-46a2-41eb-a4b7-75b53d791f33.roa (hash: 80SooUcBVMqU1en7vI1c3EBW44p7EiKtvQGktRTq55k=) 7: 55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa (hash: n/FQIF59JwGr61LZy6KAZfYmBj5LQT+P8P8ddmzozCA=) 8: 565f9740-389f-45ac-956e-b96e19889315.roa (hash: e/8dQLlGg4I6ypc/gYLTZWobutoBYrYEkEvH6RUfOHA=) 9: 72c1271b-5ed8-4478-ba43-6741904af7c8.roa (hash: RQY/6aGIaWy+F2y6ENjwm/txlGtGWV6ZuRnNqBRJ3LQ=) 10: 9d703748-f446-47a1-b0a7-5e3357f2e0d2.roa (hash: dOEGzxN2yNNOFxoc1JbP7NDyvs7Lju0DQ5p0gw5bTpg=) 11: a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl (hash: ty/h3kx5XtEVDMQXBRuec/JQOMgggXvD1ohxKOCrYYc=) 12: c18b0845-fc95-41d6-b476-af4e1e466849.roa (hash: bkvR3JA/fWxGuSnPgMF5xYxAGZ1T00VGLETmxfENh+4=) 13: e5ffe65e-7287-4628-8759-7c141866ee12.roa (hash: RaXPdlyXBi6W4Qn1iuKyWO4kZkNUpjZP7K2vnM/Qvuk=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:3c:c3:93:63:fd:35:c8:0e:16:97:f0:06:bb:e0:70:2f:fd:2c:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Jun 14 00:00:24 2025 GMT Not After : Jun 18 00:00:24 2025 GMT Subject: serialNumber=ba67e5d926d3abde1298914fb09d9f2e019a9a666493881093c73c78c0b849d5, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f4:b2:83:15:7d:82:ab:86:fe:60:26:0b:b8: a0:48:48:6d:5b:02:fa:8e:b1:c9:f3:6e:0d:fb:36: 01:98:23:05:f3:ba:c6:f8:07:b7:c2:4e:3c:b1:c9: 36:2c:5a:a5:dd:43:d8:fb:0d:a8:b8:20:bd:f2:5a: 61:89:df:8e:14:02:83:df:15:80:bd:3b:5a:d7:50: 90:58:a6:5d:71:5c:cf:4e:c4:78:58:03:85:e5:a3: 2c:be:9b:29:55:6e:28:34:40:aa:79:f9:4f:b4:f0: 0e:03:71:5d:e1:fb:8b:e5:c0:6b:80:f9:88:f3:3f: a6:55:10:ee:ad:ab:24:1a:a9:5e:61:dc:b0:0b:4b: 76:db:98:67:f2:4b:a2:9a:f2:ea:e2:de:aa:2f:1a: 1e:01:9f:08:82:76:6f:97:c7:bd:31:2e:bd:da:d6: 9c:d9:98:e2:be:f2:c0:51:77:0c:75:4b:58:24:29: 69:e9:7e:e8:43:ed:b7:2f:1b:07:d0:6b:cb:46:06: 4f:a4:7b:7b:aa:99:44:ff:10:44:6e:c4:86:d0:e2: d0:3d:9a:5b:d6:4c:d3:1a:07:37:a8:08:7a:fe:f7: 38:05:4c:cf:f4:db:ea:06:d2:9a:5f:ee:45:67:2b: a7:b5:0d:7c:0b:37:8b:7c:df:d5:62:03:fc:b0:33: 55:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:15:7F:3A:91:CC:FC:CC:9D:EC:5C:A0:9A:19:90:01:94:34:41:9C X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:0c:a2:54:6f:d1:fa:77:17:66:c2:a4:0a:12:67:e7:6a:25: 