Manifest

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File:                     manifest.mft (raw, json)
Hash identifier:          uvnSpd3F7ozrdrjc6BRqGNJnCzI8znEEgyL0LK/QFi8=
Subject key identifier:   BF:86:B2:47:B6:32:0B:A1:3C:CF:CE:9F:79:62:2B:EA:5E:60:61:7E
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer:       /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial:       74D3E522F280AE74ABC5DE9A37F33C9C4698C6AC
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number:          064A
Signing time:             Tue 07 Jul 2026 00:10:45 +0000
Manifest this update:     Tue 07 Jul 2026 00:10:45 +0000
Manifest next update:     Sat 11 Jul 2026 00:10:45 +0000
Files and hashes:         1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: Zwn3Zo/D8POeRTaK7/8KJ1QykrxacQGA8KbDBfvxbQs=)
                          2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=)
                          3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=)
                          4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=)
                          5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=)
                          6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=)
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 00:10:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            74:d3:e5:22:f2:80:ae:74:ab:c5:de:9a:37:f3:3c:9c:46:98:c6:ac
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
        Validity
            Not Before: Jul  7 00:10:45 2026 GMT
            Not After : Jul 11 00:10:45 2026 GMT
        Subject: serialNumber=874e1cb2197eaa507c4456d15f44e4068f0c67f8c4879962220d68090c85e10f, CN=bb9a9116-f615-462e-a680-5266b327e0fa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:82:53:b6:52:c3:8b:e6:b8:e2:d5:5e:d1:37:
                    59:3d:58:48:c1:69:96:ca:25:51:2b:2f:73:9e:fe:
                    67:01:5a:15:46:d4:a1:06:e1:e6:db:5c:48:1a:de:
                    41:ef:bf:e7:c6:65:3c:0f:b4:3c:30:1a:61:5e:76:
                    1b:e7:42:bc:24:7d:81:0a:c9:01:53:68:29:34:60:
                    35:1d:06:40:58:e0:b1:7c:a5:9d:3f:38:6d:7d:e8:
                    eb:f6:af:fd:05:2b:2c:7c:3c:c7:5f:1e:7c:dc:1a:
                    3f:35:49:be:95:0f:35:c9:51:5e:46:b3:17:5a:75:
                    1a:6f:95:80:ea:0f:bd:90:46:de:eb:b0:46:00:39:
                    30:44:b4:63:2b:28:f0:9f:4e:dc:31:8e:e8:c8:ca:
                    bd:f2:0c:be:95:67:8c:8f:b7:81:64:c9:0d:27:20:
                    56:dc:18:e8:e9:ce:29:61:9a:2a:0b:ec:b1:c0:8e:
                    b1:14:5c:5b:97:4f:ef:5e:17:6d:89:0d:53:cc:c7:
                    ec:af:4a:02:43:12:5a:d4:ea:f8:a8:24:4c:40:a2:
                    7e:1a:83:1e:9c:dc:82:46:33:1f:b3:50:32:91:54:
                    c7:8b:fe:67:a9:c7:30:00:f0:b2:c4:51:52:1e:b2:
                    81:94:0a:7f:96:bd:3d:45:26:b3:1a:15:e4:66:b7:
                    59:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BF:86:B2:47:B6:32:0B:A1:3C:CF:CE:9F:79:62:2B:EA:5E:60:61:7E
            X509v3 Authority Key Identifier:
                keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:e5:a5:ef:a7:f4:44:81:fd:f4:3d:53:67:32:e4:64:93:5e:
         68:62:7a:00:a6:47:e8:5c:67:b9:53:7c:2d:f4:77:01:67:56:
         a3:9b:b5:c8:0b:59:d1:78:84:24:2d:dc:66:ca:24:4b:3b:53:
         5a:50:0e:db:11:0e:77:ea:a2:11:19:52:3f:a9:31:57:c7:fa:
         95:08:71:19:b6:82:a3:07:3d:93:28:9a:ba:40:b3:37:11:3c:
         e4:66:6b:c7:ed:5e:ec:57:bb:77:23:3a:da:85:fa:7c:04:a2:
         25:cc:a6:90:af:e6:ae:37:5a:e7:28:15:9f:11:e4:4d:81:b9:
         03:42:a3:9b:42:37:2d:8e:31:ed:91:9f:58:12:de:1b:5d:84:
         97:c4:dd:ce:ae:f5:51:a8:bb:93:f2:02:ca:b8:66:62:2f:94:
         34:3f:10:3d:33:e5:43:03:1c:fb:fa:b6:8d:a7:e4:c4:39:e6:
         1f:61:4b:0b:69:2c:24:cd:b3:e5:a0:22:44:c0:37:79:5b:88:
         b7:55:4d:4f:cb:50:6a:40:51:5b:d3:24:38:5e:cd:1e:80:fa:
         52:7a:aa:bd:3a:73:9f:e1:7e:31:57:06:26:43:52:69:db:b9:
         65:99:3b:dd:99:a6:b8:f1:f3:0a:c0:4a:db:a8:6e:5c:04:27:
         6a:07:70:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 06:09:02 2026 by rpki-client