$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft File: manifest.mft (raw, json) Hash identifier: IyB5GSv+mHwLMrZe/20OvXPfABBN6jITM058T4smxjA= Subject key identifier: 83:2D:4A:E4:09:F8:06:E9:E5:35:E0:40:B2:BB:F8:45:E0:4F:DB:8E Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 4EBAAD71906BA856B5360448DF6F866F29B07FF2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft Manifest number: 048B Signing time: Sun 20 Jul 2025 00:00:55 +0000 Manifest this update: Sun 20 Jul 2025 00:00:55 +0000 Manifest next update: Thu 24 Jul 2025 00:00:55 +0000 Files and hashes: 1: 2e40ee0b-9aa9-4919-a079-9712212e127c.roa (hash: wx0ljkavWBRQLEOnIMWtDDJWKm/xU4QEm1HNlHLbD3k=) 2: 32bf2c39-b536-43d0-b557-f68d8ee64091.roa (hash: +FOBi/z2I7VBVf7AMNc4UhpJtSv9/MspRRMAA2EL5Go=) 3: 3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa (hash: V7vaXqKpjGo90sePtM+81oSPv6V6y6BLqeBBTfocf2w=) 4: 40956690-3661-49f2-8ebc-2fa5a47a98ad.roa (hash: P+dHZaz3HNo0FYIm4bjXRm3bRCPTbhaaiP61XhwUTfY=) 5: 4cb3e9f9-46a2-41eb-a4b7-75b53d791f33.roa (hash: VYgbcz/c1v2CBvYkg1M5Y4g84u52XU8NwnL29sNomMY=) 6: 55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa (hash: BlsjvxPb/t83MawE809HhA8HIKp0Oa0tuILzXP8uKnU=) 7: 565f9740-389f-45ac-956e-b96e19889315.roa (hash: HFMQ37XJ8bFLqSZwEBEzcUvjyBApEZEKBanlW0uu2GA=) 8: 72c1271b-5ed8-4478-ba43-6741904af7c8.roa (hash: AXWoUYHVvLx2Bnyci8VclSTNk1CQRs5avvdmj7TI84U=) 9: 9d703748-f446-47a1-b0a7-5e3357f2e0d2.roa (hash: aej7qukme62lak4Az1oYbSyLbRHn4vSskMo1YcXNdlQ=) 10: a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl (hash: xHM6CyJo4Ak5ZFIxqfv1wjlNW+xeAyokzq/mPQiETVI=) 11: c18b0845-fc95-41d6-b476-af4e1e466849.roa (hash: pLEUEUxRFD0PmPbSZ2MVlPyzymq9mAt10D86sD3TW4Y=) 12: e5ffe65e-7287-4628-8759-7c141866ee12.roa (hash: DlhFiKx9KFISofAuF2dCzesfE71u9heCRKG1PDRlZBc=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 00:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ba:ad:71:90:6b:a8:56:b5:36:04:48:df:6f:86:6f:29:b0:7f:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Jul 20 00:00:55 2025 GMT Not After : Jul 24 00:00:55 2025 GMT Subject: serialNumber=f42ee1166712224ca3f5a0a44eccc195e5d4aaf07ddd13e6ec3acb0c5a9cc392, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:bb:8c:3b:74:4b:aa:a8:02:25:79:d0:06:3a: b0:62:2b:36:38:ff:bd:30:70:5b:b0:bf:e8:94:d9: 99:4b:c9:f1:fc:d4:fa:b8:89:66:62:31:a7:af:6e: b4:0f:2b:ec:84:85:54:bc:26:5a:e2:17:70:92:2d: 20:65:51:cd:42:c5:fb:c5:65:e7:fa:6a:df:bb:2c: 31:d8:0b:fb:72:4e:5c:35:f6:b1:1a:2f:57:f4:16: 4a:d6:34:69:5f:e7:09:ef:c2:77:13:91:fc:0d:ef: 42:ec:7a:ce:b4:79:11:5d:bd:eb:57:50:24:54:fd: 8a:3f:9c:49:cd:84:df:1c:e8:7a:3a:50:33:df:db: 8f:40:0e:5a:d0:aa:66:a0:71:be:47:48:a6:07:04: 