$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft File: manifest.mft (raw, json) Hash identifier: xXeWai62vs9lxIyVnRr8e+fk9ssC3soPBHhAuZS62iQ= Subject key identifier: 7E:D4:1C:CF:59:7E:85:9A:29:37:9B:14:2B:D2:82:D7:78:B3:96:BD Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 19FFBE4AC4A97971DC79932988F489DD58244263 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft Manifest number: 0476 Signing time: Sun 29 Jun 2025 00:02:19 +0000 Manifest this update: Sun 29 Jun 2025 00:02:19 +0000 Manifest next update: Thu 03 Jul 2025 00:02:19 +0000 Files and hashes: 1: 2e40ee0b-9aa9-4919-a079-9712212e127c.roa (hash: 3oSXNolcHKNGEJkwTZ+B3pw7iqSbBcfrhUcODxmnlwA=) 2: 32bf2c39-b536-43d0-b557-f68d8ee64091.roa (hash: Hn0yrarDFF3NBciEqACTqAaEL0HBm3M81e8f7so2lzk=) 3: 3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa (hash: klz1MEK94RYvGwUSIB1Lkt3YQy4A8azoTSfmTEKsx0w=) 4: 40956690-3661-49f2-8ebc-2fa5a47a98ad.roa (hash: 96ETOGdT/eL+sOz3tGVLpsmSJc3p/Tblid3LASY6HMU=) 5: 4cb3e9f9-46a2-41eb-a4b7-75b53d791f33.roa (hash: 80SooUcBVMqU1en7vI1c3EBW44p7EiKtvQGktRTq55k=) 6: 55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa (hash: n/FQIF59JwGr61LZy6KAZfYmBj5LQT+P8P8ddmzozCA=) 7: 565f9740-389f-45ac-956e-b96e19889315.roa (hash: e/8dQLlGg4I6ypc/gYLTZWobutoBYrYEkEvH6RUfOHA=) 8: 72c1271b-5ed8-4478-ba43-6741904af7c8.roa (hash: RQY/6aGIaWy+F2y6ENjwm/txlGtGWV6ZuRnNqBRJ3LQ=) 9: 9d703748-f446-47a1-b0a7-5e3357f2e0d2.roa (hash: 4DQitDRF21AU4HwIv/P47E95GssEHlsZ6eMzmMdlCzk=) 10: a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl (hash: 1cGxibbhQ7gZ63A/6/X5vA/DhHBdTjb3DA0+BZJHADo=) 11: c18b0845-fc95-41d6-b476-af4e1e466849.roa (hash: pLEUEUxRFD0PmPbSZ2MVlPyzymq9mAt10D86sD3TW4Y=) 12: e5ffe65e-7287-4628-8759-7c141866ee12.roa (hash: MMhH1wdUHYCEddEO6UTRAUA7g3ur8f92TPehB2ogU0I=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 00:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:ff:be:4a:c4:a9:79:71:dc:79:93:29:88:f4:89:dd:58:24:42:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Jun 29 00:02:19 2025 GMT Not After : Jul 3 00:02:19 2025 GMT Subject: serialNumber=594c14cf5989ad53a519575f6447f04e3ace7087b9f13f8205e249b9adb36035, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6a:f8:14:85:04:8a:9b:5b:07:ab:2f:aa:22: 06:34:87:fe:69:5a:6a:47:d2:1d:66:5c:b7:fb:93: 3b:46:7b:3d:d8:b3:5f:fb:53:91:bb:e5:22:16:b6: ac:03:e3:75:c9:8b:40:3b:94:b5:45:9f:ca:66:de: c6:db:cd:a9:1a:49:53:cd:2f:c6:3a:06:24:2d:51: 7f:50:d7:75:f5:a7:04:6b:44:cf:a7:04:08:0d:72: 77:0f:bc:75:91:8a:bb:db:3e:7d:58:28:6c:44:9e: 31:f7:d0:44:6a:98:a1:14:c9:07:cf:93:30:85:f9: 9d:fd:9f:2e:01:1c:7a:86:15:54:59:3a:81:38:5d: 38:d4:89:bf:c5:b6:1c:90:ea:f3:3c:52:d0:43:18: 