7f:f7:6f:8b:9a:f7:ba:e8:f4:09:73:31:77:7c:e4:ce:8e:a7: 80:33:d9:33:02:60:d8:4b:01:a5:54:ce:df:da:c4:68:18:ca: e1:6a:bc:f2:a5:73:70:66:ac:fc:40:94:99:dc:d1:af:01:8f: 19:38:57:e2:8f:72:04:91:5f:32:d5:ae:7c:54:8d:fc:6f:62: f1:80:ea:63:77:36:f5:67:3d:35:9d:11:db:bd:e2:c0:aa:0b: 33:7c:8d:e8:a8:f4:db:d5:e5:0c:34:4e:3e:3f:68:e8:76:9b: 5d:f2:16:5b:29:ef:69:71:60:57:10:7d:1f:8c:b4:ca:f9:62: 60:a1:5b:d9:e6:79:e4:da:34:b0:83:40:97:d5:ea:83:33:ad: 8d:f5:33:4b:a8:07:9f:58:60:26:f0:7d:15:3f:3f:0c:7a:df: f3:4d:69:c8:a7:76:44:98:cf:97:f8:08:14:98:b2:fc:fb:8f: ae:b3:18:94:2d:60:07:a7:92:db:4c:25:64:7d:d4:22:dc:f1: b9:10:92:96:88:5d:f7:32:9b:aa:19:dd:2f:c1:3b:93:db:5d: 3b:dd:22:67:28:10:d8:78:11:18:ce:24:08:50:b7:f1:ce:cd: 87:a2:6a:10 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUQTzDk2P9NcgOFpfwBrvgcC/9LOkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI1MDYxNDAwMDAyNFoX DTI1MDYxODAwMDAyNFowejFJMEcGA1UEBRNAYmE2N2U1ZDkyNmQzYWJkZTEyOTg5 MTRmYjA5ZDlmMmUwMTlhOWE2NjY0OTM4ODEwOTNjNzNjNzhjMGI4NDlkNTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvSygxV9gquG/mAmC7igSEhtWwL6 jrHJ824N+zYBmCMF87rG+Ae3wk48sck2LFql3UPY+w2ouCC98lphid+OFAKD3xWA vTta11CQWKZdcVzPTsR4WAOF5aMsvpspVW4oNECqeflPtPAOA3Fd4fuL5cBrgPmI 8z+mVRDuraskGqleYdywC0t225hn8kuimvLq4t6qLxoeAZ8IgnZvl8e9MS692tac 2ZjivvLAUXcMdUtYJClp6X7oQ+23LxsH0GvLRgZPpHt7qplE/xBEbsSG0OLQPZpb 1kzTGgc3qAh6/vc4BUzP9NvqBtKaX+5FZyuntQ18CzeLfN/VYgP8sDNVdQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFPUVfzqRzPzMnexcoJoZkAGUNEGcMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMDhjMmYyNjQtMjNm OS00OWZiLTlkNDMtZjhiNTBiZWM5MjYxL2E1YjAxYmRkLWNkZWItNGNmYy04Yzkz LTdlNzBjNWUwOTMwNi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAIcMolRv0fp3F2bCpAoSZ+dqJX/3b4ua 97ro9AlzMXd85M6Op4Az2TMCYNhLAaVUzt/axGgYyuFqvPKlc3BmrPxAlJnc0a8B jxk4V+KPcgSRXzLVrnxUjfxvYvGA6mN3NvVnPTWdEdu94sCqCzN8jeio9NvV5Qw0 Tj4/aOh2m13yFlsp72lxYFcQfR+MtMr5YmChW9nmeeTaNLCDQJfV6oMzrY31M0uo B59YYCbwfRU/Pwx63/NNacindkSYz5f4CBSYsvz7j66zGJQtYAenkttMJWR91CLc 8bkQkpaIXfcym6oZ3S/BO5PbXTvdImcoENh4ERjOJAhQt/HOzYeiahA= -----END CERTIFICATE-----Generated at Sat Jun 14 18:34:40 2025 by rpki-client