5d:d1:3f:48:99:14:6a:f8:58:34:b0:2f:6a:0f:ce: 4a:c3:38:1c:39:e2:84:ed:30:7f:66:d0:9a:fd:e8: f7:ce:e7:c5:80:fe:c8:cc:c3:ef:d7:52:fa:cf:3d: 80:75:50:03:ec:8f:12:e3:35:44:30:17:3b:fd:dc: 47:8c:88:85:b6:f3:75:4c:79:3e:21:ac:c6:1e:62: 9f:74:cd:8f:6e:81:04:bc:78:85:dc:16:34:83:95: 0e:56:df:89:74:0e:ab:bd:3c:95:9e:a4:4e:d1:4d: 49:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:2D:4A:E4:09:F8:06:E9:E5:35:E0:40:B2:BB:F8:45:E0:4F:DB:8E X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:3e:b3:a5:11:f0:2c:fe:e9:9e:72:26:33:10:55:a2:92:ee: 43:4e:0b:a6:77:56:f0:86:2d:c0:a8:80:92:ee:ad:ce:da:b6: 73:97:1a:19:db:d5:c3:6d:a8:19:5a:20:3e:85:ed:10:07:2f: 3a:42:3d:a3:ce:6f:6d:47:da:04:ef:0f:48:65:52:bc:5d:81: d1:bb:7d:a3:5b:98:06:b2:ba:54:13:77:6c:2d:72:32:16:ad: 8d:b1:bd:a8:48:1a:05:e7:08:cb:b4:c8:4f:30:68:95:81:ff: 03:3e:1d:14:0b:c1:5b:7c:eb:49:f6:a8:2f:8f:e4:00:03:09: 08:33:10:4d:1d:83:a8:0d:bf:af:ee:38:e0:8c:f5:ac:99:44: 3b:7c:70:d1:c8:ec:ba:f5:a8:fe:bd:20:2b:e5:aa:3b:05:b3: 14:0b:84:9d:4d:0a:fd:1e:da:c3:78:d7:3e:d7:ce:f0:73:76: b8:bb:05:31:01:c3:63:cb:86:56:c4:3b:97:be:dd:2e:13:c6: 97:54:27:dc:f1:a6:6d:25:53:84:d7:17:61:a3:74:35:14:d1: 2e:0f:81:3f:2b:df:12:fa:88:68:48:6e:56:da:39:da:10:b6: 3d:80:51:63:53:aa:f8:41:4e:b3:65:b8:c3:a5:c4:3a:be:c1: c9:df:6b:f2 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUTrqtcZBrqFa1NgRI32+Gbymwf/IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI1MDcyMDAwMDA1NVoX DTI1MDcyNDAwMDA1NVowejFJMEcGA1UEBRNAZjQyZWUxMTY2NzEyMjI0Y2EzZjVh MGE0NGVjY2MxOTVlNWQ0YWFmMDdkZGQxM2U2ZWMzYWNiMGM1YTljYzM5MjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1buMO3RLqqgCJXnQBjqwYis2OP+9 MHBbsL/olNmZS8nx/NT6uIlmYjGnr260DyvshIVUvCZa4hdwki0gZVHNQsX7xWXn +mrfuywx2Av7ck5cNfaxGi9X9BZK1jRpX+cJ78J3E5H8De9C7HrOtHkRXb3rV1Ak VP2KP5xJzYTfHOh6OlAz39uPQA5a0KpmoHG+R0imBwRd0T9ImRRq+Fg0sC9qD85K wzgcOeKE7TB/ZtCa/ej3zufFgP7IzMPv11L6zz2AdVAD7I8S4zVEMBc7/dxHjIiF tvN1THk+IazGHmKfdM2PboEEvHiF3BY0g5UOVt+JdA6rvTyVnqRO0U1JrQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFIMtSuQJ+Abp5TXgQLK7+EXgT9uOMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMDhjMmYyNjQtMjNm OS00OWZiLTlkNDMtZjhiNTBiZWM5MjYxL2E1YjAxYmRkLWNkZWItNGNmYy04Yzkz LTdlNzBjNWUwOTMwNi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAEM+s6UR8Cz+6Z5yJjMQVaKS7kNOC6Z3 VvCGLcCogJLurc7atnOXGhnb1cNtqBlaID6F7RAHLzpCPaPOb21H2gTvD0hlUrxd gdG7faNbmAayulQTd2wtcjIWrY2xvahIGgXnCMu0yE8waJWB/wM+HRQLwVt860n2 qC+P5AADCQgzEE0dg6gNv6/uOOCM9ayZRDt8cNHI7Lr1qP69ICvlqjsFsxQLhJ1N Cv0e2sN41z7XzvBzdri7BTEBw2PLhlbEO5e+3S4TxpdUJ9zxpm0lU4TXF2GjdDUU 0S4PgT8r3xL6iGhIblbaOdoQtj2AUWNTqvhBTrNluMOlxDq+wcnfa/I= -----END CERTIFICATE-----Generated at Sun Jul 20 20:11:18 2025 by rpki-client