Manifest

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft
File:                     manifest.mft (raw, json)
Hash identifier:          U9bCEL+GCx/LbS8mFj59d52UjUIe5c2qpQ8f10tGXg4=
Subject key identifier:   3A:01:C5:FD:EE:A4:37:36:38:52:A5:65:19:23:95:B3:34:0E:A2:A0
Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D
Certificate issuer:       /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D
Certificate serial:       01E2070B3E83A18A4F06C17748C8F98303D5476E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft
Manifest number:          047A
Signing time:             Fri 04 Jul 2025 00:00:53 +0000
Manifest this update:     Fri 04 Jul 2025 00:00:53 +0000
Manifest next update:     Tue 08 Jul 2025 00:00:53 +0000
Files and hashes:         1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: PARNEnUNMqJNis6uThL9iPY+YceqLih3wSCIL0eeeU4=)
                          2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: iPZXHJj6GhIfBmWaA7CSAIHjXIYp8qPR6znZEMX7GbI=)
                          3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: pO1ZXG6sSfgfPTB9M91yC1+vKT6fjVgLHLXWYb4AAnM=)
                          4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: cJdJJLeNvjU9vKAOOqJ6m8vuc9v30VyUglnFSGs1wZc=)
                          5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: aR/X6hVIqtLE2FkCFjtRdq3arGLWHZB3/hhDcWN2+7U=)
                          6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: fCMWwlq7r64lnXLdelYFeIbgkRv8V76xhHBjaLF1TI8=)
                          7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: OWV8Q86skh5oa+OzEjFSL1cJ+WN1fwgJqGrnX0afKvk=)
                          8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: dpTwwGwUN8ci0QMRkJkmkDKvUoL+XoAG41b3JRF15x0=)
                          9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: ZRPDjAHdxmWX1jrwbdqSfzreGkjgYNX/6YHCrNtXhiA=)
                          10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: 0poBH9ZJIvm6o3WkVRQuwmCRSJDr2es/DEUsdpDssrw=)
                          11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: gCeBQN+ekvH2K2ZZmIACMGOg1Zh29yCgVP8nrlCfA98=)
                          12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: GmjTBXPCk2MheYMe3Ti89IM1ct0JP1/mtITjQvPPaJQ=)
                          13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: xFW4C6CbOZIvVWF+EtVH4IiOy8S/XGy7V9Rs1IvWtd4=)
                          14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: 0hUPSGWVkpM1DVpfbxZ+b3TvGt2Y0PP/EyAep+KQUKc=)
                          15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: kJuAABBMqnIeYIoMqdCsUfjYd1db7aBbBCYk1Y9PjGw=)
                          16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: jorKmjQGTLFrfGMvCHL7dpTuFYSLQ2ju9VOJeWwEeJU=)
                          17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: MCFSo4p4hfWyGHa1bb10cJLk5iC7Xm35BqNCsVItFtQ=)
                          18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: yOhD934HipKIALKOkXyUMhOVSxeOQG/b0pVEnB2hZ9E=)
                          19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: kRpME6MIgos5VaFfSbeAqyYVnbwVuJ0aUPTo4GcLA8c=)
                          20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: XnwrkVxmWlu3oxMlkNnilulDwQFjCB65v8yjRMLXLr8=)
                          21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: 8pbrlWeDTsmzN4t4I9XM8Tm+FCp8sgg1LYPJ72x8tr8=)
                          22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: AWFQYtS4JtKBF+AL8ufVYLUue9fKdNy3u57RAQGJ+Rc=)
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 08 Jul 2025 00:00:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:e2:07:0b:3e:83:a1:8a:4f:06:c1:77:48:c8:f9:83:03:d5:47:6e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D
        Validity
            Not Before: Jul  4 00:00:53 2025 GMT
            Not After : Jul  8 00:00:53 2025 GMT
        Subject: serialNumber=8b806c5e372d9f89989776cf3a9955deef3bfca6340f73146d5d436d381a1f78, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:22:e8:3f:5f:31:89:e8:80:4e:b3:3c:bb:da:
                    37:bd:ab:33:8c:d2:89:bf:79:98:f8:8e:69:a0:44:
                    83:ef:14:31:72:55:0a:52:6e:d7:48:08:61:99:38:
                    e5:34:1b:a9:8b:a8:d3:52:35:86:79:82:11:a2:40:
                    66:0c:71:90:4e:95:f5:10:af:66:7c:87:8d:54:5b:
                    3d:b7:c5:95:ca:41:16:8b:e3:4a:ca:80:ff:0e:8b:
                    53:78:bd:ed:d4:be:45:9d:7e:35:a8:80:1f:75:43:
                    9f:98:5a:91:86:ba:a2:4f:53:61:15:38:15:85:79:
                    ef:e2:6e:15:a0:35:62:f5:86:25:61:ab:9f:6e:80:
                    c0:7c:e2:db:48:a9:93:26:09:35:b7:00:8a:04:b7:
                    8d:2a:56:77:b6:18:34:ca:2a:72:a3:3b:64:c1:23:
                    b3:f3:f1:0a:17:64:f6:0f:09:f2:ca:40:1a:9d:67:
                    30:a6:ad:6a:a4:3a:84:16:e7:e8:e4:8b:53:0e:67:
                    37:b0:54:9b:df:0a:d8:5e:d4:f5:0a:fb:10:b3:32:
                    50:1b:ad:72:fe:08:74:18:9d:11:a7:59:48:67:e2:
                    50:dc:08:bb:85:54:07:61:24:d6:a7:0c:46:e6:95:
                    03:b6:27:4b:5b:3b:24:10:09:8d:42:1b:c9:7b:d1:
                    35:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3A:01:C5:FD:EE:A4:37:36:38:52:A5:65:19:23:95:B3:34:0E:A2:A0
            X509v3 Authority Key Identifier:
                keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         be:bf:0f:53:20:88:8b:c7:60:d6:b9:79:52:d6:e1:c4:11:a0:
         81:53:13:72:7c:80:e5:e4:99:30:5f:41:f4:64:81:08:60:b6:
         bb:9c:87:54:72:c9:ed:e3:99:3f:9b:a4:40:03:1e:fc:2e:47:
         dd:eb:ac:23:93:7f:62:03:63:d0:66:a0:ae:37:03:1b:5a:35:
         f6:c6:db:ac:6a:93:d7:b8:bf:d2:ad:e7:7c:3b:72:c9:b7:6e:
         68:63:3c:1e:c3:6b:ac:e1:bc:7d:45:e2:a9:7b:45:9d:c6:7e:
         67:d5:08:e3:68:6b:27:08:b2:ff:3b:1c:b2:ee:4a:b5:92:1c:
         30:ce:d9:89:3c:fa:a0:40:6b:d2:b3:fe:61:51:92:03:b2:0a:
         3d:6b:ef:86:de:a7:7a:12:25:41:56:e4:22:f2:37:40:e4:71:
         8f:34:2b:51:f2:9e:54:7b:a5:d6:e4:27:60:96:54:50:34:ad:
         49:ee:50:bf:92:be:31:52:fc:7f:5b:8b:1a:98:7c:99:50:c6:
         00:4d:58:cc:ea:5a:8f:cd:74:a0:d3:c3:86:b4:31:04:70:c7:
         86:e4:8f:63:1a:c0:86:cd:93:85:85:46:78:57:79:54:91:42:
         f8:7f:c6:05:f4:22:dc:7a:d9:80:2c:ac:5f:95:e4:21:1b:e7:
         93:45:e2:7e
-----BEGIN CERTIFICATE-----
MIIFlTCCBH2gAwIBAgIUAeIHCz6DoYpPBsF3SMj5gwPVR24wDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5
MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDcwNDAwMDA1M1oX
DTI1MDcwODAwMDA1M1owejFJMEcGA1UEBRNAOGI4MDZjNWUzNzJkOWY4OTk4OTc3
NmNmM2E5OTU1ZGVlZjNiZmNhNjM0MGY3MzE0NmQ1ZDQzNmQzODFhMWY3ODEtMCsG
A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0SLoP18xieiATrM8u9o3vaszjNKJ
v3mY+I5poESD7xQxclUKUm7XSAhhmTjlNBupi6jTUjWGeYIRokBmDHGQTpX1EK9m
fIeNVFs9t8WVykEWi+NKyoD/DotTeL3t1L5FnX41qIAfdUOfmFqRhrqiT1NhFTgV
hXnv4m4VoDVi9YYlYaufboDAfOLbSKmTJgk1twCKBLeNKlZ3thg0yipyoztkwSOz
8/EKF2T2DwnyykAanWcwpq1qpDqEFufo5ItTDmc3sFSb3wrYXtT1CvsQszJQG61y
/gh0GJ0Rp1lIZ+JQ3Ai7hVQHYSTWpwxG5pUDtidLWzskEAmNQhvJe9E1hQIDAQAB
o4ICQTCCAj0wHQYDVR0OBBYEFDoBxf3upDc2OFKlZRkjlbM0DqKgMB8GA1UdIwQY
MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr
dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF
BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t
L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu
aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y
c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3
MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0
LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw
BKACBQAwDQYJKoZIhvcNAQELBQADggEBAL6/D1MgiIvHYNa5eVLW4cQRoIFTE3J8
gOXkmTBfQfRkgQhgtruch1Ryye3jmT+bpEADHvwuR93rrCOTf2IDY9BmoK43Axta
NfbG26xqk9e4v9Kt53w7csm3bmhjPB7Da6zhvH1F4ql7RZ3GfmfVCONoaycIsv87
HLLuSrWSHDDO2Yk8+qBAa9Kz/mFRkgOyCj1r74bep3oSJUFW5CLyN0DkcY80K1Hy
nlR7pdbkJ2CWVFA0rUnuUL+SvjFS/H9bixqYfJlQxgBNWMzqWo/NdKDTw4a0MQRw
x4bkj2MawIbNk4WFRnhXeVSRQvh/xgX0Itx62YAsrF+V5CEb55NF4n4=
-----END CERTIFICATE-----
Generated at Fri Jul 4 07:57:08 2025 by rpki-client