$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft File: manifest.mft (raw, json) Hash identifier: k+wnkYF5FGeNsMQrZHfHPk2hicdTh8rG8nkALy3C3mY= Subject key identifier: D6:0A:6B:DF:E8:19:99:E4:38:1F:73:A5:7B:7B:B0:A2:4E:1C:14:83 Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 4A25E30F935D15586DACC3E62AA3972AD34A38E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft Manifest number: 041F Signing time: Sat 05 Apr 2025 00:02:23 +0000 Manifest this update: Sat 05 Apr 2025 00:02:23 +0000 Manifest next update: Wed 09 Apr 2025 00:02:23 +0000 Files and hashes: 1: 098c0cc3-be06-46b9-86e2-aeb99985dd07.roa (hash: 97HhCD/JzhOZcEeyNFXbBqt9KzCX7d58cvS81VCd3PY=) 2: 2e40ee0b-9aa9-4919-a079-9712212e127c.roa (hash: YqDQ1oWcOsDjaYuoLfWju8tz1wJijQsb1iBXXeiLtEc=) 3: 32bf2c39-b536-43d0-b557-f68d8ee64091.roa (hash: sP4xz+e87jO3Q2PbKb07BbfqWgnQq0te9EyKJeFFxjc=) 4: 3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa (hash: mKeyvvTR2zBgAdYnAkxhbsZux9qPPKyahP8FQNmYWPg=) 5: 40956690-3661-49f2-8ebc-2fa5a47a98ad.roa (hash: cDTSWMyX2qChE/RGmQFMxY61o3wZbpvIH/z54Njkccw=) 6: 4cb3e9f9-46a2-41eb-a4b7-75b53d791f33.roa (hash: glA00a+xW6blY5MbOOYwXyP+3EjWmpx341UjWDRm4W4=) 7: 55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa (hash: cyHtC7AcRsWl+Ra73qIokyphBJjoCr44tUWIwFSv9ho=) 8: 565f9740-389f-45ac-956e-b96e19889315.roa (hash: NE4YcS6sz7tgbgjIM7v+TB5zJs9jeWphU4dmzb8xoDE=) 9: 72c1271b-5ed8-4478-ba43-6741904af7c8.roa (hash: FQlrFCP1kSY1zbybrF7amOvh6FhvuWYUVk0NdoBJ/0Y=) 10: 9d703748-f446-47a1-b0a7-5e3357f2e0d2.roa (hash: ncu1fnEVtnwYUzAOQjVB2Y085lpslobK9cYySM8J0nE=) 11: a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl (hash: 89jqPa/qgeH9Dk0GaOYsJkyBkLX8KN/vl4ZEMm1gPew=) 12: c18b0845-fc95-41d6-b476-af4e1e466849.roa (hash: U5gsrRcOEiF3it87jNAEtnjVP3Fk0OjpCX8syjidUr4=) 13: e5ffe65e-7287-4628-8759-7c141866ee12.roa (hash: pw0KYiowixGQM5I4iUENj4X7eotqG+5SP0Utc/gBlsc=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:02:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:25:e3:0f:93:5d:15:58:6d:ac:c3:e6:2a:a3:97:2a:d3:4a:38:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000 Validity Not Before: Apr 5 00:02:23 2025 GMT Not After : Apr 9 00:02:23 2025 GMT Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:fd:47:04:7d:56:27:1e:9c:46:51:96:87:4e: 1c:48:17:77:d7:32:fe:4c:f8:6c:b2:b9:46:88:97: 76:2b:45:d1:e5:57:ce:cd:f5:e3:28:72:3c:f4:8d: 17:5c:e2:32:14:ab:bc:c8:fe:e0:b4:83:09:f7:76: 66:41:46:9c:66:aa:40:3a:45:52:1a:08:9f:3b:a4: aa:91:44:1d:8a:66:45:24:da:45:34:2f:4d:a1:17: 2b:6b:f1:94:ea:6c:67:5f:72:35:0d:cc:45:30:87: 33:c3:0d:a7:d0:03:c5:9f:96:a4:6f:b8:4c:90:8a: 63:05:1b:71:ca:7e:53:22:6a:7c:f9:b7:ae:31:c9: 2b:94:ee:be:41:8f:86:2a:26:74:f3:59:d4:a0:85: f5:c7:c7:bf:cf:ed:32:32:7b:82:8c:e3:e3:5a:0e: 0e:db:1f:80:93:fc:17:5d:58:b3:0a:ff:f0:6d:c6: 6d:f5:dd:06:41:8e:ef:9f:5a:8d:71:b9:3e:eb:dc: d9:76:6e:15:c2:71:16:59:26:38:5c:c1:72:21:04: 3e:e6:41:d9:74:45:39:0f:31:c6:f8:29:31:6c:2b: e7:07:da:6c:d2:58:dc:51:2f:22:a7:8c:89:02:a0: 62:28:8a:d2:fd:98:0f:55:70:9b:69:84:c2:5d:bb: a1:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:0A:6B:DF:E8:19:99:E4:38:1F:73:A5:7B:7B:B0:A2:4E:1C:14:83 X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:30:8e:3a:2c:b2:e3:52:b9:b7:0b:54:77:9d:ac:5e:fa:a7: 5a:bb:2b:b1:53:39:a5:f0:e0:0e:28:1b:d0:38:8f:6e:a6:b4: 1a:10:c9:5a:ad:0f:46:dd:f1:03:c8:e5:69:5a:65:95:4a:20: c5:17:54:7c:18:14:45:e8:39:6c:a4:e9:60:74:0d:0c:22:25: d7:36:20:fc:a4:95:9a:0d:88:af:95:74:3e:48:85:79:e4:87: 63:08:fa:74:a5:36:e4:ad:ee:e1:2e:07:f9:60:41:7f:fb:c2: e8:7a:a4:c0:e3:49:68:05:5f:a1:69:c0:13:ab:ad:9e:6b:90: db:ee:c4:b3:16:62:c6:7d:e2:e0:f2:71:a5:f7:d5:3a:e9:cd: e6:f8:dc:3f:ff:d0:9c:f6:71:0b:c1:7e:86:d0:0c:33:94:7f: 46:ac:7b:d9:48:1a:61:d5:43:8d:42:2b:78:26:95:10:8a:eb: a0:f3:fb:fe:89:ca:4c:ac:63:27:3a:b6:cd:23:b5:0d:e2:55: 91:de:d7:c1:5c:de:26:58:f7:50:d1:e9:15:02:d5:6d:c5:94: 8e:91:2b:13:55:97:a7:63:bb:56:91:19:ab:85:88:49:08:47: b6:cb:ef:4c:7c:34:9c:66:0b:e6:8a:19:32:98:b0:33:59:58: e6:75:a2:75 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUSiXjD5NdFVhtrMPmKqOXKtNKOOAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI1MDQwNTAwMDIyM1oX DTI1MDQwOTAwMDIyM1owejFJMEcGA1UEBRNAYjQ5Y2ExNmIyMDUxNzkxNGE0MmIw Y2VkOWNjZjRlODE1MGEwZjZmYWM5NjM3NThlNjRkMGZjODM2ZDhmOGNjYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4v1HBH1WJx6cRlGWh04cSBd31zL+ TPhssrlGiJd2K0XR5VfOzfXjKHI89I0XXOIyFKu8yP7gtIMJ93ZmQUacZqpAOkVS GgifO6SqkUQdimZFJNpFNC9NoRcra/GU6mxnX3I1DcxFMIczww2n0APFn5akb7hM kIpjBRtxyn5TImp8+beuMckrlO6+QY+GKiZ081nUoIX1x8e/z+0yMnuCjOPjWg4O 2x+Ak/wXXVizCv/wbcZt9d0GQY7vn1qNcbk+69zZdm4VwnEWWSY4XMFyIQQ+5kHZ dEU5DzHG+CkxbCvnB9ps0ljcUS8ip4yJAqBiKIrS/ZgPVXCbaYTCXbuh4wIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNYKa9/oGZnkOB9zpXt7sKJOHBSDMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMDhjMmYyNjQtMjNm OS00OWZiLTlkNDMtZjhiNTBiZWM5MjYxL2E1YjAxYmRkLWNkZWItNGNmYy04Yzkz LTdlNzBjNWUwOTMwNi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAAcwjjossuNSubcLVHedrF76p1q7K7FT OaXw4A4oG9A4j26mtBoQyVqtD0bd8QPI5WlaZZVKIMUXVHwYFEXoOWyk6WB0DQwi Jdc2IPyklZoNiK+VdD5IhXnkh2MI+nSlNuSt7uEuB/lgQX/7wuh6pMDjSWgFX6Fp wBOrrZ5rkNvuxLMWYsZ94uDycaX31Trpzeb43D//0Jz2cQvBfobQDDOUf0ase9lI GmHVQ41CK3gmlRCK66Dz+/6JykysYyc6ts0jtQ3iVZHe18Fc3iZY91DR6RUC1W3F lI6RKxNVl6dju1aRGauFiEkIR7bL70x8NJxmC+aKGTKYsDNZWOZ1onU= -----END CERTIFICATE-----Generated at Sat Apr 5 22:26:27 2025 by rpki-client