$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft File: manifest.mft (raw, json) Hash identifier: 7skzrZmqFDWVqCCs+RwaM8hZDCe0SzVJEbzw8NgAGFo= Subject key identifier: 72:2F:FD:6D:2F:65:EE:BB:61:DD:1E:B3:3A:7F:50:EF:22:FA:92:39 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 0B816EB1377FD4774DB3254D6116222889F65DDC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft Manifest number: 0404 Signing time: Sat 05 Apr 2025 00:00:05 +0000 Manifest this update: Sat 05 Apr 2025 00:00:05 +0000 Manifest next update: Wed 09 Apr 2025 00:00:05 +0000 Files and hashes: 1: 05bc8dbb-c70a-48da-b45b-4448364614ff.roa (hash: ocvLASQXz8rTlhkLDkDlkLfx5oTzgW1cnsfFcbyEZJM=) 2: 0bf15d3f-c546-4bb6-a764-82165c384d37.roa (hash: UAg3zdQs9f6TURCal/DbHrdZFr3QPbQ5YWln3Tgmxo4=) 3: 0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa (hash: ajby4SBcL7viiqBlsrhU5zek82xmkiOHrOcWywgKr70=) 4: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (hash: 3pUr2KBCXDoMME1YwvVZVp1zVblqNScI8gnwyWRZPhY=) 5: 3407e5b6-a83d-4668-898f-fdbb23092502.roa (hash: cH943DC4IwcYYVM5xLtZ3NJChO5pM1whgAnx0K/weZw=) 6: 3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa (hash: zleg3iLUDvzfE9AAMQ4RXtmzwE02ahDI+utvfhS8txo=) 7: 48a67156-122e-41d4-a2a8-8046cc5ecc41.roa (hash: JZnug/HXYEKzXGv4H/uTH5u0KbF5pS07f3JCnbXmFXY=) 8: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (hash: 2MNdL/yl6rqvE6V3u/J52Igmy9acpPEJJ6ZU/x29xXg=) 9: 6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl (hash: LL3ztsank6+Xh2ub3HOwbDnSNeBIvaNyL0OcviBWH4k=) 10: 74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa (hash: b2ja9xAZSOQ0UudwTblH3Dp1d/9T84irOvR5C6pUGgQ=) 11: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (hash: tTvQ3P4uk46c75pN/VQqPIQXJZVxXgZIUWGbjSrm7ig=) 12: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (hash: FipvBuxAAt9UcMBwE/aNfqxpEQPUF5ijBQUDz2VBT/Y=) 13: 9b59fbe4-f242-4dbf-9964-15048c3da996.roa (hash: nWg+LBylrV8IN5SsgajUSoM2vuAYTTyizMzVkBxnL6M=) 14: 9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa (hash: IHcjtmjimrvEPtGcAvpRZVP9Kv9U9xdlS5UZzVEnQe8=) 15: a78b90df-233b-4ec6-89d2-de27ac2dc044.roa (hash: ISemu6eLKXbr9bCieynUwV0Nj9Kofcdyhhfq84acoTY=) 16: b3ba338e-4843-454b-abe5-65f09756225a.roa (hash: flWc9GKvZYhFvGoRjBYrlT5j+NMQl+txSY7MAROpiIg=) 17: c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa (hash: WOrCZsuSU93907mrq1/8L9PYRpGTUReLldH2W+51axM=) 18: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (hash: TD2vtxZtVv9WlYe1BQ9c7uVYlhJVRmPc/DaPr+gYpXo=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:00:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:81:6e:b1:37:7f:d4:77:4d:b3:25:4d:61:16:22:28:89:f6:5d:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000 Validity Not Before: Apr 5 00:00:05 2025 GMT Not After : Apr 9 00:00:05 2025 GMT Subject: CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5b:a1:b7:d9:c1:03:43:eb:43:74:f4:78:e8: f9:87:1f:47:8d:10:1d:c7:19:d9:61:fb:44:8b:c2: 19:6e:b2:84:dd:8c:cc:82:2f:66:27:2c:8c:2a:88: 11:3d:30:4f:45:e9:f8:95:f1:8b:55:8c:c8:c9:20: 