Manifest

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File:                     manifest.mft (raw, json)
Hash identifier:          GztCLY1dPrInFqiJMN05d81pG2R058wQwkzxw88rGzU=
Subject key identifier:   FE:8A:F4:25:C5:76:98:77:C1:A6:04:BA:95:B7:DC:1D:2B:7A:24:50
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer:       /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial:       65726E875A737A7B849CB1D3668516ACD683F172
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number:          0237
Signing time:             Mon 04 Dec 2023 00:02:24 +0000
Manifest this update:     Mon 04 Dec 2023 00:02:24 +0000
Manifest next update:     Tue 05 Dec 2023 12:02:24 +0000
Files and hashes:         1: 037679cc-778a-417e-add9-45a9bf4f8fbc.roa (hash: 2wW4yzU/SDpk4jTH18MOyPvoW4ZtxoDvP9gXxDSudpI=)
                          2: 0b0c2d18-2b42-4e53-9e6a-d6f7d5dc2334.roa (hash: 5+FbeV+2uLfTQccBGhoddl9UwmZiG0Td1RYBgfAUPzA=)
                          3: 0b839f01-283b-4c23-b8a7-3697b9583ee1.roa (hash: weM2RX7lIp2k3uUfevLLvVQ/V5oj/1n/jx9zP9wOMII=)
                          4: 0dfd6e20-2823-4f68-ae48-725fe4ee2f81.roa (hash: 1Q7I9kmBONeViS2DWgKwZbq7zs6XM0QmRV1FM0ld05g=)
                          5: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: u7R4tysSC5+jQyMTlifuspHktZGnEmiowD6tSnTp33o=)
                          6: 1738e1ca-e725-4f75-8dfb-04b89ee349d9.roa (hash: USyZwm7JTozW/aPIRVW3ML/Y3M5Fq4+xFhIodOZYgyg=)
                          7: 22941216-14be-40e9-a7d3-c3720399ee20.roa (hash: 3Ju4mpuKEs7RgE4E0YO8hkkplp+Nd3xSEKDQMFxfbxk=)
                          8: 22fa329b-ec37-40dd-997f-24f4559e0eff.roa (hash: 68/9mgAa+/Ify+uNEXZDBR2TGA1fEEv4KJD/hTa9Imo=)
                          9: 2430eb67-8d2b-4d5d-979e-b7427ddfa348.roa (hash: eNOgmB6gWeTW2Kh/ZbOq6oZ4nkqQ066WLEhpOywXsL4=)
                          10: 2d2af952-35e6-43e7-b07a-74956b69b4a0.roa (hash: 6mfxW9VBMxbXVebCY93nQrY5DHibAogVMYtQLdTThJw=)
                          11: 2f35c729-72a9-490b-b37f-984abc13307d.roa (hash: ZlsfHg18ldGEukIy13gZGp+sxMRQo+SAbNBSSnD4PAM=)
                          12: 41ea98ba-f4ea-45c4-8f0a-438a367705db.roa (hash: ZCUKmkrRFZt19OTEiMJBuRSoxaxy8UI7VGkDJrAjXAY=)
                          13: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: wURYSnD0b/vpEp3/PYBlBYrzHd2z2uP0dd9Bu3OoJSA=)
                          14: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: x7tZ/Cq9oK6BSbn6V2Emkup8Nsmw11FmJnpJTrm9Z/I=)
                          15: 578a19af-8138-49ac-8a51-a2bd148210a1.roa (hash: 4yTYxs+c6/vKXW1kaH/GfVAytEH2xRzKL0i9Arqh0AU=)
                          16: 58ba68d3-9488-476b-8d44-5ecf1f0018e8.roa (hash: wWf8/mcrspw/OA3uJ6YWhN0wZo5TVvAvEujHhpy5hFc=)
                          17: 59860ec1-5f08-4648-8fa9-79f2bbf2ec8d.roa (hash: fLIx/Cm6Ph+8FavYlKfE+7Stsr/ZMydEguMQrrCURgI=)
                          18: 68fe3037-b87b-4379-a014-213012da3a11.roa (hash: xppAIpjG3X0OqteA76bMzY9/sWdUH7OIGqkyFee5re8=)
                          19: 7ec71d95-427c-491b-a7cc-55afd17c6f55.roa (hash: ctyLHppG2Juvtybfr9u/Tv7p64YXqLR0ihRC4Qa0OD4=)
                          20: 90e88caa-70b7-406a-a161-a6118790ffdb.roa (hash: +xhnEQVLX973UtaxdXUXCwlFJ0HT/31EdLFiosDzX1c=)
                          21: 92acb65d-8ed6-47b8-8b87-8cec3f14df45.roa (hash: 5ZAVxkuyyDwl1Oyy3UXKWUJzuOa1+78BJedJQ4Ay7VM=)
                          22: 9ecc0bd6-104c-43e2-9db8-92afcb871843.roa (hash: J5k0HEU3c2FAWxXIUkuUQGJ7opuCjTiTI5eIt7mYIUI=)
                          23: b3d57ffd-cfff-4f0f-9a34-bd001a900e9e.roa (hash: xHCnqMm0qLbLxUVxvx8ScuzvqOeEIGsO6kP9QniaEG8=)
