$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft File: manifest.mft (raw, json) Hash identifier: qnEmSCVWhoOk6IxGUjBBKd3ri4Cju888AMsZh+QMZVU= Subject key identifier: AD:14:49:88:16:A8:52:63:A3:CA:3A:D3:D6:36:24:08:1D:76:C7:DC Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 4DE8388DBAEDD041967A1B1917CF13CE34DE186F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft Manifest number: 02E0 Signing time: Fri 19 Apr 2024 00:00:30 +0000 Manifest this update: Fri 19 Apr 2024 00:00:30 +0000 Manifest next update: Tue 23 Apr 2024 00:00:30 +0000 Files and hashes: 1: 0ae05889-eb6d-414c-88e9-bc293171f532.roa (hash: 25WbOL6pSeiwZfsMEH4jJiQjth3pVuWf9P9QfR5C8fs=) 2: 11134e5c-49e1-4313-9cf2-7f2e61dd8b0c.roa (hash: TED8qj07CshYOUAytRwpHOlbA2OonmXHAYlYAomETgQ=) 3: 20b0bc1b-7e39-47a8-967a-5b3f58d75e03.roa (hash: 1HRy2Qs8hMpYVb0rIc9JwDPhgm5k/ue9UC9lfT75WeE=) 4: 2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa (hash: XId8m2q/bU/fM5sKqjKm2j550JTkgLqmRUeMzDhMEns=) 5: 2720640e-9111-44dd-a0b8-a005f04956a0.roa (hash: Vxr/qLZFq2ZXTPYC8FYLYbCcbWYYk5Irlvq9c5sVaks=) 6: 2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa (hash: XL7JLs9Frl7AsYJUcVPqV0+ad6XLpanV6+athcEvKFs=) 7: 3537691c-1a10-4699-a8a0-4cec50a35534.roa (hash: VvNZxaa+1dtp9DjU31252dtyoGibT9WcWo2R1chOTyM=) 8: 57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa (hash: 6ZJHwCSJRRwMxom2f6SiOsapYe/r1F73vJGNUu4w4cw=) 9: 589cbaa9-e0fe-4ad9-ba2a-25c4433a8da4.roa (hash: 2fyemg+MtjzLpz0MZmx4xUKJU3foGE9cmPVVnEjyvSA=) 10: 65f60eb5-aea2-48c7-83e9-3e1305e6dbea.roa (hash: ewZtk+9HDyJIRm7IB0sizDRlaJoWSp8UQ2E2CTKrO4A=) 11: 719ca283-3642-49b6-998d-44526d9a59a7.roa (hash: Bjst3dQpumodbLugA6CGWa95msdSIrzQ/GK4WqHyBcA=) 12: 7cf17e61-b049-438c-8aaf-2d4714b51857.roa (hash: 0kWzhy8kScuA0VgD+zQn4uJ2sMRoxW6xXXQHnLPLkuc=) 13: 86cfd33f-a067-4c5c-8ad5-49ec8cde1823.roa (hash: 0HOzCZYYnUcvFB9XjpLYPF+TAcXEFbJgBwYmphqSgoY=) 14: 90ca90a9-a10a-44e7-82b9-1365746ba55e.crl (hash: xbWbQg1nG1vZdCLhUXr+/cAzdbH5MzBHTEQ6soCDmnE=) 15: 97e51edc-22c5-4cb0-846c-06d6751df3b4.roa (hash: g6Uc6lvIkYnUQ1vl7ol7mf///AVyBB16TzTpTDiOo/8=) 16: 98be1b25-e267-48c9-8089-71d3f3f86c51.roa (hash: RoecCR4XlQvgSPZ1l1LHT9iz1t3SepSvAwSsYLF6vW0=) 17: 9fb28a95-f5bb-4868-9ab3-7d83d5142538.roa (hash: 9LhjBGJqLU7nYg/9kszmkOBUHK+cSH3N61tTzRBPgWc=) 18: 9fbd7a58-e139-4ada-86fc-00bddf61bca6.roa (hash: dBZia3VnF1pXXaBZI3cqoxVD4HqAnGvCi4Q3GQsuXoA=) 19: b0c38f03-3ced-484e-aa5b-7b06f125ad74.roa (hash: NZncDbQPtzuqYGK15BquN+VV5mjxHT+Wb9E42nneA50=) 20: b46597ac-06b0-4ab7-aa80-8ed6514ffe89.roa (hash: tfRl/YHBmBHAnKdTtAQWIPBYkqD2eRIANZGKegi3U0g=) 21: b57ae4d2-1a53-47c1-8b07-cfaa3aa964d9.roa (hash: KJaudS+5N/F+v7sjaUvsSW1xTZgwPQKr/i9y6gMGIqs=) 22: ba324b4e-d4cd-4df6-a846-89610642c7ba.roa (hash: aG7DDhVHupFvM2w0t1czNeC3XKtrSRSMjoajAXsbe/k=) 23: c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa (hash: /wDtfXnBO/B2DSyiBUfDt5IR0DqioUb0XWcJcchAcMA=) 24: c759ed47-7de1-4858-b207-c77b1f7d2c35.roa (hash: EeL1rtty8Wm9YZX7y1TeeZ2+HD1qsA8L8JXMGeQECY8=) 25: c886fdcc-d9c4-485a-a941-7aa2c7d093e3.roa (hash: Oa/7S7lPglpBwqhW+DflNQzx5dF93vd2ZhUQ1XwwewU=) 26: c94ba698-f48b-499a-9e9f-3681b985bb5d.roa (hash: 2SBMM1rbjvFdPENGCTJCF3PiZV+g7yR8XjF5nk6b32k=) 27: decc3cec-c2ef-4622-8ec2-e53bb7a3e257.roa (hash: JQt3o77YMFdsDrnmwjxAIkrxLeLOtoBM9LqzdM4mgXg=) 28: efdcb43b-2f19-4107-a0a3-c55daccb2714.roa (hash: z4sZPdJOohOa8VJGkvgSiEnpsQMEF2S9s24oI0OuyfY=) 29: f8620d2a-ea0f-46ef-a270-0f639f977882.roa (hash: rqyEbYP29ulz2IUIbZ+8y0LOUDlKS0tIhzb56QrgsXw=) 30: fc41a047-335b-4f07-bd4d-51cf61bfc33f.roa (hash: f47ctM7DrbimXtiQiNpyE0rYLZJOcvPyV/C7KgMMwNc=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Apr 2024 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:e8:38:8d:ba:ed:d0:41:96:7a:1b:19:17:cf:13:ce:34:de:18:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Apr 19 00:00:30 2024 GMT Not After : Apr 23 00:00:30 2024 GMT Subject: serialNumber=504a74b0d3a0d58a3718a383c094df3ab5d7d40c7cae86dcba9ae67a5c225d1f, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cc:a6:b6:d6:90:d4:40:3f:ea:e3:a7:4f:63: 3a:a5:5c:4d:4d:b5:c4:db:fd:3c:50:a6:31:66:5f: bd:2d:c4:d9:6c:3c:23:86:af:e5:0c:ef:bd:85:e7: f4:a0:96:d0:85:78:a9:5b:21:72:c5:2d:82:f9:a3: 04:ed:3b:d4:20:6b:f4:bc:d4:ed:59:3e:c8:7e:27: 4c:c9:97:ce:46:c7:3c:a1:af:f6:b0:73:67:0b:4e: 31:75:e7:43:bb:2b:82:59:3d:9b:a1:8a:d6:77:ba: b0:1a:42:91:ca:ae:dc:6c:29:d6:76:ff:79:5d:0d: 0e:2b:d2:f0:88:23:97:ae:42:fa:2d:08:55:b9:b8: 8e:4b:fd:73:af:c0:9f:6e:a4:20:3b:3f:4b:71:5e: a1:86:14:3a:62:d9:f1:18:17:1f:89:b8:af:f2:bd: 8f:a3:21:d6:01:f4:a9:a8:7f:b5:e3:df:8b:7a:fd: b8:86:29:70:05:2a:b3:8b:d6:b7:56:f5:c2:20:79: eb:61:7b:e0:1d:63:99:6f:70:a0:88:ff:d3:09:7d: 07:b6:f5:df:15:ae:51:ea:83:15:ac:79:4a:06:25: 40:b3:0c:f7:1d:68:aa:07:b0:55:56:11:0b:30:0f: c1:9c:1c:7c:55:71:5f:ee:4f:9d:6f:b5:89:67:e3: 