$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft File: manifest.mft (raw, json) Hash identifier: 2Upo1RuI144jcZnX/+IfzAuXBpAvEIJy5ZtdxlJlCmc= Subject key identifier: B9:CA:32:29:30:E6:7D:CB:6E:5C:2A:3D:8A:C9:AD:B3:8B:3D:75:1D Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 2CEF85AD16EB3529CFA44E9922FC3D18EEFEAD03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft Manifest number: 043D Signing time: Fri 30 May 2025 15:01:47 +0000 Manifest this update: Fri 30 May 2025 15:01:47 +0000 Manifest next update: Tue 03 Jun 2025 15:01:47 +0000 Files and hashes: 1: 05bc8dbb-c70a-48da-b45b-4448364614ff.roa (hash: 9gH8wgoLP0o3r6UcKXxsYz0d1ZlrF+DH3kezJUbsvSo=) 2: 0bf15d3f-c546-4bb6-a764-82165c384d37.roa (hash: nQwsnph8MUR8NwO0tn+sYCSId1c5VReJqwOHRx79NK4=) 3: 0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa (hash: a09cr/WP4CdvdXzRTRx6IVRc43tXwFWqFcmeMUh8CSc=) 4: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (hash: UpYdy7MotUGRV+qlsRZi3SNXIbMEdXdNZy0tqMHMJK0=) 5: 3407e5b6-a83d-4668-898f-fdbb23092502.roa (hash: 7f76Hjx9Jo5sbH8kwC35W5zBnkstUM3B/+chvTNeyno=) 6: 3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa (hash: LFytUjqtp/eYN17Xzda6BpJ1gpiqAA0rUosvQbGpvs4=) 7: 48a67156-122e-41d4-a2a8-8046cc5ecc41.roa (hash: G4gWMQb95Et2eVCT3ixoxBHCElfSWx1Iki9cwjC4s28=) 8: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (hash: XagZsCoZZ3VEY6SDa3Pq6VeyPwY5cXhud+L4e/Q0Jvc=) 9: 6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl (hash: qQ1s/+sZtrZVfoB2es+uQrXlae5Y7qvgMB7UXMi3/NQ=) 10: 74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa (hash: 3NuGWOh4jKoQsWCnRhmyJP4MJZ/9sIy6VqWvv+4QnK0=) 11: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (hash: MgAg4C/OxhpbSrwOflaEqzL6kjsF4LiwUp6r/CBbpYc=) 12: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (hash: BBIb6mPK676MVLQ9TVAVVRyEs88311qazeBdTRVoy8A=) 13: 9b59fbe4-f242-4dbf-9964-15048c3da996.roa (hash: AbfCmBnyVYp2yprf9QaYlasDAmW74EQA1NI5ExaXcT8=) 14: 9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa (hash: jCsEYIlHF3mqSGL2fxk32R6bu430A+nu75eBaVc6XLU=) 15: a78b90df-233b-4ec6-89d2-de27ac2dc044.roa (hash: /otJ70NhW7BF22xSArd9caU3Q4gBuE2kAylz6rWAWrg=) 16: b3ba338e-4843-454b-abe5-65f09756225a.roa (hash: 5+kWv1hgs9HIdHO4S88MYMRpQXhk0/VPd9Pv0w8buIo=) 17: c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa (hash: MBBURHoJjiep+ngnHEbiXVRyVNgTtuyKd5xlhKmwbz8=) 18: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (hash: xDFKFWmyCl/TfAjq+rf2buTKeB89IHJYYw2ZcxEJJ8c=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 15:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:ef:85:ad:16:eb:35:29:cf:a4:4e:99:22:fc:3d:18:ee:fe:ad:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 30 15:01:47 2025 GMT Not After : Jun 3 15:01:47 2025 GMT Subject: serialNumber=f13ff77f5825297824a70db5b459ca992fe9fce5d749f008c84584be7149bd58, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:93:d7:2f:c7:2f:0f:90:d8:3a:36:31:bc:26: 5f:17:5d:fd:e2:81:31:f6:a3:4c:98:f2:3d:e0:0a: 36:c8:7e:60:37:ea:37:e8:55:a9:95:d3:99:7e:a9: d3:de:c4:53:ed:a1:05:7c:b4:98:6b:41:30:22:be: 