$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: U9bCEL+GCx/LbS8mFj59d52UjUIe5c2qpQ8f10tGXg4= Subject key identifier: 3A:01:C5:FD:EE:A4:37:36:38:52:A5:65:19:23:95:B3:34:0E:A2:A0 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 01E2070B3E83A18A4F06C17748C8F98303D5476E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 047A Signing time: Fri 04 Jul 2025 00:00:53 +0000 Manifest this update: Fri 04 Jul 2025 00:00:53 +0000 Manifest next update: Tue 08 Jul 2025 00:00:53 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: PARNEnUNMqJNis6uThL9iPY+YceqLih3wSCIL0eeeU4=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: iPZXHJj6GhIfBmWaA7CSAIHjXIYp8qPR6znZEMX7GbI=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: pO1ZXG6sSfgfPTB9M91yC1+vKT6fjVgLHLXWYb4AAnM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: cJdJJLeNvjU9vKAOOqJ6m8vuc9v30VyUglnFSGs1wZc=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: aR/X6hVIqtLE2FkCFjtRdq3arGLWHZB3/hhDcWN2+7U=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: fCMWwlq7r64lnXLdelYFeIbgkRv8V76xhHBjaLF1TI8=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: OWV8Q86skh5oa+OzEjFSL1cJ+WN1fwgJqGrnX0afKvk=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: dpTwwGwUN8ci0QMRkJkmkDKvUoL+XoAG41b3JRF15x0=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: ZRPDjAHdxmWX1jrwbdqSfzreGkjgYNX/6YHCrNtXhiA=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: 0poBH9ZJIvm6o3WkVRQuwmCRSJDr2es/DEUsdpDssrw=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: gCeBQN+ekvH2K2ZZmIACMGOg1Zh29yCgVP8nrlCfA98=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: GmjTBXPCk2MheYMe3Ti89IM1ct0JP1/mtITjQvPPaJQ=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: xFW4C6CbOZIvVWF+EtVH4IiOy8S/XGy7V9Rs1IvWtd4=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: 0hUPSGWVkpM1DVpfbxZ+b3TvGt2Y0PP/EyAep+KQUKc=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: kJuAABBMqnIeYIoMqdCsUfjYd1db7aBbBCYk1Y9PjGw=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: jorKmjQGTLFrfGMvCHL7dpTuFYSLQ2ju9VOJeWwEeJU=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: MCFSo4p4hfWyGHa1bb10cJLk5iC7Xm35BqNCsVItFtQ=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: yOhD934HipKIALKOkXyUMhOVSxeOQG/b0pVEnB2hZ9E=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: kRpME6MIgos5VaFfSbeAqyYVnbwVuJ0aUPTo4GcLA8c=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: XnwrkVxmWlu3oxMlkNnilulDwQFjCB65v8yjRMLXLr8=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: 8pbrlWeDTsmzN4t4I9XM8Tm+FCp8sgg1LYPJ72x8tr8=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: AWFQYtS4JtKBF+AL8ufVYLUue9fKdNy3u57RAQGJ+Rc=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 00:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:e2:07:0b:3e:83:a1:8a:4f:06:c1:77:48:c8:f9:83:03:d5:47:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Jul 4 00:00:53 2025 GMT Not After : Jul 8 00:00:53 2025 GMT Subject: serialNumber=8b806c5e372d9f89989776cf3a9955deef3bfca6340f73146d5d436d381a1f78, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:22:e8:3f:5f:31:89:e8:80:4e:b3:3c:bb:da: 37:bd:ab:33:8c:d2:89:bf:79:98:f8:8e:69:a0:44: 83:ef:14:31:72:55:0a:52:6e:d7:48:08:61:99:38: e5:34:1b:a9:8b:a8:d3:52:35:86:79:82:11:a2:40: 66:0c:71:90:4e:95:f5:10:af:66:7c:87:8d:54:5b: 3d:b7:c5:95:ca:41:16:8b:e3:4a:ca:80:ff:0e:8b: 53:78:bd:ed:d4:be:45:9d:7e:35:a8:80:1f:75:43: 9f:98:5a:91:86:ba:a2:4f:53:61:15:38:15:85:79: ef:e2:6e:15:a0:35:62:f5:86:25:61:ab:9f:6e:80: c0:7c:e2:db:48:a9:93:26:09:35:b7:00:8a:04:b7: 8d:2a:56:77:b6:18:34:ca:2a:72:a3:3b:64:c1:23: b3:f3:f1:0a:17:64:f6:0f:09:f2:ca:40:1a:9d:67: 30:a6:ad:6a:a4:3a:84:16:e7:e8:e4:8b:53:0e:67: 37:b0:54:9b:df:0a:d8:5e:d4:f5:0a:fb:10:b3:32: 50:1b:ad:72:fe:08:74:18:9d:11:a7:59:48:67:e2: 50:dc:08:bb:85:54:07:61:24:d6:a7:0c:46:e6:95: 03:b6:27:4b:5b:3b:24:10:09:8d:42:1b:c9:7b:d1: 35:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:01:C5:FD:EE:A4:37:36:38:52:A5:65:19:23:95:B3:34:0E:A2:A0 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption be:bf:0f:53:20:88:8b:c7:60:d6:b9:79:52:d6:e1:c4:11:a0: 81:53:13:72:7c:80:e5:e4:99:30:5f:41:f4:64:81:08:60:b6: bb:9c:87:54:72:c9:ed:e3:99:3f:9b:a4:40:03:1e:fc:2e:47: dd:eb:ac:23:93:7f:62:03:63:d0:66:a0:ae:37:03:1b:5a:35: f6:c6:db:ac:6a:93:d7:b8:bf:d2:ad:e7:7c:3b:72:c9:b7:6e: 68:63:3c:1e:c3:6b:ac:e1:bc:7d:45:e2:a9:7b:45:9d:c6:7e: 67:d5:08:e3:68:6b:27:08:b2:ff:3b:1c:b2:ee:4a:b5:92:1c: 30:ce:d9:89:3c:fa:a0:40:6b:d2:b3:fe:61:51:92:03:b2:0a: 3d:6b:ef:86:de:a7:7a:12:25:41:56:e4:22:f2:37:40:e4:71: 8f:34:2b:51:f2:9e:54:7b:a5:d6:e4:27:60:96:54:50:34:ad: 49:ee:50:bf:92:be:31:52:fc:7f:5b:8b:1a:98:7c:99:50:c6: 00:4d:58:cc:ea:5a:8f:cd:74:a0:d3:c3:86:b4:31:04:70:c7: 86:e4:8f:63:1a:c0:86:cd:93:85:85:46:78:57:79:54:91:42: f8:7f:c6:05:f4:22:dc:7a:d9:80:2c:ac:5f:95:e4:21:1b:e7: 93:45:e2:7e -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUAeIHCz6DoYpPBsF3SMj5gwPVR24wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDcwNDAwMDA1M1oX DTI1MDcwODAwMDA1M1owejFJMEcGA1UEBRNAOGI4MDZjNWUzNzJkOWY4OTk4OTc3 NmNmM2E5OTU1ZGVlZjNiZmNhNjM0MGY3MzE0NmQ1ZDQzNmQzODFhMWY3ODEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0SLoP18xieiATrM8u9o3vaszjNKJ v3mY+I5poESD7xQxclUKUm7XSAhhmTjlNBupi6jTUjWGeYIRokBmDHGQTpX1EK9m fIeNVFs9t8WVykEWi+NKyoD/DotTeL3t1L5FnX41qIAfdUOfmFqRhrqiT1NhFTgV hXnv4m4VoDVi9YYlYaufboDAfOLbSKmTJgk1twCKBLeNKlZ3thg0yipyoztkwSOz 8/EKF2T2DwnyykAanWcwpq1qpDqEFufo5ItTDmc3sFSb3wrYXtT1CvsQszJQG61y /gh0GJ0Rp1lIZ+JQ3Ai7hVQHYSTWpwxG5pUDtidLWzskEAmNQhvJe9E1hQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFDoBxf3upDc2OFKlZRkjlbM0DqKgMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAL6/D1MgiIvHYNa5eVLW4cQRoIFTE3J8 gOXkmTBfQfRkgQhgtruch1Ryye3jmT+bpEADHvwuR93rrCOTf2IDY9BmoK43Axta NfbG26xqk9e4v9Kt53w7csm3bmhjPB7Da6zhvH1F4ql7RZ3GfmfVCONoaycIsv87 HLLuSrWSHDDO2Yk8+qBAa9Kz/mFRkgOyCj1r74bep3oSJUFW5CLyN0DkcY80K1Hy nlR7pdbkJ2CWVFA0rUnuUL+SvjFS/H9bixqYfJlQxgBNWMzqWo/NdKDTw4a0MQRw x4bkj2MawIbNk4WFRnhXeVSRQvh/xgX0Itx62YAsrF+V5CEb55NF4n4= -----END CERTIFICATE-----Generated at Fri Jul 4 07:57:08 2025 by rpki-client