$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft File: manifest.mft (raw, json) Hash identifier: QUoNbYoaAbbZkSsIzIOCqlqp34u1EGM4lgOfjyq66/w= Subject key identifier: E6:F1:CF:21:E6:9E:1B:34:B9:14:5F:BE:AF:83:DA:28:4F:14:F4:AF Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 05E52BE8E49A9B03BC1D03320896202CC2AC5F8E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft Manifest number: 02BD Signing time: Sat 18 May 2024 04:40:28 +0000 Manifest this update: Sat 18 May 2024 04:40:28 +0000 Manifest next update: Wed 22 May 2024 04:40:28 +0000 Files and hashes: 1: 16f57147-886c-4350-a247-eceffe69fb96.roa (hash: pD2VKfUrXL+l4winhCwejSSKC1RSB7llpVSImUj8D/c=) 2: 32bf2c39-b536-43d0-b557-f68d8ee64091.roa (hash: zU0uDCDMNbp8BXV4hW9md977Vm+6PRHNQHcbyZsmz4Q=) 3: 3a77dbde-8981-442a-a4a0-5e4ad5a49e85.roa (hash: 18VACQmbPtARXbnvtGU+qWGsXE+qcDLC7eKrRgt8oF4=) 4: 3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa (hash: ZjI/oNiK/Epnp/Rnxenf3xyvlNj6BlNCM0PwpATOXRM=) 5: 4dd57872-4286-4ae3-96b4-e36652d55044.roa (hash: Y9z94eWpQ/y9+oq/HkdsGmLwc9r1U5fsM2f63nWltDI=) 6: 8dafa80e-23c0-4310-ae76-0199a9aafc6f.roa (hash: OObU7xdADKMTh0vHxdduwwaciuHyZv1UKJdxNoEpIQo=) 7: 906a6ed0-3318-443d-9e2d-1940710be595.roa (hash: MTPRfb6ZQZX+8NbRmITqua3XfyE6S3nDdQg/JP6iDeY=) 8: a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl (hash: 4kDn8fqfLmQlYywTKR1nWluWge87aq/axmkD7FCJ+FQ=) 9: c29c3a7e-a7ae-4418-af26-16585304f365.roa (hash: hw8B4ilvB8YClNS9gORa3ceTF/I4GeatG1Tks43GWfg=) 10: c46353d6-f66a-4ac6-aeca-c8f320ebee9a.roa (hash: ev3iE95JvfcGkU/ACohKQtzuThptTzSF9X4/4LeyWqY=) 11: ce35c6d4-7339-4288-8a0e-b63877fb2df7.roa (hash: MwLX9zf9QE+0KSdNNKaCOLYWtXltWQDQ64SFUYMUJVg=) 12: cf289da6-3eab-42c8-9297-c9a682f901df.roa (hash: hewXND8j8ips3XKdirTe8mdYg7DeNbeNzdzlvt6ZzgE=) 13: d1333e17-04fe-4e6d-bd71-2a9ac1fe867f.roa (hash: QrNWeD25kNeK5TXrytzXjIMFPecG4aztCxzHay80+zM=) 14: e05f4504-bb83-4b18-bbd9-8d82e42913d5.roa (hash: 5Lo8o972J4CwGJmH0pg21tRSEmwN9Rck5oHCiIrx9w4=) 15: f60efe51-797b-4b40-95ef-52a2e036f36a.roa (hash: rAVJCAf5D1Xva0vnL+K1bFUs0NhTUj+MSAdnsEPmTJs=) 16: fa2f00a1-5565-44e6-8f22-91f65926beed.roa (hash: dM2pM2rdXjA5BHMlj2dA9seQ/3McjIMX5cGi6J1C5Hc=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 04:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:e5:2b:e8:e4:9a:9b:03:bc:1d:03:32:08:96:20:2c:c2:ac:5f:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: May 18 04:40:28 2024 GMT Not After : May 22 04:40:28 2024 GMT Subject: serialNumber=bd3e7aea6c5dde324e3687da0ecec14b3995035739458273ad48d94afeb2f9e4, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f3:45:5e:73:4f:c0:42:40:c3:a7:aa:0e:07: 25:d6:24:be:8e:35:30:a1:33:88:29:1e:7e:90:8b: 8a:bd:72:7b:84:cc:0c:cc:d4:88:1e:5d:a7:a3:94: 6b:15:7d:53:10:86:d7:35:56:a1:11:f2:e7:f4:cb: c7:af:c0:83:ad:62:88:05:b4:57:81:9e:1c:72:ba: dc:a7:6d:66:c7:2c:5c:46:ba:07:fa:6e:eb:b2:bc: 