4f:5f:ee:93:70:db:5e:51:85:03:0b:86:31:2a:dc: 4e:e4:83:b5:f1:04:e6:05:22:5b:53:07:c3:c4:b9: 5e:96:75:be:2b:a8:9e:7a:4b:a6:83:50:47:1e:5a: cc:8e:d6:62:22:f6:02:d1:3e:05:9c:a4:58:dd:a7: da:ed:27:38:13:35:b7:64:eb:53:d6:7c:5f:fa:e3: d5:33:9e:77:07:c3:0b:89:68:5d:84:04:49:aa:63: 39:7f:63:1a:96:fb:ba:31:76:c9:c7:68:2b:50:9b: dd:2b:91:89:f6:3c:13:4e:34:6f:12:52:35:5d:bb: f2:0d:f1:02:d1:ca:c7:77:bc:e8:a3:3e:f5:de:4f: 7b:27:58:f5:6e:93:ad:71:a9:f7:c5:f9:40:89:4c: 4a:ba:ff:c4:a4:74:22:44:b0:df:ff:81:f4:92:ee: 0c:70:61:31:d5:a6:7b:d1:99:3c:59:3d:42:df:23: b8:cd:f2:89:06:18:27:50:3c:be:2f:87:36:0b:af: 88:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:CA:32:29:30:E6:7D:CB:6E:5C:2A:3D:8A:C9:AD:B3:8B:3D:75:1D X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:a1:0f:2d:df:7c:9e:a7:b6:8c:bd:16:26:60:c5:d4:01:5c: 9f:3c:67:9f:77:76:3f:96:0b:82:37:97:5a:a3:83:85:ec:23: e2:6e:f3:e5:54:9f:ed:3d:79:1a:b0:45:1a:11:a9:2e:50:e4: 32:1e:6d:3f:ea:de:34:03:73:f0:68:85:bc:1a:e1:bf:1f:0d: 56:37:bf:21:b8:78:98:b1:fc:2c:11:22:66:10:7f:61:71:88: 64:00:92:6d:8c:cb:f1:24:56:b0:8b:86:75:da:19:ca:c2:9e: 66:e8:c7:7d:1c:ff:72:43:53:f8:d6:31:cc:e2:ac:cf:56:18: e4:35:cb:ae:b9:b1:74:5a:38:8f:a1:ac:60:28:a2:82:83:71: d7:9e:a5:ae:38:a7:31:4e:8c:5b:01:3a:b7:dd:cc:27:55:85: ee:47:a2:48:ca:61:67:56:9d:e8:64:66:be:7c:e2:8d:d5:13: cf:84:3a:c8:b1:c0:82:1a:d4:7a:45:ef:3e:ca:6b:c9:ba:fc: e5:42:77:7a:b7:4c:b5:7f:de:00:56:18:a9:30:89:a7:f0:60: 4c:77:99:eb:f9:eb:65:ad:a1:43:57:05:e7:5b:b8:c8:9a:dc: 87:02:27:ca:48:3e:39:9e:c1:ce:73:38:87:65:43:0a:f4:f9: 77:18:13:86 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIULO+FrRbrNSnPpE6ZIvw9GO7+rQMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDUzMDE1MDE0N1oX DTI1MDYwMzE1MDE0N1owejFJMEcGA1UEBRNAZjEzZmY3N2Y1ODI1Mjk3ODI0YTcw ZGI1YjQ1OWNhOTkyZmU5ZmNlNWQ3NDlmMDA4Yzg0NTg0YmU3MTQ5YmQ1ODEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAupPXL8cvD5DYOjYxvCZfF1394oEx 9qNMmPI94Ao2yH5gN+o36FWpldOZfqnT3sRT7aEFfLSYa0EwIr5PX+6TcNteUYUD C4YxKtxO5IO18QTmBSJbUwfDxLlelnW+K6ieekumg1BHHlrMjtZiIvYC0T4FnKRY 3afa7Sc4EzW3ZOtT1nxf+uPVM553B8MLiWhdhARJqmM5f2Malvu6MXbJx2grUJvd K5GJ9jwTTjRvElI1XbvyDfEC0crHd7zooz713k97J1j1bpOtcan3xflAiUxKuv/E pHQiRLDf/4H0ku4McGEx1aZ70Zk8WT1C3yO4zfKJBhgnUDy+L4c2C6+IcwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFLnKMikw5n3LblwqPYrJrbOLPXUdMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4ZTVkYmQyMTkvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZGI5YTM3MmEtMDli Yy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5LzZlY2IzY2NhLTQ4OGQtNDNiOS1hNTBi LWQzN2MwYzU1YTllMS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBABqhDy3ffJ6ntoy9FiZgxdQBXJ88Z593 dj+WC4I3l1qjg4XsI+Ju8+VUn+09eRqwRRoRqS5Q5DIebT/q3jQDc/Bohbwa4b8f DVY3vyG4eJix/CwRImYQf2FxiGQAkm2My/EkVrCLhnXaGcrCnmbox30c/3JDU/jW MczirM9WGOQ1y665sXRaOI+hrGAoooKDcdeepa44pzFOjFsBOrfdzCdVhe5HokjK YWdWnehkZr584o3VE8+EOsixwIIa1HpF7z7Ka8m6/OVCd3q3TLV/3gBWGKkwiafw YEx3mev562WtoUNXBedbuMia3IcCJ8pIPjmewc5zOIdlQwr0+XcYE4Y= -----END CERTIFICATE-----Generated at Sat May 31 14:33:36 2025 by rpki-client