$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft File: manifest.mft (raw, json) Hash identifier: gTdTm4P/exEMT96hScTDnP4DqiwPTgtnL3BtbO44y8A= Subject key identifier: 09:57:B9:18:CA:93:51:B0:E4:0B:5E:B6:56:DA:FC:8E:CE:49:23:62 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 34266A81ED671768E2462A2D70BD64DF93629BDC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft Manifest number: 0299 Signing time: Sun 28 Apr 2024 00:02:14 +0000 Manifest this update: Sun 28 Apr 2024 00:02:14 +0000 Manifest next update: Thu 02 May 2024 00:02:14 +0000 Files and hashes: 1: 192876e6-f42e-4593-9c92-6d3b76ebdac4.roa (hash: rmntBLR4izHGXwFXnGLytgRDwzufy4BRZXY6wUHMtg4=) 2: 1c3d5732-1954-4639-aac1-b9229445deac.roa (hash: lFuHmDs7KYsdykUp/pQKk30wf9HuxlweuxsB+Va09sw=) 3: 4708e5f0-c14b-44f3-b781-2e7bad510965.roa (hash: LDtLRwdaGWrairaVrQVZj+Y2K8/lCSgrCTfafSQQu/I=) 4: 4d07a3cb-aaaf-4eb6-8cd9-146e8de61f27.roa (hash: jTsQp6WV6OHD1Qf0whcnkOTRLAjILFYYbrOmqvOw0ic=) 5: 54b92ba8-ed43-4a2c-99b4-5c5cf8c9408a.roa (hash: AZCDPmPKJg4gAh+UnbENJy30LQ3P/3kLp6vTvIaZYAc=) 6: 5defafc1-b226-4bbc-87e7-556b8bee16db.roa (hash: Nh0GwH91SLNILAe08crs2AAWRPu+SZ1e/HLZJR7Acbo=) 7: 6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl (hash: HjU5Q+VjbIwlSHTrQkkw+PFWSRzH1u9C1xrOkemJEE0=) 8: 751e30fc-3483-4f10-a851-e6330352553c.roa (hash: xUnwNZVgDmLvBXAaR7Ox/Xc/bIXORs4CJ4wsr+FFIAE=) 9: 7a18d866-9fb0-44dc-8cfd-5461500736e2.roa (hash: beqSvN3cgsy7+ZWeqUVDIcv0osD/6ahd/CWqQbZYwds=) 10: 9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa (hash: 7Ty3+GwkXvmfbwqMAyfRstyxhPzlq4zTN1KFv4E+hRo=) 11: abbc8be4-07db-4e6d-8e79-d43813f48041.roa (hash: oygcbTHf5ADQTJXgreoLGo8ZG0qtvEmQde1QQmSfZu0=) 12: befec666-436f-4e82-8b41-4bd8d82646ff.roa (hash: CF7CQPbe15nxJjd4PsL19NiOOpbiEtpcQPFul06bp6E=) 13: ca0293e8-a412-4e93-bccc-69fffbada891.roa (hash: Un2EeTEr+nHvzbJxsRugQYqELdyfUn9pYoVxjew4H3I=) 14: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (hash: JkiqsbiaWXIWor5LfSZG+xaFoN+wR397fOAUX0r8LxQ=) 15: f9ff7c3b-311a-406b-8de4-c655cfdeea7e.roa (hash: srm+5M0AfN9VO3Yjg2PUkg0/W8H/brXmQU2SPScXezc=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 00:02:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:26:6a:81:ed:67:17:68:e2:46:2a:2d:70:bd:64:df:93:62:9b:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Apr 28 00:02:14 2024 GMT Not After : May 2 00:02:14 2024 GMT Subject: serialNumber=86c04f09506896d8edfb081bd80dfb499114746dcd1cf42202613df891677ba1, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4d:0e:cc:e9:4d:06:f6:b8:cb:98:b7:b3:89: 61:11:e7:4b:52:91:ff:27:2f:63:d5:a0:82:20:62: cf:5b:46:01:8e:20:bb:88:7f:94:67:40:67:c9:ce: 45:c0:5f:ff:01:84:a6:09:d8:a5:9e:50:25:4a:29: 13:92:b5:a3:ed:c7:f4:36:ae:38:9c:da:67:a7:9d: 40:ae:7c:6a:42:38:4a:07:58:13:94:98:91:31:43: 8a:4d:9a:79:19:64:50:48:93:30:1b:29:6a:55:fb: 76:9a:9b:4e:b6:c8:f3:e6:d3:57:95:00:dd:6d:cf: 