$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft File: manifest.mft (raw, json) Hash identifier: xjKFiJ+WKslLP0ksp/7svNFlXmOvKRw5/apIAiG3KWo= Subject key identifier: 1D:09:4D:C4:B0:11:9D:1F:3C:9F:88:90:C7:1D:6F:01:19:22:F5:79 Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 152F86DE22839D4990E8C073E481A343085874FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft Manifest number: 030F Signing time: Fri 26 Jul 2024 00:01:49 +0000 Manifest this update: Fri 26 Jul 2024 00:01:49 +0000 Manifest next update: Tue 30 Jul 2024 00:01:49 +0000 Files and hashes: 1: 16f57147-886c-4350-a247-eceffe69fb96.roa (hash: iKMtrL3paepdVxbzpmFbTyWW6u30nrp+u/WsF+okIGU=) 2: 32bf2c39-b536-43d0-b557-f68d8ee64091.roa (hash: lSL09CTuEjJVCWbuFw6w955v5NIV/x259aYCRRUj0r8=) 3: 3a77dbde-8981-442a-a4a0-5e4ad5a49e85.roa (hash: kufzJJiUGnsqwprygke3xFxiLCfYI7c3n7tV0cWIexU=) 4: 3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa (hash: kHgo1kPJcgx3Q03L7WoxEswOAizm04ZsRHN0kleGTmY=) 5: 4dd57872-4286-4ae3-96b4-e36652d55044.roa (hash: sKoMbIiihVUJVu2I14TTt7+mm+MbIuLPBDnc68bxRI8=) 6: 8dafa80e-23c0-4310-ae76-0199a9aafc6f.roa (hash: EnXc+O/WRsLJCeK8Yw2TnXvbp7RuVuctd/lxOvtxcgk=) 7: 906a6ed0-3318-443d-9e2d-1940710be595.roa (hash: qP+HzTaiUm/wnnTydjVQ7GwwoyDSO+pZRTGBO/X9j1U=) 8: a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl (hash: SCVSDUTdqGJgpJNmF8oNK1BN8LVeE6khn9L/R7hl6nM=) 9: c29c3a7e-a7ae-4418-af26-16585304f365.roa (hash: iclo9jHCGIjW84gZUkG8N4sFB+Jzci6KlMJjuT4/YZ8=) 10: c46353d6-f66a-4ac6-aeca-c8f320ebee9a.roa (hash: K7HAWh/JcV3IQ44JYzldWpEqxMF+/08MRPIA5BvJWCk=) 11: ce35c6d4-7339-4288-8a0e-b63877fb2df7.roa (hash: w7NpL5WKfVfM2U0L86HScAIkf7qsn2dc+cuZeMRPsXE=) 12: cf289da6-3eab-42c8-9297-c9a682f901df.roa (hash: zsftXTqJr5xu12H+peNjdXBB3EwU9Ma/SJBxbFCjszU=) 13: d1333e17-04fe-4e6d-bd71-2a9ac1fe867f.roa (hash: H5GesbB/tVvlRsaDvL+yp57hWxqxDh2Yxj+hjxe7Y/c=) 14: e05f4504-bb83-4b18-bbd9-8d82e42913d5.roa (hash: mQefrk60LAJ/e6/6h+WsJ1XYZ0/2MR0Wc0WvhcSSc80=) 15: f60efe51-797b-4b40-95ef-52a2e036f36a.roa (hash: 80KYNcSVWjFORzIgsNmTCnAJ9sd4tXtwgAZDyLRjphQ=) 16: fa2f00a1-5565-44e6-8f22-91f65926beed.roa (hash: 3+b3E1Esq1e5g9gQ7toLzBXZBYsYSK0k7paBq6YWWew=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 00:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:2f:86:de:22:83:9d:49:90:e8:c0:73:e4:81:a3:43:08:58:74:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Jul 26 00:01:49 2024 GMT Not After : Jul 30 00:01:49 2024 GMT Subject: serialNumber=0674caee3c9b7b5c52c2fb27377d049a7a33aac7348fbf9143c2cb50ffb543d7, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c8:7d:5e:20:44:d6:e7:af:45:6e:a4:04:ed: 98:5b:e2:4e:df:00:7f:e4:85:0d:43:4e:d4:a8:c3: ba:d6:36:ae:cf:d0:7f:c7:dd:9d:e5:84:90:56:bc: dd:3a:09:53:f1:0b:c9:db:b8:76:e8:0d:81:a4:c7: 34:46:e8:4f:86:ac:f0:62:fb:34:c1:03:09:fa:77: ec:a7:f1:fa:1f:e4:bf:f3:f8:87:e4:8d:47:d4:e5: 