Manifest

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File:                     manifest.mft (raw, json)
Hash identifier:          28htAU8VUJo3i8ZCfzzO+uRuPidfp9exPFoNadO5ARI=
Subject key identifier:   E1:08:62:D3:79:E2:F0:E7:5B:10:AA:62:C0:C6:05:FF:E9:8A:58:10
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer:       /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial:       16EE880A188574F5C01AB52287B8BCDB92053C68
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number:          0651
Signing time:             Tue 14 Jul 2026 00:12:17 +0000
Manifest this update:     Tue 14 Jul 2026 00:12:17 +0000
Manifest next update:     Sat 18 Jul 2026 00:12:17 +0000
Files and hashes:         1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: BVQ9/SJkb3pUlcCLrxfEtEhIoiM4taFARwKkP/ZRRP4=)
                          2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=)
                          3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: ixxf6ccd3osEyLmWkgkbiHVYyusTctrUjOhnPpMvlE4=)
                          4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc=)
                          5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: 64kuFuROhLtieOXlazTSy2bjQ+E6VKxKN/jo5XO5H34=)
                          6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI=)
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 18 Jul 2026 00:12:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            16:ee:88:0a:18:85:74:f5:c0:1a:b5:22:87:b8:bc:db:92:05:3c:68
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
        Validity
            Not Before: Jul 14 00:12:17 2026 GMT
            Not After : Jul 18 00:12:17 2026 GMT
        Subject: serialNumber=e35997583dce97df1c405c09ec22e6be9389fba950ebc85804015b800587ac92, CN=bb9a9116-f615-462e-a680-5266b327e0fa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:b0:7f:bd:0b:85:c2:cd:27:bf:ba:67:4b:df:
                    7c:f5:c0:d7:a1:ee:af:3a:b2:35:37:de:4f:2a:9b:
                    fc:19:6e:69:70:11:51:47:8b:cd:65:d6:44:47:dc:
                    0e:6f:02:ca:59:18:e2:5c:6a:77:2c:60:e0:a2:83:
                    d6:53:fd:22:a2:dc:b9:19:31:bd:70:dd:f0:95:a6:
                    cd:99:1c:9c:86:13:3a:56:55:c6:7a:d2:6f:ba:b5:
                    d0:08:bf:16:33:ca:bf:76:f5:42:ca:56:e4:a2:6d:
                    6f:00:cd:4b:bb:22:a9:0a:c3:2f:46:89:99:29:80:
                    09:c6:d2:b1:52:51:59:75:07:22:d2:1c:e6:51:af:
                    96:22:33:bf:c7:a4:b9:4e:c0:cd:54:05:e3:32:61:
                    89:2f:12:06:9c:55:15:9e:60:9b:08:25:21:07:fd:
                    aa:55:03:ad:25:74:c1:15:7e:7f:7d:ab:7d:8b:cd:
                    cb:e6:25:f5:57:3d:c4:eb:99:de:31:86:4d:46:de:
                    53:3a:ab:05:ca:c3:45:12:b1:74:bf:e6:0f:e6:b8:
                    f7:90:3a:45:81:84:74:b5:91:e4:ba:c2:20:ec:89:
                    92:33:6c:80:ef:b7:a8:7f:cf:e1:c6:a7:25:0d:b8:
                    14:2c:d5:91:28:04:00:30:50:a6:72:c2:d7:e9:6c:
                    12:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:08:62:D3:79:E2:F0:E7:5B:10:AA:62:C0:C6:05:FF:E9:8A:58:10
            X509v3 Authority Key Identifier:
                keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5c:f6:5d:bb:61:b9:d4:1d:73:d3:f1:48:0c:d4:f5:a2:9f:a6:
         bd:0a:ae:5d:e6:7f:2e:66:86:ea:17:89:e2:f4:f7:24:db:64:
         09:d3:6f:25:3c:6e:82:0d:fa:40:78:d8:96:60:80:8c:4d:18:
         54:d4:e4:48:31:1f:bb:a3:3d:75:f4:06:b6:65:5f:a4:2c:0f:
         62:f9:42:b6:2f:64:7a:4c:32:1d:a3:4a:2b:8a:64:65:45:97:
         b4:f1:ae:7e:d5:c1:f3:30:72:18:5e:0a:d1:21:1e:85:7d:76:
         6d:41:c8:9b:a6:2b:83:67:bc:9d:96:70:fb:99:a8:f5:40:20:
         85:3c:28:76:b9:bc:17:ef:00:d6:d1:20:37:66:e6:43:83:09:
         51:ff:06:69:90:55:5c:ff:1e:52:83:83:ee:db:2d:05:77:1c:
         17:b4:8f:87:4e:0f:56:37:31:9d:b6:64:6f:d3:3b:8a:d8:1d:
         e9:49:85:05:80:64:6e:d2:f6:31:25:4e:71:16:50:e2:96:9a:
         44:5b:13:1e:ad:98:8a:ac:e1:4c:6d:08:cf:53:2f:c3:7c:c8:
         35:67:8a:f0:57:db:d9:be:e7:77:a6:e1:94:49:3e:70:53:40:
         61:f3:93:3b:2f:bd:9c:dd:8f:52:a7:d0:ac:71:61:a3:17:ee:
         74:4b:99:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 14 13:16:42 2026 by rpki-client