$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft File: manifest.mft (raw, json) Hash identifier: S6YWC1B8+dO/rEVmV+KuEZFE1PUcOmWzKTlTjlo8m94= Subject key identifier: DC:DB:BB:4F:42:F3:1F:1E:3C:C5:A3:18:91:DE:0C:0D:3C:59:82:F7 Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 41CB2C0C6D96E8A81ABC8D9695053034BE3A5557 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft Manifest number: 04B0 Signing time: Sat 23 Aug 2025 00:02:24 +0000 Manifest this update: Sat 23 Aug 2025 00:02:24 +0000 Manifest next update: Wed 27 Aug 2025 00:02:24 +0000 Files and hashes: 1: 2e40ee0b-9aa9-4919-a079-9712212e127c.roa (hash: VR/mwthgRh0ng7VGgDiAUcnN0jteOSnRa9lOe8cGPEM=) 2: 32bf2c39-b536-43d0-b557-f68d8ee64091.roa (hash: fGSsKj2cKRA3NzFl1vxdTnJLWCoHcVJxd/NP9D4Zgn0=) 3: 3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa (hash: tiAjAQmR13xooXymK60WR8ZSywPtnJRS1MrRY3JHRqc=) 4: 40956690-3661-49f2-8ebc-2fa5a47a98ad.roa (hash: rgJvuK04T9dCqdk0k3/+MpwSAH/1W0e0dxh8MI4Rhkk=) 5: 466316d4-3129-402d-9aa7-5d64ed8b2748.roa (hash: Fv6Cq2qiRRjRas9DxHgtgewLPUh427lcOUYLFJFIFVk=) 6: 4cb3e9f9-46a2-41eb-a4b7-75b53d791f33.roa (hash: pgYnRCe3qjwkHmYGOqv1jmB17QPb/OeV0cBrWydeamI=) 7: 55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa (hash: pFn2xgAAxPr7bRer7U3jziShEPfk4bh3VwR+jFrTcdk=) 8: 565f9740-389f-45ac-956e-b96e19889315.roa (hash: 75Om4R/okC1dIIjgL/VqyZb5FeAUVnss0T9egJm8bJ4=) 9: 9d703748-f446-47a1-b0a7-5e3357f2e0d2.roa (hash: /cZLNfW2kvhRXaFMYD1bwfnAkrZ8cfKn9CrwRz412hM=) 10: a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl (hash: X2hVGNm5R0IIETxl88Pwy5dz9xGgh+u+kL8vArqgmeQ=) 11: b51d6a60-7601-45c2-8839-f2002dfa8409.roa (hash: nCWkSKF6fvnAc6cz6aMyt1niVPo3qUXLaffg8QoPkNM=) 12: c18b0845-fc95-41d6-b476-af4e1e466849.roa (hash: y6300OW8yTSeKdHqQ/PnRnkGKDNilhwbmi9rIkZhvqc=) 13: e5ffe65e-7287-4628-8759-7c141866ee12.roa (hash: GOYNarPHaAd5VAllEgmCs6aUIrkBZ6gT08+n6Dtikn4=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:02:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:cb:2c:0c:6d:96:e8:a8:1a:bc:8d:96:95:05:30:34:be:3a:55:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Aug 23 00:02:24 2025 GMT Not After : Aug 27 00:02:24 2025 GMT Subject: serialNumber=99fe246127365dce49efc89c388f99c47f0224b0bb9c03a4cbd15aafca9cad86, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ec:23:ce:3c:17:83:05:8f:f2:23:0d:d0:d4: f6:7f:4a:34:a7:5b:36:b6:7a:a1:bb:aa:62:84:ce: 9e:e4:b5:c5:33:bd:25:d7:bd:df:7c:16:46:2f:f0: 54:74:0c:25:36:28:ad:8c:95:ea:da:6f:a6:14:ba: bf:95:e2:4e:76:69:d5:7c:98:ec:b9:2b:91:78:c9: 12:e2:c0:9b:87:d9:bb:cc:df:f5:0d:1a:ec:a1:c6: 10:11:e6:70:9f:8b:62:8b:63:24:fb:75:09:12:a5: 68:36:8c:c4:51:8c:37:b3:93:1a:d0:8b:8e:65:64: 36:a9:f1:ca:ee:ac:09:b4:73:d1:08:f6:60:24:41: b5:93:95:10:3f:28:b0:b3:b1:9e:b3:c2:e1:40:7c: c0:fb:10:44:bd:5e:3c:a7:e4:ff:3d:11:78:22:c4: 90:f1:d5:bb:e5:05:a6:1c:58:86:66:82:43:61:07: 94:65:39:d3:51:61:48:d3:e1:c3:e2:28:9f:c5:d8: d3:d1:56:cd:e6:04:6f:bd:5a:a7:d1:99:ce:42:71: 75:36:65:f0:e6:74:ff:91:ff:c2:50:90:b4:2b:72: fe:e4:bf:cf:f4:eb:76:3c:e3:e2:98:f1:1b:91:ee: c4:f9:f1:db:ca:8d:76:99:52:29:e2:ea:72:66:38: d5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:DB:BB:4F:42:F3:1F:1E:3C:C5:A3:18:91:DE:0C:0D:3C:59:82:F7 X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:fc:2a:8e:02:22:b3:16:78:09:42:95:15:c9:df:b4:09:25: 19:34:dd:9e:0c:9d:88:4e:a8:4b:c9:22:14:c2:46:9f:8e:a6: ab:c1:30:72:e7:02:f8:7d:41:1a:46:46:0b:e5:68:07:54:a6: 42:d2:6f:b1:8f:8b:ac:e5:d6:43:80:95:7d:c5:db:e8:16:94: 56:32:c7:a3:30:96:0c:f7:39:a9:fd:7e:a5:21:21:6f:35:3d: 39:c5:ea:a6:de:f0:e0:ee:65:d3:2a:da:b9:5b:25:4a:ac:99: 51:86:db:79:d3:7f:e2:61:33:75:c3:26:1e:6a:9d:d3:7d:b2: 36:ff:58:60:bf:dc:cb:6b:4c:34:cf:22:d1:57:49:8f:7d:63: fd:ad:fa:2b:0a:68:06:09:fe:f5:2e:51:42:4c:88:bc:90:fb: e6:dd:71:31:6e:76:f1:a1:54:04:b1:fb:cc:f1:b5:ca:4d:05: f7:32:5b:4a:e5:8d:1e:07:c3:f7:a5:f3:b3:0c:56:2d:a2:88: e8:b7:34:8e:b6:db:74:f2:3c:b3:79:a8:83:87:67:34:0a:b5: b7:b8:28:3e:72:5f:bb:0f:67:b5:4c:bd:92:3b:d0:e1:bd:9a: d9:cd:28:f0:66:a5:77:56:50:5c:db:40:fc:30:25:8f:2d:94: d8:39:b9:e4 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUQcssDG2W6KgavI2WlQUwNL46VVcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI1MDgyMzAwMDIyNFoX DTI1MDgyNzAwMDIyNFowejFJMEcGA1UEBRNAOTlmZTI0NjEyNzM2NWRjZTQ5ZWZj ODljMzg4Zjk5YzQ3ZjAyMjRiMGJiOWMwM2E0Y2JkMTVhYWZjYTljYWQ4NjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3uwjzjwXgwWP8iMN0NT2f0o0p1s2 tnqhu6pihM6e5LXFM70l173ffBZGL/BUdAwlNiitjJXq2m+mFLq/leJOdmnVfJjs uSuReMkS4sCbh9m7zN/1DRrsocYQEeZwn4tii2Mk+3UJEqVoNozEUYw3s5Ma0IuO ZWQ2qfHK7qwJtHPRCPZgJEG1k5UQPyiws7Ges8LhQHzA+xBEvV48p+T/PRF4IsSQ 8dW75QWmHFiGZoJDYQeUZTnTUWFI0+HD4iifxdjT0VbN5gRvvVqn0ZnOQnF1NmXw 5nT/kf/CUJC0K3L+5L/P9Ot2POPimPEbke7E+fHbyo12mVIp4upyZjjVgwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNzbu09C8x8ePMWjGJHeDA08WYL3MB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMDhjMmYyNjQtMjNm OS00OWZiLTlkNDMtZjhiNTBiZWM5MjYxL2E1YjAxYmRkLWNkZWItNGNmYy04Yzkz LTdlNzBjNWUwOTMwNi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAI38Ko4CIrMWeAlClRXJ37QJJRk03Z4M nYhOqEvJIhTCRp+OpqvBMHLnAvh9QRpGRgvlaAdUpkLSb7GPi6zl1kOAlX3F2+gW lFYyx6Mwlgz3Oan9fqUhIW81PTnF6qbe8ODuZdMq2rlbJUqsmVGG23nTf+JhM3XD Jh5qndN9sjb/WGC/3MtrTDTPItFXSY99Y/2t+isKaAYJ/vUuUUJMiLyQ++bdcTFu dvGhVASx+8zxtcpNBfcyW0rljR4Hw/el87MMVi2iiOi3NI6223TyPLN5qIOHZzQK tbe4KD5yX7sPZ7VMvZI70OG9mtnNKPBmpXdWUFzbQPwwJY8tlNg5ueQ= -----END CERTIFICATE-----Generated at Sat Aug 23 09:49:22 2025 by rpki-client