$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft File: manifest.mft (raw, json) Hash identifier: 6046DwXiSX2xU8EAo5roPqhX1/C7TcJIJ1NXsvA6T38= Subject key identifier: 69:AF:9F:EB:3C:82:DA:74:47:50:22:6F:C3:41:16:A8:07:90:03:B3 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 3EDEB962D5CA44CB33F246947AFE83853F99709D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft Manifest number: 0238 Signing time: Mon 04 Dec 2023 00:00:53 +0000 Manifest this update: Mon 04 Dec 2023 00:00:53 +0000 Manifest next update: Tue 05 Dec 2023 12:00:53 +0000 Files and hashes: 1: 0ae05889-eb6d-414c-88e9-bc293171f532.roa (hash: 8EjaH8TORNuK942NMwMloxmPj7s6WnjsvQpcr/le4bc=) 2: 11134e5c-49e1-4313-9cf2-7f2e61dd8b0c.roa (hash: l81V61I8qOnQhRVjmC1bjDKWWPA4iwW0gggqUBIqq7g=) 3: 20b0bc1b-7e39-47a8-967a-5b3f58d75e03.roa (hash: v396P60AAAxwv1r+odmooMAqpxHHiboPsx7fE8frV0M=) 4: 2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa (hash: 6of0ZXJIqtL4AUlIVj1GR2++zHMP8LnMPL2wXdTuzXE=) 5: 2720640e-9111-44dd-a0b8-a005f04956a0.roa (hash: E1gkK8QzRtD1Hy2sn3EIplyNKpLxdaepenKXkR8aofc=) 6: 2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa (hash: tpn98XiLX/bfMkYNC/Vhkmz3RlXjzZ50jvPwzEQDF0g=) 7: 3537691c-1a10-4699-a8a0-4cec50a35534.roa (hash: 0Dv83mmPCZ4WZ0On+2xF+dZDLUOVDgJienw4BbeO3zs=) 8: 57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa (hash: 2Xgpn0FDj2QZA9E1wNjI6YSiibYnfgiD0JOZMh3IFCg=) 9: 589cbaa9-e0fe-4ad9-ba2a-25c4433a8da4.roa (hash: h6XtbkSBDdjWdmgm+QsKWoO6W1DZDPuS8gCb9lkaWug=) 10: 65f60eb5-aea2-48c7-83e9-3e1305e6dbea.roa (hash: 2KlcM+3Yl0JSCpynKe6JX5Uxe6W7StRVHxf8LkQenyg=) 11: 719ca283-3642-49b6-998d-44526d9a59a7.roa (hash: +IWFdfMkhjAD2T5weP1kF+zVSmvIcfNHpxxIX99LE8g=) 12: 7cf17e61-b049-438c-8aaf-2d4714b51857.roa (hash: AiCGehM3X0RyWbufdMVXFj5Y5Dgx60/knxiKOS7kf3o=) 13: 86cfd33f-a067-4c5c-8ad5-49ec8cde1823.roa (hash: Ncqv/SIlm/ngGmcdhiKeBy4vtUowpAaZEYV+Fxe9VmE=) 14: 90ca90a9-a10a-44e7-82b9-1365746ba55e.crl (hash: U1aBxilEm3b9YR9AX5hCseiE06rC5SZhlu0yhDYCztk=) 15: 97e51edc-22c5-4cb0-846c-06d6751df3b4.roa (hash: 8Q6bimuMaZSKHl0F0LuGhWHiK7mZGlOElEj9OyHkH8k=) 16: 9fb28a95-f5bb-4868-9ab3-7d83d5142538.roa (hash: eZMOCrqncAfyH6S5cnqLufcx2Tc9jYWiTBy1k1+YAcI=) 17: 9fbd7a58-e139-4ada-86fc-00bddf61bca6.roa (hash: q+aybt8eukoTiPu+bhTkwRlonDcgTdgcN4g+gV9gkW0=) 18: b0c38f03-3ced-484e-aa5b-7b06f125ad74.roa (hash: cR4U5Yd/+m+ESuGRXMMd2xxM0tYDHDSFDxkp7zYWLVI=) 