$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: GztCLY1dPrInFqiJMN05d81pG2R058wQwkzxw88rGzU= Subject key identifier: FE:8A:F4:25:C5:76:98:77:C1:A6:04:BA:95:B7:DC:1D:2B:7A:24:50 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 65726E875A737A7B849CB1D3668516ACD683F172 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 0237 Signing time: Mon 04 Dec 2023 00:02:24 +0000 Manifest this update: Mon 04 Dec 2023 00:02:24 +0000 Manifest next update: Tue 05 Dec 2023 12:02:24 +0000 Files and hashes: 1: 037679cc-778a-417e-add9-45a9bf4f8fbc.roa (hash: 2wW4yzU/SDpk4jTH18MOyPvoW4ZtxoDvP9gXxDSudpI=) 2: 0b0c2d18-2b42-4e53-9e6a-d6f7d5dc2334.roa (hash: 5+FbeV+2uLfTQccBGhoddl9UwmZiG0Td1RYBgfAUPzA=) 3: 0b839f01-283b-4c23-b8a7-3697b9583ee1.roa (hash: weM2RX7lIp2k3uUfevLLvVQ/V5oj/1n/jx9zP9wOMII=) 4: 0dfd6e20-2823-4f68-ae48-725fe4ee2f81.roa (hash: 1Q7I9kmBONeViS2DWgKwZbq7zs6XM0QmRV1FM0ld05g=) 5: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: u7R4tysSC5+jQyMTlifuspHktZGnEmiowD6tSnTp33o=) 6: 1738e1ca-e725-4f75-8dfb-04b89ee349d9.roa (hash: USyZwm7JTozW/aPIRVW3ML/Y3M5Fq4+xFhIodOZYgyg=) 7: 22941216-14be-40e9-a7d3-c3720399ee20.roa (hash: 3Ju4mpuKEs7RgE4E0YO8hkkplp+Nd3xSEKDQMFxfbxk=) 8: 22fa329b-ec37-40dd-997f-24f4559e0eff.roa (hash: 68/9mgAa+/Ify+uNEXZDBR2TGA1fEEv4KJD/hTa9Imo=) 9: 2430eb67-8d2b-4d5d-979e-b7427ddfa348.roa (hash: eNOgmB6gWeTW2Kh/ZbOq6oZ4nkqQ066WLEhpOywXsL4=) 10: 2d2af952-35e6-43e7-b07a-74956b69b4a0.roa (hash: 6mfxW9VBMxbXVebCY93nQrY5DHibAogVMYtQLdTThJw=) 11: 2f35c729-72a9-490b-b37f-984abc13307d.roa (hash: ZlsfHg18ldGEukIy13gZGp+sxMRQo+SAbNBSSnD4PAM=) 12: 41ea98ba-f4ea-45c4-8f0a-438a367705db.roa (hash: ZCUKmkrRFZt19OTEiMJBuRSoxaxy8UI7VGkDJrAjXAY=) 13: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: wURYSnD0b/vpEp3/PYBlBYrzHd2z2uP0dd9Bu3OoJSA=) 14: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: x7tZ/Cq9oK6BSbn6V2Emkup8Nsmw11FmJnpJTrm9Z/I=) 15: 578a19af-8138-49ac-8a51-a2bd148210a1.roa (hash: 4yTYxs+c6/vKXW1kaH/GfVAytEH2xRzKL0i9Arqh0AU=) 16: 58ba68d3-9488-476b-8d44-5ecf1f0018e8.roa (hash: wWf8/mcrspw/OA3uJ6YWhN0wZo5TVvAvEujHhpy5hFc=) 17: 59860ec1-5f08-4648-8fa9-79f2bbf2ec8d.roa (hash: fLIx/Cm6Ph+8FavYlKfE+7Stsr/ZMydEguMQrrCURgI=) 18: 