Manifest

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft
File:                     manifest.mft (raw, json)
Hash identifier:          wlxhxol1dAPzVuoVpKiignwMvgDzLnuvBovzKfyq+HE=
Subject key identifier:   74:3D:F9:87:A8:1C:5C:6C:F2:7D:D0:8B:C7:CE:12:DE:20:6A:77:30
Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D
Certificate issuer:       /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D
Certificate serial:       06A66690890C28A9989050C8AD8F458C93DFC12C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft
Manifest number:          0457
Signing time:             Fri 30 May 2025 15:01:47 +0000
Manifest this update:     Fri 30 May 2025 15:01:47 +0000
Manifest next update:     Tue 03 Jun 2025 15:01:47 +0000
Files and hashes:         1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: jSm7A0CzJU9OV8oll1CPH2R+AkA/VcQIOdFhYHGV7nA=)
                          2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: chdRHn97efV3DC5ggIuPKwBwB2WT2uD99KPt99WB9Mo=)
                          3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: iFsyUhpP8t7wFlv1htJ0JKdCza+DGC7PtpBbu1EBYLE=)
                          4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: 5sQwWG/cBRbs8R5BnKofzhlcGbW4YO+W7e7EQZURzFI=)
                          5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: LB4o1IkdxO1iu+JX61baRwKw2NaOAJvL2NGl56FMY1Y=)
                          6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: xe0eNcRZ9dqL+qhZe990RQBRarvC3xqAza4abYfGGKg=)
                          7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: CE/d6nVwg1CXDHRx89MXVdbFSnEkYXvZKJGqAafbnWM=)
                          8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: n0gXUHFYahh4J/4jaIwQo/bWuJQvw4D2fZ7i5R4pyUw=)
                          9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: LToyeSdIDGg72v+2pvcJf6ilyhEn6uwC91SUsluxW9w=)
                          10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: j+aAxYvuIfwH81+xuEpbfTF2AE2I+wz5ZYc2WaqYhG0=)
                          11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: 9khZHnmd/KVm7t2v5aBidPN9guLeEiSymTha9Zzw50g=)
                          12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: 9QszaQHebmaR5DroVbqF/GjAbs8gUUgjBws1f1uzNJc=)
                          13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: WK48m4Xd5pXwATPpxDjvebu0xOlZQUhZV0zZJxQrvO0=)
                          14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: ITMg21s1EZe2YRBR9vISQXAg2we2vB+e3mzCkNHMAD4=)
                          15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: 1kONtxBy5girOhavV4gakrbIjHuf3KFfnX3F+CE0fzc=)
                          16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: oagiXRALdPBIMXyDXBISOA627FOUXYu9/mFAF1q4Up8=)
                          17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: 4Qth2GEFSmt3/eaXSBE1/YTPUZ9y+Zos5inARlqK83U=)
                          18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: rf2v4RBHbUfcVUvEvyhS8F1dzbdfvmk/PiOmuEUEFPM=)
                          19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: XW0n/9hdTpV9dtB3dSFmu4bIm+JKOmsz0wDKh5lCYPw=)
                          20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: 1sKs0FEfN/gW+sHEd/vMA+KF+9tRYD6UJhZCGK87WtM=)
                          21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: JFzN8gG1qadSQAo2jqcFOQbJ+0Ma89go9LI3E8iUU3k=)
                          22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: +STu06X203RA1zxVwDiyeI5RCrpGG6M6LplCLYkPaPc=)
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 03 Jun 2025 15:01:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            06:a6:66:90:89:0c:28:a9:98:90:50:c8:ad:8f:45:8c:93:df:c1:2c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D
        Validity
            Not Before: May 30 15:01:47 2025 GMT
            Not After : Jun  3 15:01:47 2025 GMT
        Subject: serialNumber=9fd21f5e7e5fbe17cb3567da2bc513517b3111eb652985694d52e3258ac2dd8e, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:18:14:e6:ad:b9:36:60:a1:c1:76:7a:ce:4a:
                    24:01:a2:74:d6:80:7b:c0:3c:fd:24:21:76:06:5a:
                    81:10:28:c3:32:4d:96:f0:dd:a2:b2:58:17:17:e9:
                    a5:dd:88:01:6c:22:7c:2d:eb:d0:b7:58:5a:75:08:
                    20:65:96:a9:fd:75:b7:92:d0:67:a9:80:a0:20:e7:
                    cd:35:43:07:f7:8f:19:53:27:f6:4a:2c:87:19:42:
                    ae:00:69:c7:c2:c8:e7:e9:6d:15:d2:17:1c:51:15:
                    fe:f5:b7:7a:db:d3:2c:ce:63:3a:f7:91:6b:f0:f5:
                    e0:3c:f4:d9:8a:a8:e8:25:9d:6d:7b:42:f6:62:9b:
                    bb:d3:66:fe:e1:da:6d:02:d0:1d:9f:1a:80:60:ef:
                    99:03:97:c3:1d:ab:5a:c8:ea:79:b4:5b:f8:9d:ca:
                    e5:45:4a:09:2b:99:ba:09:fd:8c:e4:93:01:f1:80:
                    ef:d1:2f:2d:83:15:83:80:44:47:40:40:ac:a5:0e:
                    47:de:dc:d0:6b:4a:1e:79:73:86:e6:d4:85:91:db:
                    0e:95:97:a6:2a:b6:31:dd:f2:be:38:62:c4:62:83:
                    bc:bd:14:e7:9b:a5:bd:84:8a:54:e2:51:4c:4e:e9:
                    65:45:ea:db:c2:ef:07:f2:a9:e0:13:ba:b3:d7:23:
                    6c:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                74:3D:F9:87:A8:1C:5C:6C:F2:7D:D0:8B:C7:CE:12:DE:20:6A:77:30
            X509v3 Authority Key Identifier:
                keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3f:25:05:27:9c:c0:37:4f:65:91:8b:9c:d1:5f:1d:f6:02:41:
         a1:50:f4:7d:4f:75:f2:17:03:9e:c8:fd:9e:41:b4:fb:5f:4e:
         20:22:80:d4:27:5b:b6:3a:11:fa:95:55:95:36:68:3a:02:3e:
         24:04:50:d0:77:22:77:2b:75:b7:b1:4b:4c:6a:ce:7c:ec:c8:
         72:62:46:d5:d9:9a:65:c1:98:b1:9b:28:81:62:0b:92:8e:0b:
         fb:6c:3f:aa:c5:b9:32:10:ec:55:e4:8e:e6:10:70:9e:2c:e1:
         dc:62:97:40:e3:10:ba:42:af:14:de:35:34:dd:20:57:80:c7:
         4a:1b:42:26:32:1a:62:de:03:d3:d2:8d:d2:22:38:68:22:6b:
         91:0a:9b:df:3d:66:6a:3c:cf:01:1b:f9:d6:21:05:ad:0e:cc:
         ee:94:73:e5:e2:d4:f1:54:8c:5f:f9:c9:04:0f:e9:47:95:f3:
         82:b7:6a:2c:4a:d9:eb:77:28:63:63:88:4c:bd:ff:5e:b1:06:
         af:cb:f3:83:8c:1f:a8:59:74:a7:dd:a7:d9:42:c5:45:94:0a:
         53:24:df:c0:77:df:86:62:5b:22:25:b7:3c:f9:c5:e5:52:f0:
         c4:e0:5a:13:22:ab:9c:87:53:57:2a:11:bb:d3:8a:98:ad:ed:
         b3:38:06:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 31 16:25:53 2025 by rpki-client