$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft File: manifest.mft (raw, json) Hash identifier: qwPNr47csbdc9vM5i0IgY/Fd/Ekwr33muzz+KegXtaA= Subject key identifier: E6:FE:82:21:EC:D9:CF:CB:3A:20:8A:5C:F2:98:F0:85:37:20:85:DE Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 7A132C1579856B9151324A0F2D4D7850B658773C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft Manifest number: 0373 Signing time: Fri 22 Nov 2024 00:23:46 +0000 Manifest this update: Fri 22 Nov 2024 00:23:46 +0000 Manifest next update: Tue 26 Nov 2024 00:23:46 +0000 Files and hashes: 1: 192876e6-f42e-4593-9c92-6d3b76ebdac4.roa (hash: 87W6BZSImxKeVsiO8o1ofA4ZKfzc8drDhThG4Bmpwf0=) 2: 1c3d5732-1954-4639-aac1-b9229445deac.roa (hash: QIDH7NlCrd6mEWVtNOxQ1yL1W9jZtvhtEPLuhVDkGPs=) 3: 4708e5f0-c14b-44f3-b781-2e7bad510965.roa (hash: VPZWr6PtWna0rnCz4j3MASHw8mbCfaWShmCWdHiXPpE=) 4: 4d07a3cb-aaaf-4eb6-8cd9-146e8de61f27.roa (hash: PZxJQMRFqhBTbNYqMPppoM+Zn7qtxGYS0oXOQz/w9zM=) 5: 54b92ba8-ed43-4a2c-99b4-5c5cf8c9408a.roa (hash: Cv2nES9hbuVIkGkzWSQ4Cv5GEuO3k+pzZlLAy2bKi+E=) 6: 5defafc1-b226-4bbc-87e7-556b8bee16db.roa (hash: fsEoGx74l+xUmJU1R6OyZ+uQGdbnHBbwqyvDzFAm00w=) 7: 6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl (hash: MDXAANcbwXY7NhjlC3SFcokYP4p8/HXB02dNH4JnRuM=) 8: 751e30fc-3483-4f10-a851-e6330352553c.roa (hash: VLzfa73N45Vx4WGiYgtBUNk9Zfv5Z9elPkgZL0bkFmQ=) 9: 7a18d866-9fb0-44dc-8cfd-5461500736e2.roa (hash: 5ZCZ8d/7WiV3GHIYNtv/cRDTESoby39h4SUTk2FWHg4=) 10: 9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa (hash: ZkUNebZEJIgMmKoeDY4iLUxVbz2MiUW5gWX1k9cXWL4=) 11: abbc8be4-07db-4e6d-8e79-d43813f48041.roa (hash: Vcia1S+RX2NgEinCDybDYAi2ZglIR3O/SlXC3SmMTZg=) 12: befec666-436f-4e82-8b41-4bd8d82646ff.roa (hash: TpjbwagrQJZ7bd2/z3jbLe01GQButlIwxS6F6/ItwUY=) 13: ca0293e8-a412-4e93-bccc-69fffbada891.roa (hash: Q5Ihq9icdLHVIqHRWWNqCPkWyKygRfVihFuT4FNe0mU=) 14: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (hash: OAkrSpeLWi54sMxYczLg0jhIyoywxuM8RQQ50KDfX00=) 15: f9ff7c3b-311a-406b-8de4-c655cfdeea7e.roa (hash: avz/NM3nuL2lJtolGbB5WRLqrzD17shtIWnGZkVhSMo=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:23:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:13:2c:15:79:85:6b:91:51:32:4a:0f:2d:4d:78:50:b6:58:77:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Nov 22 00:23:46 2024 GMT Not After : Nov 26 00:23:46 2024 GMT Subject: serialNumber=afd8a8bb4a1e6cdeafd2564dc116efd7acd71cdd9c38d14ed6d049c0e6f5068d, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:77:26:eb:3c:ed:21:19:83:e6:5c:8a:eb:16: 1f:68:b2:ca:ac:ea:35:5d:eb:eb:d3:9a:2d:20:f6: dd:87:b0:27:63:fe:17:75:fd:89:5e:dc:ce:26:a9: 8c:17:83:01:1b:62:50:12:7d:74:e2:f6:20:90:3c: 20:16:28:19:ac:66:fd:0c:09:ad:7f:ae:6c:a8:51: 0f:3e:78:ef:11:05:fd:66:62:d4:7c:ca:f6:d0:42: 8d:e9:bc:77:52:c6:0c:66:74:21:fc:6d:70:1d:12: 78:93:71:49:f3:fb:8a:8a:77:27:9f:73:c7:df:71: 