                          24: e1c8ca39-fe1f-44c7-802a-b0dc7fdb5616.roa (hash: xFceLCZ1u7YKU7y4vbLFawEoJRe3Zlqq5h2BhpGhJ4U=)
                          25: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: HmlGxuaQHbpN6STzBtv1yplbLrEPQFQn3ia4chOUANQ=)
                          26: f88f0730-b125-42e8-9451-f0a369a3bbc1.roa (hash: pA7+tcn6ddscQD0QPicpQa0PVM5eZjEJNdswS4UVfqM=)
                          27: fda62ac0-bc2c-4d57-a69e-8a7c469cd2d8.roa (hash: wFPZw0hHIUtAAcl3qDXXyL8d2Ran0xLNmA78MM41zbQ=)

Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 05 Dec 2023 12:02:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            65:72:6e:87:5a:73:7a:7b:84:9c:b1:d3:66:85:16:ac:d6:83:f1:72
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
        Validity
            Not Before: Dec  4 00:02:24 2023 GMT
            Not After : Dec  5 12:02:24 2023 GMT
        Subject: serialNumber=01c2ca69283c3e50b4dfed0150483aeabf7edf46ef810a98e379bf510db0b170, CN=bb9a9116-f615-462e-a680-5266b327e0fa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:33:64:c6:7a:97:3d:cc:22:40:f5:63:0f:e5:
                    f9:4f:c8:3e:79:5c:d1:9c:f7:e7:da:63:f0:48:c7:
                    6c:b5:0c:cd:bd:77:1f:54:a0:12:a8:b3:ea:53:c8:
                    85:27:a5:d5:d9:95:a9:6a:af:e4:98:6d:c9:bb:2c:
                    c3:ee:aa:97:eb:0d:c5:18:87:36:d0:e8:0b:6b:01:
                    1e:f6:b6:19:e5:4a:22:77:ec:97:d5:e2:81:07:9a:
                    d1:e7:c2:d8:c5:1e:b6:de:23:fe:83:ff:7e:1a:c0:
                    b8:45:7f:70:7f:89:74:88:6e:5c:17:09:4b:68:85:
                    5c:a8:ed:ff:61:57:d6:24:ff:0e:9d:bc:08:21:6e:
                    61:d6:87:97:5f:2f:e3:0f:44:c0:30:60:09:25:96:
                    53:a4:17:90:3d:c7:75:d2:b8:2a:b7:e2:4c:00:47:
                    26:15:ef:c1:00:32:1c:b8:a3:69:c9:95:1f:2c:2b:
                    36:44:45:ff:d0:52:ea:1d:57:33:e8:8c:c1:39:e7:
                    1e:79:ee:72:6f:de:fd:76:2f:7b:a3:34:e5:13:ef:
                    b3:e2:d0:2c:b6:84:e3:94:5d:c6:48:05:b7:01:9d:
                    82:5f:b5:d8:7c:16:a0:c7:99:c2:f2:78:19:25:0d:
                    85:c7:a6:d0:6c:dd:af:86:04:02:8f:b4:e3:32:60:
                    25:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:8A:F4:25:C5:76:98:77:C1:A6:04:BA:95:B7:DC:1D:2B:7A:24:50
            X509v3 Authority Key Identifier:
                keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:95:01:c0:2d:cb:34:8f:95:68:47:96:33:17:61:96:33:63:
         09:44:17:e6:a3:41:4e:cc:b4:4e:3e:0f:5a:7e:8e:d2:c3:0e:
         2b:ee:7d:3f:d9:72:cc:2d:08:c0:5b:41:dd:36:47:f4:84:e7:
         a9:5b:ae:af:ca:81:aa:18:1c:94:cb:dc:7a:90:dd:58:0f:86:
         ab:94:2d:64:47:32:2c:a3:a3:81:65:3d:ca:64:38:9a:20:64:
         fb:a1:ae:eb:0e:e9:7c:0a:2a:4f:a7:0f:5e:c6:98:ed:16:2a:
         e7:bc:61:1f:55:a1:d9:8b:31:6f:18:c3:5f:c4:cb:be:80:2f:
         eb:87:ae:ef:88:37:d7:54:16:59:41:41:bc:ad:eb:4b:dd:6f:
         a2:b2:8f:bf:24:2f:f7:62:a7:c6:f0:cd:c6:c0:ca:cd:f3:3d:
         f9:e8:ea:e3:29:96:4c:4d:45:76:fd:f0:1f:db:c5:de:eb:c5:
         9d:8c:ef:b5:5d:31:6a:d3:20:c3:4b:53:c1:43:a3:f4:e0:cf:
         09:94:21:d9:45:24:86:88:f9:ed:d1:93:a7:ae:bc:be:d3:f0:
         e5:f1:fa:61:83:a2:40:ed:b5:50:cd:a5:a5:5f:42:18:6f:a1:
         6c:24:8e:44:80:3a:a5:41:e8:86:aa:ab:f2:e0:03:9a:3f:8f:
         86:61:69:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Dec 4 00:31:46 2023 by rpki-client on console-ams.rpki-client.org