$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft File: manifest.mft (raw, json) Hash identifier: npOUhwrM41xmY+uWGMyl0+lmfDesbEYNPpCN7k2q66Q= Subject key identifier: 1E:2D:96:8A:F8:29:A8:04:23:30:4E:9C:E9:AC:4D:28:05:74:DB:B2 Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 4D9B156086A208ACF525942175172A25475449E2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft Manifest number: 0397 Signing time: Mon 25 Nov 2024 00:03:37 +0000 Manifest this update: Mon 25 Nov 2024 00:03:37 +0000 Manifest next update: Fri 29 Nov 2024 00:03:37 +0000 Files and hashes: 1: 16f57147-886c-4350-a247-eceffe69fb96.roa (hash: LDe3AO7SorWw6N++1H3bFx1cNcr06DxRppnvhbCp/FY=) 2: 32bf2c39-b536-43d0-b557-f68d8ee64091.roa (hash: 5LPZfAEy9LD4X2/Wh60YbylyI4txq3yB59wEu9hg7aI=) 3: 3a77dbde-8981-442a-a4a0-5e4ad5a49e85.roa (hash: UNL9eIV9yvKWr/CLOFtpHPM3nIOk+9yjk3i6Sjcwd9c=) 4: 3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa (hash: 4siFP7w/dWikT/lwUJT66DrrS4dn37AyyIWwEoaTtjc=) 5: 4dd57872-4286-4ae3-96b4-e36652d55044.roa (hash: 4WNFIWbupP8myE1A38kKO/0dVN1O1eNM4X+XCRon8O4=) 6: 8dafa80e-23c0-4310-ae76-0199a9aafc6f.roa (hash: RxfO6R+ekuZTrUXwGfyUcMWsXgvEQODZUnbITfL5ZiE=) 7: 906a6ed0-3318-443d-9e2d-1940710be595.roa (hash: CHyNbwSYpHK4naWNxM6XABLxu8tk5L6wM7jgS1w+8Cs=) 8: 9d703748-f446-47a1-b0a7-5e3357f2e0d2.roa (hash: cpwsKHrM6F8tWsopfyIAlWPuLlAk7KePW0iV5Ecfpqw=) 9: a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl (hash: tqlmTIaMjxzM0J+4b4rLYQ6sd1scPLMi7qQBdQvukQE=) 10: c29c3a7e-a7ae-4418-af26-16585304f365.roa (hash: g8V7Un6v4TEnhpNyKMg4596bYe7YyS5iYzxYEW4ieZk=) 11: c46353d6-f66a-4ac6-aeca-c8f320ebee9a.roa (hash: 0xpUgOtP25brBVtlyM4lMpSK7JrvDDBTzVk043zP7Mk=) 12: ce35c6d4-7339-4288-8a0e-b63877fb2df7.roa (hash: yaR33a7NVdRUeG746TSWrQV80iAxruJrAEms/3BJK34=) 13: cf289da6-3eab-42c8-9297-c9a682f901df.roa (hash: SLEYFt5/kHyyqf8pym+iSM22Z8cxyEbCuU6nOB7yHtU=) 14: d1333e17-04fe-4e6d-bd71-2a9ac1fe867f.roa (hash: t32Vf3zvafcfwuLmmE1Fa4lAOhsSy5J/H6thKF9k7ZI=) 15: e05f4504-bb83-4b18-bbd9-8d82e42913d5.roa (hash: B7tnq8anvagDcpqfy04LQWKbzuPYQg8OWdowxt7GnUs=) 16: f60efe51-797b-4b40-95ef-52a2e036f36a.roa (hash: qmBB2Ldo6SCIfbF0wvZlWE7uYnOYQt9HbZ6UjJ82oR8=) 17: fa2f00a1-5565-44e6-8f22-91f65926beed.roa (hash: 8ZqAsYG1f7hNB95srZHt4iuZ8P4SjUJCDrBWuwxld+E=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 00:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:9b:15:60:86:a2:08:ac:f5:25:94:21:75:17:2a:25:47:54:49:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Nov 25 00:03:37 2024 GMT Not After : Nov 29 00:03:37 2024 GMT Subject: serialNumber=a6fcbee2e1e15467cae402ac3496e98d3d655fc75e90456d775ddc4ce17d5943, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ee:39:6e:35:19:54:29:05:74:5a:53:8e:19: a9:af:38:90:e3:c7:db:17:3d:4f:0f:d2:05:04:da: 1e:dd:c2:d8:66:ab:1d:63:98:10:32:14:ea:7b:86: c1:56:b5:37:99:c5:59:b3:11:60:67:0e:c8:a4:f6: d8:fc:9f:2e:28:c4:17:d3:e8:ff:8e:6b:29:c5:40: 