Manifest

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft
File:                     manifest.mft (raw, json)
Hash identifier:          UT5+l3WPS8cN8pmjMpkoHCUx+cx7cGzwpv1CU0O2OSI=
Subject key identifier:   82:B7:82:3D:BF:5A:F9:D1:D5:BA:D6:02:ED:48:74:E2:91:76:98:B7
Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7
Certificate issuer:       /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7
Certificate serial:       2DCB254025C2E1F798C0BBD8D2CD299201D24C13
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft
Manifest number:          02E8
Signing time:             Mon 24 Jun 2024 00:11:27 +0000
Manifest this update:     Mon 24 Jun 2024 00:11:27 +0000
Manifest next update:     Fri 28 Jun 2024 00:11:27 +0000
Files and hashes:         1: 16f57147-886c-4350-a247-eceffe69fb96.roa (hash: zvvU3k1Qp7Z+U36vQnl3XixMWYduCcksvnWvcaQ1WVQ=)
                          2: 32bf2c39-b536-43d0-b557-f68d8ee64091.roa (hash: 96rga6+FlXUYcmmjoqqdFJXCmHv1nyWKEQAdEPMuO8Y=)
                          3: 3a77dbde-8981-442a-a4a0-5e4ad5a49e85.roa (hash: fnpZhpUUxLPqH3tMpA9H6WCJtlFZRbjZy4ArPTXrXgk=)
                          4: 3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa (hash: eQfXFfJZ19fZcuS+G9upeM4Kju9lggsn1Dk9lUImyE8=)
                          5: 4dd57872-4286-4ae3-96b4-e36652d55044.roa (hash: CfVHEh0nZ8PVQ3ZmrczTtf669zfx1Yu3+OyRbJltLDg=)
                          6: 8dafa80e-23c0-4310-ae76-0199a9aafc6f.roa (hash: bFxjHowHw/ABRl+FHYZLy9wMWL3r4TRV7LJzTvwV/C4=)
                          7: 906a6ed0-3318-443d-9e2d-1940710be595.roa (hash: TMWxqSKtSz0cW7sm1wc4lUzw3V7TC2tVxJYlMpg3GlQ=)
                          8: a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl (hash: 6R062b95C56ycvm1Qn4Ww3QNUQYUk+2lzkEt/k9LIt8=)
                          9: c29c3a7e-a7ae-4418-af26-16585304f365.roa (hash: RyEeQWZNXaavX8eDk6bibXc+++A4jxpRwss+KOeuhGs=)
                          10: c46353d6-f66a-4ac6-aeca-c8f320ebee9a.roa (hash: rDy/pBsqnV021AE6C7OFfCobX9QghGJsPRHxGRFJkso=)
                          11: ce35c6d4-7339-4288-8a0e-b63877fb2df7.roa (hash: DmgoqFFoX7EeIWvPYpjRJMIX43VAg8EWnLD9fhUWGFo=)
                          12: cf289da6-3eab-42c8-9297-c9a682f901df.roa (hash: IJbwIe6fHhPQEpeDLapzBN2vRf+v51EjEM8buH4td18=)
                          13: d1333e17-04fe-4e6d-bd71-2a9ac1fe867f.roa (hash: ZKgEnNm25n+9wlyve5FeQLjK2re863GntLvunoHlH8Q=)
                          14: e05f4504-bb83-4b18-bbd9-8d82e42913d5.roa (hash: 6Qk1EPoPYIvCC2ynxWrWSvYRws6FzXdSr5o/dhA9WYg=)
                          15: f60efe51-797b-4b40-95ef-52a2e036f36a.roa (hash: M0fkvdd9Pp9h26rZt4Z+fNzckJ6n2q5RB3MxV7J2Y1k=)
                          16: fa2f00a1-5565-44e6-8f22-91f65926beed.roa (hash: W/vUss6AUytJJJFjojSUsgpPN39Gzz1mUYveZ4OKSuw=)

Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 28 Jun 2024 00:11:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2d:cb:25:40:25:c2:e1:f7:98:c0:bb:d8:d2:cd:29:92:01:d2:4c:13
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7
        Validity
            Not Before: Jun 24 00:11:27 2024 GMT
            Not After : Jun 28 00:11:27 2024 GMT
        Subject: serialNumber=f969001a151f7e1af88e07295bc9c0839926b3abefa028e399ba7b94d950562a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:e1:07:4b:81:1d:b0:09:69:75:77:79:7c:14:
                    2b:80:e2:46:7b:44:65:fb:ad:b1:23:e6:8c:c4:5e:
                    00:de:31:a3:53:39:55:b8:53:3a:61:cd:dd:84:34:
                    be:56:71:bd:4b:8d:83:6a:6e:0e:06:12:63:68:83:
                    c1:e1:37:43:64:1d:a9:eb:63:77:68:13:05:d0:9a:
                    f6:d5:21:c2:a4:6a:e6:0a:2f:aa:56:39:d7:2c:2b:
                    18:99:64:36:a0:ec:4c:31:fe:41:3c:d2:81:f8:80:
                    47:27:60:1e:ca:eb:cb:5c:6c:41:08:40:ff:b5:9b:
                    56:1a:5a:c0:b6:ac:b5:66:5c:7c:35:9d:c6:31:bb:
                    00:40:72:86:b4:c5:82:da:f6:78:6f:26:40:28:f6:
                    eb:57:8a:4a:33:53:9c:fb:6e:71:1b:d5:ae:7e:01:
                    e7:25:87:2c:5a:b9:02:9a:13:91:21:d5:4a:f2:e2:
                    37:9a:8d:02:14:bf:27:d6:b3:6d:4e:18:38:4b:4d:
                    2b:a5:96:6b:3d:37:15:a0:8b:b8:4b:6a:8d:4d:d0:
                    92:98:0b:8a:db:75:bb:11:ed:df:f8:c9:4c:73:a2:
                    4b:4c:7a:7a:da:0c:f1:2e:c1:13:49:9e:38:53:05:
                    38:de:d7:94:c6:88:f8:b3:67:6f:f3:6e:16:6e:4f:
                    e0:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                82:B7:82:3D:BF:5A:F9:D1:D5:BA:D6:02:ED:48:74:E2:91:76:98:B7
            X509v3 Authority Key Identifier:
                keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1d:0f:fe:5e:e8:9b:88:dd:17:ec:4e:83:5b:a1:c1:1d:01:5a:
         16:1a:05:53:20:dc:94:d1:b6:f4:cf:1c:fd:aa:cb:b4:d6:b9:
         05:88:03:90:83:09:f0:f7:a9:c3:b3:59:80:74:90:ab:9c:87:
         37:5e:c9:f5:8a:7f:20:86:2e:43:d7:e3:48:7a:c0:47:e2:6f:
         5b:0e:59:41:7c:9b:fa:89:34:1c:cb:44:90:17:44:27:4e:11:
         66:ee:ad:c5:c3:81:ec:f8:8f:6e:4e:01:63:a6:b9:a6:6d:4f:
         1a:66:97:71:a9:a7:77:eb:2a:f0:ab:e5:cd:78:37:1c:63:fe:
         fa:f6:f8:49:ca:b9:5f:41:3b:f5:97:44:42:fa:4f:f1:8c:b2:
         31:d4:bc:77:1c:71:09:5a:d7:22:54:88:63:33:b2:bf:3e:00:
         09:d3:7a:1d:71:c0:22:d3:01:ef:52:18:f4:e8:cd:5b:eb:1b:
         ff:9c:a3:be:5d:1c:41:51:d2:88:53:22:9d:ea:35:44:b4:c2:
         2d:ae:1c:35:f5:51:60:b2:da:64:51:a4:64:b0:fc:98:17:92:
         8a:36:12:4d:80:6e:9a:16:4d:f1:80:4c:24:96:2b:25:d0:04:
         ab:c3:03:36:9b:0e:f7:e6:01:db:63:9f:70:39:c1:bb:6f:bf:
         b8:c4:a3:31
-----BEGIN CERTIFICATE-----
MIIFlTCCBH2gAwIBAgIULcslQCXC4feYwLvY0s0pkgHSTBMwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG
QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI0MDYyNDAwMTEyN1oX
DTI0MDYyODAwMTEyN1owejFJMEcGA1UEBRNAZjk2OTAwMWExNTFmN2UxYWY4OGUw
NzI5NWJjOWMwODM5OTI2YjNhYmVmYTAyOGUzOTliYTdiOTRkOTUwNTYyYTEtMCsG
A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApeEHS4EdsAlpdXd5fBQrgOJGe0Rl
+62xI+aMxF4A3jGjUzlVuFM6Yc3dhDS+VnG9S42Dam4OBhJjaIPB4TdDZB2p62N3
aBMF0Jr21SHCpGrmCi+qVjnXLCsYmWQ2oOxMMf5BPNKB+IBHJ2AeyuvLXGxBCED/
tZtWGlrAtqy1Zlx8NZ3GMbsAQHKGtMWC2vZ4byZAKPbrV4pKM1Oc+25xG9WufgHn
JYcsWrkCmhORIdVK8uI3mo0CFL8n1rNtThg4S00rpZZrPTcVoIu4S2qNTdCSmAuK
23W7Ee3f+MlMc6JLTHp62gzxLsETSZ44UwU43teUxoj4s2dv824Wbk/gHQIDAQAB
o4ICQTCCAj0wHQYDVR0OBBYEFIK3gj2/WvnR1brWAu1IdOKRdpi3MB8GA1UdIwQY
MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt
alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF
BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t
L3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEvbWFu
aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y
c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMDhjMmYyNjQtMjNm
OS00OWZiLTlkNDMtZjhiNTBiZWM5MjYxL2E1YjAxYmRkLWNkZWItNGNmYy04Yzkz
LTdlNzBjNWUwOTMwNi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw
BKACBQAwDQYJKoZIhvcNAQELBQADggEBAB0P/l7om4jdF+xOg1uhwR0BWhYaBVMg
3JTRtvTPHP2qy7TWuQWIA5CDCfD3qcOzWYB0kKuchzdeyfWKfyCGLkPX40h6wEfi
b1sOWUF8m/qJNBzLRJAXRCdOEWburcXDgez4j25OAWOmuaZtTxpml3Gpp3frKvCr
5c14Nxxj/vr2+EnKuV9BO/WXREL6T/GMsjHUvHcccQla1yJUiGMzsr8+AAnTeh1x
wCLTAe9SGPTozVvrG/+co75dHEFR0ohTIp3qNUS0wi2uHDX1UWCy2mRRpGSw/JgX
koo2Ek2AbpoWTfGATCSWKyXQBKvDAzabDvfmAdtjn3A5wbtvv7jEozE=
-----END CERTIFICATE-----
Generated at Mon Jun 24 01:28:16 2024 by rpki-client on console-ams.rpki-client.org