Manifest

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft
File:                     manifest.mft (raw, json)
Hash identifier:          VW0L2rAhDZB7xs5uHycuQyqbGfbDd4WygyfuYvkRHZQ=
Subject key identifier:   AB:60:CC:8F:E9:AD:AE:F8:C6:7D:91:68:08:41:8B:83:1C:9C:4A:B5
Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83
Certificate issuer:       /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883
Certificate serial:       23FD8A5D6B50BC5A6DC46E0336D0C89078F394D9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft
Manifest number:          04C6
Signing time:             Sat 31 May 2025 00:01:17 +0000
Manifest this update:     Sat 31 May 2025 00:01:17 +0000
Manifest next update:     Wed 04 Jun 2025 00:01:17 +0000
Files and hashes:         1: 018dea0d-42eb-4d58-8914-636d25ca3b3c.roa (hash: riOOyNDEYuwj8Ad/B7r80kgzDd7bRDg3I9wRX0Ab5eE=)
                          2: 0ae05889-eb6d-414c-88e9-bc293171f532.roa (hash: NAfTE8Vy4ugCWcTtYqJUawh0K+fq4XcwmrJ8LBLwekA=)
                          3: 0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa (hash: PSG4mgNW9IJkVz9wtofv/6/7O8YBEs5vDs/KnjUzeCQ=)
                          4: 0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa (hash: 3yuVVU+T7twHbwh1ZYvwymD1L+BME5bkAFuhBYd/ekA=)
                          5: 205af9d8-3799-4d38-b1fb-da840e362ff1.roa (hash: AbYGZfDday5/lJfjVrxzeULDq1tuqRjD5RoHmAEAA34=)
                          6: 2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa (hash: q7PZWNQWAvVyW2S2ISlRTbVc6w18kxI1on6b2c55x4I=)
                          7: 2720640e-9111-44dd-a0b8-a005f04956a0.roa (hash: sQHCxPbTYwBsLt4o3K/X1ZHE1GJ/1/HDFi5nR5IfaZY=)
                          8: 29fe4454-f7a8-42fd-8c35-77a6d6f8e60f.roa (hash: 2G7r3r4yDfMa9M7zCW9vqd61JHTnTE0H2PPzkuXP/B8=)
                          9: 2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa (hash: UrrzZOzAe9LVQLieYCt9SRZzcZctn6fCqvoJPT8N4rs=)
                          10: 31d36ece-9039-43a2-82a2-03e7d8e7f563.roa (hash: jXCJ7IGO9jVULH5hMfJDBL3ZI6am68b5WeTX5YQOj3o=)
                          11: 33dd31e0-7039-4ff8-aafe-97f7b95b07d0.roa (hash: PYRHNaHyJYH/vhTki7irQFpu2HxtZMWhhy74g4hFuyI=)
                          12: 3523c675-14b3-4d2d-90e1-e439500ecaca.roa (hash: X7IAfya/D/l3Kq60y6kz6peAC1VXLT3ayrznOa4UxDI=)
                          13: 3537691c-1a10-4699-a8a0-4cec50a35534.roa (hash: iQVM5Xt/v98sNN6zSk2ZGSNgeJLEl5FB+iM7ATRkYik=)
                          14: 453c01e0-c333-4283-987c-be2c8b71798c.roa (hash: UOhr589w5BHbr6QXhuRfKvFy2IkuhoR5z0Q9XTTDbg8=)
                          15: 5484d331-446c-4042-9500-dd3002e6a910.roa (hash: LcaQggsitwpEAHIjvv/HrT3JSMxjxlWy5wN+I/4CJtc=)
                          16: 57f8433c-f162-4b10-8527-fbf7cdbb6aab.roa (hash: BRiPcx7wO5ukN0xx46asTl4mb/vQsItP1T6r8efT7PY=)
