$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: ZQviui5vFOZnimygoesDUedSCp9kP5JOSRTiaQBjK5A= Subject key identifier: 31:C0:9D:48:40:59:1D:F1:12:56:AE:7B:46:AA:9F:E3:5F:D5:A8:80 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 63DCA118344AEF6CAF7A09A745B0FDBAEB4F41E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 02AF Signing time: Sat 27 Apr 2024 00:01:54 +0000 Manifest this update: Sat 27 Apr 2024 00:01:54 +0000 Manifest next update: Wed 01 May 2024 00:01:54 +0000 Files and hashes: 1: 19d8d605-09bf-4dfb-b2db-2001ae07c998.roa (hash: Qm6LhXjgD6zTuXaLJMBYsxda8a+RV5lMkvF+au+XywE=) 2: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: WctoW2pYiBROrtFXFMSFgE9awSo8YtyAf2REh49qPbw=) 3: 28716f72-e93f-4c3d-a271-5f3613042c49.roa (hash: Q/0rFtIALMCJGxEBOgj2iCp8uXG6hN1O/CnX7f75dnc=) 4: 417866c6-b48e-49e4-a19e-cfccea84fbb7.roa (hash: sUMIYtvCbl9cKxwotA5aBMwv1ZPMXWQXc4zCgtwlYp8=) 5: 41d48512-3b44-4b3e-ba21-6171938cc43c.roa (hash: NVziOantzlKNZ1/vae2INWhb7Z/I2oKzJOKhxxQdyHE=) 6: 53444f16-12b0-454c-a0a2-d187f20f7db6.roa (hash: e57kGbSiaRCvWSVKO5I1RNS/BBuTQm6qJkKIOmrfwZ8=) 7: 55399736-f7a1-421f-ae49-44f3fdfab3e0.roa (hash: 8FzxR/DHbcue5ZlxJl8ADjqGq4Wuj54pyaNgGLdNVJA=) 8: 7a46d818-cb1e-45ab-86c7-1a9a37c1a951.roa (hash: t6dKLGqPFHJdKJWBdXOs8uLb5I8ufr96teBbQroxFSM=) 9: 9b20d5e9-2739-41d9-a7b0-ed324e639c56.roa (hash: rh/qhTInpiIcTlusS+vdlMUv/yQzuE9t/NtsCyTC3Tk=) 10: c2cd3f2e-ce8c-4d1f-96ab-a25caed1b42f.roa (hash: Wee5wMfn+CPKjyKZyDEHY+R9Q6OV/K/l1RMdUBztyVc=) 11: c413bd55-4d9e-47f0-87cb-ba8981b5bce4.roa (hash: AJ/PXco7Q9+4T2W4NRhXlwS1NnXc4V35S4aUCVHL/+I=) 12: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: /e9eClUKDDIiOomY7kiSIu2P/ZaCY2/w5Am3S46H+O0=) 13: d0a4f32b-00e7-45df-ac57-af8812e2ea60.roa (hash: NWX/F9HyqTswrNnvq+vN10mUM5QPvozGFPQvP6ZOD7I=) 14: e4e32025-6c2b-424d-92b8-3acaacb55baa.roa (hash: MAhMs9tuwBHZNrwxAn5ROuBUDBb7HbIYiAfly59EW5k=) 15: f95587cf-7170-48b0-b508-4aa1770ec2e7.roa (hash: 14PXgPxMWhjNf/1lP0TSxKLvFKgWXPOrVhbWmOMxWnM=) 16: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: FMakaqMRgswemlkneoZZz8CctiLKhY7u8ghZYhgrD6w=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 00:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:dc:a1:18:34:4a:ef:6c:af:7a:09:a7:45:b0:fd:ba:eb:4f:41:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 27 00:01:54 2024 GMT Not After : May 1 00:01:54 2024 GMT Subject: serialNumber=badb7bba1bfee8acc10486afd960ab282624a0a97c9466a29b8ec63fef9eae6d, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e1:c3:3a:4c:f2:3d:f8:39:fd:59:4c:df:cd: 87:c1:72:e7:b7:ee:ce:57:a5:53:a3:57:94:f2:57: aa:7c:70:d7:98:fa:ef:d6:ff:fa:a2:73:a2:c1:83: 1c:4f:b5:c9:0c:71:ac:cd:3f:41:de:c1:d3:d9:c5: 28:91:fb:bb:cc:fd:51:5f:0e:6d:2c:73:7a:7b:22: 3a:63:f2:b8:de:cd:64:fa:9e:bc:b2:ea:47:ef:a2: 