$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft File: manifest.mft (raw, json) Hash identifier: 8qwIPqDlkojp9uV8e5uYO38i7Irxg3hrf1YLxu18L/g= Subject key identifier: C7:E5:FF:BF:18:20:75:81:86:38:B6:B6:FA:22:08:02:14:0D:01:83 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 38E65C6E84BFAEA6395CCA1C0556145DA2B341FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft Manifest number: 0419 Signing time: Sat 26 Apr 2025 00:00:38 +0000 Manifest this update: Sat 26 Apr 2025 00:00:38 +0000 Manifest next update: Wed 30 Apr 2025 00:00:38 +0000 Files and hashes: 1: 05bc8dbb-c70a-48da-b45b-4448364614ff.roa (hash: 5CYPHRxWfJ3PEs9eD3Tt3hr4lLWTkgio4seBiepverY=) 2: 0bf15d3f-c546-4bb6-a764-82165c384d37.roa (hash: 5kzdK9AjyaCql5M01GVW6devRv8Kmhkc7+LTJZGwFYg=) 3: 0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa (hash: KzV8bX75/Zeinz9MFfPrUSUL++GJqbTyriAsomfLsAg=) 4: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (hash: dvRUX4oeoJxdYeJcXaOx2heD6pheCRMn8wlMKNvyjBQ=) 5: 3407e5b6-a83d-4668-898f-fdbb23092502.roa (hash: uGvGWB/NDer7RACLQsqN3UHXze0EQ+DUUq7K+qsZacY=) 6: 3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa (hash: pyzwtWtvugnjJAQkzPyBldCLe1/01+NabCiaqfVAnp0=) 7: 48a67156-122e-41d4-a2a8-8046cc5ecc41.roa (hash: BYXaRbdt8KoCkkTeiHvqn7XvTC5pBCIvMqVsYwPYkL0=) 8: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (hash: Kc0XLw9eBx4ghIL+7KXd6FxYjRku8SBDxi7Q2XTfbv0=) 9: 6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl (hash: hqPk9WDenvY++HXLVBR6As6uwSYGY4D8yi5b22Ah5A4=) 10: 74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa (hash: OTtbI+AqHa7IMUb459/OtfVvgv0CNVRjV1VRiYtAXus=) 11: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (hash: 1IAXFIoP8Io5D68vUZ+0gvZCz7Ph9J6XToVIIdcTuTQ=) 12: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (hash: p0tRTrL867HAf/Ewqo8kXKHkQDoLIGRb1bTw5dVBRtc=) 13: 9b59fbe4-f242-4dbf-9964-15048c3da996.roa (hash: HyYk1qTMcbdjCco+oBYO4eDbEYlvBNmuV4W9QY2tSXY=) 14: 9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa (hash: IHcjtmjimrvEPtGcAvpRZVP9Kv9U9xdlS5UZzVEnQe8=) 15: a78b90df-233b-4ec6-89d2-de27ac2dc044.roa (hash: cBZSgyc9aRFZyj1jTmt6H/5F9c90GhLTVtOVx3JaGEA=) 16: b3ba338e-4843-454b-abe5-65f09756225a.roa (hash: eptWax8q+JOtZKjpJaa5BqXwHYObIO0PLM5pW6H/QLM=) 17: c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa (hash: ueFgyDx0L2hVGX6abyo8zr5d0CANWtQ6zflQj1SuOHY=) 18: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (hash: TD2vtxZtVv9WlYe1BQ9c7uVYlhJVRmPc/DaPr+gYpXo=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 00:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:e6:5c:6e:84:bf:ae:a6:39:5c:ca:1c:05:56:14:5d:a2:b3:41:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Apr 26 00:00:38 2025 GMT Not After : Apr 30 00:00:38 2025 GMT Subject: serialNumber=0e25f2d0819f42f66fdf6ed1926b578c263510f2c9c120dfe891057867d09df1, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bb:8d:1b:55:50:b7:6c:91:c1:19:70:71:5a: 0f:89:5b:1b:0c:3e:b9:44:22:86:34:52:c8:3e:1f: 52:a6:e9:7e:b1:8e:c5:9c:4a:b1:bc:60:8b:05:d0: 