$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft File: manifest.mft (raw, json) Hash identifier: A1Z/fpgD0I2zWY71jQ6pBZIoWX3Fl7XkSe4sY2ytagk= Subject key identifier: 74:80:47:46:7A:EB:D5:2E:D6:C1:5D:50:EB:94:A4:1F:0E:52:FB:84 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 578E2124A2788A0AEAD292858D726729964E9F0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft Manifest number: 02B5 Signing time: Fri 24 May 2024 15:03:23 +0000 Manifest this update: Fri 24 May 2024 15:03:23 +0000 Manifest next update: Tue 28 May 2024 15:03:23 +0000 Files and hashes: 1: 192876e6-f42e-4593-9c92-6d3b76ebdac4.roa (hash: 5K/bFemv23sCQCHogMVyf77eXkn4/QOO8kpio1yJ4Dw=) 2: 1c3d5732-1954-4639-aac1-b9229445deac.roa (hash: 0/FAEtvHZG411SY4/v1OxpWJEFpLid80K6Qab+paSQE=) 3: 4708e5f0-c14b-44f3-b781-2e7bad510965.roa (hash: kWT7MS0qr8LkEbFTQoqpffiZm3rp4kCxbbVx2oHW0Nc=) 4: 4d07a3cb-aaaf-4eb6-8cd9-146e8de61f27.roa (hash: qo1cgbTkxx31d7MryOvzG2ACnTz/6yX43U8lof531N4=) 5: 54b92ba8-ed43-4a2c-99b4-5c5cf8c9408a.roa (hash: /ketaEI2Se8UJwWiMe6oLVrJp/HxNxoeNS1Gl48OYmU=) 6: 5defafc1-b226-4bbc-87e7-556b8bee16db.roa (hash: hQ4vs7Luvt+AE5b00l/IQ7lgZLNJotDOG0iGJqURxTA=) 7: 6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl (hash: OFJGrcmrXUu3naL33aZ6AMHafW9fsuq/MAZQpjFA1SI=) 8: 751e30fc-3483-4f10-a851-e6330352553c.roa (hash: Ip7WEGwE7abANY09MPQyQh4mz0G407uiokcpWit9ptk=) 9: 7a18d866-9fb0-44dc-8cfd-5461500736e2.roa (hash: 1joggztpTU9GzbpTDQNxGpqhFg5N0v2jrQOAvvtSvGU=) 10: 9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa (hash: XKjq6+sleOXhlAyUQG3IhKjkfrbAt/g0nUKc74s9Mhw=) 11: abbc8be4-07db-4e6d-8e79-d43813f48041.roa (hash: Heh9BsuMLrjcYa1DZ4F64E6lpf0cGvRI6Orw5WMu6LM=) 12: befec666-436f-4e82-8b41-4bd8d82646ff.roa (hash: yHxxGgBVV75NEt381oyrqSgLSnV9d1kxC5FxPtmgW3E=) 13: ca0293e8-a412-4e93-bccc-69fffbada891.roa (hash: /d6khK1ENXTwfzgfFHJOFin1xjn5DSjeRidFj89xRYo=) 14: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (hash: LLhHIBJsKWi9SJfNIuQR5RtsaCIHyow+8lf6XHHVGk0=) 15: f9ff7c3b-311a-406b-8de4-c655cfdeea7e.roa (hash: DAMxJLnSAbgP30etErfXzojiJsOxxNF53rQIBEgblu4=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 15:03:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:8e:21:24:a2:78:8a:0a:ea:d2:92:85:8d:72:67:29:96:4e:9f:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 24 15:03:23 2024 GMT Not After : May 28 15:03:23 2024 GMT Subject: serialNumber=f6debf50cd3d7765cc314369555ecb81bbb15b55e8d7471c9b1e6aedbd497722, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:55:1f:4e:64:f9:71:bc:e8:e4:26:0a:bd:d3: 88:06:0c:40:ae:60:f1:49:0b:40:fd:84:86:8a:e0: 2b:5d:d1:2b:05:ac:83:64:90:f4:26:b5:0d:30:bd: 59:9a:e6:a7:47:ca:a5:a5:cf:e0:78:77:1c:1a:1d: 9a:88:bc:e5:03:55:0a:b7:da:34:f7:12:a4:07:24: bc:4d:08:e5:b4:d4:43:99:0f:cf:fa:b2:e7:63:6d: 8e:86:6e:d5:92:d3:79:68:dc:03:55:92:1d:1d:eb: 08:96:b8:c8:f9:2f:34:a0:f3:c0:0c:ed:ff:8e:c6: a1:6d:b2:72:a9:6c:ef:c5:c0:b2:be:3f:82:0e:cc: 8e:39:7a:8b:f3:fa:be:cc:f0:b3:61:54:2c:a2:c3: fb:06:bb:c7:95:53:46:90:4b:d2:0e:9c:1c:bf:32: 3f:b1:d2:ae:27:8d:dd:dd:7c:cf:bb:99:6d:df:15: e3:90:20:8f:25:17:31:7f:71:f6:a3:6f:e6:7b:5f: bf:55:d6:c3:80:7f:69:65:ed:63:00:93:7c:10:13: ff:37:b7:ac:9e:a9:5d:97:2d:37:c4:b3:2e:4f:d0: c6:80:7a:d6:d8:83:66:43:30:57:a2:fd:c7:5f:15: 31:ec:81:94:f7:ef:b5:9d:61:38:d9:d4:c0:f0:a4: 2b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:80:47:46:7A:EB:D5:2E:D6:C1:5D:50:EB:94:A4:1F:0E:52:FB:84 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:02:fd:1d:a4:ea:53:81:53:ac:81:f4:05:2f:ac:05:40:50: f2:8d:9e:22:ff:33:a1:70:3e:5f:9f:95:76:e4:b6:85:ca:df: 2d:d3:02:e2:31:4e:40:e4:b7:35:28:0f:ed:8b:64:67:80:15: e8:da:23:cd:43:71:eb:ca:25:99:c8:3e:1e:7a:6b:34:81:19: 6c:f2:d3:b6:00:83:1d:54:56:62:7a:5c:2c:19:4e:ad:c3:4d: 7b:8a:ba:93:d0:d0:60:32:e8:b8:59:04:ae:ba:c7:a9:c5:1a: bc:96:4d:77:87:c3:60:cc:64:97:e8:2e:25:bd:da:46:bd:2f: 57:e3:47:b0:b7:46:42:89:40:78:8e:f1:d4:0a:1b:b6:96:cc: b8:d6:d2:73:ad:1b:99:60:b6:1b:a0:2e:87:d8:0a:16:e3:d4: 4a:89:71:df:02:56:a4:da:19:2b:a1:c9:55:62:48:39:02:0e: d3:c9:88:f7:81:ab:ff:bd:e3:4c:76:d8:bf:d8:cd:77:cc:e5: b1:2b:4f:ce:bf:41:ee:fc:19:fd:5e:cc:87:e0:61:c4:2d:09: 0a:c5:8b:a3:fc:26:7d:e2:b1:9f:a4:f6:9c:54:7e:65:fd:bd: 94:98:18:22:20:63:e2:85:ec:2d:5f:64:41:e0:52:d5:43:da: 10:e3:86:97 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUV44hJKJ4igrq0pKFjXJnKZZOnw4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI0MDUyNDE1MDMyM1oX DTI0MDUyODE1MDMyM1owejFJMEcGA1UEBRNAZjZkZWJmNTBjZDNkNzc2NWNjMzE0 MzY5NTU1ZWNiODFiYmIxNWI1NWU4ZDc0NzFjOWIxZTZhZWRiZDQ5NzcyMjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4FUfTmT5cbzo5CYKvdOIBgxArmDx SQtA/YSGiuArXdErBayDZJD0JrUNML1ZmuanR8qlpc/geHccGh2aiLzlA1UKt9o0 9xKkByS8TQjltNRDmQ/P+rLnY22Ohm7VktN5aNwDVZIdHesIlrjI+S80oPPADO3/ jsahbbJyqWzvxcCyvj+CDsyOOXqL8/q+zPCzYVQsosP7BrvHlVNGkEvSDpwcvzI/ sdKuJ43d3XzPu5lt3xXjkCCPJRcxf3H2o2/me1+/VdbDgH9pZe1jAJN8EBP/N7es nqldly03xLMuT9DGgHrW2INmQzBXov3HXxUx7IGU9++1nWE42dTA8KQr1QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFHSAR0Z669Uu1sFdUOuUpB8OUvuEMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4ZTVkYmQyMTkvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZGI5YTM3MmEtMDli Yy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5LzZlY2IzY2NhLTQ4OGQtNDNiOS1hNTBi LWQzN2MwYzU1YTllMS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAGEC/R2k6lOBU6yB9AUvrAVAUPKNniL/ M6FwPl+flXbktoXK3y3TAuIxTkDktzUoD+2LZGeAFejaI81DcevKJZnIPh56azSB GWzy07YAgx1UVmJ6XCwZTq3DTXuKupPQ0GAy6LhZBK66x6nFGryWTXeHw2DMZJfo LiW92ka9L1fjR7C3RkKJQHiO8dQKG7aWzLjW0nOtG5lgthugLofYChbj1EqJcd8C VqTaGSuhyVViSDkCDtPJiPeBq/+940x22L/YzXfM5bErT86/Qe78Gf1ezIfgYcQt CQrFi6P8Jn3isZ+k9pxUfmX9vZSYGCIgY+KF7C1fZEHgUtVD2hDjhpc= -----END CERTIFICATE-----Generated at Fri May 24 15:42:34 2024 by rpki-client on console-fra.rpki-client.org