0d:eb:1f:84:67:45:0a:6d:c4:20:4a:78:13:31:34: 5b:dc:20:ef:b7:2a:b9:ac:e8:60:a4:42:72:cc:c9: 87:67:d5:d0:46:c1:ab:63:ae:b6:89:ea:fd:7c:4c: 04:4e:50:30:b4:67:35:6a:fe:7b:eb:af:30:95:ee: 2e:6f:34:0c:15:3b:67:28:04:9a:3e:cd:c1:32:2f: 87:02:59:a4:bb:0b:e1:33:2f:0d:bb:51:aa:c8:d4: 08:43:9e:ab:a7:34:f3:00:d1:a9:f4:f9:53:14:be: fe:af:f4:6d:2e:32:e3:46:9b:28:ee:7e:cc:40:a1: 11:88:17:f8:1c:fa:1a:61:c4:7b:9f:6b:2b:16:fe: 7c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:57:B9:18:CA:93:51:B0:E4:0B:5E:B6:56:DA:FC:8E:CE:49:23:62 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:5b:65:08:6f:34:61:a2:52:16:08:ad:06:bf:0d:ca:ac:db: c3:9a:44:a9:5e:70:a5:a6:ed:e2:8b:31:54:9e:e4:81:54:96: 33:37:38:fc:26:e9:55:62:2f:52:c3:d8:ce:aa:cf:d0:84:45: ab:1e:ba:2b:d3:7f:e4:3a:7c:db:f5:0d:1f:6e:df:9f:9a:43: 3e:a9:2f:8e:58:b2:ed:44:cd:0b:fb:ba:0c:88:71:23:7f:75: b3:7a:87:bc:2f:bf:34:1f:9f:dd:50:eb:5c:3c:59:bd:53:8c: c9:19:20:31:45:a3:c6:51:13:6e:69:4c:c9:4e:23:e9:7c:44: b0:e1:64:72:7d:e9:52:62:22:7a:06:6c:8c:89:74:a0:23:bc: 12:ea:39:99:81:f2:65:b6:ba:19:21:20:21:6a:bf:d7:bb:c6: 5d:f8:0e:b0:c4:fb:8f:10:56:12:ae:be:e0:2d:f9:f4:bd:00: 5f:cd:03:40:78:90:e1:94:41:31:58:a8:7a:fb:97:41:d7:8c: be:18:97:3a:4c:4e:9d:be:ef:ef:ba:ca:19:dd:d8:5e:94:7c: 8d:df:af:60:d3:7d:f9:8c:7a:0c:80:4b:db:7b:a9:f4:15:9a: 32:38:51:16:5d:5c:e5:ea:b0:c4:60:e5:94:d8:6f:71:57:ab: 91:e6:90:ee -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUNCZqge1nF2jiRiotcL1k35Nim9wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI0MDQyODAwMDIxNFoX DTI0MDUwMjAwMDIxNFowejFJMEcGA1UEBRNAODZjMDRmMDk1MDY4OTZkOGVkZmIw ODFiZDgwZGZiNDk5MTE0NzQ2ZGNkMWNmNDIyMDI2MTNkZjg5MTY3N2JhMTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvU0OzOlNBva4y5i3s4lhEedLUpH/ Jy9j1aCCIGLPW0YBjiC7iH+UZ0Bnyc5FwF//AYSmCdilnlAlSikTkrWj7cf0Nq44 nNpnp51ArnxqQjhKB1gTlJiRMUOKTZp5GWRQSJMwGylqVft2mptOtsjz5tNXlQDd bc8N6x+EZ0UKbcQgSngTMTRb3CDvtyq5rOhgpEJyzMmHZ9XQRsGrY662ier9fEwE TlAwtGc1av57668wle4ubzQMFTtnKASaPs3BMi+HAlmkuwvhMy8Nu1GqyNQIQ56r pzTzANGp9PlTFL7+r/RtLjLjRpso7n7MQKERiBf4HPoaYcR7n2srFv58jQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFAlXuRjKk1Gw5Atetlba/I7OSSNiMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4ZTVkYmQyMTkvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZGI5YTM3MmEtMDli Yy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5LzZlY2IzY2NhLTQ4OGQtNDNiOS1hNTBi LWQzN2MwYzU1YTllMS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAFVbZQhvNGGiUhYIrQa/Dcqs28OaRKle cKWm7eKLMVSe5IFUljM3OPwm6VViL1LD2M6qz9CERaseuivTf+Q6fNv1DR9u35+a Qz6pL45Ysu1EzQv7ugyIcSN/dbN6h7wvvzQfn91Q61w8Wb1TjMkZIDFFo8ZRE25p TMlOI+l8RLDhZHJ96VJiInoGbIyJdKAjvBLqOZmB8mW2uhkhICFqv9e7xl34DrDE +48QVhKuvuAt+fS9AF/NA0B4kOGUQTFYqHr7l0HXjL4YlzpMTp2+7++6yhnd2F6U fI3fr2DTffmMegyAS9t7qfQVmjI4URZdXOXqsMRg5ZTYb3FXq5HmkO4= -----END CERTIFICATE-----Generated at Sun Apr 28 00:50:58 2024 by rpki-client on console-ams.rpki-client.org