19: b46597ac-06b0-4ab7-aa80-8ed6514ffe89.roa (hash: 9VeWYKqRNk9/l3itLRnZdSWRxHOmYgfK3VIhcjx3/Bk=) 20: b57ae4d2-1a53-47c1-8b07-cfaa3aa964d9.roa (hash: dkewJh77pkmaD25VAeacYBLF0WY961EWo6RzLBqjs2g=) 21: ba324b4e-d4cd-4df6-a846-89610642c7ba.roa (hash: vbzWEmbl89x800kimyq9U7k+pnsJnQh7SoaT9QPQZW0=) 22: c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa (hash: 4o0xcRx1wwve0Yb9CMSkPu/jI4N0eoFYWXRhv4s50sg=) 23: c759ed47-7de1-4858-b207-c77b1f7d2c35.roa (hash: oTGyozxY4oyHPdnIbTG7Op2c9xwgVE5mDwsmKviqmwY=) 24: c886fdcc-d9c4-485a-a941-7aa2c7d093e3.roa (hash: FNVTDZbklGAaWmC85+uECTcmfBf6vUu5sJy0x9002m0=) 25: c94ba698-f48b-499a-9e9f-3681b985bb5d.roa (hash: 9kxCoIyk9xxYPmwkc+/z8iq9jWciADY0BgyhqG4oq8I=) 26: decc3cec-c2ef-4622-8ec2-e53bb7a3e257.roa (hash: pSF9BnfT2mos1nd9KWKWfXOCoOFelzeEXmGu5OdP0FU=) 27: efdcb43b-2f19-4107-a0a3-c55daccb2714.roa (hash: NU/Bz765nm43EkNaRDThml2zPOdUluPUAB0McUIwu3E=) 28: f8620d2a-ea0f-46ef-a270-0f639f977882.roa (hash: Kd+uHdjiQJRGYWsp//X/p5IhsTnSJHtpCAqw2PB7Jc0=) 29: fc41a047-335b-4f07-bd4d-51cf61bfc33f.roa (hash: jwqkr6bGcYrtFlEEYTwir29BNhquD+3Id6VgQFATyeI=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 Dec 2023 12:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:de:b9:62:d5:ca:44:cb:33:f2:46:94:7a:fe:83:85:3f:99:70:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 4 00:00:53 2023 GMT Not After : Dec 5 12:00:53 2023 GMT Subject: serialNumber=99892a66b938c41a02f68113148a521ad2aa4a0b1043fc866a57e15fe6c8df51, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f5:a6:71:bb:46:5b:91:2f:b8:df:28:a0:cc: a3:44:d2:81:1d:c3:2b:4b:7e:7d:af:0c:a1:7c:33: c6:b5:f1:35:c4:64:21:08:43:53:db:6e:7c:99:26: b2:bb:ec:c9:c9:58:de:ba:c9:02:12:68:fb:2b:21: 30:86:f4:fb:c2:87:b6:7f:b6:f0:77:f5:54:f5:ee: a7:9a:47:cf:f5:dc:d2:48:a3:1f:b5:c8:d4:18:4f: 7f:0a:26:71:df:e2:7f:f4:c4:91:49:8a:a9:e2:7b: d7:fd:64:54:64:2a:d5:4d:3b:78:64:79:44:a5:42: 25:a2:1c:66:0a:21:09:9c:b1:02:f0:30:f2:e5:a6: 46:b1:25:96:9c:35:46:c0:0b:ee:7f:8a:7f:e3:03: 90:d5:07:a4:0b:70:58:f8:b5:c4:34:7a:9a:89:9d: 1a:88:b5:7d:ad:f9:f8:b0:e3:1b:fe:18:e7:3e:86: 23:5b:79:22:30:18:c9:09:c8:90:6b:2e:69:c4:bf: 52:5e:71:6b:6e:59:75:ce:76:3c:ec:ea:10:85:73: be:66:17:78:cf:e1:53:d2:41:2a:64:46:fb:2c:19: 42:c5:d0:9f:f4:20:42:a9:88:2f:72:f2:50:d4:96: e9:6a:16:48:b9:fd:9b:7c:4c:5f:92:19:c2:6b:7e: 69:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:AF:9F:EB:3C:82:DA:74:47:50:22:6F:C3:41:16:A8:07:90:03:B3 