Manifest

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File:                     manifest.mft (raw, json)
Hash identifier:          0Go1aNTiB7ryKpkdKdocqaVMnEgZ8KPx/Mhr7kycPxs=
Subject key identifier:   D6:5B:9D:E0:10:E8:A1:F4:FC:77:B9:A0:3B:8B:9E:BC:6D:03:54:AB
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer:       /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial:       04F69A54EC69CF455FA21D6ED093E52CCBA61C5A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number:          0656
Signing time:             Sun 19 Jul 2026 00:01:25 +0000
Manifest this update:     Sun 19 Jul 2026 00:01:25 +0000
Manifest next update:     Thu 23 Jul 2026 00:01:25 +0000
Files and hashes:         1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: MZNBVOWF0QRI3NJooJfvni+6ht+fqQQkcmnGKNygbTo=)
                          2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: M+i7XpsJD4p5Tk2yVGdLmGjDs5xTMXCNLVAUi3YO9fw=)
                          3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: 0OedyNMwjL1I1p7rzryfdYD0nslES0i+43AbthFPFmE=)
                          4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: aoaRIM84eruV/ISWBs3PJCPQb0sEmsLtTOcu1EdbsFA=)
                          5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: vbtxuyfgx9e6lLFR0CnUGCC1kgCTySw+Ljt4yM1fDb4=)
                          6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: q5bh3h1LHQcXwRDCiiiYn6TP5+N60E0SyV4QnQBQL8c=)
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 00:01:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:f6:9a:54:ec:69:cf:45:5f:a2:1d:6e:d0:93:e5:2c:cb:a6:1c:5a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
        Validity
            Not Before: Jul 19 00:01:25 2026 GMT
            Not After : Jul 23 00:01:25 2026 GMT
        Subject: serialNumber=4c0ad5d655b54fac965c6c28f9e566c4ce7989602194f1233fa6b6bf6228783f, CN=bb9a9116-f615-462e-a680-5266b327e0fa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e4:da:1f:58:89:be:54:71:8c:5b:fb:e0:90:58:
                    d1:c1:83:7b:a3:87:28:3d:a5:51:79:bb:91:4a:ed:
                    87:62:09:2a:5f:43:1a:a0:57:1f:e4:d7:b8:54:ab:
                    01:5c:ac:63:2f:84:7c:08:2c:9e:1b:eb:ac:d3:95:
                    d2:dc:15:5f:46:16:68:43:61:c5:6c:86:5f:49:33:
                    0b:0a:6e:db:c9:d5:78:06:91:3c:9e:0b:1c:16:5a:
                    36:f2:cb:75:f0:e6:40:af:52:51:7a:1b:e0:72:fb:
                    27:2d:33:8f:bc:15:cc:a3:55:6f:c3:3a:37:29:4a:
                    87:c6:00:b6:e8:6d:2e:9c:2e:24:67:5a:dd:52:ff:
                    9b:cc:f1:45:22:20:ba:4a:c3:ef:5e:27:b8:ee:db:
                    93:c5:e1:84:30:14:32:65:dc:b8:0e:3a:35:49:4e:
                    51:ac:20:8b:f2:6c:65:b2:58:fe:bb:75:57:9d:35:
                    40:87:30:85:aa:41:55:4d:a2:5e:af:8f:ec:0a:39:
                    b9:35:3a:e9:aa:93:8a:59:b5:54:f9:80:83:c5:35:
                    f9:1e:e1:07:27:1a:0a:58:c4:95:a8:49:db:31:6c:
                    a3:6d:3b:30:e8:02:a4:a8:15:a5:a7:30:ab:bd:18:
                    d7:1c:42:51:c6:7a:b0:c9:35:fd:b9:e6:5b:f2:59:
                    ef:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D6:5B:9D:E0:10:E8:A1:F4:FC:77:B9:A0:3B:8B:9E:BC:6D:03:54:AB
            X509v3 Authority Key Identifier:
                keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:56:b1:4d:d6:29:ee:8e:9c:60:78:b3:21:32:d6:45:23:ad:
         62:79:22:80:73:56:17:59:c4:0e:5d:a3:e3:8c:0a:29:1a:3c:
         99:80:7b:65:92:b6:ed:08:1a:32:a8:e2:39:1d:2e:1e:fc:83:
         fd:bf:6e:4a:58:01:2d:fa:b8:3c:85:54:3c:68:ed:b6:e3:e7:
         1f:75:61:48:84:84:36:ca:ca:e1:87:6a:0a:08:65:06:ee:3e:
         1d:54:75:b7:73:56:3a:2d:49:05:67:89:c2:ee:c1:93:7b:6f:
         58:60:fc:20:57:dc:d0:0a:ee:06:ac:4a:9d:ae:81:61:c3:42:
         d6:bc:62:9a:03:5f:ac:81:5d:0a:d3:42:d3:85:d9:eb:95:51:
         73:b1:ba:18:6e:06:b4:6b:ab:44:57:9b:4c:40:71:c8:38:08:
         77:dc:c4:42:00:a8:98:2e:05:12:a4:2e:6d:1c:c7:e2:9b:6b:
         58:a9:c2:70:d1:0f:db:21:05:d8:1f:49:75:7d:9d:08:a7:46:
         56:39:e4:18:96:18:90:f9:f3:29:93:67:c3:25:6e:fc:2d:a7:
         59:1d:72:87:2a:9b:d7:e2:cf:64:ea:f2:19:e2:53:c2:a8:68:
         84:cf:e5:6b:5b:f9:b4:ec:f2:13:ee:28:8b:9a:78:ff:75:82:
         be:0a:a7:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 19 12:40:43 2026 by rpki-client