78:07:ac:53:5e:df:3b:5c:84:12:f9:2d:aa:ef:ef: 6b:e7:77:cb:e4:4f:01:a7:11:71:e6:4b:5a:31:4d: 2a:0a:92:10:4c:0a:9a:a9:1e:8c:a7:bc:2d:bc:ea: c2:f2:dd:4e:09:71:d2:ee:98:06:32:73:f2:e7:fa: ad:b4:88:2e:b5:87:81:2b:67:9b:ba:51:9a:87:12: 4e:12:c2:7c:a0:27:8e:20:a9:2e:8e:30:3f:f7:57: 5f:af:96:68:f3:78:6d:c4:69:25:0e:b5:3a:9f:a4: 03:97:92:a5:7b:84:82:4a:a5:fe:6d:96:47:e8:ed: 1d:01:d5:d6:23:1f:40:b9:e0:f8:1e:a6:11:a4:04: 23:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:FE:82:21:EC:D9:CF:CB:3A:20:8A:5C:F2:98:F0:85:37:20:85:DE X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:c2:95:ca:12:30:01:8e:4c:1b:39:25:1e:22:49:9f:f5:84: 81:6e:af:4e:dd:68:57:ec:c2:46:6f:ba:06:3f:81:60:53:88: 8c:5f:9a:dd:90:9f:93:38:f6:f0:92:b3:9d:3e:64:0f:af:e1: d1:2e:96:85:42:04:c2:eb:29:32:e9:73:27:d2:23:84:2a:7a: 58:df:ea:b4:0c:63:62:12:7f:85:59:70:48:cc:04:19:bc:29: 46:5c:46:fc:fa:3e:2c:20:90:97:d1:9b:73:62:89:02:4c:68: 6c:5d:e9:3e:fc:89:75:ed:e3:24:77:13:24:d5:74:6b:b7:98: 14:f2:4a:6f:e5:71:1b:7d:7c:bc:d3:d2:74:65:46:b4:5d:61: 6d:f5:ca:d2:30:94:d4:52:6c:74:f9:f8:bd:fa:20:00:af:99: af:16:88:09:7a:1b:2e:9d:e0:56:36:8c:df:96:f7:a8:ad:b7: 07:71:68:b8:72:d7:b7:64:0b:d3:55:b9:c5:2d:87:09:0f:5e: a4:a8:e7:4a:ac:98:d8:7b:be:50:99:6a:45:9d:06:a0:40:e4: 9d:45:18:a9:3e:db:da:ab:b3:a3:61:5f:c5:47:6d:28:de:75: 3c:4d:9d:a5:42:35:a4:6e:e2:25:89:29:59:01:1b:fc:e0:50: 87:28:5b:0f -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUehMsFXmFa5FRMkoPLU14ULZYdzwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI0MTEyMjAwMjM0NloX DTI0MTEyNjAwMjM0NlowejFJMEcGA1UEBRNAYWZkOGE4YmI0YTFlNmNkZWFmZDI1 NjRkYzExNmVmZDdhY2Q3MWNkZDljMzhkMTRlZDZkMDQ5YzBlNmY1MDY4ZDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Hcm6zztIRmD5lyK6xYfaLLKrOo1 Xevr05otIPbdh7AnY/4Xdf2JXtzOJqmMF4MBG2JQEn104vYgkDwgFigZrGb9DAmt f65sqFEPPnjvEQX9ZmLUfMr20EKN6bx3UsYMZnQh/G1wHRJ4k3FJ8/uKincnn3PH 33F4B6xTXt87XIQS+S2q7+9r53fL5E8BpxFx5ktaMU0qCpIQTAqaqR6Mp7wtvOrC 8t1OCXHS7pgGMnPy5/qttIgutYeBK2ebulGahxJOEsJ8oCeOIKkujjA/91dfr5Zo 83htxGklDrU6n6QDl5Kle4SCSqX+bZZH6O0dAdXWIx9AueD4HqYRpAQjdwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFOb+giHs2c/LOiCKXPKY8IU3IIXeMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4ZTVkYmQyMTkvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZGI5YTM3MmEtMDli Yy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5LzZlY2IzY2NhLTQ4OGQtNDNiOS1hNTBi LWQzN2MwYzU1YTllMS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBABTClcoSMAGOTBs5JR4iSZ/1hIFur07d aFfswkZvugY/gWBTiIxfmt2Qn5M49vCSs50+ZA+v4dEuloVCBMLrKTLpcyfSI4Qq eljf6rQMY2ISf4VZcEjMBBm8KUZcRvz6PiwgkJfRm3NiiQJMaGxd6T78iXXt4yR3 EyTVdGu3mBTySm/lcRt9fLzT0nRlRrRdYW31ytIwlNRSbHT5+L36IACvma8WiAl6 Gy6d4FY2jN+W96ittwdxaLhy17dkC9NVucUthwkPXqSo50qsmNh7vlCZakWdBqBA 5J1FGKk+29qrs6NhX8VHbSjedTxNnaVCNaRu4iWJKVkBG/zgUIcoWw8= -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:50 2024 by rpki-client on console-ams.rpki-client.org