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:02:03:76:41:e3:6d:b9:2e:e5:64:35:0d:41:ca:ce:20:11: 06:59:d5:ec:07:65:e2:70:92:1c:48:2d:2a:e9:30:21:af:1a: 17:0c:6d:29:f2:44:36:ac:e0:1e:7a:23:17:11:68:9f:6d:90: 57:2a:60:2b:6f:a9:e8:db:c6:d8:80:d8:66:80:5e:bb:96:7b: 62:79:c2:1a:22:2f:f3:83:ef:31:80:67:9c:f6:4e:5c:28:f1: 26:a0:f2:4e:cf:2b:4e:3c:ad:92:fa:88:ec:e6:02:11:5f:b8: a2:c2:3f:26:8b:e6:41:0a:ff:b9:2a:7b:88:4d:95:2e:b8:b7: 1a:ad:7f:81:35:ef:4e:26:ca:68:05:1f:e0:c0:45:0c:83:be: 3c:e0:d7:6c:32:50:c3:c2:74:45:c0:df:ef:30:c8:6c:10:bc: c7:d8:45:43:dd:60:3b:2e:20:50:85:d5:7a:91:45:db:00:72: 52:05:f5:27:3e:85:c7:9a:07:60:c3:92:7a:fd:cd:2c:67:27: 53:8f:12:60:2f:ab:75:aa:4b:64:24:bd:2d:a4:1a:ca:be:e2: 2d:8d:ff:eb:e4:fb:39:12:aa:56:b5:18:4a:4d:d2:1b:b2:31: 5f:72:2f:ff:66:79:49:a9:29:e5:65:00:30:cf:7b:fb:1d:84: 6a:36:df:be -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUPt65YtXKRMsz8kaUev6DhT+ZcJ0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTIzMTIwNDAwMDA1M1oX DTIzMTIwNTEyMDA1M1owejFJMEcGA1UEBRNAOTk4OTJhNjZiOTM4YzQxYTAyZjY4 MTEzMTQ4YTUyMWFkMmFhNGEwYjEwNDNmYzg2NmE1N2UxNWZlNmM4ZGY1MTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArvWmcbtGW5EvuN8ooMyjRNKBHcMr S359rwyhfDPGtfE1xGQhCENT2258mSayu+zJyVjeuskCEmj7KyEwhvT7woe2f7bw d/VU9e6nmkfP9dzSSKMftcjUGE9/CiZx3+J/9MSRSYqp4nvX/WRUZCrVTTt4ZHlE pUIlohxmCiEJnLEC8DDy5aZGsSWWnDVGwAvuf4p/4wOQ1QekC3BY+LXENHqaiZ0a iLV9rfn4sOMb/hjnPoYjW3kiMBjJCciQay5pxL9SXnFrbll1znY87OoQhXO+Zhd4 z+FT0kEqZEb7LBlCxdCf9CBCqYgvcvJQ1JbpahZIuf2bfExfkhnCa35p9QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFGmvn+s8gtp0R1Aib8NBFqgHkAOzMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJiY2JiODVhZTYvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYzNjZDdjMjQtMTJj Yi00YWJjLThmZDItNWUyYmNiYjg1YWU2LzkwY2E5MGE5LWExMGEtNDRlNy04MmI5 LTEzNjU3NDZiYTU1ZS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAEACA3ZB4225LuVkNQ1Bys4gEQZZ1ewH ZeJwkhxILSrpMCGvGhcMbSnyRDas4B56IxcRaJ9tkFcqYCtvqejbxtiA2GaAXruW e2J5whoiL/OD7zGAZ5z2Tlwo8Sag8k7PK048rZL6iOzmAhFfuKLCPyaL5kEK/7kq e4hNlS64txqtf4E1704mymgFH+DARQyDvjzg12wyUMPCdEXA3+8wyGwQvMfYRUPd YDsuIFCF1XqRRdsAclIF9Sc+hceaB2DDknr9zSxnJ1OPEmAvq3WqS2QkvS2kGsq+ 4i2N/+vk+zkSqla1GEpN0huyMV9yL/9meUmpKeVlADDPe/sdhGo2374= -----END CERTIFICATE-----Generated at Mon Dec 4 00:26:12 2023 by rpki-client on console-fra.rpki-client.org