$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: LX+SoKrWMy98WOHiegNticEeWnWBQIr/etGEIIwwOTc= Subject key identifier: 4D:C4:42:79:B7:20:1E:48:C7:A8:66:E5:BC:BB:81:6C:21:D8:E5:10 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 3DF43BD360765654732CC096EDF7A7608A63419D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 02E2 Signing time: Thu 25 Apr 2024 00:01:30 +0000 Manifest this update: Thu 25 Apr 2024 00:01:30 +0000 Manifest next update: Mon 29 Apr 2024 00:01:30 +0000 Files and hashes: 1: 037679cc-778a-417e-add9-45a9bf4f8fbc.roa (hash: yZ/wcPjWQwxCrZyvXjZ2pcR/uXWM1ImA7kkuqzFck+Q=) 2: 0b0c2d18-2b42-4e53-9e6a-d6f7d5dc2334.roa (hash: D6w1pH8bKuU1aXW1pEjdDQijjTeaQmOJ0At5yz4y8uA=) 3: 0b839f01-283b-4c23-b8a7-3697b9583ee1.roa (hash: fmQYb4kBl7oz+/YLkKdHFNrM9V/soIB+joXNUG9gP6Q=) 4: 0dfd6e20-2823-4f68-ae48-725fe4ee2f81.roa (hash: yMpbK9wbKdVdtIBEB0cNKE7RWHhofLf5wkmszhPAg9s=) 5: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: h+Uy5ek6CgCvsWKX208VAsBv4N6nISBkop2zF36QVFw=) 6: 1738e1ca-e725-4f75-8dfb-04b89ee349d9.roa (hash: /jID3PYldmVri5oGgKbNRMx62ykuzZhoueGP0utjel4=) 7: 22941216-14be-40e9-a7d3-c3720399ee20.roa (hash: AobDfx+Hrclh6tDqL2NfTrW0DNhQiDDcXJ8Culr8ino=) 8: 22fa329b-ec37-40dd-997f-24f4559e0eff.roa (hash: Lq7ydRI9IJrRXE/37azdK38DXTX/gfMB3Gx2VH8sono=) 9: 2430eb67-8d2b-4d5d-979e-b7427ddfa348.roa (hash: FgR+BoGQww7S6Yltx6FZ3sbyinG6h2ZiHgZzemE/oMg=) 10: 2d2af952-35e6-43e7-b07a-74956b69b4a0.roa (hash: GYfKlO7oldOFQDV2FblooGjg/xWD3pYR/GUAC5k2Ttk=) 11: 2f35c729-72a9-490b-b37f-984abc13307d.roa (hash: wtAgQ5GwCAk9djdr+9yf6QSTD2Ix4VsgQ4vc6nJQz7U=) 12: 41ea98ba-f4ea-45c4-8f0a-438a367705db.roa (hash: u3H50bdv/g3VCogAfoFw9Gg/mFNhJLafIdebnCqZ8H4=) 13: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: inIKcGduFifBa+Hgdl8Isxqskrk9n+uQtP9bAgFSxhk=) 14: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: 8lc6EPwOSipzIAlxX7LwDIYWAD1tn6OW1XGJCMdRYoM=) 15: 578a19af-8138-49ac-8a51-a2bd148210a1.roa (hash: /GFdC87JaMn3TNb7IXG61p2HLKfsafE7ScSi2jxykos=) 16: 58ba68d3-9488-476b-8d44-5ecf1f0018e8.roa (hash: cq1y5eYW7ZES8vWilDx2kj+O5yWNNbrqQ0LeuvCJquA=) 17: 59860ec1-5f08-4648-8fa9-79f2bbf2ec8d.roa (hash: 8013QF3LY9X+2AgKY2tsPwiIECPcTEGzZLGD2tkuDHs=) 18: 