                          17: 62639af2-026a-4677-b13e-0aeb266620d5.roa (hash: KHbouwNbMkE1fsk49JkyrpKTRE4fYKtVUnZbIAP1qCs=)
                          18: 64aa0337-4cf9-42c7-b236-4cd36e69005e.roa (hash: FGXkTIHzyicfXR+VAFlQ3JOnwn9jQqw6vF2DMb7aTkM=)
                          19: 788c3900-e4d5-439b-b231-3a69b5354901.roa (hash: 4eo63ROcgA1pmMnEtQhPRcxi8V4LXPXEwbwSWrDaZAk=)
                          20: 7cba22a5-dc61-4413-aed2-8fb4cc8e3a49.roa (hash: BQXG5aWUlzuQ96106Amoc2G7mQbLYe+6/8iF3OURXNQ=)
                          21: 7cf17e61-b049-438c-8aaf-2d4714b51857.roa (hash: u7l6j/WFJFAtz6trMUpejO2B+z5TwxPmvjaebVwR878=)
                          22: 8bf311e9-d27f-46fa-8f05-2ed6b176b5b9.roa (hash: UsbTdAc6XEgCkQAlM35x6P7ALD6WyMTXo9KsIMx1FeM=)
                          23: 90ca90a9-a10a-44e7-82b9-1365746ba55e.crl (hash: vEQTR0amvVQUvLOmlJADapd3mK1zwXKcK+Q8q1HAB9I=)
                          24: 977f90e2-d257-4dde-9740-b0391458d8ed.roa (hash: LE41KbBR5iWWZqSVqWUcsccVgWALrXyvWZ+e7BpvDTg=)
                          25: 9a94ee8c-7029-4ffb-af7f-435e161333de.roa (hash: fCdAmCoD2XGi7hkZBe0R5/xxnDGN0Kqn0Nnm4OP1vQM=)
                          26: a3080b31-8684-4ce8-b4e6-33db63d13627.roa (hash: HxCl6qLPnrDiRpaRI/sBdQKNxSplYMxEG5NL2ocKR7U=)
                          27: a3f80673-8b1b-4af1-ae60-e74663f3df69.roa (hash: HL6vgNKtK78lomGWzep0sTIsa+X5gVFJGvMVb6dufwQ=)
                          28: ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa (hash: X462hDwBK5lBWiUq6/4T0hkzR7N6RZOZH2QZ+DZbkxI=)
                          29: b0c38f03-3ced-484e-aa5b-7b06f125ad74.roa (hash: JZVnOGPutuWnbbdl5SdDl+DOnPMfzq4rXoMPg35NaEI=)
                          30: baa1273d-7883-4b5d-8e1c-23ebac490846.roa (hash: vbnKwHGUSqIypDT+YsTFAXzEVcesYFLptNRQWZaWMCw=)
                          31: c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa (hash: LiJNXcCckWYrd/k61K66ZkbVhSuWdyelpRiSpYTTQc8=)
                          32: c759ed47-7de1-4858-b207-c77b1f7d2c35.roa (hash: 0Fl/2CYLyo9rtkz+mnLL49ov2Yk/E3Ek8h8eLQpRKS4=)
                          33: c7b491e4-76ae-4305-8132-a670b41c66fd.roa (hash: LUE5J6RJ7GS1Ye+xmNRzL8lTfjbOUNmUedpP5Ttd8sM=)
                          34: c886fdcc-d9c4-485a-a941-7aa2c7d093e3.roa (hash: igYxd942gTSEptnz2KoNznOeJQLJZmW1W+DsL8kVLio=)
                          35: c9f7dbd2-1c7e-42e8-a7f9-00bd76e70248.roa (hash: pQaTSFTzjfsMI9meGfme+/pl93WRKpzlHRr7I3s2vqI=)
                          36: efdcb43b-2f19-4107-a0a3-c55daccb2714.roa (hash: CRf4mEMVjxT8vUmu3UDlE0f/ZC21vh/ntfkjDXZs3Z4=)
                          37: f54cd21d-ebef-4509-8295-1f7547d0d717.roa (hash: x5QXqEaUk9dyNJYrV6aXR3dkIFxMdWNBYcvHxfBIwsQ=)
                          38: fcc4293c-b24f-4fac-9395-546f748b3b13.roa (hash: L7xD5PSL5BMNXo2/wx+/QGFFZr4otca4B+UElavywhg=)
