Manifest

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File:                     manifest.mft (raw, json)
Hash identifier:          ucI//1DSZ/cyVDn4xTlOsoWjxPoqgMIUrGWHOwVdY0s=
Subject key identifier:   DC:F5:0B:63:F9:09:A9:7C:05:F8:91:52:B4:B3:45:5D:F2:28:77:BB
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer:       /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial:       7CE81384FDCE402F141E3B4C5202D52A81FD13EC
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number:          064D
Signing time:             Fri 10 Jul 2026 00:11:32 +0000
Manifest this update:     Fri 10 Jul 2026 00:11:32 +0000
Manifest next update:     Tue 14 Jul 2026 00:11:32 +0000
Files and hashes:         1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: Tft1vQHq/kgJKYWt/VX49XTfl/goBgftp+4iaZZWHRY=)
                          2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=)
                          3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=)
                          4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=)
                          5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=)
                          6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=)
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 14 Jul 2026 00:11:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7c:e8:13:84:fd:ce:40:2f:14:1e:3b:4c:52:02:d5:2a:81:fd:13:ec
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
        Validity
            Not Before: Jul 10 00:11:32 2026 GMT
            Not After : Jul 14 00:11:32 2026 GMT
        Subject: serialNumber=cac1f6a424414b00b3dd6d33d6a74dc2ea703121a1120c58533e213f805002bf, CN=bb9a9116-f615-462e-a680-5266b327e0fa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:96:3f:55:4c:ee:fa:ba:76:cd:89:b4:58:e7:
                    fa:c1:7c:fa:d4:85:9b:12:7f:c2:04:d7:af:50:f7:
                    cf:29:5a:ee:66:46:ad:1c:b4:2c:df:18:c5:a7:7f:
                    af:9c:f1:0b:0a:9f:96:d4:85:ad:df:87:c9:ea:24:
                    f2:c9:11:f8:cd:03:e5:d1:b0:83:e1:dd:37:30:36:
                    f6:77:0e:a4:60:a1:81:32:96:58:65:d3:90:cc:2d:
                    ff:9c:be:2e:b8:19:92:c3:2b:b1:8d:c4:99:af:b3:
                    73:3e:80:ed:74:59:e4:2c:4f:0e:8b:ba:ad:52:7d:
                    21:dc:84:64:d3:36:70:0f:d4:a0:8d:6c:73:00:f5:
                    c2:5c:d0:35:14:d4:95:45:9f:d3:43:e2:28:b6:e1:
                    a5:dc:9b:48:5e:48:17:c4:14:46:d0:94:97:ab:8a:
                    cb:a9:1f:56:c8:65:80:80:bf:1b:de:81:6c:05:b6:
                    d2:67:55:05:6a:d5:76:80:9f:ac:d5:f8:96:82:5d:
                    1f:69:36:8d:db:9c:3c:b5:31:fc:ed:16:5c:2e:96:
                    94:da:45:7f:63:04:bc:93:ae:a3:8e:28:34:34:fd:
                    11:ee:0d:df:c4:7a:ef:87:0e:dc:70:3d:72:74:40:
                    02:9a:6e:f9:48:16:1c:5e:94:5b:17:68:4e:b2:2a:
                    14:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DC:F5:0B:63:F9:09:A9:7C:05:F8:91:52:B4:B3:45:5D:F2:28:77:BB
            X509v3 Authority Key Identifier:
                keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:72:4e:15:ae:a7:ac:dd:6c:25:88:99:7f:ca:d5:26:51:41:
         6f:85:d0:09:e2:df:27:1f:17:4b:07:d0:41:8f:7b:39:ed:3b:
         a7:be:fb:31:a0:18:09:54:d5:9e:4c:9a:9b:57:43:63:18:76:
         a5:8e:ff:38:82:dc:30:bd:5f:e8:81:62:11:c1:c1:97:a8:3b:
         ea:b9:82:ae:a0:0f:ff:d4:fd:00:2f:d0:6c:ad:5b:ee:31:a3:
         4d:0f:8b:8c:5f:95:22:62:7d:3a:ba:f2:37:05:51:8b:85:f2:
         e3:dd:ae:ff:e5:7d:e2:e2:09:2e:7f:ec:7f:ba:ed:b9:13:d2:
         b3:bb:6a:dd:94:48:04:2a:4d:9a:cf:b0:db:83:71:db:b8:0f:
         a6:46:ce:dc:b7:97:31:6c:c3:ea:10:4c:52:f1:ec:46:19:f5:
         e4:0e:3f:4e:98:47:64:45:72:f1:00:9c:04:f4:86:3e:c3:c6:
         1f:c5:c3:70:35:e6:e0:d0:4a:b9:e4:af:cc:fb:e8:e7:1c:36:
         e2:f4:2b:49:02:df:af:e3:84:6f:19:2e:03:b4:2c:c8:32:6b:
         9f:c9:ba:2a:03:6c:dc:04:17:2a:e5:e0:e3:14:a6:7e:47:a8:
         c5:68:58:4d:5c:bf:21:b3:06:2e:00:be:c1:2f:c1:2f:3a:fb:
         93:f7:5f:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 18:05:48 2026 by rpki-client