95:59:98:1b:6a:cf:b4:7b:9f:29:16:88:67:ad:b9: 2d:0c:ca:63:36:6b:46:73:b3:7f:c8:a0:a6:41:44: 78:4c:9e:ee:7d:1f:d0:f5:e6:ee:16:41:2b:a8:94: 44:b0:75:64:27:c2:54:5b:91:a5:d3:dd:96:15:a9: ce:a5:9b:30:4a:cd:9b:ba:2e:dc:40:8c:96:a5:8a: 15:2d:f5:1e:aa:60:2a:9b:9c:dc:8a:14:88:d3:5c: 8e:ab:7e:6e:a9:b3:03:63:8c:52:5b:82:62:37:53: ea:d2:a9:25:28:41:f2:73:cc:ba:2f:67:2c:42:7f: 5e:25:78:66:49:f5:38:6d:bf:c1:01:2d:b7:02:8e: 38:e0:1e:f3:fe:1e:21:95:3b:15:67:ec:1a:af:63: 53:71:82:9d:9b:87:b5:b6:e6:95:16:7b:00:c1:d3: ea:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C0:9D:48:40:59:1D:F1:12:56:AE:7B:46:AA:9F:E3:5F:D5:A8:80 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:b2:b0:dc:41:f6:e7:22:05:1a:95:9c:b7:be:72:cc:06:76: 28:eb:ec:8d:ed:00:e8:91:9b:3f:a9:e6:4e:8b:29:06:96:bf: cf:ba:87:6e:43:09:1b:ec:3e:9e:0d:97:bb:5d:b0:07:56:aa: d4:ba:33:77:f9:33:21:81:7d:fe:42:65:eb:3c:f4:de:47:22: ee:a8:c4:a7:0e:4c:4f:38:4b:1f:c0:c2:e9:2f:fa:9c:bd:b7: 2f:18:84:fd:fa:99:6f:74:09:74:ec:fd:82:88:72:cd:03:dc: ae:88:11:d6:63:56:f9:8c:92:46:c6:f4:0b:f8:7c:f0:f2:5f: 01:85:f3:c4:29:e5:07:ed:e1:d5:07:e8:78:4b:7d:ed:a6:fe: 73:f3:01:b6:49:b1:f6:3c:e5:f2:78:83:c2:85:bf:7a:28:db: 3b:24:42:b1:d3:7d:f3:0e:93:ec:04:23:05:47:4d:3c:78:75: 12:fa:d6:da:bf:4e:3f:50:8e:56:ec:a1:23:47:3f:61:8a:d2: c9:ce:45:88:d0:da:b6:36:fd:55:53:70:80:a3:fe:49:ab:89: 27:dc:06:f2:54:7d:d2:e6:74:86:7d:46:43:9d:c7:fc:56:dc: be:6b:0a:a2:41:2f:d7:4f:f3:d4:7e:f2:79:4d:f0:93:34:94: 19:3f:70:c6 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUY9yhGDRK72yvegmnRbD9uutPQeQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI0MDQyNzAwMDE1NFoX DTI0MDUwMTAwMDE1NFowejFJMEcGA1UEBRNAYmFkYjdiYmExYmZlZThhY2MxMDQ4 NmFmZDk2MGFiMjgyNjI0YTBhOTdjOTQ2NmEyOWI4ZWM2M2ZlZjllYWU2ZDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApuHDOkzyPfg5/VlM382HwXLnt+7O V6VTo1eU8leqfHDXmPrv1v/6onOiwYMcT7XJDHGszT9B3sHT2cUokfu7zP1RXw5t LHN6eyI6Y/K43s1k+p68supH76KVWZgbas+0e58pFohnrbktDMpjNmtGc7N/yKCm QUR4TJ7ufR/Q9ebuFkErqJREsHVkJ8JUW5Gl092WFanOpZswSs2bui7cQIyWpYoV LfUeqmAqm5zcihSI01yOq35uqbMDY4xSW4JiN1Pq0qklKEHyc8y6L2csQn9eJXhm SfU4bb/BAS23Ao444B7z/h4hlTsVZ+war2NTcYKdm4e1tuaVFnsAwdPqyQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFDHAnUhAWR3xElaue0aqn+Nf1aiAMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAFuysNxB9uciBRqVnLe+cswGdijr7I3t AOiRmz+p5k6LKQaWv8+6h25DCRvsPp4Nl7tdsAdWqtS6M3f5MyGBff5CZes89N5H Iu6oxKcOTE84Sx/Awukv+py9ty8YhP36mW90CXTs/YKIcs0D3K6IEdZjVvmMkkbG 9Av4fPDyXwGF88Qp5Qft4dUH6HhLfe2m/nPzAbZJsfY85fJ4g8KFv3oo2zskQrHT ffMOk+wEIwVHTTx4dRL61tq/Tj9QjlbsoSNHP2GK0snORYjQ2rY2/VVTcICj/kmr iSfcBvJUfdLmdIZ9RkOdx/xW3L5rCqJBL9dP89R+8nlN8JM0lBk/cMY= -----END CERTIFICATE-----Generated at Sat Apr 27 10:17:10 2024 by rpki-client on console-ams.rpki-client.org