Manifest

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File:                     manifest.mft (raw, json)
Hash identifier:          8JRJGFbssUTi+S2jLTeeAWVpYHYZawLRJx2+OxOVVRg=
Subject key identifier:   95:E7:79:45:03:25:E8:68:F5:E3:EC:1E:2B:7C:DE:54:46:C6:F2:D7
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer:       /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial:       43B5110574FCB06CBAF7A3BF3C7C188879124C71
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number:          064E
Signing time:             Sat 11 Jul 2026 00:11:43 +0000
Manifest this update:     Sat 11 Jul 2026 00:11:43 +0000
Manifest next update:     Wed 15 Jul 2026 00:11:43 +0000
Files and hashes:         1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: eBj9XTcvoFVanJYRt/4NbEIYAGYaa1w5iF0agyQMd3g=)
                          2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=)
                          3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=)
                          4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=)
                          5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=)
                          6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=)
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 15 Jul 2026 00:11:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            43:b5:11:05:74:fc:b0:6c:ba:f7:a3:bf:3c:7c:18:88:79:12:4c:71
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
        Validity
            Not Before: Jul 11 00:11:43 2026 GMT
            Not After : Jul 15 00:11:43 2026 GMT
        Subject: serialNumber=5b2652ee80e6fa768175d31928d4e10e4c710f36661159b1a7a794f01e305fc3, CN=bb9a9116-f615-462e-a680-5266b327e0fa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:ae:b8:84:52:97:be:57:c1:e3:76:63:a0:a8:
                    05:8e:4b:b4:82:3a:e1:c9:db:1e:ed:23:55:6f:35:
                    e3:4f:5c:47:62:35:0f:02:66:81:c3:22:de:bf:82:
                    63:da:48:4c:e1:7c:89:dc:c8:88:86:e1:39:0e:96:
                    f4:a8:24:bc:69:c0:f1:3f:39:d6:79:09:0d:44:9d:
                    fe:af:e6:33:a3:97:3c:84:4b:73:af:2a:96:24:6c:
                    23:b2:2f:33:8d:11:25:f2:eb:76:53:ce:ca:e6:4b:
                    21:6e:de:b0:8d:8f:71:07:9b:43:22:37:a6:a4:c6:
                    ec:4a:e1:e7:60:be:b2:71:b7:67:82:0c:aa:c0:48:
                    9f:78:21:f6:eb:13:c2:2a:c1:b8:9c:89:7d:5f:a8:
                    34:a9:64:4b:c3:d6:a9:fd:d1:24:fc:48:2f:f8:d0:
                    42:48:a1:41:f5:f8:4b:15:cf:20:0e:5c:39:ba:8f:
                    53:4d:85:ee:58:bd:68:63:54:07:b4:af:d7:bb:ef:
                    de:68:81:1e:98:0e:54:ae:35:54:fb:01:5a:1c:27:
                    61:a8:dd:c2:d5:aa:f8:41:2a:66:1d:01:4e:08:bd:
                    cc:ec:86:bc:79:48:c6:c2:b2:cd:e1:21:ef:dd:84:
                    19:1b:f2:83:7e:83:bf:6c:80:67:38:df:c5:61:d1:
                    3e:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                95:E7:79:45:03:25:E8:68:F5:E3:EC:1E:2B:7C:DE:54:46:C6:F2:D7
            X509v3 Authority Key Identifier:
                keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         25:67:b4:3d:2c:8c:a6:66:f1:d3:f0:44:76:98:76:e7:e6:4c:
         13:28:12:d8:1c:26:cd:b1:75:17:52:2d:90:e6:e5:30:38:9f:
         d0:63:ba:4f:fc:ca:91:69:e5:2e:03:2a:cf:89:66:2e:f1:bb:
         b8:1e:5a:44:09:64:e3:d5:5d:86:e4:2b:96:d7:09:19:6a:91:
         b3:95:18:19:9d:d1:fe:86:10:37:3f:d3:01:67:8d:75:df:14:
         fb:14:53:86:72:a8:e9:39:bc:7a:60:9b:31:6e:00:f9:71:7a:
         3d:01:18:39:ad:42:38:a8:11:fc:aa:8b:a1:0b:9f:2f:a6:a0:
         16:a2:58:f7:98:b4:4c:12:43:2a:12:8e:d4:9e:5e:b7:23:c2:
         8b:a2:9a:fc:4e:54:e1:1e:e3:64:4f:4c:5f:50:d5:a6:30:b0:
         bb:8b:04:4a:40:e5:3f:f3:51:cf:17:6a:45:e9:4e:7c:42:1d:
         ff:84:6e:a4:df:b0:36:bb:30:00:67:c4:eb:49:24:c1:48:e4:
         33:41:b4:be:89:35:9e:2f:af:ad:1f:93:6c:4c:aa:bb:a7:b2:
         f0:e7:05:cf:93:de:0e:06:c5:4f:44:f3:b6:2a:25:6a:bc:6a:
         a1:4e:f2:77:a6:30:d7:ea:aa:dc:bc:45:90:d2:fd:75:75:e2:
         e5:ca:74:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 11 01:53:00 2026 by rpki-client