Manifest

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft
File:                     manifest.mft (raw, json)
Hash identifier:          e3bQnqoP1kdoht1BdqddbEuDNMFMl53E3Nm81wqVhh0=
Subject key identifier:   E8:77:C3:D2:53:25:8A:A6:D3:AD:42:9B:20:53:74:A2:3F:0E:CE:EE
Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83
Certificate issuer:       /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883
Certificate serial:       55466FC6EDD74FE4CECC575C9B203959F6870EB6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft
Manifest number:          0666
Signing time:             Wed 01 Jul 2026 00:09:53 +0000
Manifest this update:     Wed 01 Jul 2026 00:09:53 +0000
Manifest next update:     Sun 05 Jul 2026 00:09:53 +0000
Files and hashes:         1: 018dea0d-42eb-4d58-8914-636d25ca3b3c.roa (hash: zn6GS3tpGK8t9xsZPmz1Hb01Ff9Eiva2e/Won/sOYG0=)
                          2: 0ae05889-eb6d-414c-88e9-bc293171f532.roa (hash: O7xERBWmKGXiU3+Lu63ccz7zcgN006rbbs19IE8sqqE=)
                          3: 0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa (hash: MYMWnZHcSyBQFvPmaCu+Nbe5VqiKpVOfSFAh3Pc1hEw=)
                          4: 0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa (hash: 0B3l9Xay6gxTU2+2IFo805mCCbbk2AolCgkE+VadgcI=)
                          5: 205af9d8-3799-4d38-b1fb-da840e362ff1.roa (hash: Mb3Bo5tEIGpk3RrWV/UIHa6zO28sCM7675b9ww639sg=)
                          6: 2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa (hash: ICAh72ItVDsjfPO/1ox9zrzy/3GjSdpEeafNEMjTlAs=)
                          7: 2720640e-9111-44dd-a0b8-a005f04956a0.roa (hash: RJVkCDsrMa5Dn2DLEROSRhJXD5W2Gzdukwsq//igmN4=)
                          8: 29fe4454-f7a8-42fd-8c35-77a6d6f8e60f.roa (hash: N8pWFbURiPQly1H8nJTYYtgbVQ+zSNSnrHLvoVci+1c=)
                          9: 2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa (hash: RN3gq0d5l8UO2f8dM2+nDB2TFpurV3xuSYqwS3edWWI=)
                          10: 31d36ece-9039-43a2-82a2-03e7d8e7f563.roa (hash: Yp8wVL94ej6AwYCuCvP+aOw3JMLFwpWAHsjszuICrIs=)
                          11: 33dd31e0-7039-4ff8-aafe-97f7b95b07d0.roa (hash: MHfuOnXqfkSyFmQ9XZIPzObkIorFSudF25sH5i1orM0=)
                          12: 3523c675-14b3-4d2d-90e1-e439500ecaca.roa (hash: 0BO79U/rK8kyMwYsE401FS1qHwMWRe9+oCXwSGV4jE8=)
                          13: 3537691c-1a10-4699-a8a0-4cec50a35534.roa (hash: 4o3mEKe38RTaHd8O/QcDBvPoPLHZkKqn1wLn/spjgBs=)
                          14: 453c01e0-c333-4283-987c-be2c8b71798c.roa (hash: 2w9SK0lF0eHsz3p2d385EXBDGKDxWHlLsRHLMKkUY/E=)
                          15: 5484d331-446c-4042-9500-dd3002e6a910.roa (hash: 98zA4UOzUXiN7z2KCXAAWwp9L5f4c8JIK01F6/kJdmo=)
                          16: 57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa (hash: 3Gu7CdIO9HSM3O5suQqBktFbIDrJbLlLI/BaxUz6BVU=)
                          17: 62639af2-026a-4677-b13e-0aeb266620d5.roa (hash: VAlAznFadTg6ulCXiVPFlMgIv07sNYoyGor/rwJzOpg=)
                          18: 64aa0337-4cf9-42c7-b236-4cd36e69005e.roa (hash: eq2nnJ+Cm96Jv0auvF+VIFRama3wPCkeRgJGSIg4CxM=)
                          19: 788c3900-e4d5-439b-b231-3a69b5354901.roa (hash: +Vd4GeFgLflmvtu8CpQBsNjifV8tOjci4FF+5xKZ/Fo=)
                          20: 7cba22a5-dc61-4413-aed2-8fb4cc8e3a49.roa (hash: OvNcDNAgvAvm0Cc9R6Pd/p7Hdvf0pBAYiRkiQJo3sHE=)
                          21: 7cf17e61-b049-438c-8aaf-2d4714b51857.roa (hash: D71mPCSCdDc5l/ouJ/zsp/dcO4O3FCtqHc5HEaPtqtI=)
