Manifest

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File:                     manifest.mft (raw, json)
Hash identifier:          zwQFHTgkikVIyRYCGXSaMDzTdj0xdafZFx+NW5A1Eqo=
Subject key identifier:   B1:46:0C:64:EB:AC:3D:E0:B2:4F:11:80:2C:08:7D:96:C1:BF:CF:F5
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer:       /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial:       712BDE50E159EAD2B13D88A601D6B0F51A5B5C30
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number:          0655
Signing time:             Sat 18 Jul 2026 00:01:15 +0000
Manifest this update:     Sat 18 Jul 2026 00:01:15 +0000
Manifest next update:     Wed 22 Jul 2026 00:01:15 +0000
Files and hashes:         1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: XIuc6aaZq1tSA07CGRyvP4MCDQlkcu6aoJhdn2o+Nvo=)
                          2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=)
                          3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: 0OedyNMwjL1I1p7rzryfdYD0nslES0i+43AbthFPFmE=)
                          4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: aoaRIM84eruV/ISWBs3PJCPQb0sEmsLtTOcu1EdbsFA=)
                          5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: vbtxuyfgx9e6lLFR0CnUGCC1kgCTySw+Ljt4yM1fDb4=)
                          6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: q5bh3h1LHQcXwRDCiiiYn6TP5+N60E0SyV4QnQBQL8c=)
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 22 Jul 2026 00:01:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            71:2b:de:50:e1:59:ea:d2:b1:3d:88:a6:01:d6:b0:f5:1a:5b:5c:30
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
        Validity
            Not Before: Jul 18 00:01:15 2026 GMT
            Not After : Jul 22 00:01:15 2026 GMT
        Subject: serialNumber=a041b442733cd3895f8802add12879aab0afb0373d849d1ccdb48116943ca87e, CN=bb9a9116-f615-462e-a680-5266b327e0fa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:c1:74:e9:7e:25:6d:3f:d8:8b:af:6f:13:14:
                    16:2f:60:7f:df:ce:2c:72:35:94:8b:8c:68:eb:0b:
                    27:e1:db:73:88:f2:9d:35:4e:9e:bc:bc:b5:5b:3b:
                    13:49:90:9a:7b:4d:2a:b0:ee:e9:c9:af:16:c8:49:
                    55:e3:27:87:5a:b9:12:d6:2e:e1:e3:58:4e:0c:42:
                    a3:05:74:3b:aa:fa:2b:10:8b:70:3b:3c:db:ab:c9:
                    18:d1:6e:9d:ee:62:04:76:ab:42:df:32:4e:d6:ff:
                    67:8b:17:b1:0f:31:ad:34:85:3c:c3:e6:2d:ae:ac:
                    33:34:1d:af:10:65:82:5b:06:26:f6:f7:ed:87:21:
                    53:d9:21:14:88:e5:72:7c:dd:86:2a:e0:86:59:16:
                    a5:84:bb:ca:ae:db:21:b6:b0:56:52:47:c4:6f:0b:
                    af:9c:59:f8:80:6e:d0:d4:6d:9b:39:30:18:1b:57:
                    e8:6a:24:fe:34:b0:76:e0:40:45:a1:e8:0d:56:f8:
                    6e:65:d0:51:af:c7:0d:bf:ff:db:f6:4f:6d:05:32:
                    70:d7:ae:0b:a1:6c:67:29:7c:09:ec:86:1d:6b:93:
                    2f:39:d2:79:f9:14:b9:21:dc:24:66:92:83:12:66:
                    bb:34:2d:20:4e:2a:75:b6:1c:db:a6:17:ae:f2:97:
                    93:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:46:0C:64:EB:AC:3D:E0:B2:4F:11:80:2C:08:7D:96:C1:BF:CF:F5
            X509v3 Authority Key Identifier:
                keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:83:5d:d3:ec:5f:23:7f:c5:c2:7c:0b:12:81:ee:7d:a5:dc:
         04:6b:88:4b:42:e7:9a:a0:25:f6:d3:41:94:86:69:6d:8b:f9:
         a0:6c:69:59:c2:88:7a:9f:a0:46:dd:5e:31:56:8c:14:6e:7e:
         80:24:71:8c:6d:1c:91:2a:b5:f0:21:b7:77:e5:20:6d:bf:74:
         92:74:1b:88:c6:f8:28:c2:5a:d3:10:38:03:0a:7b:a0:e1:42:
         02:a9:eb:d2:b8:94:15:2c:76:a3:6d:ca:14:22:d3:3b:10:4d:
         29:64:1c:ed:8c:f2:96:0e:88:33:03:d1:9a:0d:89:85:7f:15:
         93:cc:a8:d7:eb:e6:e0:50:0b:e6:fb:8f:b5:b8:b3:36:fb:15:
         2c:73:96:c3:82:85:2e:fa:e9:c8:6f:a2:d7:7d:96:0b:3f:bc:
         2f:2f:d3:01:ee:1b:29:36:14:6e:c9:db:65:02:be:c4:1b:38:
         33:4e:06:c1:d3:d9:0e:cb:5a:c2:22:bc:f0:5c:e4:7e:3c:67:
         24:91:c0:d5:63:a8:2f:b1:32:e5:63:98:16:a1:73:29:67:1e:
         60:64:d2:4f:76:5e:48:3d:42:90:f1:c5:f2:69:b5:7e:07:80:
         ff:a8:7b:9f:85:19:13:9b:13:6d:b5:c1:ff:a6:e0:6e:a9:74:
         07:c6:0c:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:19:35 2026 by rpki-client