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 04 Jun 2025 00:01:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            23:fd:8a:5d:6b:50:bc:5a:6d:c4:6e:03:36:d0:c8:90:78:f3:94:d9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883
        Validity
            Not Before: May 31 00:01:17 2025 GMT
            Not After : Jun  4 00:01:17 2025 GMT
        Subject: serialNumber=5bd565d26c65bc317f4cacf260e1d551c9ecbbc94fa43839b787f29efacc8c6e, CN=4257e925-715f-47a2-893e-0e3f97ec7e22
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:46:d3:fd:35:27:d4:51:1f:ed:f5:83:c8:8e:
                    41:4c:91:19:38:d8:77:b7:ab:ee:ab:2f:02:ec:ef:
                    4d:26:20:d1:14:8c:8c:c0:30:94:9c:8d:34:8e:bf:
                    1b:48:e1:cf:1b:58:75:be:42:e7:c8:15:70:4c:19:
                    02:51:dc:60:94:c0:bc:4a:a2:65:55:99:87:bc:0b:
                    dc:9b:0b:e4:84:18:a4:79:d4:96:06:eb:c9:2c:d6:
                    d8:03:12:8a:b7:e7:8e:06:9f:95:ba:f6:2d:02:44:
                    05:c9:1f:89:51:00:1b:44:a9:1a:db:fe:76:b6:6f:
                    07:13:86:16:58:29:64:8e:55:07:b5:68:ce:bb:2e:
                    e6:a1:15:99:b4:39:38:9f:d5:64:45:64:6c:53:f7:
                    40:e4:2d:b9:12:84:52:79:e1:a1:86:c5:08:54:76:
                    f8:84:a1:21:8b:de:e9:a0:a0:3a:46:73:34:88:2d:
                    5e:f0:4d:ba:9b:8f:36:3f:e0:cc:43:fb:9c:23:20:
                    64:2a:34:4b:fa:ac:28:7a:9b:8d:17:d3:1f:c9:77:
                    4f:f9:7f:a0:46:15:ee:42:d3:4b:43:66:4a:6c:32:
                    40:fe:d6:d8:6c:89:27:fd:a9:63:de:36:ad:90:98:
                    80:69:c2:62:13:75:1e:22:aa:d6:54:3a:bd:87:61:
                    d6:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:60:CC:8F:E9:AD:AE:F8:C6:7D:91:68:08:41:8B:83:1C:9C:4A:B5
            X509v3 Authority Key Identifier:
                keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:48:f0:f4:26:04:c9:97:03:8b:0d:0e:6b:2e:d6:47:a5:d3:
         4a:d8:ba:bb:d4:33:2d:d2:cb:13:65:74:a3:e6:20:ac:f8:81:
         f7:52:19:1f:e4:0e:3f:0a:f3:00:1c:ab:07:b7:b3:b8:68:36:
         31:fe:e6:34:8f:fc:84:08:5e:38:0c:e5:a3:0d:9f:56:d0:2a:
         0b:de:8d:62:53:14:c0:6f:b6:7c:4d:db:49:40:a6:34:e2:48:
         c0:fc:38:ce:e2:44:1b:4d:97:96:cd:98:c9:a2:78:9f:55:6d:
         71:9c:41:2b:a8:9f:0b:ee:d4:3d:8c:9b:14:c0:31:64:ef:02:
         fc:fa:29:fd:c9:32:e1:65:c7:95:9f:68:76:d6:ec:9e:b1:82:
         56:d1:84:08:90:20:d0:91:bb:0a:02:e6:86:a3:d3:a7:91:66:
         4e:eb:0b:51:cf:9e:c0:32:7d:09:01:60:fc:06:6e:8b:05:48:
         63:2e:05:65:7b:93:33:44:bf:a5:11:a3:ca:71:18:f7:79:37:
         a1:fb:ee:f4:60:ec:48:33:ab:82:88:c6:9e:6c:93:d4:e7:d7:
         e2:4f:19:ec:2a:92:6c:2c:69:65:b8:e3:22:99:b1:74:4c:6f:
         5a:4a:4e:af:09:fd:24:16:35:2f:8a:5d:ae:17:3b:6a:eb:50:
         41:70:50:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 31 14:33:37 2025 by rpki-client