68fe3037-b87b-4379-a014-213012da3a11.roa (hash: vwdRO+PcEwcAS7wiuoT7WxmcgL+0wP/I8DkUWe2FQqU=) 19: 7ec71d95-427c-491b-a7cc-55afd17c6f55.roa (hash: iCGWzDRzMWQ21P0WbzX0F4Gce6Td4+0vQ2Nv8nDq898=) 20: 90e88caa-70b7-406a-a161-a6118790ffdb.roa (hash: wjEQ4G7XiO+7nAHTZifvSWatD8GGC3ZjfHOLMBqCOYw=) 21: 92acb65d-8ed6-47b8-8b87-8cec3f14df45.roa (hash: /T4bJxPSrkPmJMNgmPRT0SRosFMq3Ap00728g4qt/fI=) 22: 9ecc0bd6-104c-43e2-9db8-92afcb871843.roa (hash: nMrK8KxEzbLR7YAa0jIjQ8J9vL5IvG0+h+Uq8/DdIXI=) 23: b3d57ffd-cfff-4f0f-9a34-bd001a900e9e.roa (hash: HLctfLxhg1FdbnIMbyaTyXhwf1pGe5A+Y1JA3+YiTP0=) 24: e1c8ca39-fe1f-44c7-802a-b0dc7fdb5616.roa (hash: B/qXKQW3LfvcwpOg4pxyCDQus4pOnLAnS0bV74gnqrg=) 25: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: Z1sfAM8zveBdweylump5i851rnvPSJjVUp9Hfhg/fo0=) 26: f88f0730-b125-42e8-9451-f0a369a3bbc1.roa (hash: zMotzpIfjaDma9hLJxLtr+IIoZsXjBnuuxVPrnIPs+w=) 27: fda62ac0-bc2c-4d57-a69e-8a7c469cd2d8.roa (hash: pd0v0s27l6aEw9sBp6xyJY8LqUg55E82XzWj8sVUkos=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 00:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:f4:3b:d3:60:76:56:54:73:2c:c0:96:ed:f7:a7:60:8a:63:41:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 25 00:01:30 2024 GMT Not After : Apr 29 00:01:30 2024 GMT Subject: serialNumber=7dfdccee9b653d81d336f9574e65099044306496c32211a638ccea055bb78742, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:50:1a:ed:26:e6:c1:65:95:47:bd:31:3d:4d: d2:ea:83:c7:5a:89:50:78:6e:01:4f:12:9f:da:72: 87:33:a2:42:15:65:2d:34:1a:45:1f:7a:ad:bd:8f: cd:49:7c:17:39:ed:2d:a0:94:66:13:d1:0c:f6:5c: f0:ee:7d:bb:8d:fa:9e:da:9d:33:d2:dd:da:e0:cf: 74:9d:c5:1a:00:aa:0b:eb:c9:b3:15:ca:d1:71:93: 92:1f:52:b0:1b:87:c6:66:84:2b:13:8b:72:35:21: 6f:47:ab:ff:24:0a:8c:c2:d8:86:e4:a7:d2:06:9e: 6b:81:48:9b:8f:94:73:44:92:80:24:6f:c5:2c:9b: 40:6d:fd:c1:59:57:e6:b8:cd:e7:a8:4c:28:fa:c2: 02:2e:7b:42:ce:0b:ec:9d:ee:cc:98:60:e6:9e:e9: 05:49:cc:76:c1:62:e1:44:13:02:bf:eb:d9:be:c8: 06:3c:95:94:2c:3d:f3:37:95:e4:6c:80:38:8b:97: 5d:df:82:8f:d4:56:d4:79:14:aa:ba:32:16:9c:24: 00:ad:a2:aa:36:c0:85:14:ce:49:19:2b:56:84:80: fa:fb:58:3d:c6:3b:55:d1:09:55:f0:f1:3a:7b:e9: 79:87:07:fc:2f:76:67:b3:6d:8e:bb:9d:47:65:c5: 86:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:C4:42:79:B7:20:1E:48:C7:A8:66:E5:BC:BB:81:6C:21:D8:E5:10 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:fe:88:b5:5f:f8:2f:80:da:81:80:f9:ee:46:fb:d8:2c:7e: 7e:93:97:40:ab:d6:35:1e:f7:d0:ff:5d:42:35:ce:9e:23:0f: 91:fa:da:68:e7:21:8b:fa:b8:5a:04:14:6d:58:43:9b:f6:a9: 5a:81:16:bc:45:c3:9f:fc:01:30:ad:2b:b9:fc:12:41:fb:6a: 01:96:03:c9:e5:4c:00:71:64:d8:55:db:bd:82:dd:54:73:0d: a1:d9:a4:d9:f7:a3:2b:ba:fc:98:a3:24:f3:6b:65:5a:5c:0b: 07:b0:65:93:cf:57:4b:bd:14:5e:7e:29:04:b7:a9:f0:8a:67: 2b:5d:a2:4f:b1:98:15:db:ab:4f:76:5a:fa:5f:4b:ad:50:ac: f3:62:83:2c:e5:56:a3:f7:9d:54:ae:fe:6b:63:6e:83:bc:59: b8:25:cc:51:52:a4:01:e4:9e:99:be:fb:ab:b2:97:a2:23:bc: 67:63:48:71:0a:dd:8e:03:61:6e:07:08:92:8c:68:12:4f:66: 78:87:9e:07:9f:bd:9b:68:8b:dd:67:aa:bb:23:d1:93:52:24: 79:2b:57:7c:ee:49:ea:2c:ae:ae:e6:58:27:36:e7:27:d0:fb: 12:0f:d0:1c:7a:fc:5c:35:2c:19:09:73:64:7c:82:e2:1a:26: 56:8a:67:d9 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUPfQ702B2VlRzLMCW7fenYIpjQZ0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI0MDQyNTAwMDEzMFoX DTI0MDQyOTAwMDEzMFowejFJMEcGA1UEBRNAN2RmZGNjZWU5YjY1M2Q4MWQzMzZm OTU3NGU2NTA5OTA0NDMwNjQ5NmMzMjIxMWE2MzhjY2VhMDU1YmI3ODc0MjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA21Aa7SbmwWWVR70xPU3S6oPHWolQ eG4BTxKf2nKHM6JCFWUtNBpFH3qtvY/NSXwXOe0toJRmE9EM9lzw7n27jfqe2p0z 0t3a4M90ncUaAKoL68mzFcrRcZOSH1KwG4fGZoQrE4tyNSFvR6v/JAqMwtiG5KfS Bp5rgUibj5RzRJKAJG/FLJtAbf3BWVfmuM3nqEwo+sICLntCzgvsne7MmGDmnukF Scx2wWLhRBMCv+vZvsgGPJWULD3zN5XkbIA4i5dd34KP1FbUeRSqujIWnCQAraKq NsCFFM5JGStWhID6+1g9xjtV0QlV8PE6e+l5hwf8L3Zns22Ou51HZcWGGwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFE3EQnm3IB5Ix6hm5by7gWwh2OUQMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBADb+iLVf+C+A2oGA+e5G+9gsfn6Tl0Cr 1jUe99D/XUI1zp4jD5H62mjnIYv6uFoEFG1YQ5v2qVqBFrxFw5/8ATCtK7n8EkH7 agGWA8nlTABxZNhV272C3VRzDaHZpNn3oyu6/JijJPNrZVpcCwewZZPPV0u9FF5+ KQS3qfCKZytdok+xmBXbq092WvpfS61QrPNigyzlVqP3nVSu/mtjboO8WbglzFFS pAHknpm++6uyl6IjvGdjSHEK3Y4DYW4HCJKMaBJPZniHngefvZtoi91nqrsj0ZNS JHkrV3zuSeosrq7mWCc25yfQ+xIP0Bx6/Fw1LBkJc2R8guIaJlaKZ9k= -----END CERTIFICATE-----Generated at Thu Apr 25 02:00:19 2024 by rpki-client on console-ams.rpki-client.org