86:a4:f4:32:bf:44:e0:39:f6:75:12:10:54:07:71: 43:f9:47:06:21:dd:10:65:9c:14:a0:58:e1:e3:b0: 06:d7:4d:08:20:5f:95:90:16:18:5e:79:71:6d:5b: 92:a6:6d:07:a8:01:26:37:ef:9d:6f:ee:c2:b9:f7: 75:da:f0:5e:2f:48:ce:bd:e8:b0:17:da:41:0d:80: da:40:3e:8f:50:76:ce:77:c9:b1:db:b7:df:5d:ad: 61:5f:c0:89:8b:08:c0:9b:cb:d3:30:cf:d7:f1:e7: 74:f4:ef:68:ba:9b:c0:ae:00:0f:40:50:f6:8d:7d: df:84:19:61:c5:81:10:3f:19:b4:99:9a:4a:3d:1c: d2:c0:73:d1:14:44:36:7a:18:14:3d:5d:f7:a2:69: 89:66:dc:c8:96:46:90:07:30:90:b0:22:f5:4f:64: b8:8e:ac:66:b5:11:48:43:33:4e:6d:a6:c5:7e:1d: a2:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:2D:96:8A:F8:29:A8:04:23:30:4E:9C:E9:AC:4D:28:05:74:DB:B2 X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:31:ca:f4:37:04:a5:68:6b:9a:f4:dc:cd:33:9d:34:13:a5: fc:ac:8e:96:01:f5:0e:30:a1:a9:5a:a4:4d:63:a7:ea:74:2c: b4:60:04:c9:ad:f2:87:c9:06:9f:09:3e:a3:64:bc:83:d4:7a: 98:c4:9d:75:f0:55:c6:7a:53:b5:25:39:b8:4e:3e:8d:1a:c0: ef:e4:56:56:22:0c:1f:0b:f9:ab:a5:ec:c1:d4:9e:19:e5:46: 4f:1e:bf:c8:10:fc:3f:38:e1:f2:c8:3f:6a:24:9c:f5:ec:a2: 2a:bb:28:3b:29:32:66:fc:f2:c6:e9:17:44:93:e8:d9:17:49: 6d:a9:2a:e3:6d:b2:e7:99:5a:38:3b:8a:73:51:82:a6:a1:49: 58:8e:03:e6:58:49:b9:01:d5:ef:1c:4b:84:63:05:f6:8c:a0: e9:7e:88:3b:f2:41:d3:01:7f:c0:8a:71:03:21:6a:8d:63:5a: d1:85:be:53:e1:a1:79:d9:89:1c:e4:dc:47:59:de:f3:e7:4e: c2:f5:80:79:53:8d:ff:e4:ae:f5:8b:0e:88:dd:f8:f9:2c:fc: 68:3f:53:8a:8c:00:05:f2:5c:ad:29:5f:7b:c1:e5:91:4e:60: 15:2f:4c:2a:0e:62:04:c4:e0:e4:40:62:9b:3d:c8:29:2b:75: a0:48:df:eb -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUTZsVYIaiCKz1JZQhdRcqJUdUSeIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI0MTEyNTAwMDMzN1oX DTI0MTEyOTAwMDMzN1owejFJMEcGA1UEBRNAYTZmY2JlZTJlMWUxNTQ2N2NhZTQw MmFjMzQ5NmU5OGQzZDY1NWZjNzVlOTA0NTZkNzc1ZGRjNGNlMTdkNTk0MzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqu45bjUZVCkFdFpTjhmprziQ48fb Fz1PD9IFBNoe3cLYZqsdY5gQMhTqe4bBVrU3mcVZsxFgZw7IpPbY/J8uKMQX0+j/ jmspxUCGpPQyv0TgOfZ1EhBUB3FD+UcGId0QZZwUoFjh47AG100IIF+VkBYYXnlx bVuSpm0HqAEmN++db+7Cufd12vBeL0jOveiwF9pBDYDaQD6PUHbOd8mx27ffXa1h X8CJiwjAm8vTMM/X8ed09O9oupvArgAPQFD2jX3fhBlhxYEQPxm0mZpKPRzSwHPR FEQ2ehgUPV33ommJZtzIlkaQBzCQsCL1T2S4jqxmtRFIQzNObabFfh2iRQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFB4tlor4KagEIzBOnOmsTSgFdNuyMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMDhjMmYyNjQtMjNm OS00OWZiLTlkNDMtZjhiNTBiZWM5MjYxL2E1YjAxYmRkLWNkZWItNGNmYy04Yzkz LTdlNzBjNWUwOTMwNi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBADsxyvQ3BKVoa5r03M0znTQTpfysjpYB 9Q4woalapE1jp+p0LLRgBMmt8ofJBp8JPqNkvIPUepjEnXXwVcZ6U7UlObhOPo0a wO/kVlYiDB8L+aul7MHUnhnlRk8ev8gQ/D844fLIP2oknPXsoiq7KDspMmb88sbp F0ST6NkXSW2pKuNtsueZWjg7inNRgqahSViOA+ZYSbkB1e8cS4RjBfaMoOl+iDvy QdMBf8CKcQMhao1jWtGFvlPhoXnZiRzk3EdZ3vPnTsL1gHlTjf/krvWLDojd+Pks /Gg/U4qMAAXyXK0pX3vB5ZFOYBUvTCoOYgTE4ORAYps9yCkrdaBI3+s= -----END CERTIFICATE-----Generated at Mon Nov 25 02:46:13 2024 by rpki-client on console-ams.rpki-client.org