81:31:f7:6d:1a:87:fb:22:97:4b:a3:3a:00:7c:ba: 2d:50:db:79:48:f2:10:5a:4f:25:b8:df:77:80:90: 39:d4:45:55:4b:70:0e:fc:e1:1a:3e:1d:9d:8a:fc: 6c:c8:bc:58:2a:90:98:79:78:db:c4:81:8f:9f:89: ca:ba:3a:2f:a6:01:45:ad:21:44:45:ea:5c:78:10: 11:15:b9:69:7e:33:01:29:37:d1:96:59:30:d5:27: 23:c4:8e:57:70:fc:9c:53:9f:06:2a:34:c7:29:8f: 61:5b:4d:79:bf:9f:65:74:4d:eb:7d:7a:3d:c6:20: 4b:02:fc:76:4e:2a:ad:5b:ec:32:81:7a:23:6b:48: 43:e3:02:2c:a6:ab:5f:05:17:d6:46:89:df:8d:b2: 57:8b:9e:bc:d1:97:e5:ca:2b:22:0f:22:ed:d1:68: 3e:da:ab:7d:ed:e1:95:ed:f8:49:e4:0b:16:e3:6b: b6:90:be:7e:b2:ce:9e:84:cc:7d:07:81:d8:97:ef: 89:11:ca:7f:4c:98:af:fe:37:86:50:ff:31:be:c9: 0c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E5:FF:BF:18:20:75:81:86:38:B6:B6:FA:22:08:02:14:0D:01:83 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:68:22:43:3c:22:09:8f:b9:36:f0:bb:c4:7f:0c:d0:a0:37: b3:b5:ea:3b:78:65:32:33:2f:cc:d4:ca:7c:43:2e:77:5e:7f: 5a:b5:d6:9a:5d:cb:20:26:1f:c8:40:ac:c0:a2:49:67:f1:16: 56:c2:72:53:12:f8:e2:f6:2a:cd:28:8b:ed:d9:d0:a2:20:59: 23:c1:a5:1f:01:d0:35:99:8b:75:91:a1:4d:59:79:e5:30:0b: 69:ca:ce:76:ca:ee:ae:31:f0:09:a1:5a:65:e4:fa:c0:ee:7e: 7d:38:35:b5:5d:22:c5:08:a4:89:e8:1d:18:c6:4b:3b:26:44: 6f:08:c0:75:30:69:d5:85:28:6d:34:4e:65:f4:ff:97:e4:d9: 11:5f:4f:1a:21:7f:17:5a:4b:63:26:c8:87:87:47:8e:94:b9: bf:9d:9e:8e:23:3b:c9:e6:23:c3:fb:d1:fa:0b:6c:a2:c7:4c: 9c:e5:f3:d4:58:0d:a9:95:86:85:3f:57:d4:38:4f:08:c9:a9: 02:14:a3:04:bb:3b:04:56:b2:c8:c3:e8:d3:ed:34:3e:01:a1: 1f:8b:71:cb:82:22:7c:5d:4d:8c:87:07:65:1a:2f:b4:0a:31: 1f:dc:d9:c1:1c:47:bc:46:16:f9:12:76:e3:e6:3b:c4:92:87: 6a:0b:90:7e -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUOOZcboS/rqY5XMocBVYUXaKzQfwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDQyNjAwMDAzOFoX DTI1MDQzMDAwMDAzOFowejFJMEcGA1UEBRNAMGUyNWYyZDA4MTlmNDJmNjZmZGY2 ZWQxOTI2YjU3OGMyNjM1MTBmMmM5YzEyMGRmZTg5MTA1Nzg2N2QwOWRmMTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAubuNG1VQt2yRwRlwcVoPiVsbDD65 RCKGNFLIPh9Spul+sY7FnEqxvGCLBdCBMfdtGof7IpdLozoAfLotUNt5SPIQWk8l uN93gJA51EVVS3AO/OEaPh2divxsyLxYKpCYeXjbxIGPn4nKujovpgFFrSFERepc eBARFblpfjMBKTfRllkw1ScjxI5XcPycU58GKjTHKY9hW015v59ldE3rfXo9xiBL Avx2TiqtW+wygXoja0hD4wIspqtfBRfWRonfjbJXi5680ZflyisiDyLt0Wg+2qt9 7eGV7fhJ5AsW42u2kL5+ss6ehMx9B4HYl++JEcp/TJiv/jeGUP8xvskM0wIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFMfl/78YIHWBhji2tvoiCAIUDQGDMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4ZTVkYmQyMTkvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZGI5YTM3MmEtMDli Yy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5LzZlY2IzY2NhLTQ4OGQtNDNiOS1hNTBi LWQzN2MwYzU1YTllMS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAEhoIkM8IgmPuTbwu8R/DNCgN7O16jt4 ZTIzL8zUynxDLndef1q11ppdyyAmH8hArMCiSWfxFlbCclMS+OL2Ks0oi+3Z0KIg WSPBpR8B0DWZi3WRoU1ZeeUwC2nKznbK7q4x8AmhWmXk+sDufn04NbVdIsUIpIno HRjGSzsmRG8IwHUwadWFKG00TmX0/5fk2RFfTxohfxdaS2MmyIeHR46Uub+dno4j O8nmI8P70foLbKLHTJzl89RYDamVhoU/V9Q4TwjJqQIUowS7OwRWssjD6NPtND4B oR+LccuCInxdTYyHB2UaL7QKMR/c2cEcR7xGFvkSduPmO8SSh2oLkH4= -----END CERTIFICATE-----Generated at Sat Apr 26 15:15:40 2025 by rpki-client