30:3a:48:f7:27:83:f7:a3:39:a5:c6:82:5e:52:11: 01:a2:0d:6b:c1:d1:26:ff:65:e3:b8:25:30:00:11: 19:0c:82:03:4c:f2:34:ad:d5:89:74:b8:ae:84:44: d9:99:61:20:38:fc:fb:66:a0:9d:0d:62:74:f5:37: 42:ef:57:ee:40:c5:6e:09:08:7d:e4:2f:45:b8:84: ab:22:61:be:2b:3d:4d:18:a3:03:b5:17:fd:00:ed: 6b:8a:d2:ca:03:41:b9:61:7c:bd:11:77:a0:ab:f8: dc:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:D4:1C:CF:59:7E:85:9A:29:37:9B:14:2B:D2:82:D7:78:B3:96:BD X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:58:4a:53:ac:02:d9:33:60:63:00:8d:11:0f:8e:22:63:f2: 43:c5:fd:d1:85:0b:dd:d3:88:80:85:ac:f8:07:3b:25:8d:f5: 79:b7:d1:70:18:b7:e6:71:11:5e:fd:36:ce:b9:5c:38:2a:d6: ff:f3:37:4a:0e:8f:6f:df:3b:3e:b3:12:8a:1c:f0:63:65:e8: a0:23:4f:fa:96:28:31:33:04:e9:db:9a:8b:d2:fb:35:c9:c7: a8:ef:b3:d1:76:77:fc:f4:69:07:75:ab:ee:5d:af:7d:8a:ed: 8f:6b:5b:f0:c8:7d:5a:90:03:de:ac:ea:a1:01:28:3d:ae:d8: d6:65:d6:40:f1:39:b3:8f:db:fe:33:28:ed:22:88:42:a3:8e: e5:3d:56:fc:c5:de:76:01:7d:28:29:e7:d6:06:ed:39:5e:73: 89:35:ce:77:cb:12:f7:8e:ea:90:2b:ed:be:e0:d6:97:e9:3e: a6:c9:63:d2:6a:95:5a:41:f9:e8:52:0d:d0:01:bd:59:b9:2b: 26:77:b1:eb:6c:00:c4:24:44:50:2b:7d:34:3b:0c:19:51:ff: 69:e5:c1:71:e9:c7:f2:aa:85:f9:21:95:ef:f1:19:8a:7b:db: ff:fd:b1:87:b3:15:b8:63:65:74:f8:c7:a2:95:fd:d2:1b:77: 65:02:8a:2c -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUGf++SsSpeXHceZMpiPSJ3VgkQmMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI1MDYyOTAwMDIxOVoX DTI1MDcwMzAwMDIxOVowejFJMEcGA1UEBRNANTk0YzE0Y2Y1OTg5YWQ1M2E1MTk1 NzVmNjQ0N2YwNGUzYWNlNzA4N2I5ZjEzZjgyMDVlMjQ5YjlhZGIzNjAzNTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA42r4FIUEiptbB6svqiIGNIf+aVpq R9IdZly3+5M7Rns92LNf+1ORu+UiFrasA+N1yYtAO5S1RZ/KZt7G282pGklTzS/G OgYkLVF/UNd19acEa0TPpwQIDXJ3D7x1kYq72z59WChsRJ4x99BEapihFMkHz5Mw hfmd/Z8uARx6hhVUWTqBOF041Im/xbYckOrzPFLQQxgwOkj3J4P3ozmlxoJeUhEB og1rwdEm/2XjuCUwABEZDIIDTPI0rdWJdLiuhETZmWEgOPz7ZqCdDWJ09TdC71fu QMVuCQh95C9FuISrImG+Kz1NGKMDtRf9AO1ritLKA0G5YXy9EXegq/jcxwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFH7UHM9ZfoWaKTebFCvSgtd4s5a9MB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMDhjMmYyNjQtMjNm OS00OWZiLTlkNDMtZjhiNTBiZWM5MjYxL2E1YjAxYmRkLWNkZWItNGNmYy04Yzkz LTdlNzBjNWUwOTMwNi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAH9YSlOsAtkzYGMAjREPjiJj8kPF/dGF C93TiICFrPgHOyWN9Xm30XAYt+ZxEV79Ns65XDgq1v/zN0oOj2/fOz6zEooc8GNl 6KAjT/qWKDEzBOnbmovS+zXJx6jvs9F2d/z0aQd1q+5dr32K7Y9rW/DIfVqQA96s 6qEBKD2u2NZl1kDxObOP2/4zKO0iiEKjjuU9VvzF3nYBfSgp59YG7Tlec4k1znfL EveO6pAr7b7g1pfpPqbJY9JqlVpB+ehSDdABvVm5KyZ3setsAMQkRFArfTQ7DBlR /2nlwXHpx/Kqhfkhle/xGYp72//9sYezFbhjZXT4x6KV/dIbd2UCiiw= -----END CERTIFICATE-----Generated at Sun Jun 29 18:18:45 2025 by rpki-client