93:45:d0:1b:3e:75:c6:69:f9:a2:4e:f6:1f:d0:6a: 15:14:8c:2e:56:81:ec:af:d6:e1:43:aa:fc:14:25: 4f:96:65:2b:7d:ef:f0:2a:97:9b:3d:00:a4:57:76: b8:1b:d8:31:d6:18:b2:5f:ac:f0:08:a1:42:22:5b: cd:e3:24:8f:40:22:2b:0c:65:ab:47:86:5e:48:b0: 9e:27:19:23:13:7b:13:0b:2b:ba:5b:dd:d8:e6:3f: be:63:08:97:2d:eb:a3:d3:f5:62:eb:58:d6:3b:b7: 36:bc:53:f6:35:e1:c9:16:84:4f:5a:76:58:db:6f: d7:c7:aa:01:1c:3f:1e:e3:6b:9b:6b:28:5a:09:f6: 4b:6d:36:e0:71:07:bf:42:58:3d:65:4a:24:84:96: c7:48:e1:f4:98:12:c2:34:a0:83:9f:d6:5f:b4:07: 50:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:F1:CF:21:E6:9E:1B:34:B9:14:5F:BE:AF:83:DA:28:4F:14:F4:AF X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:16:90:83:ea:6d:67:fa:47:fe:29:f9:f0:f8:b4:f4:dc:2d: 95:3e:c9:7e:c3:0d:7a:9b:e7:55:26:9e:b0:62:04:8e:4d:02: 82:cc:a8:a4:fa:3d:b9:6c:c2:bd:9c:32:ac:f4:cd:2d:8d:ea: df:17:c3:3f:ed:31:69:02:e9:dc:72:cb:e0:2d:85:58:40:a0: 3e:a1:8f:c9:0e:93:fe:82:d1:57:c4:18:6a:e0:18:ee:8e:16: 75:be:a6:dd:9d:ef:54:c1:e6:17:da:03:81:c3:bf:a1:4e:cd: 35:cb:a9:c5:49:c7:d9:eb:7e:3a:6a:3a:fd:96:4c:ac:60:f6: 68:9b:16:60:61:2c:8d:ff:d8:04:5a:0f:06:8d:c8:2b:de:1a: 44:68:6a:c4:f0:54:d2:fd:0a:c6:96:c5:2f:7b:8d:39:da:35: 23:3e:34:bd:3c:09:0d:8a:fd:9e:3a:48:5a:be:7a:87:35:c6: f0:b0:4c:9e:35:2c:1a:70:1f:ee:18:79:75:67:e2:64:ff:4d: 1f:d2:ee:ba:53:d4:81:a8:8f:a2:ed:5f:b2:53:39:21:ab:3a: 0a:bf:f1:e6:83:28:b8:22:32:14:19:4e:43:93:7b:ef:a7:4a: 26:45:b1:7f:9a:fa:01:7c:2b:a6:a5:cf:43:da:bf:ab:21:40: 78:38:1b:89 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUBeUr6OSamwO8HQMyCJYgLMKsX44wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI0MDUxODA0NDAyOFoX DTI0MDUyMjA0NDAyOFowejFJMEcGA1UEBRNAYmQzZTdhZWE2YzVkZGUzMjRlMzY4 N2RhMGVjZWMxNGIzOTk1MDM1NzM5NDU4MjczYWQ0OGQ5NGFmZWIyZjllNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfNFXnNPwEJAw6eqDgcl1iS+jjUw oTOIKR5+kIuKvXJ7hMwMzNSIHl2no5RrFX1TEIbXNVahEfLn9MvHr8CDrWKIBbRX gZ4ccrrcp21mxyxcRroH+m7rsryTRdAbPnXGafmiTvYf0GoVFIwuVoHsr9bhQ6r8 FCVPlmUrfe/wKpebPQCkV3a4G9gx1hiyX6zwCKFCIlvN4ySPQCIrDGWrR4ZeSLCe JxkjE3sTCyu6W93Y5j++YwiXLeuj0/Vi61jWO7c2vFP2NeHJFoRPWnZY22/Xx6oB HD8e42ubayhaCfZLbTbgcQe/Qlg9ZUokhJbHSOH0mBLCNKCDn9ZftAdQqwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFObxzyHmnhs0uRRfvq+D2ihPFPSvMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMDhjMmYyNjQtMjNm OS00OWZiLTlkNDMtZjhiNTBiZWM5MjYxL2E1YjAxYmRkLWNkZWItNGNmYy04Yzkz LTdlNzBjNWUwOTMwNi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGAWkIPqbWf6R/4p+fD4tPTcLZU+yX7D DXqb51UmnrBiBI5NAoLMqKT6Pblswr2cMqz0zS2N6t8Xwz/tMWkC6dxyy+AthVhA oD6hj8kOk/6C0VfEGGrgGO6OFnW+pt2d71TB5hfaA4HDv6FOzTXLqcVJx9nrfjpq Ov2WTKxg9mibFmBhLI3/2ARaDwaNyCveGkRoasTwVNL9CsaWxS97jTnaNSM+NL08 CQ2K/Z46SFq+eoc1xvCwTJ41LBpwH+4YeXVn4mT/TR/S7rpT1IGoj6LtX7JTOSGr Ogq/8eaDKLgiMhQZTkOTe++nSiZFsX+a+gF8K6alz0Pav6shQHg4G4k= -----END CERTIFICATE-----Generated at Sat May 18 05:19:52 2024 by rpki-client on console-fra.rpki-client.org