68fe3037-b87b-4379-a014-213012da3a11.roa (hash: xppAIpjG3X0OqteA76bMzY9/sWdUH7OIGqkyFee5re8=) 19: 7ec71d95-427c-491b-a7cc-55afd17c6f55.roa (hash: ctyLHppG2Juvtybfr9u/Tv7p64YXqLR0ihRC4Qa0OD4=) 20: 90e88caa-70b7-406a-a161-a6118790ffdb.roa (hash: +xhnEQVLX973UtaxdXUXCwlFJ0HT/31EdLFiosDzX1c=) 21: 92acb65d-8ed6-47b8-8b87-8cec3f14df45.roa (hash: 5ZAVxkuyyDwl1Oyy3UXKWUJzuOa1+78BJedJQ4Ay7VM=) 22: 9ecc0bd6-104c-43e2-9db8-92afcb871843.roa (hash: J5k0HEU3c2FAWxXIUkuUQGJ7opuCjTiTI5eIt7mYIUI=) 23: b3d57ffd-cfff-4f0f-9a34-bd001a900e9e.roa (hash: xHCnqMm0qLbLxUVxvx8ScuzvqOeEIGsO6kP9QniaEG8=) 24: e1c8ca39-fe1f-44c7-802a-b0dc7fdb5616.roa (hash: xFceLCZ1u7YKU7y4vbLFawEoJRe3Zlqq5h2BhpGhJ4U=) 25: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: HmlGxuaQHbpN6STzBtv1yplbLrEPQFQn3ia4chOUANQ=) 26: f88f0730-b125-42e8-9451-f0a369a3bbc1.roa (hash: pA7+tcn6ddscQD0QPicpQa0PVM5eZjEJNdswS4UVfqM=) 27: fda62ac0-bc2c-4d57-a69e-8a7c469cd2d8.roa (hash: wFPZw0hHIUtAAcl3qDXXyL8d2Ran0xLNmA78MM41zbQ=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 Dec 2023 12:02:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:72:6e:87:5a:73:7a:7b:84:9c:b1:d3:66:85:16:ac:d6:83:f1:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Dec 4 00:02:24 2023 GMT Not After : Dec 5 12:02:24 2023 GMT Subject: serialNumber=01c2ca69283c3e50b4dfed0150483aeabf7edf46ef810a98e379bf510db0b170, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:33:64:c6:7a:97:3d:cc:22:40:f5:63:0f:e5: f9:4f:c8:3e:79:5c:d1:9c:f7:e7:da:63:f0:48:c7: 6c:b5:0c:cd:bd:77:1f:54:a0:12:a8:b3:ea:53:c8: 85:27:a5:d5:d9:95:a9:6a:af:e4:98:6d:c9:bb:2c: c3:ee:aa:97:eb:0d:c5:18:87:36:d0:e8:0b:6b:01: 1e:f6:b6:19:e5:4a:22:77:ec:97:d5:e2:81:07:9a: d1:e7:c2:d8:c5:1e:b6:de:23:fe:83:ff:7e:1a:c0: b8:45:7f:70:7f:89:74:88:6e:5c:17:09:4b:68:85: 5c:a8:ed:ff:61:57:d6:24:ff:0e:9d:bc:08:21:6e: 61:d6:87:97:5f:2f:e3:0f:44:c0:30:60:09:25:96: 53:a4:17:90:3d:c7:75:d2:b8:2a:b7:e2:4c:00:47: 26:15:ef:c1:00:32:1c:b8:a3:69:c9:95:1f:2c:2b: 36:44:45:ff:d0:52:ea:1d:57:33:e8:8c:c1:39:e7: 1e:79:ee:72:6f:de:fd:76:2f:7b:a3:34:e5:13:ef: b3:e2:d0:2c:b6:84:e3:94:5d:c6:48:05:b7:01:9d: 82:5f:b5:d8:7c:16:a0:c7:99:c2:f2:78:19:25:0d: 85:c7:a6:d0:6c:dd:af:86:04:02:8f:b4:e3:32:60: 25:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:8A:F4:25:C5:76:98:77:C1:A6:04:BA:95:B7:DC:1D:2B:7A:24:50 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:95:01:c0:2d:cb:34:8f:95:68:47:96:33:17:61:96:33:63: 09:44:17:e6:a3:41:4e:cc:b4:4e:3e:0f:5a:7e:8e:d2:c3:0e: 2b:ee:7d:3f:d9:72:cc:2d:08:c0:5b:41:dd:36:47:f4:84:e7: a9:5b:ae:af:ca:81:aa:18:1c:94:cb:dc:7a:90:dd:58:0f:86: ab:94:2d:64:47:32:2c:a3:a3:81:65:3d:ca:64:38:9a:20:64: fb:a1:ae:eb:0e:e9:7c:0a:2a:4f:a7:0f:5e:c6:98:ed:16:2a: e7:bc:61:1f:55:a1:d9:8b:31:6f:18:c3:5f:c4:cb:be:80:2f: eb:87:ae:ef:88:37:d7:54:16:59:41:41:bc:ad:eb:4b:dd:6f: a2:b2:8f:bf:24:2f:f7:62:a7:c6:f0:cd:c6:c0:ca:cd:f3:3d: f9:e8:ea:e3:29:96:4c:4d:45:76:fd:f0:1f:db:c5:de:eb:c5: 9d:8c:ef:b5:5d:31:6a:d3:20:c3:4b:53:c1:43:a3:f4:e0:cf: 09:94:21:d9:45:24:86:88:f9:ed:d1:93:a7:ae:bc:be:d3:f0: e5:f1:fa:61:83:a2:40:ed:b5:50:cd:a5:a5:5f:42:18:6f:a1: 6c:24:8e:44:80:3a:a5:41:e8:86:aa:ab:f2:e0:03:9a:3f:8f: 86:61:69:96 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUZXJuh1pzenuEnLHTZoUWrNaD8XIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTIzMTIwNDAwMDIyNFoX DTIzMTIwNTEyMDIyNFowejFJMEcGA1UEBRNAMDFjMmNhNjkyODNjM2U1MGI0ZGZl ZDAxNTA0ODNhZWFiZjdlZGY0NmVmODEwYTk4ZTM3OWJmNTEwZGIwYjE3MDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsTNkxnqXPcwiQPVjD+X5T8g+eVzR nPfn2mPwSMdstQzNvXcfVKASqLPqU8iFJ6XV2ZWpaq/kmG3JuyzD7qqX6w3FGIc2 0OgLawEe9rYZ5Uoid+yX1eKBB5rR58LYxR623iP+g/9+GsC4RX9wf4l0iG5cFwlL aIVcqO3/YVfWJP8OnbwIIW5h1oeXXy/jD0TAMGAJJZZTpBeQPcd10rgqt+JMAEcm Fe/BADIcuKNpyZUfLCs2REX/0FLqHVcz6IzBOeceee5yb979di97ozTlE++z4tAs toTjlF3GSAW3AZ2CX7XYfBagx5nC8ngZJQ2Fx6bQbN2vhgQCj7TjMmAlLQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFP6K9CXFdph3waYEupW33B0reiRQMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAHKVAcAtyzSPlWhHljMXYZYzYwlEF+aj QU7MtE4+D1p+jtLDDivufT/ZcswtCMBbQd02R/SE56lbrq/KgaoYHJTL3HqQ3VgP hquULWRHMiyjo4FlPcpkOJogZPuhrusO6XwKKk+nD17GmO0WKue8YR9VodmLMW8Y w1/Ey76AL+uHru+IN9dUFllBQbyt60vdb6Kyj78kL/dip8bwzcbAys3zPfno6uMp lkxNRXb98B/bxd7rxZ2M77VdMWrTIMNLU8FDo/TgzwmUIdlFJIaI+e3Rk6euvL7T 8OXx+mGDokDttVDNpaVfQhhvoWwkjkSAOqVB6Iaqq/LgA5o/j4ZhaZY= -----END CERTIFICATE-----Generated at Mon Dec 4 00:31:46 2023 by rpki-client on console-ams.rpki-client.org