$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: wlxhxol1dAPzVuoVpKiignwMvgDzLnuvBovzKfyq+HE= Subject key identifier: 74:3D:F9:87:A8:1C:5C:6C:F2:7D:D0:8B:C7:CE:12:DE:20:6A:77:30 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 06A66690890C28A9989050C8AD8F458C93DFC12C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0457 Signing time: Fri 30 May 2025 15:01:47 +0000 Manifest this update: Fri 30 May 2025 15:01:47 +0000 Manifest next update: Tue 03 Jun 2025 15:01:47 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: jSm7A0CzJU9OV8oll1CPH2R+AkA/VcQIOdFhYHGV7nA=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: chdRHn97efV3DC5ggIuPKwBwB2WT2uD99KPt99WB9Mo=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: iFsyUhpP8t7wFlv1htJ0JKdCza+DGC7PtpBbu1EBYLE=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: 5sQwWG/cBRbs8R5BnKofzhlcGbW4YO+W7e7EQZURzFI=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: LB4o1IkdxO1iu+JX61baRwKw2NaOAJvL2NGl56FMY1Y=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: xe0eNcRZ9dqL+qhZe990RQBRarvC3xqAza4abYfGGKg=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: CE/d6nVwg1CXDHRx89MXVdbFSnEkYXvZKJGqAafbnWM=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: n0gXUHFYahh4J/4jaIwQo/bWuJQvw4D2fZ7i5R4pyUw=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: LToyeSdIDGg72v+2pvcJf6ilyhEn6uwC91SUsluxW9w=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: j+aAxYvuIfwH81+xuEpbfTF2AE2I+wz5ZYc2WaqYhG0=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: 9khZHnmd/KVm7t2v5aBidPN9guLeEiSymTha9Zzw50g=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: 9QszaQHebmaR5DroVbqF/GjAbs8gUUgjBws1f1uzNJc=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: WK48m4Xd5pXwATPpxDjvebu0xOlZQUhZV0zZJxQrvO0=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: ITMg21s1EZe2YRBR9vISQXAg2we2vB+e3mzCkNHMAD4=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 1kONtxBy5girOhavV4gakrbIjHuf3KFfnX3F+CE0fzc=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: oagiXRALdPBIMXyDXBISOA627FOUXYu9/mFAF1q4Up8=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: 4Qth2GEFSmt3/eaXSBE1/YTPUZ9y+Zos5inARlqK83U=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: rf2v4RBHbUfcVUvEvyhS8F1dzbdfvmk/PiOmuEUEFPM=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: XW0n/9hdTpV9dtB3dSFmu4bIm+JKOmsz0wDKh5lCYPw=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: 1sKs0FEfN/gW+sHEd/vMA+KF+9tRYD6UJhZCGK87WtM=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: JFzN8gG1qadSQAo2jqcFOQbJ+0Ma89go9LI3E8iUU3k=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: +STu06X203RA1zxVwDiyeI5RCrpGG6M6LplCLYkPaPc=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 15:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:a6:66:90:89:0c:28:a9:98:90:50:c8:ad:8f:45:8c:93:df:c1:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 30 15:01:47 2025 GMT Not After : Jun 3 15:01:47 2025 GMT Subject: serialNumber=9fd21f5e7e5fbe17cb3567da2bc513517b3111eb652985694d52e3258ac2dd8e, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:18:14:e6:ad:b9:36:60:a1:c1:76:7a:ce:4a: 24:01:a2:74:d6:80:7b:c0:3c:fd:24:21:76:06:5a: 81:10:28:c3:32:4d:96:f0:dd:a2:b2:58:17:17:e9: a5:dd:88:01:6c:22:7c:2d:eb:d0:b7:58:5a:75:08: 20:65:96:a9:fd:75:b7:92:d0:67:a9:80:a0:20:e7: cd:35:43:07:f7:8f:19:53:27:f6:4a:2c:87:19:42: ae:00:69:c7:c2:c8:e7:e9:6d:15:d2:17:1c:51:15: fe:f5:b7:7a:db:d3:2c:ce:63:3a:f7:91:6b:f0:f5: e0:3c:f4:d9:8a:a8:e8:25:9d:6d:7b:42:f6:62:9b: bb:d3:66:fe:e1:da:6d:02:d0:1d:9f:1a:80:60:ef: 99:03:97:c3:1d:ab:5a:c8:ea:79:b4:5b:f8:9d:ca: e5:45:4a:09:2b:99:ba:09:fd:8c:e4:93:01:f1:80: ef:d1:2f:2d:83:15:83:80:44:47:40:40:ac:a5:0e: 47:de:dc:d0:6b:4a:1e:79:73:86:e6:d4:85:91:db: 0e:95:97:a6:2a:b6:31:dd:f2:be:38:62:c4:62:83: bc:bd:14:e7:9b:a5:bd:84:8a:54:e2:51:4c:4e:e9: 65:45:ea:db:c2:ef:07:f2:a9:e0:13:ba:b3:d7:23: 6c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:3D:F9:87:A8:1C:5C:6C:F2:7D:D0:8B:C7:CE:12:DE:20:6A:77:30 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:25:05:27:9c:c0:37:4f:65:91:8b:9c:d1:5f:1d:f6:02:41: a1:50:f4:7d:4f:75:f2:17:03:9e:c8:fd:9e:41:b4:fb:5f:4e: 20:22:80:d4:27:5b:b6:3a:11:fa:95:55:95:36:68:3a:02:3e: 24:04:50:d0:77:22:77:2b:75:b7:b1:4b:4c:6a:ce:7c:ec:c8: 72:62:46:d5:d9:9a:65:c1:98:b1:9b:28:81:62:0b:92:8e:0b: fb:6c:3f:aa:c5:b9:32:10:ec:55:e4:8e:e6:10:70:9e:2c:e1: dc:62:97:40:e3:10:ba:42:af:14:de:35:34:dd:20:57:80:c7: 4a:1b:42:26:32:1a:62:de:03:d3:d2:8d:d2:22:38:68:22:6b: 91:0a:9b:df:3d:66:6a:3c:cf:01:1b:f9:d6:21:05:ad:0e:cc: ee:94:73:e5:e2:d4:f1:54:8c:5f:f9:c9:04:0f:e9:47:95:f3: 82:b7:6a:2c:4a:d9:eb:77:28:63:63:88:4c:bd:ff:5e:b1:06: af:cb:f3:83:8c:1f:a8:59:74:a7:dd:a7:d9:42:c5:45:94:0a: 53:24:df:c0:77:df:86:62:5b:22:25:b7:3c:f9:c5:e5:52:f0: c4:e0:5a:13:22:ab:9c:87:53:57:2a:11:bb:d3:8a:98:ad:ed: b3:38:06:70 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUBqZmkIkMKKmYkFDIrY9FjJPfwSwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDUzMDE1MDE0N1oX DTI1MDYwMzE1MDE0N1owejFJMEcGA1UEBRNAOWZkMjFmNWU3ZTVmYmUxN2NiMzU2 N2RhMmJjNTEzNTE3YjMxMTFlYjY1Mjk4NTY5NGQ1MmUzMjU4YWMyZGQ4ZTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlRgU5q25NmChwXZ6zkokAaJ01oB7 wDz9JCF2BlqBECjDMk2W8N2islgXF+ml3YgBbCJ8LevQt1hadQggZZap/XW3ktBn qYCgIOfNNUMH948ZUyf2SiyHGUKuAGnHwsjn6W0V0hccURX+9bd629MszmM695Fr 8PXgPPTZiqjoJZ1te0L2Ypu702b+4dptAtAdnxqAYO+ZA5fDHatayOp5tFv4ncrl RUoJK5m6Cf2M5JMB8YDv0S8tgxWDgERHQECspQ5H3tzQa0oeeXOG5tSFkdsOlZem KrYx3fK+OGLEYoO8vRTnm6W9hIpU4lFMTullRerbwu8H8qngE7qz1yNs6wIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFHQ9+YeoHFxs8n3Qi8fOEt4gancwMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAD8lBSecwDdPZZGLnNFfHfYCQaFQ9H1P dfIXA57I/Z5BtPtfTiAigNQnW7Y6EfqVVZU2aDoCPiQEUNB3IncrdbexS0xqznzs yHJiRtXZmmXBmLGbKIFiC5KOC/tsP6rFuTIQ7FXkjuYQcJ4s4dxil0DjELpCrxTe NTTdIFeAx0obQiYyGmLeA9PSjdIiOGgia5EKm989Zmo8zwEb+dYhBa0OzO6Uc+Xi 1PFUjF/5yQQP6UeV84K3aixK2et3KGNjiEy9/16xBq/L84OMH6hZdKfdp9lCxUWU ClMk38B334ZiWyIltzz5xeVS8MTgWhMiq5yHU1cqEbvTipit7bM4BnA= -----END CERTIFICATE-----Generated at Sat May 31 16:25:53 2025 by rpki-client