$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft File: manifest.mft (raw, json) Hash identifier: Fg+gUbnEkLWMEuk1yBRjtqiIGebpWUoLIK/JovbIeck= Subject key identifier: 7E:63:5E:CD:EC:A6:36:5C:7F:26:29:8B:1B:AC:C2:24:D4:62:29:E5 Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 366948023C798F7A77D222620E55EB5E00D58E3E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft Manifest number: 02A4 Signing time: Sat 27 Apr 2024 00:27:30 +0000 Manifest this update: Sat 27 Apr 2024 00:27:30 +0000 Manifest next update: Wed 01 May 2024 00:27:30 +0000 Files and hashes: 1: 16f57147-886c-4350-a247-eceffe69fb96.roa (hash: equRFaulKMTQhDhyFcuBQjC7WRRwIzhrzOlB3o43GgE=) 2: 32bf2c39-b536-43d0-b557-f68d8ee64091.roa (hash: cMJkLthkRAXD70Enq43SToh//6gRV84vODXyQ6P8nzE=) 3: 3a77dbde-8981-442a-a4a0-5e4ad5a49e85.roa (hash: ksnTw9JW5mHY0Uvju9QrcuNYM1cBPjMxZoPbQbFejmk=) 4: 3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa (hash: hDelXt8d4yCkTJmpMuPs/JP8DY7DK2i0Vj3L0uULPYk=) 5: 4dd57872-4286-4ae3-96b4-e36652d55044.roa (hash: /s2+5sO0fGwHngcpvkd/jNxQqV509s9RyL+e1WQwnBA=) 6: 8dafa80e-23c0-4310-ae76-0199a9aafc6f.roa (hash: ha3vmmXri8Z4M/+Ulvex9ZuPIxBJPLIN28d0aKrP7Kw=) 7: 906a6ed0-3318-443d-9e2d-1940710be595.roa (hash: tXKi2KaKEsfxWkqHxECNilX1tDZT7OMAEo62dyGAbJc=) 8: a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl (hash: eIsdgbteNl1cY+ienlRfaOjavWcYMRyv92i6SdmiyL0=) 9: c29c3a7e-a7ae-4418-af26-16585304f365.roa (hash: y5tDWhcsKT56SSMJ/NEH5HL1gJhYpK69d4ZbAMYgxEc=) 10: c46353d6-f66a-4ac6-aeca-c8f320ebee9a.roa (hash: OCWua6F3YwXX9gRoyRf9bYRFaW9QsQeZ7NFilhJ3khg=) 11: ce35c6d4-7339-4288-8a0e-b63877fb2df7.roa (hash: tjWI5auchNOkW9gXVLaBk8AzgHYkLkFlebR6SfwkBx8=) 12: cf289da6-3eab-42c8-9297-c9a682f901df.roa (hash: 18MozQo9fuCUnHZq1gQqi5otWvUwc6CpPhCtgdZalnQ=) 13: d1333e17-04fe-4e6d-bd71-2a9ac1fe867f.roa (hash: ltisDMl4tv3zAOT0NDEe+DE1ugc1lxaBdpQVaGw/nFo=) 14: e05f4504-bb83-4b18-bbd9-8d82e42913d5.roa (hash: fMLkfyJoXY6/WU8V/1tumg0T/kT99QzF1REVOz+ZLpI=) 15: f60efe51-797b-4b40-95ef-52a2e036f36a.roa (hash: EoqTjBbVSIkSAMq94xas27RxlZns/SrKHrwWFuvN8Ds=) 16: fa2f00a1-5565-44e6-8f22-91f65926beed.roa (hash: nLvEOHN/f9wamc3nJf9umjxhXpMUsizp/Lvrdkp+dls=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 00:27:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:69:48:02:3c:79:8f:7a:77:d2:22:62:0e:55:eb:5e:00:d5:8e:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Apr 27 00:27:30 2024 GMT Not After : May 1 00:27:30 2024 GMT Subject: serialNumber=f66304009df37864bbb174447ed4a273c6eb7f7f92e46d3cd2ba328ec34c8256, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:4c:95:d8:9b:ea:84:ae:ff:92:f0:17:d4:a1: 9e:98:a3:df:9f:9f:ee:13:b7:a3:70:c3:29:88:42: 0c:70:a8:32:6e:51:19:c0:7a:df:af:ce:5e:a2:76: 86:e0:ac:1b:24:e6:77:07:4c:47:10:c8:9e:8b:bd: 4e:0a:48:7f:db:1f:42:3a:1a:f4:13:82:03:4b:e0: 60:8a:29:0e:41:42:47:25:c4:2e:db:90:70:f1:3b: 