3d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:14:49:88:16:A8:52:63:A3:CA:3A:D3:D6:36:24:08:1D:76:C7:DC X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:32:b6:68:ae:07:00:d8:68:47:90:7c:1c:29:e3:49:f9:36: 61:83:56:29:d5:e8:83:39:2e:c7:60:44:0f:85:74:ae:1e:ab: b9:80:e2:00:ca:a5:2d:e9:3f:be:15:87:5e:c8:51:8d:6e:ce: 95:3a:b9:48:a3:8a:d5:8e:b3:0d:6a:29:cf:21:39:71:8b:4f: b6:a6:c2:27:44:80:e2:2a:2b:7f:13:56:dc:61:9d:17:e9:67: 6c:4a:92:ae:ff:72:f5:92:6a:39:ac:87:47:75:c1:6e:9e:bc: 43:79:9d:47:42:90:10:53:09:66:63:b7:51:1e:08:89:2e:7b: 43:bc:c8:bc:5d:b8:cf:4d:b5:5e:6e:88:35:d0:2b:cd:28:be: 3b:55:6b:46:67:bb:9e:ea:37:4e:38:e5:2f:91:fc:eb:fe:12: d6:5f:00:75:14:5a:83:6e:fb:51:b7:ef:a8:23:6b:4c:45:03: 05:fb:dd:f0:d0:a2:7e:a9:9d:36:d7:2f:51:dd:7b:07:7e:e4: 7a:d0:cd:ed:a4:d5:78:53:35:ed:5a:3c:7d:9c:a9:3e:eb:54: ee:ab:a8:9e:89:de:35:ce:1d:69:af:06:c1:b1:61:de:5b:8a: fc:d1:71:87:be:54:58:c1:68:69:32:fd:20:1c:51:23:03:27: 54:c8:e3:51 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUTeg4jbrt0EGWehsZF88TzjTeGG8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI0MDQxOTAwMDAzMFoX DTI0MDQyMzAwMDAzMFowejFJMEcGA1UEBRNANTA0YTc0YjBkM2EwZDU4YTM3MThh MzgzYzA5NGRmM2FiNWQ3ZDQwYzdjYWU4NmRjYmE5YWU2N2E1YzIyNWQxZjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcymttaQ1EA/6uOnT2M6pVxNTbXE 2/08UKYxZl+9LcTZbDwjhq/lDO+9hef0oJbQhXipWyFyxS2C+aME7TvUIGv0vNTt WT7IfidMyZfORsc8oa/2sHNnC04xdedDuyuCWT2boYrWd7qwGkKRyq7cbCnWdv95 XQ0OK9LwiCOXrkL6LQhVubiOS/1zr8CfbqQgOz9LcV6hhhQ6YtnxGBcfibiv8r2P oyHWAfSpqH+149+Lev24hilwBSqzi9a3VvXCIHnrYXvgHWOZb3CgiP/TCX0HtvXf Fa5R6oMVrHlKBiVAswz3HWiqB7BVVhELMA/BnBx8VXFf7k+db7WJZ+M9RQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFK0USYgWqFJjo8o609Y2JAgddsfcMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJiY2JiODVhZTYvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYzNjZDdjMjQtMTJj Yi00YWJjLThmZDItNWUyYmNiYjg1YWU2LzkwY2E5MGE5LWExMGEtNDRlNy04MmI5 LTEzNjU3NDZiYTU1ZS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAI8ytmiuBwDYaEeQfBwp40n5NmGDVinV 6IM5LsdgRA+FdK4eq7mA4gDKpS3pP74Vh17IUY1uzpU6uUijitWOsw1qKc8hOXGL T7amwidEgOIqK38TVtxhnRfpZ2xKkq7/cvWSajmsh0d1wW6evEN5nUdCkBBTCWZj t1EeCIkue0O8yLxduM9NtV5uiDXQK80ovjtVa0Znu57qN0445S+R/Ov+EtZfAHUU WoNu+1G376gja0xFAwX73fDQon6pnTbXL1Hdewd+5HrQze2k1XhTNe1aPH2cqT7r VO6rqJ6J3jXOHWmvBsGxYd5bivzRcYe+VFjBaGky/SAcUSMDJ1TI41E= -----END CERTIFICATE-----Generated at Fri Apr 19 00:32:19 2024 by rpki-client on console-fra.rpki-client.org