Manifest

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File:                     manifest.mft (raw, json)
Hash identifier:          CYTUPYdTcCtrluIDTA2DZjuZm75YqK+Bl4AmrprYbgA=
Subject key identifier:   B7:21:BE:1C:E9:BA:90:3F:8F:54:8D:EE:B9:9F:3D:6C:CD:2E:90:A5
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer:       /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial:       05F9DF12FC1A3CFBA620636A6C783DA91CBECB97
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number:          0648
Signing time:             Sun 05 Jul 2026 00:10:13 +0000
Manifest this update:     Sun 05 Jul 2026 00:10:13 +0000
Manifest next update:     Thu 09 Jul 2026 00:10:13 +0000
Files and hashes:         1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: cZHso3OCSEyrhTiGLxdA47rYRF0fL2SMh53Sv1f8omM=)
                          2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=)
                          3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=)
                          4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=)
                          5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=)
                          6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=)
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 09 Jul 2026 00:10:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            05:f9:df:12:fc:1a:3c:fb:a6:20:63:6a:6c:78:3d:a9:1c:be:cb:97
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
        Validity
            Not Before: Jul  5 00:10:13 2026 GMT
            Not After : Jul  9 00:10:13 2026 GMT
        Subject: serialNumber=d4fccb62d0dc14146047ed10c5c70fc36678367ec6aeb03c0579bd1fe2b069f3, CN=bb9a9116-f615-462e-a680-5266b327e0fa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:b4:5f:b3:01:11:4c:2a:57:77:a7:28:e3:6d:
                    a1:89:be:a4:62:23:0b:fd:2d:4f:cd:86:32:17:78:
                    1c:dd:3e:c1:00:01:06:c2:34:70:49:f3:fe:6e:aa:
                    07:19:c5:7f:1e:d5:1b:bc:a0:a7:05:8d:21:41:ce:
                    57:51:d2:ed:bf:73:df:5b:ef:d2:1e:a9:e8:8f:07:
                    ce:02:e5:de:2c:06:77:21:7d:b4:95:e0:53:6f:69:
                    81:7d:5a:d3:3f:18:05:1f:f3:14:aa:90:01:11:9a:
                    e5:11:c6:df:70:30:ba:16:62:fa:f9:54:30:20:08:
                    b1:3d:97:fa:af:35:06:aa:53:24:4a:43:c3:31:8b:
                    84:f0:52:8a:d9:50:97:b2:36:85:38:36:47:ea:00:
                    02:f4:b7:df:90:d6:22:f5:38:af:61:62:57:8b:2d:
                    4c:44:72:8b:db:c5:f4:27:04:8c:f6:d9:a3:de:d0:
                    7b:34:3d:0f:c3:b5:08:52:40:80:17:8f:c3:0d:80:
                    e9:71:cf:7e:91:3d:a2:ee:2b:e5:a0:68:2f:fe:2f:
                    79:49:f3:4a:78:42:c4:28:a6:f1:77:49:cc:0d:98:
                    e8:89:40:2d:47:86:49:cd:2b:a9:3b:0d:61:48:d5:
                    b6:dc:cf:ee:20:11:6d:41:ac:f8:b6:89:1d:3c:61:
                    06:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B7:21:BE:1C:E9:BA:90:3F:8F:54:8D:EE:B9:9F:3D:6C:CD:2E:90:A5
            X509v3 Authority Key Identifier:
                keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         17:70:1a:72:00:dd:52:17:25:15:f3:46:00:ad:14:6e:48:54:
         7c:f6:fe:ec:af:db:69:77:fe:89:25:cf:6c:e2:c1:05:6b:18:
         23:12:d4:30:0a:c1:d0:bd:fd:fa:72:6d:09:65:c8:77:1c:89:
         4c:e7:06:8c:a1:f9:df:a2:52:92:13:ac:a9:6c:5d:41:cd:32:
         46:1c:fb:a8:95:d1:51:79:71:58:63:9a:04:ca:6c:83:e9:80:
         a3:50:11:00:87:7f:eb:d1:7a:a1:a6:b2:6f:0e:22:91:b1:9e:
         32:d1:97:06:a4:31:40:5d:35:44:bd:b4:3c:6f:10:e0:23:9e:
         43:99:07:77:ed:fc:7f:f0:8e:57:17:a2:79:61:26:b3:b2:67:
         9d:03:02:38:b8:b4:45:9e:ca:ee:cc:20:ef:80:47:b2:f4:e1:
         31:fb:1f:17:4e:2e:db:b4:39:d2:f8:03:2c:4d:88:77:1c:ab:
         fe:69:e5:29:47:22:cb:92:33:ec:97:f4:02:70:26:b7:1c:2c:
         99:03:f6:9f:67:0b:2d:31:3c:68:22:43:97:24:77:af:50:6f:
         ae:29:34:aa:bb:0f:11:cf:cb:61:90:0f:fb:78:64:b6:4b:c3:
         86:88:4c:50:d9:db:02:e0:bb:db:37:40:5f:53:2f:a4:11:56:
         0b:80:7b:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 12:32:32 2026 by rpki-client