$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft File: manifest.mft (raw, json) Hash identifier: UPlLTiNPJDEHsXiNUDILsBmFlo09seUx/ug5fe2Nw+M= Subject key identifier: 56:B2:C4:E7:1E:27:79:D1:F2:33:EE:39:99:FA:29:B3:2B:A8:56:2A Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 196FFA98BDA58DF1373C7CD568E42172116E63DC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft Manifest number: 0434 Signing time: Sat 26 Apr 2025 00:00:07 +0000 Manifest this update: Sat 26 Apr 2025 00:00:07 +0000 Manifest next update: Wed 30 Apr 2025 00:00:07 +0000 Files and hashes: 1: 098c0cc3-be06-46b9-86e2-aeb99985dd07.roa (hash: N4i8C5zmzaXeT7PnScGJylWklIVMEYnOQyZk06FyGAg=) 2: 2e40ee0b-9aa9-4919-a079-9712212e127c.roa (hash: f5zOsMKnKNX1/ft/H4npc5+z9StJhV5Lh9IWJLIFcFQ=) 3: 32bf2c39-b536-43d0-b557-f68d8ee64091.roa (hash: oswh/Fx6aO5On8Aftv8Si8+w0jTtCv2Q5lkxz1aRPaA=) 4: 3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa (hash: U33+Cmyb8Bh15qZgoTQPIKNpwqwicQuG3CpQ0Ut7BDs=) 5: 40956690-3661-49f2-8ebc-2fa5a47a98ad.roa (hash: IkBcOwPfW2kOf8xx912I8K/L35Tx9gCRrFjq6MCNYCs=) 6: 4cb3e9f9-46a2-41eb-a4b7-75b53d791f33.roa (hash: Y61C0xsr59coKegF/Fb7kRMesSqxu6amCzKA4hGnoss=) 7: 55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa (hash: 80+dllhGsc5V16ceFMklKCS0pRmrn7Ju3eUH4c9Qlfg=) 8: 565f9740-389f-45ac-956e-b96e19889315.roa (hash: X068U9bzjrj3gFYNuGwKvaqDTdkC448TENmH5VTdgHA=) 9: 72c1271b-5ed8-4478-ba43-6741904af7c8.roa (hash: rPboLMDPYUqOJc5OGCG8ZkEGx9utn4eAmoWGVlu/a7c=) 10: 9d703748-f446-47a1-b0a7-5e3357f2e0d2.roa (hash: H9i2BejQ1pqYfEt6jiyNC8X8OoWNL0h/Uom0hap659A=) 11: a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl (hash: 1TQZR8gj0xxlwoURVZOcRrKmh5F393LmCqoAU1zuuWo=) 12: c18b0845-fc95-41d6-b476-af4e1e466849.roa (hash: PZauguuoWfziE8tLh5uSzOxPakhX7smEyRkW4V6FbuY=) 13: e5ffe65e-7287-4628-8759-7c141866ee12.roa (hash: eXEe8gUb9741f1s0TMp+xge0G5iamwpsYJitmGqu0Vk=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:6f:fa:98:bd:a5:8d:f1:37:3c:7c:d5:68:e4:21:72:11:6e:63:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Apr 26 00:00:07 2025 GMT Not After : Apr 30 00:00:07 2025 GMT Subject: serialNumber=ee89dc62885ffe57ff743ce1f708347973dbad8cbbda663d7ff3673dfa40bb7d, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:45:f5:76:7a:6b:fc:26:4b:36:08:b6:7c:c7: 37:ba:02:6b:ef:72:6a:f1:3c:a9:78:67:33:20:d4: 27:6e:3f:87:63:25:56:03:b5:33:a7:a6:49:1b:fa: 11:ef:53:cb:11:81:fc:dd:4e:9e:d9:ed:15:9f:d5: cc:a5:c8:ae:80:63:e7:60:73:9a:e0:fd:03:f1:6a: 96:a3:c0:af:96:c8:0d:62:e7:f8:9b:21:42:47:7a: 0f:5d:18:51:b0:ae:e2:62:c1:01:3c:c1:a4:d7:57: 47:cc:29:7c:83:c6:c4:af:e3:fb:65:ac:9f:bf:b6: 22:11:a2:3d:80:28:af:58:69:7b:be:bf:49:79:f7: 9a:f5:c1:b2:fa:40:1a:af:d3:f6:ba:03:9a:10:b4: e1:79:97:13:ae:9c:bd:a6:95:1f:02:43:4b:93:4d: f9:6e:81:33:fe:11:db:0f:3a:bf:3e:51:60:73:7b: 72:67:e1:61:3d:18:44:60:d4:8b:44:97:88:cd:a4: 9e:52:a2:02:80:dd:71:77:df:a4:00:43:88:5f:e6: b8:bf:cd:e6:65:30:78:83:d2:3a:7f:81:fe:a1:08: 75:b1:fb:39:fa:2f:16:c4:f3:49:de:ed:1e:ff:b3: 32:ac:5a:1b:20:3b:e8:c3:4f:8a:51:74:dc:38:ed: 48:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:B2:C4:E7:1E:27:79:D1:F2:33:EE:39:99:FA:29:B3:2B:A8:56:2A X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:5e:ad:de:28:c9:4e:b1:6c:8c:f5:ba:08:2c:12:93:26:70: 0b:f4:83:ae:14:0b:4a:77:4a:9c:8f:64:68:73:71:38:e1:5e: 71:58:c1:8b:7b:31:c3:4d:71:1e:91:15:65:2f:95:84:18:96: 42:61:66:4e:d5:a9:f2:3e:4e:6e:75:04:f9:af:7b:b4:21:2b: 09:78:2b:77:98:26:89:58:7c:a9:e9:36:f8:35:7e:53:c9:6f: a7:48:99:06:84:b0:fe:75:60:47:ad:5b:43:e2:55:2a:4a:84: e4:0b:af:60:ff:95:ab:93:cb:71:59:3f:29:29:54:eb:bd:60: 04:8f:f6:51:3a:55:c4:57:ec:61:89:8a:9a:9b:d9:4c:68:56: 69:3c:02:cc:a7:df:1e:37:84:a4:18:53:06:65:c1:11:9e:a3: 1a:c2:9f:15:82:fd:5d:9e:ae:fc:0a:2f:39:e2:7e:53:cc:23: ad:39:74:53:fc:1e:6c:af:15:79:17:cc:a4:43:b6:ca:97:61: 21:83:70:3d:be:18:21:c3:dc:e3:29:e0:6b:8a:d3:78:0f:62: be:94:8d:91:b5:f0:d2:4d:dc:8b:38:cb:47:5b:95:9e:2b:36: 78:0f:1a:0e:2f:22:b1:54:3d:8d:49:82:81:98:ec:96:09:ef: 3d:6e:eb:72 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUGW/6mL2ljfE3PHzVaOQhchFuY9wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI1MDQyNjAwMDAwN1oX DTI1MDQzMDAwMDAwN1owejFJMEcGA1UEBRNAZWU4OWRjNjI4ODVmZmU1N2ZmNzQz Y2UxZjcwODM0Nzk3M2RiYWQ4Y2JiZGE2NjNkN2ZmMzY3M2RmYTQwYmI3ZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvUX1dnpr/CZLNgi2fMc3ugJr73Jq 8TypeGczINQnbj+HYyVWA7Uzp6ZJG/oR71PLEYH83U6e2e0Vn9XMpciugGPnYHOa 4P0D8WqWo8CvlsgNYuf4myFCR3oPXRhRsK7iYsEBPMGk11dHzCl8g8bEr+P7Zayf v7YiEaI9gCivWGl7vr9Jefea9cGy+kAar9P2ugOaELTheZcTrpy9ppUfAkNLk035 boEz/hHbDzq/PlFgc3tyZ+FhPRhEYNSLRJeIzaSeUqICgN1xd9+kAEOIX+a4v83m ZTB4g9I6f4H+oQh1sfs5+i8WxPNJ3u0e/7MyrFobIDvow0+KUXTcOO1ITQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFFayxOceJ3nR8jPuOZn6KbMrqFYqMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMDhjMmYyNjQtMjNm OS00OWZiLTlkNDMtZjhiNTBiZWM5MjYxL2E1YjAxYmRkLWNkZWItNGNmYy04Yzkz LTdlNzBjNWUwOTMwNi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGBerd4oyU6xbIz1uggsEpMmcAv0g64U C0p3SpyPZGhzcTjhXnFYwYt7McNNcR6RFWUvlYQYlkJhZk7VqfI+Tm51BPmve7Qh Kwl4K3eYJolYfKnpNvg1flPJb6dImQaEsP51YEetW0PiVSpKhOQLr2D/lauTy3FZ PykpVOu9YASP9lE6VcRX7GGJipqb2UxoVmk8Asyn3x43hKQYUwZlwRGeoxrCnxWC /V2ervwKLzniflPMI605dFP8HmyvFXkXzKRDtsqXYSGDcD2+GCHD3OMp4GuK03gP Yr6UjZG18NJN3Is4y0dblZ4rNngPGg4vIrFUPY1JgoGY7JYJ7z1u63I= -----END CERTIFICATE-----Generated at Sat Apr 26 07:30:10 2025 by rpki-client