Manifest

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File:                     manifest.mft (raw, json)
Hash identifier:          KSyy7LLKyD4uaeRroFotkIM7uBs2LMCwhehXQrx9rFM=
Subject key identifier:   57:64:21:5A:5C:75:C2:CB:36:61:6C:D9:87:AE:BF:28:7B:BB:BD:EF
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer:       /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial:       544526FCB536F272300CEA3C3319B0B4286F7879
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number:          0645
Signing time:             Thu 02 Jul 2026 00:09:28 +0000
Manifest this update:     Thu 02 Jul 2026 00:09:28 +0000
Manifest next update:     Mon 06 Jul 2026 00:09:28 +0000
Files and hashes:         1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: TJ5GtN/SpIIxkx3dCKZODHEBwcYkxmRvQiv9iVygglU=)
                          2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=)
                          3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=)
                          4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=)
                          5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=)
                          6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=)
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 06 Jul 2026 00:09:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            54:45:26:fc:b5:36:f2:72:30:0c:ea:3c:33:19:b0:b4:28:6f:78:79
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
        Validity
            Not Before: Jul  2 00:09:28 2026 GMT
            Not After : Jul  6 00:09:28 2026 GMT
        Subject: serialNumber=8e7ea841dd1c565a2b946aa860cdf81c2824246e60cefb7001c24cdd112a1e43, CN=bb9a9116-f615-462e-a680-5266b327e0fa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:a6:14:be:42:f8:47:e6:74:8c:85:1e:52:07:
                    af:b4:83:e2:43:b7:ab:38:fb:b0:7e:7e:46:71:70:
                    a0:7c:d4:81:0c:03:60:0a:0d:e8:77:7c:14:f9:5d:
                    fd:5b:a7:c1:a4:b0:0d:56:19:4b:df:c0:15:29:e7:
                    56:69:71:53:a9:3d:fd:fe:03:3f:1e:03:df:5a:25:
                    92:5b:09:75:03:91:1e:7f:eb:c9:09:6e:72:8a:43:
                    a3:d4:ba:67:54:47:42:ca:46:35:ab:53:81:59:85:
                    01:3d:bb:09:5e:04:9d:18:4a:07:9c:4e:fc:87:b6:
                    b8:6e:c7:63:1d:52:c9:f9:43:b9:bd:b5:b1:ad:f0:
                    48:5a:b6:66:b0:d5:e0:17:9e:1a:d0:9e:29:ab:f5:
                    53:70:09:5d:a3:5f:44:5d:6c:80:ad:7e:c7:08:15:
                    90:29:c6:e1:49:bf:7a:7b:38:d8:96:35:98:f4:77:
                    fa:73:e6:90:4a:f2:60:18:44:90:d5:63:2e:78:a6:
                    04:c5:80:41:1d:19:e4:fa:44:10:64:87:7a:dc:45:
                    fe:5a:29:ba:f5:e6:b3:94:9d:11:29:06:c6:6a:74:
                    fa:d7:d6:b0:6b:d1:e2:c6:96:63:f8:a4:8d:fa:e2:
                    dc:14:b6:59:1e:5e:17:4e:0e:e4:f3:34:ec:f6:07:
                    15:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                57:64:21:5A:5C:75:C2:CB:36:61:6C:D9:87:AE:BF:28:7B:BB:BD:EF
            X509v3 Authority Key Identifier:
                keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         02:fb:65:b5:15:c2:f3:c1:8f:b2:f8:cb:87:96:f3:45:fa:e6:
         23:9a:dd:51:4c:ff:11:90:20:4b:dd:e5:99:68:fb:2c:3c:62:
         8a:47:e4:a9:2e:36:23:62:74:1c:93:df:a6:55:31:83:d9:16:
         95:77:b2:6c:72:9d:78:1e:a8:09:75:d9:b8:3f:12:d5:ae:2e:
         cc:bd:35:1b:9a:4d:49:05:dc:36:f6:63:99:0d:48:57:68:4c:
         1d:f0:5e:c4:75:51:55:92:92:b8:48:48:6f:85:cb:fa:aa:8d:
         1a:8b:45:f5:e1:c4:64:b5:c6:96:02:68:19:03:4e:ba:30:4d:
         d5:7b:c6:68:09:7e:a4:bd:eb:59:60:7c:d6:9d:7c:0f:33:58:
         5b:c0:d3:5d:c8:71:bb:8e:be:be:db:1c:50:57:5b:ec:9b:d2:
         76:a0:36:9d:a6:71:2b:bf:a1:ac:69:3b:38:99:b8:b2:e2:8b:
         2a:9d:7a:fb:e3:c6:0a:70:1d:94:c2:15:65:f7:56:b3:d0:26:
         f1:8e:7a:fc:6d:fd:05:cf:28:c6:e6:4f:2d:a3:c7:21:80:02:
         e6:40:c4:af:4a:79:3c:38:a5:81:14:47:71:2e:dd:f7:40:04:
         f0:f4:2f:b4:d4:a5:c4:e6:ff:6c:90:b6:f8:97:04:66:0d:6c:
         9e:c7:72:44
-----BEGIN CERTIFICATE-----
MIIFlTCCBH2gAwIBAgIUVEUm/LU28nIwDOo8MxmwtChveHkwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4
ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDcwMjAwMDkyOFoX
DTI2MDcwNjAwMDkyOFowejFJMEcGA1UEBRNAOGU3ZWE4NDFkZDFjNTY1YTJiOTQ2
YWE4NjBjZGY4MWMyODI0MjQ2ZTYwY2VmYjcwMDFjMjRjZGQxMTJhMWU0MzEtMCsG
A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApqYUvkL4R+Z0jIUeUgevtIPiQ7er
OPuwfn5GcXCgfNSBDANgCg3od3wU+V39W6fBpLANVhlL38AVKedWaXFTqT39/gM/
HgPfWiWSWwl1A5Eef+vJCW5yikOj1LpnVEdCykY1q1OBWYUBPbsJXgSdGEoHnE78
h7a4bsdjHVLJ+UO5vbWxrfBIWrZmsNXgF54a0J4pq/VTcAldo19EXWyArX7HCBWQ
KcbhSb96ezjYljWY9Hf6c+aQSvJgGESQ1WMueKYExYBBHRnk+kQQZId63EX+Wim6
9eazlJ0RKQbGanT619awa9HixpZj+KSN+uLcFLZZHl4XTg7k8zTs9gcV8wIDAQAB
o4ICQTCCAj0wHQYDVR0OBBYEFFdkIVpcdcLLNmFs2Yeuvyh7u73vMB8GA1UdIwQY
MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp
QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF
BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t
L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu
aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y
c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi
NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm
LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw
BKACBQAwDQYJKoZIhvcNAQELBQADggEBAAL7ZbUVwvPBj7L4y4eW80X65iOa3VFM
/xGQIEvd5Zlo+yw8YopH5KkuNiNidByT36ZVMYPZFpV3smxynXgeqAl12bg/EtWu
Lsy9NRuaTUkF3Db2Y5kNSFdoTB3wXsR1UVWSkrhISG+Fy/qqjRqLRfXhxGS1xpYC
aBkDTrowTdV7xmgJfqS961lgfNadfA8zWFvA013IcbuOvr7bHFBXW+yb0nagNp2m
cSu/oaxpOziZuLLiiyqdevvjxgpwHZTCFWX3VrPQJvGOevxt/QXPKMbmTy2jxyGA
AuZAxK9KeTw4pYEUR3Eu3fdABPD0L7TUpcTm/2yQtviXBGYNbJ7HckQ=
-----END CERTIFICATE-----
Generated at Thu Jul 2 04:52:09 2026 by rpki-client