$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft File: manifest.mft (raw, json) Hash identifier: LPscNwjZuVcV1ofCp9DLXIL8tgZxIssxA9WbtWUOqUQ= Subject key identifier: 9D:68:A0:92:46:98:B1:A0:D5:4B:9A:59:AE:69:6E:00:C8:E0:4A:63 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 55688E1E6791F3AF9A4DDD7FDB49A77593A9F55D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft Manifest number: 03ED Signing time: Fri 22 Nov 2024 00:28:43 +0000 Manifest this update: Fri 22 Nov 2024 00:28:43 +0000 Manifest next update: Tue 26 Nov 2024 00:28:43 +0000 Files and hashes: 1: 0ae05889-eb6d-414c-88e9-bc293171f532.roa (hash: elPkydKai6KLFA/LSJtdRV1JHInCfu2Z0ktIrRkcXsw=) 2: 11134e5c-49e1-4313-9cf2-7f2e61dd8b0c.roa (hash: Ac9hu80Sy63SJ+YpQvmSk6UMgrUDL520CFukgazs0pg=) 3: 20b0bc1b-7e39-47a8-967a-5b3f58d75e03.roa (hash: BnyH2E7rk7vc6HEyyTWQozGYeYEzy666zfW/z5A2Psw=) 4: 2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa (hash: b8+ya+RpajXJK4GkcS4eUIPOxX9FW8O1/rWLjkPyKg0=) 5: 2720640e-9111-44dd-a0b8-a005f04956a0.roa (hash: TK2aGI7qMz/8ROO/M+MaYuL1mDwCJvIJEL6TDRYPdg8=) 6: 2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa (hash: y9+X/Ymat5mD7jxJGknqndKJogvnYVZr7FIbjbhDMgU=) 7: 3537691c-1a10-4699-a8a0-4cec50a35534.roa (hash: vV2SIKty4Rgm0EOKuDOBfkx/DyGp2+Aba+XdkM8lWkU=) 8: 57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa (hash: s3V9ICvVfFSxfhWulbCUc5JWyM46vebkWn6bKAHi9pQ=) 9: 589cbaa9-e0fe-4ad9-ba2a-25c4433a8da4.roa (hash: vE2gi5g582ZxI8B8If0sNQbhu/vHKUJWCQPq7Hg899g=) 10: 65f60eb5-aea2-48c7-83e9-3e1305e6dbea.roa (hash: orL/xIZRg7eK2MIK8FI005yYiYtZe2WUqbLaX7oqTHs=) 11: 719ca283-3642-49b6-998d-44526d9a59a7.roa (hash: iyjMUxyP91ruQ3m0cyQMYqrWqcMlbH9dl9OfjFRDfVc=) 12: 7cf17e61-b049-438c-8aaf-2d4714b51857.roa (hash: 7mc7ENAcfBuEu3jKhAqTdGp8V9L7rp9ixzEElEFbU80=) 13: 86cfd33f-a067-4c5c-8ad5-49ec8cde1823.roa (hash: AHllDr7Yd3SYySsNU1+1X9I5Q6Izp7lqGP2qSHpljfw=) 14: 90ca90a9-a10a-44e7-82b9-1365746ba55e.crl (hash: wAso60ljvqwWTALuEMU/Rl5qNJwcRrxvgkBkBH8EMF4=) 15: 97e51edc-22c5-4cb0-846c-06d6751df3b4.roa (hash: vqo4BGkE+f6h/WgThIGPZRFK6cx9lYK+Y/t/OeiMsRk=) 16: 98be1b25-e267-48c9-8089-71d3f3f86c51.roa (hash: IFxm3UoKcxkY2b1lqP5866JIwLGfNoh9noisRkNpMCs=) 17: 9fb28a95-f5bb-4868-9ab3-7d83d5142538.roa (hash: izd76RFgqWwDl6zhm/2YsIsbRdHO8sBzMAliA+tUDpY=) 18: 9fbd7a58-e139-4ada-86fc-00bddf61bca6.roa (hash: apMNkH/2dU0l2jqc9uEmHzsZs69WR4poTYpwEUibQs4=) 19: b0c38f03-3ced-484e-aa5b-7b06f125ad74.roa (hash: +zAv3koF6RsAM/u6K1RFYJ+cwUZ20v6PR9nEA6NXK0M=) 20: b46597ac-06b0-4ab7-aa80-8ed6514ffe89.roa (hash: /iwjfPWxtqn8yfMWOnQpORRDqBF/xIddx6YzX53hAk8=) 21: b57ae4d2-1a53-47c1-8b07-cfaa3aa964d9.roa (hash: wU+d9oNzdHDoEUXYSJy1ads2cAabt7bfMkX0HHn2Ps0=) 22: ba324b4e-d4cd-4df6-a846-89610642c7ba.roa (hash: AYIOOFzyHkjmn1KR42TyKNsWLrZotsyrl9YW4tADQpI=) 23: c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa (hash: vKQZaubYgkGAe03SlIuHADDd/bW4Vft71+yODaW/DM8=) 24: c759ed47-7de1-4858-b207-c77b1f7d2c35.roa (hash: mGOcMYeRtbmrN5JZUOgq5ly9E6/pibFz90eOa3cNvCs=) 25: c886fdcc-d9c4-485a-a941-7aa2c7d093e3.roa (hash: OkljDSZCNw+GbS/Theo4Zf3DAACZ58Yvb2IIyx4cpVg=) 26: c94ba698-f48b-499a-9e9f-3681b985bb5d.roa (hash: v8cMuZPXsif0eqwldTr7Zhi6sijukrH/T8tdJBDUO6E=) 27: decc3cec-c2ef-4622-8ec2-e53bb7a3e257.roa (hash: hBxfHL/8LBaM4K0mMwMZauYFPnJKXlm4l1Y9tcFqJhE=) 28: efdcb43b-2f19-4107-a0a3-c55daccb2714.roa (hash: 4h+f+6LBXtD+6SZed40/I/JXAJ98p3agIaFmtcWKqVw=) 29: f8620d2a-ea0f-46ef-a270-0f639f977882.roa (hash: rilpxeTrpfsbkbi04CMvN2zYBzbGhvOuzDm+yRTpkbY=) 30: fc41a047-335b-4f07-bd4d-51cf61bfc33f.roa (hash: z5hsLRDYkn3vHp8fdYjI4K7QZnhgd72Up9xtEP1oUf0=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:28:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:68:8e:1e:67:91:f3:af:9a:4d:dd:7f:db:49:a7:75:93:a9:f5:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Nov 22 00:28:43 2024 GMT Not After : Nov 26 00:28:43 2024 GMT Subject: serialNumber=2b931afebe503162bfaedc0dab42bc0a5a8aa24e3e77ec763608761394ab3350, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:23:8c:c1:0c:b4:3f:4b:b3:9d:e6:61:17:44: 5e:a2:b7:93:79:57:4d:fb:ac:8a:3c:6b:09:c5:0b: 37:b2:c1:7b:e7:0f:31:cd:06:15:a8:8b:81:a9:a6: af:b2:1e:d3:a2:12:a4:63:73:b9:6d:24:3e:5b:75: 8d:fb:f5:fe:66:40:f4:3c:3d:14:d9:ad:aa:f6:32: ac:9c:ed:0d:e9:f2:c6:e3:8e:56:48:72:fe:85:96: cd:1c:dd:05:e4:c0:ea:0f:ff:3e:28:9e:ea:5c:7d: 3b:92:f5:46:32:f4:a5:4e:7d:1c:4d:1e:11:15:17: 6c:35:b2:92:7e:89:76:3d:52:cc:82:c3:15:2a:8d: fe:58:0f:44:2a:ef:51:e3:bb:95:80:1c:8a:4c:b5: 60:88:eb:03:1f:27:93:1c:39:99:59:71:7b:7e:84: e7:35:6a:53:13:bb:19:7d:f4:ae:be:3a:30:e9:c5: c9:a4:1e:24:69:cf:18:5f:fe:73:30:de:cf:8c:f8: dd:51:c5:aa:5e:eb:cd:ed:f2:be:2a:a5:2f:77:a5: 2b:d2:3e:89:67:0a:83:b1:c0:b7:12:86:c6:89:dd: 09:74:42:af:d8:c7:bb:eb:c0:31:e7:15:3d:98:4a: 9f:fb:6f:87:91:fc:77:a2:ca:0e:81:88:25:7b:a6: 51:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:68:A0:92:46:98:B1:A0:D5:4B:9A:59:AE:69:6E:00:C8:E0:4A:63 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:c9:9a:ea:c6:75:71:4f:2d:99:69:05:36:9c:c2:2f:e1:15: fd:de:f6:ee:c7:a7:17:a1:47:44:e0:39:46:c5:37:e2:fe:9b: 96:61:27:c0:64:b5:c0:71:60:61:b3:a8:e3:21:74:00:83:0c: 9b:1b:46:21:87:9d:fa:09:6f:39:93:7f:e8:f6:d5:55:27:5d: cd:78:7d:95:4b:4e:88:4f:0f:9d:55:15:0b:66:3c:b6:af:20: a4:e7:96:32:86:53:8c:1f:3c:57:82:81:04:70:f5:f7:12:04: 5d:73:69:f9:95:fd:57:fb:a1:67:70:d5:d6:6a:4e:01:71:6e: 7c:a4:35:a5:e8:02:68:62:93:aa:1f:77:0a:51:4d:35:18:cb: 4c:15:42:af:5d:d3:da:65:7c:4e:c2:d3:55:e8:40:74:46:6c: 51:ab:39:a9:bd:22:51:38:d0:da:3b:0e:5a:41:75:5f:7a:3d: ac:02:33:ac:32:31:f1:ac:5d:39:c6:cf:12:c6:eb:95:d5:bd: d5:7a:d8:d0:81:d7:4f:f2:67:88:25:09:a0:c5:54:44:b0:07: 86:bb:7a:ff:63:d1:9f:db:6d:a2:cb:8a:53:db:e6:5e:64:76: 4f:af:90:69:59:7a:65:d0:cb:50:49:d7:e4:c6:43:99:4c:06: d4:7e:8b:ed -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUVWiOHmeR86+aTd1/20mndZOp9V0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI0MTEyMjAwMjg0M1oX DTI0MTEyNjAwMjg0M1owejFJMEcGA1UEBRNAMmI5MzFhZmViZTUwMzE2MmJmYWVk YzBkYWI0MmJjMGE1YThhYTI0ZTNlNzdlYzc2MzYwODc2MTM5NGFiMzM1MDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvCOMwQy0P0uzneZhF0ReoreTeVdN +6yKPGsJxQs3ssF75w8xzQYVqIuBqaavsh7TohKkY3O5bSQ+W3WN+/X+ZkD0PD0U 2a2q9jKsnO0N6fLG445WSHL+hZbNHN0F5MDqD/8+KJ7qXH07kvVGMvSlTn0cTR4R FRdsNbKSfol2PVLMgsMVKo3+WA9EKu9R47uVgByKTLVgiOsDHyeTHDmZWXF7foTn NWpTE7sZffSuvjow6cXJpB4kac8YX/5zMN7PjPjdUcWqXuvN7fK+KqUvd6Ur0j6J ZwqDscC3EobGid0JdEKv2Me768Ax5xU9mEqf+2+Hkfx3osoOgYgle6ZRAQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFJ1ooJJGmLGg1UuaWa5pbgDI4EpjMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJiY2JiODVhZTYvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYzNjZDdjMjQtMTJj Yi00YWJjLThmZDItNWUyYmNiYjg1YWU2LzkwY2E5MGE5LWExMGEtNDRlNy04MmI5 LTEzNjU3NDZiYTU1ZS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAG3JmurGdXFPLZlpBTacwi/hFf3e9u7H pxehR0TgOUbFN+L+m5ZhJ8BktcBxYGGzqOMhdACDDJsbRiGHnfoJbzmTf+j21VUn Xc14fZVLTohPD51VFQtmPLavIKTnljKGU4wfPFeCgQRw9fcSBF1zafmV/Vf7oWdw 1dZqTgFxbnykNaXoAmhik6ofdwpRTTUYy0wVQq9d09plfE7C01XoQHRGbFGrOam9 IlE40No7DlpBdV96PawCM6wyMfGsXTnGzxLG65XVvdV62NCB10/yZ4glCaDFVESw B4a7ev9j0Z/bbaLLilPb5l5kdk+vkGlZemXQy1BJ1+TGQ5lMBtR+i+0= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:48 2024 by rpki-client on console-fra.rpki-client.org