Manifest

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File:                     manifest.mft (raw, json)
Hash identifier:          E4ur/ZnQzH1ImyT2J1hPIs4kesl+U4xckFpf7Q1KHbY=
Subject key identifier:   88:2E:10:EC:EA:76:F8:59:92:9F:8E:C7:80:7C:12:FC:A2:C1:4C:7B
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer:       /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial:       105F95FE2310CB7D570192A0902EC0E077056D5F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number:          0649
Signing time:             Mon 06 Jul 2026 00:10:28 +0000
Manifest this update:     Mon 06 Jul 2026 00:10:28 +0000
Manifest next update:     Fri 10 Jul 2026 00:10:28 +0000
Files and hashes:         1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: R/3ZPrT3igv+93rig6LD+vxT6U6VTqlfzIW2STkZP4o=)
                          2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=)
                          3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=)
                          4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=)
                          5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=)
                          6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=)
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 10 Jul 2026 00:10:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            10:5f:95:fe:23:10:cb:7d:57:01:92:a0:90:2e:c0:e0:77:05:6d:5f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
        Validity
            Not Before: Jul  6 00:10:28 2026 GMT
            Not After : Jul 10 00:10:28 2026 GMT
        Subject: serialNumber=f951d6ae5afb7f2636b936d8eb0c1591b84d6228df961f13ff3e929e00169788, CN=bb9a9116-f615-462e-a680-5266b327e0fa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:44:c5:39:8d:81:01:dc:89:0e:ed:60:9b:14:
                    13:e0:f4:bb:66:e8:d3:95:f7:a9:5b:6c:43:78:00:
                    8c:13:73:22:6d:46:64:d1:fd:46:6e:ef:ad:0c:f3:
                    e0:4e:20:58:19:ea:c2:b6:eb:e4:18:3b:b9:e4:ca:
                    b3:f7:37:0b:02:f9:7b:da:59:f1:f4:bd:2a:b0:b0:
                    16:88:b1:c8:51:4e:e8:9d:36:6f:0e:ff:8f:92:2c:
                    aa:f5:11:be:99:ae:6a:7f:76:f7:df:74:09:a0:58:
                    4e:49:91:82:52:21:a6:64:50:e5:ed:10:a9:48:27:
                    53:3f:b1:2a:d7:3c:ce:e1:3a:1d:35:ea:3d:3c:d3:
                    9e:5b:21:94:0c:ab:d7:66:d7:b0:38:eb:34:b9:bf:
                    ae:e2:9f:a3:a9:fc:7d:8a:a3:e9:92:6c:c5:16:f0:
                    10:0d:05:6b:08:ff:6b:94:41:77:d6:3c:99:8b:da:
                    53:be:34:6d:bb:0e:fe:22:0d:09:98:be:82:6b:e6:
                    fb:25:e5:e7:f3:a6:61:d5:97:b9:b7:e0:6a:b9:85:
                    af:28:17:4f:20:1c:bf:ef:82:ff:4e:63:ee:33:1e:
                    b7:4e:f1:42:82:8c:1d:15:81:1e:a2:9c:57:c7:70:
                    32:1c:f9:70:70:41:2e:89:6d:c0:21:67:44:e4:8f:
                    f1:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                88:2E:10:EC:EA:76:F8:59:92:9F:8E:C7:80:7C:12:FC:A2:C1:4C:7B
            X509v3 Authority Key Identifier:
                keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         48:0c:91:ab:fa:05:f2:ba:1f:48:c1:27:10:76:34:ff:76:43:
         7a:3c:b9:6e:15:9e:b0:45:8d:2f:d9:19:42:29:13:5e:8e:08:
         cc:85:28:61:9c:dc:77:ac:67:16:b7:ea:e4:0c:16:0f:75:88:
         71:db:ae:d1:51:25:19:94:af:ac:34:46:69:67:c0:a1:15:d5:
         6e:9b:f9:3e:e5:b3:87:4e:18:6f:21:b1:fe:59:49:6b:26:a5:
         b7:ad:dd:05:f9:6d:fa:43:0d:f9:53:15:09:ab:2e:f2:e9:20:
         74:a2:a5:75:d8:de:0a:11:5d:a4:a8:d6:a7:93:36:63:b9:1f:
         71:60:ba:7f:6c:7b:55:a5:08:bd:46:14:79:a4:1b:99:00:37:
         fb:1d:93:52:61:57:e7:f7:04:6d:93:0a:c7:48:d7:10:0b:58:
         dc:24:a3:36:86:83:d4:75:66:a9:ad:4b:4f:eb:bd:b7:d0:ec:
         3a:54:1b:14:45:1e:db:4d:2d:28:39:15:46:30:ec:07:c4:d3:
         b7:2f:60:e4:76:03:6b:aa:fe:85:95:9c:70:47:0e:2c:4f:86:
         30:3e:d3:0c:c0:88:5a:1e:7a:f7:2a:56:5c:df:54:75:eb:a9:
         1d:a9:d6:3c:42:57:01:b9:6c:94:35:eb:21:21:78:e8:23:82:
         6d:14:22:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 15:24:37 2026 by rpki-client