Manifest

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft
File:                     manifest.mft (raw, json)
Hash identifier:          9Bjy9MLnPD/ulnVbhn7q7ULB6OWu0eEOVjJeYypGnSM=
Subject key identifier:   69:74:C2:84:CD:2F:B9:84:82:CC:48:BF:53:59:46:8A:AE:55:E8:F4
Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D
Certificate issuer:       /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D
Certificate serial:       09CDB5F1EF7769B762140CCF5024A6FC6788CC3F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft
Manifest number:          05F9
Signing time:             Mon 13 Jul 2026 00:12:34 +0000
Manifest this update:     Mon 13 Jul 2026 00:12:34 +0000
Manifest next update:     Fri 17 Jul 2026 00:12:34 +0000
Files and hashes:         1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: ccwt1CBQMyS3892sZdcXMVVzywZdW2vC4hnvlBXhQmc=)
                          2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: 9noVsp+SlXMaVtRYLZ2UsgHXOR8yBZrfK7uKc6w2RU0=)
                          3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: LWW7G4vSgrTVoC49iuj/jpZ5T5IkSgMBRFaAY/6AWUQ=)
                          4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: YWcuR1uK1Qej5/2lX5Qzv7ToXmNSkifBcmRAMBDq1LE=)
                          5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: gWQW94UchMXKpAitMYpF39jPrIGeNpor2yQqW1vclFo=)
                          6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: 8F7U3HuBEHAbZxeotbZdxHhB0w+z61KRGEVZWZ1NOPA=)
                          7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: Wr+c6Q1I10v8ZDHa1kskBEdqqsWESS2cYOTf7oQrhuo=)
                          8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: 1t03EChjZYkK077vk6ZH3a5qPnl5WndlNpd+mVGJaPM=)
                          9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: SekGmHDfoGXj5vE4Zm57ePrlctkbgwVHEgjShmndD3o=)
                          10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: NMamOf9rJQLEFcxePu5jji6CzEB+kU961XK/hVBXFrA=)
                          11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: 56ohyAlTtw3nDjDnI6PeLZ9qx5aGxhIqza4yGFF5fkk=)
                          12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: sgve8SNnpJRICXi56BMuftrBFNrW8ZCffoMP5NfnWZg=)
                          13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: e7DgUMtp6AoSqdNYLBl9ON3HVwaVdFMx/vALGOr1yFY=)
                          14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: MUN3E1NLiG+U9TN+LvMQxVmbYWbeCf+Yz3FFqM07XUk=)
                          15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: aWTrNq1G+utWB6tkA4hz4DH0ZMMJfiIsmt+vshKxw30=)
                          16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: mmDjTVF7uC6IcLTQiEaOr33xzbFkcnbXUdIc6xa3iKs=)
                          17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: NBLGSURJiomLlOLBraVQVdoTSr6bS+7HxfARclWtYgE=)
                          18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: KpdoMD0r6LzGsIFEnqxHdIGwAQfhLRI49qdtI7ZZKXk=)
                          19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: kIQquhGVEcAvabpPXVXZt+As4t5sh2W4yCXCsbRhSVc=)
                          20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: eemEEY86nS8bPyiVDFi6ZCQhg151yZIJ5Mn0I+PMcdc=)
                          21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: Hi54Gbhw3DEMbkLoHk2FXWg76N5z+6Fx0yPf7AZ7FXk=)
                          22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: yfq8iFfIcDeAU+un+cEPlZiZth6uF29SsXYSk1FGweo=)
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 17 Jul 2026 00:12:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            09:cd:b5:f1:ef:77:69:b7:62:14:0c:cf:50:24:a6:fc:67:88:cc:3f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D
        Validity
            Not Before: Jul 13 00:12:34 2026 GMT
            Not After : Jul 17 00:12:34 2026 GMT
        Subject: serialNumber=c042a1fbf9ecb37035603d581e6a4c4105503ad73b4730145e6cbfd5e727923d, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:87:9e:38:57:ea:51:b3:41:73:2b:c9:46:2b:96:
                    eb:64:a7:6f:04:24:21:c7:fa:cb:91:46:b1:2b:23:
                    6b:ba:51:30:96:33:18:00:94:2a:0c:de:a4:7e:07:
                    47:a9:a5:35:f4:14:0c:14:f7:8f:9d:16:f4:68:e4:
                    99:d2:44:43:a7:b2:f0:be:0c:98:be:25:c6:3f:11:
                    8a:4f:23:10:e5:ad:b7:50:81:63:f8:03:f6:e3:df:
                    da:69:dc:91:c6:07:17:6c:d3:a3:cf:95:70:6d:38:
                    4a:68:49:63:35:7e:26:7c:27:d9:68:bf:a3:8e:2d:
                    66:19:25:bb:c7:fa:5a:05:d7:94:68:e3:4c:5b:86:
                    5c:28:9a:5e:79:f5:87:44:ad:b2:ca:2c:29:24:16:
                    3f:33:e1:fd:80:ff:14:f1:3c:6d:85:53:a2:01:94:
                    12:d4:a3:df:0a:7e:ce:51:78:4c:61:ca:8c:11:29:
                    61:cc:18:7d:34:02:15:bb:8e:38:c8:54:d3:71:2c:
                    b4:06:27:84:bc:a8:c7:d7:b4:64:82:09:0a:0b:2b:
                    8d:fc:2d:df:a4:62:9e:41:12:ca:79:43:ba:d4:79:
                    7d:fb:43:56:0a:36:6f:7c:31:f9:99:90:6f:cc:e6:
                    f4:81:32:e0:22:37:78:63:2c:ec:7a:55:54:41:fc:
                    d5:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:74:C2:84:CD:2F:B9:84:82:CC:48:BF:53:59:46:8A:AE:55:E8:F4
            X509v3 Authority Key Identifier:
                keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d9:4a:3f:b5:3d:85:a2:0a:7b:0a:e0:00:63:8e:65:16:f3:e8:
         0d:d0:08:15:7d:15:f8:9b:51:7f:5e:38:f6:51:d3:97:c4:cf:
         15:e1:25:2c:b2:ce:ce:1e:3b:55:fb:ad:f8:3b:9e:ac:76:c6:
         94:e1:f5:4f:47:f7:e2:ae:48:cd:eb:a4:65:a3:3c:12:71:d8:
         43:9b:8b:d8:74:68:a8:e1:61:81:ba:13:2a:f7:fd:2d:e8:a1:
         a8:82:99:53:3b:09:71:b0:32:9d:ba:44:64:ab:07:0a:68:24:
         e5:fa:f4:ba:d8:fa:ea:52:5e:16:ec:28:4f:46:c7:0d:cc:a0:
         b2:20:fc:0f:b3:a6:d3:67:e8:2d:14:8a:09:90:37:d8:83:5a:
         2d:52:9e:aa:b7:4a:a2:29:a1:fa:00:de:58:d8:ca:0e:46:40:
         af:d0:5a:86:df:f6:49:68:fe:3d:42:3a:cf:b5:2f:c9:cf:5e:
         78:64:f4:8d:23:f3:d8:7b:d3:50:4a:0e:ad:7f:ab:6b:3d:af:
         a3:ea:8b:ff:83:af:08:f4:5b:e5:fd:44:c4:f1:57:2a:ee:70:
         0b:30:2e:53:e5:53:b6:af:b2:84:fa:14:59:75:dd:93:f5:79:
         a6:93:c1:6a:50:3a:34:74:18:cf:44:ac:2a:5a:28:f0:5f:12:
         0d:50:2b:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 13 14:29:11 2026 by rpki-client