6c:49:08:4b:49:d2:cd:17:da:cd:48:ca:97:cc:ca: 30:15:de:24:da:de:8f:77:d2:7c:52:99:d3:74:56: 35:2c:5f:a7:0f:fa:c5:00:1a:20:2a:44:b1:9e:3c: 28:2e:7b:2f:bc:79:d7:61:2a:e4:44:ae:5a:be:0d: 3b:b9:7a:62:bb:90:3b:c8:6e:7d:51:81:cb:40:e8: e4:49:fd:89:9e:b6:00:6a:4d:ea:38:ab:b3:91:bd: 97:d6:77:81:b2:0c:de:ab:05:71:a3:1e:2b:e8:58: 91:5e:e4:b3:47:6e:0a:7f:cc:a8:54:18:e0:45:41: 74:65:95:39:79:9c:1a:fb:41:aa:78:b7:9e:85:a0: eb:50:77:0f:d5:4c:bc:6d:62:ee:d8:1b:6a:37:9b: ef:f6:f4:45:42:19:8e:d9:5f:5e:98:30:28:9c:5d: 2d:16:03:87:d1:c9:d3:f8:19:a2:f9:22:4f:f1:84: ff:c2:dd:ab:7c:87:1b:80:16:07:d1:a3:d2:59:fb: 6d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:2F:FD:6D:2F:65:EE:BB:61:DD:1E:B3:3A:7F:50:EF:22:FA:92:39 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:89:4f:98:33:a1:af:ac:cb:a2:d9:15:54:6d:55:98:54:13: dc:74:70:34:d4:ae:12:35:c1:12:62:fa:ee:df:2d:80:66:74: 7f:9b:5d:6a:6f:06:21:cf:35:da:cd:81:d8:89:cd:6f:3a:19: c7:91:c8:7b:cf:15:6b:75:e9:2d:e5:6b:ef:11:70:d0:8a:be: 34:df:43:3a:cb:1e:f9:c3:be:9d:3c:06:2f:f3:fd:10:f8:b9: 19:b7:74:aa:77:25:37:59:43:06:b9:b6:bd:25:2e:f1:69:8e: b3:6d:91:c2:d4:76:be:3a:87:97:0e:96:0a:09:aa:bc:82:b3: 71:1d:bd:4b:8a:c7:e8:75:f7:de:0d:0b:17:9c:ce:da:9c:e5: 31:df:f4:15:e3:c7:00:dd:f5:1b:34:0e:9a:ef:9a:52:25:11: 25:b3:84:d0:ff:58:c3:69:71:56:16:4a:9c:ee:d4:f7:97:1a: 33:39:12:45:d0:8c:05:d4:7e:38:47:a8:58:98:34:08:8b:65: 8e:13:7e:a1:df:63:40:15:f6:e6:b8:56:5a:ed:cc:56:4a:d4: 97:cd:70:ea:58:58:76:bd:ab:b5:40:e9:b8:35:ee:01:43:c4: d2:55:f2:62:ba:50:eb:66:89:3f:60:31:00:b0:b7:c9:cd:42: 8c:fa:ac:1e -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUC4FusTd/1HdNsyVNYRYiKIn2XdwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDQwNTAwMDAwNVoX DTI1MDQwOTAwMDAwNVowejFJMEcGA1UEBRNANDI1MTk1Njk4YjI5ZDg0MGVmMGVh NmZlNjNjOGU5OThiNWJiOWJlYjdkYjVhMTQyMGM0ODRjMjEzNmFkY2ZjYTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApluht9nBA0PrQ3T0eOj5hx9HjRAd xxnZYftEi8IZbrKE3YzMgi9mJyyMKogRPTBPRen4lfGLVYzIySBsSQhLSdLNF9rN SMqXzMowFd4k2t6Pd9J8UpnTdFY1LF+nD/rFABogKkSxnjwoLnsvvHnXYSrkRK5a vg07uXpiu5A7yG59UYHLQOjkSf2JnrYAak3qOKuzkb2X1neBsgzeqwVxox4r6FiR XuSzR24Kf8yoVBjgRUF0ZZU5eZwa+0GqeLeehaDrUHcP1Uy8bWLu2BtqN5vv9vRF QhmO2V9emDAonF0tFgOH0cnT+Bmi+SJP8YT/wt2rfIcbgBYH0aPSWfttXQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFHIv/W0vZe67Yd0eszp/UO8i+pI5MB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4ZTVkYmQyMTkvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZGI5YTM3MmEtMDli Yy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5LzZlY2IzY2NhLTQ4OGQtNDNiOS1hNTBi LWQzN2MwYzU1YTllMS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBABCJT5gzoa+sy6LZFVRtVZhUE9x0cDTU rhI1wRJi+u7fLYBmdH+bXWpvBiHPNdrNgdiJzW86GceRyHvPFWt16S3la+8RcNCK vjTfQzrLHvnDvp08Bi/z/RD4uRm3dKp3JTdZQwa5tr0lLvFpjrNtkcLUdr46h5cO lgoJqryCs3EdvUuKx+h1994NCxecztqc5THf9BXjxwDd9Rs0DprvmlIlESWzhND/ WMNpcVYWSpzu1PeXGjM5EkXQjAXUfjhHqFiYNAiLZY4TfqHfY0AV9ua4VlrtzFZK 1JfNcOpYWHa9q7VA6bg17gFDxNJV8mK6UOtmiT9gMQCwt8nNQoz6rB4= -----END CERTIFICATE-----Generated at Sat Apr 5 17:51:14 2025 by rpki-client