                          22: 8bf311e9-d27f-46fa-8f05-2ed6b176b5b9.roa (hash: +ZuzKW34Pgl/oRT6fNdBUs8wZfWDJGNwmfxXvgHQGzM=)
                          23: 90ca90a9-a10a-44e7-82b9-1365746ba55e.crl (hash: QBrpec3cV5rCxWYBWUgA8G6sAGxTOWKkPxW+Xt3kr7c=)
                          24: 977f90e2-d257-4dde-9740-b0391458d8ed.roa (hash: PBJqDWFN+HylSPqXi/37A0gU1V9ejp8qvLgo6Ar+OPo=)
                          25: 9a94ee8c-7029-4ffb-af7f-435e161333de.roa (hash: /CQ1H0BIofIjrcH/Wi5CsiNEKnF4h8J9IhsppsxHsQs=)
                          26: a3080b31-8684-4ce8-b4e6-33db63d13627.roa (hash: W1sQ4LIriRjTIQmtOJrJiJPb2b2HUs+/5b786m7aFcA=)
                          27: a3f80673-8b1b-4af1-ae60-e74663f3df69.roa (hash: ZIdLonqGtREsWpmc/YKycfyLm9gBDbtl8teHAE1KtPY=)
                          28: ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa (hash: wAZ2xLfBS0TNfgTxdfGt4+TvDAZi/RAJVlGyotQ9It0=)
                          29: b0c38f03-3ced-484e-aa5b-7b06f125ad74.roa (hash: bEDP7S/ywUipJKWAzBTd34AFBXtmjt92LipoOMsISMA=)
                          30: baa1273d-7883-4b5d-8e1c-23ebac490846.roa (hash: nDuzOluVy8LvQSrfMojqgcTxqQ7tEac+1uaXDnEa0e0=)
                          31: c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa (hash: zjpqXMG62mILyCYWLWntVNUXaDpg0TIux3Khv+u9/do=)
                          32: c759ed47-7de1-4858-b207-c77b1f7d2c35.roa (hash: v1mQhaNBHeRZZGpSLqsBO85ZyIKKsq5mINVtSm5DapU=)
                          33: c7b491e4-76ae-4305-8132-a670b41c66fd.roa (hash: qpdxOV6ItKd2QxUp3mnqw7kb5w/qXFoRJMq9eMIZoeg=)
                          34: c886fdcc-d9c4-485a-a941-7aa2c7d093e3.roa (hash: qFkqpuay3U75h1O1Yl1Z8EfngEyMcBhqskzcvMxVNbA=)
                          35: c9f7dbd2-1c7e-42e8-a7f9-00bd76e70248.roa (hash: 9BOc5YYf+ZKUDQPWPgWHSGVjfNeq2DFw0qON9h/uqWU=)
                          36: efdcb43b-2f19-4107-a0a3-c55daccb2714.roa (hash: 4OSggW8aTFyJIJsH6t1PDMpsDJ6501ZzAuCusnwpciE=)
                          37: f54cd21d-ebef-4509-8295-1f7547d0d717.roa (hash: UKHmfGmNYdP+Ue5qgCMktCjXBkL9NYKmKPyVWzMcgZI=)
                          38: fcc4293c-b24f-4fac-9395-546f748b3b13.roa (hash: 3YP/58D4NOdzhWRXbC9vAJOsievECq/irINvg3eRq08=)
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 05 Jul 2026 00:09:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            55:46:6f:c6:ed:d7:4f:e4:ce:cc:57:5c:9b:20:39:59:f6:87:0e:b6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883
        Validity
            Not Before: Jul  1 00:09:53 2026 GMT
            Not After : Jul  5 00:09:53 2026 GMT
        Subject: serialNumber=395a56e625cb8982102899fa17cdcbbc92463395c8e4e5d38b0a0ab4b9cc5284, CN=4257e925-715f-47a2-893e-0e3f97ec7e22
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:89:54:ff:bd:0b:f1:56:c1:f2:76:34:08:6c:
                    92:07:dc:ed:2c:b6:35:83:fd:bd:6d:04:f9:f5:bf:
                    15:2b:d5:16:24:f0:05:a1:6d:23:38:59:89:2f:0c:
                    02:70:2c:b1:29:ed:06:d8:37:40:ca:09:36:e3:d6:
                    ed:2a:3f:c9:f3:f2:6e:86:56:08:47:16:7e:f1:32:
                    3d:32:af:09:b3:99:80:0f:1c:ee:36:06:4a:40:b8:
                    e4:d6:7f:e3:0c:40:1d:3f:af:fa:39:7d:e1:b9:f5:
                    9f:a5:53:58:25:f5:5a:2b:41:dc:38:71:bb:f5:28:
                    09:e3:7e:01:e0:58:41:bf:01:ea:38:79:27:e7:43:
                    f0:de:6d:10:86:6a:6b:a1:31:cc:7d:cc:9f:41:e4:
                    dd:7f:e4:e4:ea:c8:59:98:c2:1f:74:c6:b0:0e:0e:
                    5d:10:53:22:fb:39:0d:3e:d4:8c:84:58:6d:d3:bb:
                    d8:11:b8:95:96:d0:83:77:9c:4b:49:46:d9:ad:80:
                    b8:98:6c:77:80:f5:57:b6:fa:3d:47:cd:92:83:94:
                    0a:6b:a0:3e:8a:a8:3b:b8:f3:70:e0:f5:13:f5:74:
                    52:ca:b5:65:71:2a:d5:dc:c9:f5:5b:ac:24:5d:c5:
                    7d:19:85:6e:f0:28:ef:bb:58:66:ce:43:80:8d:0e:
                    3a:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:77:C3:D2:53:25:8A:A6:D3:AD:42:9B:20:53:74:A2:3F:0E:CE:EE
            X509v3 Authority Key Identifier:
                keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         99:3d:63:be:eb:c5:8c:4e:83:37:3d:42:94:b7:36:e0:42:ed:
         d3:99:16:56:a1:9d:cc:1b:71:d3:db:b6:d1:a1:70:fa:42:98:
         5a:f6:9d:4c:f8:51:1e:20:ac:88:10:85:85:28:9c:c4:d3:84:
         c9:a1:6d:d0:c4:e4:e7:31:61:ae:35:24:f8:74:74:c5:1e:76:
         bd:04:c8:96:03:7a:ee:b0:ce:7e:9a:b5:4d:ec:ee:c2:56:1c:
         00:5f:3d:7a:2d:60:08:73:c6:17:41:5d:1d:9f:ea:21:5c:75:
         a3:f5:97:38:81:15:d4:69:bb:37:77:38:2e:9f:59:3c:07:55:
         f2:d5:bd:55:db:87:f4:ce:36:e2:ae:6b:e8:b5:37:fa:d7:d4:
         6c:84:79:f7:a2:c2:f2:52:8c:b2:44:1a:47:e9:3e:3b:fd:5d:
         3f:f3:b1:97:8c:1b:51:f8:20:39:6a:05:58:c6:f7:9e:84:c2:
         10:85:c9:7f:dc:c9:4f:92:29:f0:4e:29:26:f0:87:86:0e:00:
         cd:f3:38:55:a5:5e:fb:64:3f:36:3e:73:d7:c8:45:22:a6:06:
         7e:08:fc:89:c4:78:fd:2d:75:12:ff:ac:c3:64:a5:73:a6:00:
         a3:b0:66:86:be:71:bf:6d:e7:6d:9f:40:41:23:66:1e:08:59:
         6d:1a:c8:13
-----BEGIN CERTIFICATE-----
MIIFlTCCBH2gAwIBAgIUVUZvxu3XT+TOzFdcmyA5WfaHDrYwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz
NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDcwMTAwMDk1M1oX
DTI2MDcwNTAwMDk1M1owejFJMEcGA1UEBRNAMzk1YTU2ZTYyNWNiODk4MjEwMjg5
OWZhMTdjZGNiYmM5MjQ2MzM5NWM4ZTRlNWQzOGIwYTBhYjRiOWNjNTI4NDEtMCsG
A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwolU/70L8VbB8nY0CGySB9ztLLY1
g/29bQT59b8VK9UWJPAFoW0jOFmJLwwCcCyxKe0G2DdAygk249btKj/J8/JuhlYI
RxZ+8TI9Mq8Js5mADxzuNgZKQLjk1n/jDEAdP6/6OX3hufWfpVNYJfVaK0HcOHG7
9SgJ434B4FhBvwHqOHkn50Pw3m0QhmproTHMfcyfQeTdf+Tk6shZmMIfdMawDg5d
EFMi+zkNPtSMhFht07vYEbiVltCDd5xLSUbZrYC4mGx3gPVXtvo9R82Sg5QKa6A+
iqg7uPNw4PUT9XRSyrVlcSrV3Mn1W6wkXcV9GYVu8Cjvu1hmzkOAjQ46PwIDAQAB
o4ICQTCCAj0wHQYDVR0OBBYEFOh3w9JTJYqm061CmyBTdKI/Ds7uMB8GA1UdIwQY
MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO
MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF
BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t
L3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJiY2JiODVhZTYvbWFu
aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y
c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYzNjZDdjMjQtMTJj
Yi00YWJjLThmZDItNWUyYmNiYjg1YWU2LzkwY2E5MGE5LWExMGEtNDRlNy04MmI5
LTEzNjU3NDZiYTU1ZS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw
BKACBQAwDQYJKoZIhvcNAQELBQADggEBAJk9Y77rxYxOgzc9QpS3NuBC7dOZFlah
ncwbcdPbttGhcPpCmFr2nUz4UR4grIgQhYUonMTThMmhbdDE5OcxYa41JPh0dMUe
dr0EyJYDeu6wzn6atU3s7sJWHABfPXotYAhzxhdBXR2f6iFcdaP1lziBFdRpuzd3
OC6fWTwHVfLVvVXbh/TONuKua+i1N/rX1GyEefeiwvJSjLJEGkfpPjv9XT/zsZeM
G1H4IDlqBVjG956EwhCFyX/cyU+SKfBOKSbwh4YOAM3zOFWlXvtkPzY+c9fIRSKm
Bn4I/InEeP0tdRL/rMNkpXOmAKOwZoa+cb9t522fQEEjZh4IWW0ayBM=
-----END CERTIFICATE-----
Generated at Wed Jul 1 12:58:27 2026 by rpki-client