4b:6a:ad:e7:ca:71:f8:42:90:e0:f3:49:b4:c3:be: 9d:da:6b:a0:04:82:cb:f9:3e:f4:e7:1e:cd:c9:cb: 3d:ec:ec:3d:37:ba:b1:34:fe:7c:de:82:4e:f7:62: df:5e:5a:8c:62:ba:90:6d:9d:dd:28:dc:bc:39:74: e0:bf:2b:4c:a7:f4:09:44:9f:78:8e:db:e7:92:7b: a9:45:50:e2:aa:da:cb:c4:8a:8d:c3:5c:19:38:25: 15:76:a4:4d:f9:c2:ef:90:1e:d7:35:51:d8:e5:07: ef:5b:67:4e:7d:5b:72:84:aa:29:64:54:76:f1:d3: 65:0c:9a:98:49:12:1f:79:4a:be:55:f2:af:a7:ed: 14:80:4c:87:d3:af:d7:ac:34:20:51:0f:ce:7e:c7: 5d:ef:1d:7b:ed:54:75:0b:6e:94:1b:46:3c:98:da: 62:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:63:5E:CD:EC:A6:36:5C:7F:26:29:8B:1B:AC:C2:24:D4:62:29:E5 X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:1a:f2:18:e5:01:09:00:06:48:81:68:94:cd:35:84:61:5e: 5f:36:5f:13:b1:6a:51:59:e2:08:cf:81:f6:5c:89:b6:fd:ca: 20:93:ed:dd:43:c1:ae:72:e2:da:f0:1a:22:4a:60:7c:4f:78: 69:0f:95:24:2e:1d:6d:6c:38:4c:e5:8a:84:bd:67:f3:4f:14: 11:07:5b:c9:a7:7a:44:d0:24:eb:34:7c:bd:73:38:93:d6:e5: dd:ab:6e:84:ea:0c:80:db:4c:db:c6:2e:e7:f5:e4:31:b0:63: 8e:03:33:5c:07:12:29:5a:8c:13:85:a6:0e:a5:d6:3a:5f:2b: 81:9e:3f:22:c1:c9:41:c3:8c:aa:5d:4c:92:0a:88:40:45:a9: a1:43:2e:4e:ee:8b:d8:9d:f5:94:a5:4c:66:47:51:1b:b5:72: 8b:a1:e3:31:4d:ef:af:04:b0:6b:48:d8:65:ba:b3:ed:c8:e7: 79:00:8e:bc:45:dd:82:23:fc:aa:07:44:bf:d9:41:fa:7d:64: e6:af:fa:79:62:02:54:c3:d5:13:7e:9c:1d:bb:6e:54:05:9d: 6b:50:0c:c3:2f:5b:ff:e0:44:2d:4f:71:ac:5a:5f:55:05:6a: ff:80:71:67:28:53:e7:96:99:e2:3f:d9:65:3e:3a:af:b9:70: 15:d0:ff:21 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUNmlIAjx5j3p30iJiDlXrXgDVjj4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI0MDQyNzAwMjczMFoX DTI0MDUwMTAwMjczMFowejFJMEcGA1UEBRNAZjY2MzA0MDA5ZGYzNzg2NGJiYjE3 NDQ0N2VkNGEyNzNjNmViN2Y3ZjkyZTQ2ZDNjZDJiYTMyOGVjMzRjODI1NjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA00yV2JvqhK7/kvAX1KGemKPfn5/u E7ejcMMpiEIMcKgyblEZwHrfr85eonaG4KwbJOZ3B0xHEMiei71OCkh/2x9COhr0 E4IDS+BgiikOQUJHJcQu25Bw8TtLaq3nynH4QpDg80m0w76d2mugBILL+T705x7N ycs97Ow9N7qxNP583oJO92LfXlqMYrqQbZ3dKNy8OXTgvytMp/QJRJ94jtvnknup RVDiqtrLxIqNw1wZOCUVdqRN+cLvkB7XNVHY5QfvW2dOfVtyhKopZFR28dNlDJqY SRIfeUq+VfKvp+0UgEyH06/XrDQgUQ/Ofsdd7x177VR1C26UG0Y8mNpifQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFH5jXs3spjZcfyYpixuswiTUYinlMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMDhjMmYyNjQtMjNm OS00OWZiLTlkNDMtZjhiNTBiZWM5MjYxL2E1YjAxYmRkLWNkZWItNGNmYy04Yzkz LTdlNzBjNWUwOTMwNi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAJka8hjlAQkABkiBaJTNNYRhXl82XxOx alFZ4gjPgfZcibb9yiCT7d1Dwa5y4trwGiJKYHxPeGkPlSQuHW1sOEzlioS9Z/NP FBEHW8mnekTQJOs0fL1zOJPW5d2rboTqDIDbTNvGLuf15DGwY44DM1wHEilajBOF pg6l1jpfK4GePyLByUHDjKpdTJIKiEBFqaFDLk7ui9id9ZSlTGZHURu1couh4zFN 768EsGtI2GW6s+3I53kAjrxF3YIj/KoHRL/ZQfp9ZOav+nliAlTD1RN+nB27blQF nWtQDMMvW//gRC1PcaxaX1UFav+AcWcoU+eWmeI/2WU+Oq+5cBXQ/yE= -----END CERTIFICATE-----Generated at Sat Apr 27 10:16:12 2024 by rpki-client on console-ams.rpki-client.org