$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft File: manifest.mft (raw, json) Hash identifier: oHWJBnwvspoTjvvT/WW00EyrzOuX8Cn1/VrZXr+byP8= Subject key identifier: E6:80:44:01:87:4E:70:CE:88:5E:D0:3E:26:50:BE:9A:BF:86:3D:BB Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 6F8D27FA9CB3ABAD645998E5E0276B3FD59F76B7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft Manifest number: 049D Signing time: Tue 05 Aug 2025 00:00:25 +0000 Manifest this update: Tue 05 Aug 2025 00:00:25 +0000 Manifest next update: Sat 09 Aug 2025 00:00:25 +0000 Files and hashes: 1: 2e40ee0b-9aa9-4919-a079-9712212e127c.roa (hash: VR/mwthgRh0ng7VGgDiAUcnN0jteOSnRa9lOe8cGPEM=) 2: 32bf2c39-b536-43d0-b557-f68d8ee64091.roa (hash: On9sN/zZjkUvU4E1gD612/tJAT2fphjWDRO+qZ3qdro=) 3: 3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa (hash: tiAjAQmR13xooXymK60WR8ZSywPtnJRS1MrRY3JHRqc=) 4: 40956690-3661-49f2-8ebc-2fa5a47a98ad.roa (hash: rgJvuK04T9dCqdk0k3/+MpwSAH/1W0e0dxh8MI4Rhkk=) 5: 466316d4-3129-402d-9aa7-5d64ed8b2748.roa (hash: Fv6Cq2qiRRjRas9DxHgtgewLPUh427lcOUYLFJFIFVk=) 6: 4cb3e9f9-46a2-41eb-a4b7-75b53d791f33.roa (hash: pgYnRCe3qjwkHmYGOqv1jmB17QPb/OeV0cBrWydeamI=) 7: 55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa (hash: pFn2xgAAxPr7bRer7U3jziShEPfk4bh3VwR+jFrTcdk=) 8: 565f9740-389f-45ac-956e-b96e19889315.roa (hash: 75Om4R/okC1dIIjgL/VqyZb5FeAUVnss0T9egJm8bJ4=) 9: 9d703748-f446-47a1-b0a7-5e3357f2e0d2.roa (hash: aej7qukme62lak4Az1oYbSyLbRHn4vSskMo1YcXNdlQ=) 10: a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl (hash: +EZBQY60NR2GZzGfV54GlAr03afxP/pFbkxhKKSp3uI=) 11: b51d6a60-7601-45c2-8839-f2002dfa8409.roa (hash: nCWkSKF6fvnAc6cz6aMyt1niVPo3qUXLaffg8QoPkNM=) 12: c18b0845-fc95-41d6-b476-af4e1e466849.roa (hash: DCGKvsSNO3W7cQ63C72x+p0Jo8dEJch5e/Vwj3sRnW8=) 13: e5ffe65e-7287-4628-8759-7c141866ee12.roa (hash: d+4S0jPtrVh/DC2I8KLzybMGjBJw30P/AlaDwGRj+W4=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 00:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:8d:27:fa:9c:b3:ab:ad:64:59:98:e5:e0:27:6b:3f:d5:9f:76:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Aug 5 00:00:25 2025 GMT Not After : Aug 9 00:00:25 2025 GMT Subject: serialNumber=337f0338b83767e70aabb7eae19bf83657ea3ddd49a8b1c8085a7d146283c7fe, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:7e:1a:ac:84:4d:ba:db:f5:f9:c8:be:c9:55: 26:ce:6a:0f:f5:0f:e1:0d:2a:13:1b:56:8a:2c:78: 50:20:d7:5e:d2:4c:5b:0f:b5:dd:0d:c2:dc:c9:f3: 7d:42:3c:f3:1c:e4:4c:63:f5:96:55:af:af:24:3c: 26:d5:47:f8:37:13:66:db:dd:88:3a:0e:52:ab:22: e4:e2:95:36:fe:db:bd:a8:56:7e:18:9c:e9:05:27: 83:c0:ac:f8:d0:68:65:8a:73:1c:e4:e5:cc:20:a7: 9d:a9:0d:5b:f3:22:c9:8c:b4:a0:75:a4:06:19:ef: bc:31:9d:ec:7a:ea:17:4b:f1:b8:7a:86:68:b3:2b: d0:d8:1f:9b:2f:9b:2f:51:17:6d:41:c3:87:10:67: db:20:79:5d:3a:5c:97:bb:b3:3d:d8:00:59:e2:32: ad:a3:62:9f:72:b6:9a:a8:20:7d:b9:91:d5:89:4d: 1f:52:43:a7:2f:81:5f:b7:a7:09:ab:90:b5:40:56: 02:90:48:69:4b:a2:82:07:9e:d4:16:69:09:ee:25: f1:4e:a1:60:d8:5b:81:e5:b3:5a:37:de:4e:7e:53: ee:7d:cb:fe:47:5e:5e:c7:75:69:d9:f1:8b:ff:6b: d2:fe:0e:c4:10:be:66:e1:14:f0:0b:f0:8d:71:d3: 02:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:80:44:01:87:4E:70:CE:88:5E:D0:3E:26:50:BE:9A:BF:86:3D:BB X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:89:7b:25:b0:cf:ca:d2:11:96:a7:43:f4:54:97:70:68:d1: fe:a8:91:43:f2:c8:82:f8:85:55:c0:f8:fa:73:9b:2b:a4:b1: 31:a5:a1:48:55:9c:6c:fc:b2:6c:f3:0b:dc:50:35:bf:27:09: e7:2d:2d:1c:c0:ea:e7:1f:dd:74:e3:b0:66:a3:ed:e2:da:c5: c1:e0:1a:aa:9d:03:84:3a:3c:b7:b2:c2:31:36:e5:38:da:f6: 22:e6:c8:3a:3f:a5:83:c8:31:ed:b6:56:90:91:ba:fd:ab:14: 8b:30:89:31:9a:3b:84:bd:d9:18:d3:3e:67:4d:02:d0:d5:8b: 6c:02:8a:a7:e2:14:23:00:9c:0a:ec:eb:5e:db:f2:37:f3:82: a5:f3:8a:be:ec:84:92:21:47:33:91:3a:d4:99:b7:e2:9c:9c: f7:60:93:d7:91:c1:51:98:e0:98:56:52:52:84:f9:96:2f:4a: 51:05:fb:1b:88:71:53:7c:27:80:7e:7f:e5:c8:04:b8:43:e2: e7:da:e4:9a:fd:9b:dc:b0:60:4a:dd:08:e3:d0:c5:01:f6:d4: fd:9c:fd:11:e8:c7:4a:2d:fd:2f:d9:15:97:a0:b0:18:7f:c7: a0:8e:df:9c:65:ca:b8:fa:2d:ae:62:8c:f9:1c:e6:f7:ba:5e: 61:ef:29:fd -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUb40n+pyzq61kWZjl4CdrP9WfdrcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI1MDgwNTAwMDAyNVoX DTI1MDgwOTAwMDAyNVowejFJMEcGA1UEBRNAMzM3ZjAzMzhiODM3NjdlNzBhYWJi N2VhZTE5YmY4MzY1N2VhM2RkZDQ5YThiMWM4MDg1YTdkMTQ2MjgzYzdmZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9H4arIRNutv1+ci+yVUmzmoP9Q/h DSoTG1aKLHhQINde0kxbD7XdDcLcyfN9QjzzHORMY/WWVa+vJDwm1Uf4NxNm292I Og5SqyLk4pU2/tu9qFZ+GJzpBSeDwKz40GhlinMc5OXMIKedqQ1b8yLJjLSgdaQG Ge+8MZ3seuoXS/G4eoZosyvQ2B+bL5svURdtQcOHEGfbIHldOlyXu7M92ABZ4jKt o2KfcraaqCB9uZHViU0fUkOnL4Fft6cJq5C1QFYCkEhpS6KCB57UFmkJ7iXxTqFg 2FuB5bNaN95OflPufcv+R15ex3Vp2fGL/2vS/g7EEL5m4RTwC/CNcdMCBwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFOaARAGHTnDOiF7QPiZQvpq/hj27MB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMDhjMmYyNjQtMjNm OS00OWZiLTlkNDMtZjhiNTBiZWM5MjYxL2E1YjAxYmRkLWNkZWItNGNmYy04Yzkz LTdlNzBjNWUwOTMwNi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGOJeyWwz8rSEZanQ/RUl3Bo0f6okUPy yIL4hVXA+PpzmyuksTGloUhVnGz8smzzC9xQNb8nCectLRzA6ucf3XTjsGaj7eLa xcHgGqqdA4Q6PLeywjE25Tja9iLmyDo/pYPIMe22VpCRuv2rFIswiTGaO4S92RjT PmdNAtDVi2wCiqfiFCMAnArs617b8jfzgqXzir7shJIhRzOROtSZt+KcnPdgk9eR wVGY4JhWUlKE+ZYvSlEF+xuIcVN8J4B+f+XIBLhD4ufa5Jr9m9ywYErdCOPQxQH2 1P2c/RHox0ot/S/ZFZegsBh/x6CO35xlyrj6La5ijPkc5ve6XmHvKf0= -----END CERTIFICATE-----Generated at Tue Aug 5 08:11:35 2025 by rpki-client