84:ab:61:6d:d4:db:df:b5:1e:ed:8c:48:58:04:28: 61:51:c8:d0:b0:c1:49:3d:58:fb:f3:1e:9a:ed:6a: e8:d6:04:4e:4e:b6:32:a9:74:9a:f8:4a:43:66:38: ea:d2:01:62:ea:8b:f5:69:f5:62:fe:3d:ad:24:db: 1c:cd:6d:6b:7d:fd:d9:1d:9f:3b:05:7c:68:86:a3: 8d:5c:1e:fe:b7:ff:f6:81:3b:fb:76:4f:e3:a1:18: c2:19:a3:8e:6c:f4:c3:58:4c:5e:95:48:45:3d:ba: 37:aa:97:64:47:c8:dd:6b:b7:d1:79:36:8f:ed:5b: e6:43:64:7a:fa:0e:49:3f:da:a2:44:52:08:6d:1f: 19:6c:5e:15:e4:e8:8c:e0:25:a6:90:53:92:c9:e4: cc:e9:bc:ca:0d:52:d7:1a:a0:bf:3c:0b:f0:95:ea: 7c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:09:4D:C4:B0:11:9D:1F:3C:9F:88:90:C7:1D:6F:01:19:22:F5:79 X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:19:5d:8a:a2:05:66:41:9d:b0:20:29:38:81:fd:87:f4:0c: ea:f6:a6:23:10:f0:2d:f9:91:63:05:e6:c4:d4:96:9a:71:78: 5c:2a:78:90:65:fb:e4:a0:3c:75:5e:4a:68:89:2e:4e:26:17: 1e:ce:f7:80:74:62:0d:90:a4:5b:8e:07:97:4d:d7:a6:41:99: 83:f1:9b:a3:1d:a2:b1:97:01:c0:0c:fe:4a:20:62:a0:22:30: 89:37:03:5a:23:b3:b9:72:a5:08:50:1a:a9:31:2a:5d:8f:c6: 02:68:29:95:11:c0:a5:b2:e3:8b:f7:07:8d:0d:dd:5a:ca:ff: 48:d3:d0:d1:7d:c9:b2:59:dc:38:ff:ee:6c:20:09:0f:cb:c2: 87:24:f3:78:87:cd:59:1b:34:77:0c:0c:05:df:2d:e8:ae:0c: 36:dc:af:31:af:a7:1e:fe:f0:f2:7e:49:72:2b:e5:d1:68:da: 4e:ec:3f:e7:a6:20:1e:15:d9:24:e2:90:25:bc:38:ff:24:10: 72:16:32:a9:e4:e0:0b:e0:9f:c8:5e:3f:d2:d1:1c:8c:64:66: 70:ee:b4:d6:b1:17:9b:a8:5d:0f:8e:7a:b3:3a:b7:40:44:48: 36:15:e3:d6:c8:58:8a:c6:03:e5:23:4b:d0:70:cd:6d:ee:8a: 42:ef:ac:30 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUFS+G3iKDnUmQ6MBz5IGjQwhYdPswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI0MDcyNjAwMDE0OVoX DTI0MDczMDAwMDE0OVowejFJMEcGA1UEBRNAMDY3NGNhZWUzYzliN2I1YzUyYzJm YjI3Mzc3ZDA0OWE3YTMzYWFjNzM0OGZiZjkxNDNjMmNiNTBmZmI1NDNkNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyMh9XiBE1uevRW6kBO2YW+JO3wB/ 5IUNQ07UqMO61jauz9B/x92d5YSQVrzdOglT8QvJ27h26A2BpMc0RuhPhqzwYvs0 wQMJ+nfsp/H6H+S/8/iH5I1H1OWEq2Ft1NvftR7tjEhYBChhUcjQsMFJPVj78x6a 7Wro1gROTrYyqXSa+EpDZjjq0gFi6ov1afVi/j2tJNsczW1rff3ZHZ87BXxohqON XB7+t//2gTv7dk/joRjCGaOObPTDWExelUhFPbo3qpdkR8jda7fReTaP7VvmQ2R6 +g5JP9qiRFIIbR8ZbF4V5OiM4CWmkFOSyeTM6bzKDVLXGqC/PAvwlep8BQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFB0JTcSwEZ0fPJ+IkMcdbwEZIvV5MB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMDhjMmYyNjQtMjNm OS00OWZiLTlkNDMtZjhiNTBiZWM5MjYxL2E1YjAxYmRkLWNkZWItNGNmYy04Yzkz LTdlNzBjNWUwOTMwNi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAH4ZXYqiBWZBnbAgKTiB/Yf0DOr2piMQ 8C35kWMF5sTUlppxeFwqeJBl++SgPHVeSmiJLk4mFx7O94B0Yg2QpFuOB5dN16ZB mYPxm6MdorGXAcAM/kogYqAiMIk3A1ojs7lypQhQGqkxKl2PxgJoKZURwKWy44v3 B40N3VrK/0jT0NF9ybJZ3Dj/7mwgCQ/Lwock83iHzVkbNHcMDAXfLeiuDDbcrzGv px7+8PJ+SXIr5dFo2k7sP+emIB4V2STikCW8OP8kEHIWMqnk4Avgn8heP9LRHIxk ZnDutNaxF5uoXQ+OerM6t0BESDYV49bIWIrGA+UjS9BwzW3uikLvrDA= -----END CERTIFICATE-----Generated at Fri Jul 26 01:58:42 2024 by rpki-client on console-ams.rpki-client.org