$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft File: manifest.mft (raw, json) Hash identifier: UgiCzg5L7RLbS0teR3dI6WOzM08euBjMcZdD8hHcb7Y= Subject key identifier: D3:17:EB:DB:4B:A4:64:3E:32:13:3F:FA:6F:38:EA:6A:B3:BD:22:0F Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 1118E68145A52E20A322C5D5E60AC6BD3C287AF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft Manifest number: 050B Signing time: Sat 23 Aug 2025 00:04:02 +0000 Manifest this update: Sat 23 Aug 2025 00:04:02 +0000 Manifest next update: Wed 27 Aug 2025 00:04:02 +0000 Files and hashes: 1: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: 69uTbgESb70Td4DG7xbJPPyhrpl6fSDYQgS4wRwbDLQ=) 2: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: juLVh7fURSlpsiHj8BTH0+77LqYkVLYxDkqQ1Btb6+4=) 3: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: WZEBUYJ8tacARmr4fleo5f2OpBdK8KyouIR8J9T3D1E=) 4: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: Po+HHzGuBglBz9e/FVQqpy3zTm7LVh3VZ9iWVhteDhw=) 5: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: oB5dAfvqb950IZ3GAQBA22dFyOWsRm2PrbQj9ko+R74=) 6: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: 0MylFyi9TduMw1JRopNfqW7k0QVlsl87ZgXnVRp4bLc=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 00:04:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:18:e6:81:45:a5:2e:20:a3:22:c5:d5:e6:0a:c6:bd:3c:28:7a:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Aug 23 00:04:02 2025 GMT Not After : Aug 27 00:04:02 2025 GMT Subject: serialNumber=b1aef730c3f23724e567bfda05447bb785e47c038fedee0374f919b6a7cf220b, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c6:ef:e2:28:91:10:81:57:49:fa:83:e8:07: 96:29:45:19:f6:c8:dd:23:51:11:15:5c:80:5d:58: 57:e5:0b:20:09:f0:a1:ff:59:2b:08:1f:63:25:22: da:ef:2e:ee:f2:21:11:24:d4:1e:4e:03:7e:0d:85: 91:f6:dc:d4:c5:c5:8a:7e:a1:2c:27:28:91:85:49: 8b:54:25:d7:8c:ea:16:2b:ac:76:91:57:12:6d:4b: b2:8b:f1:21:95:2c:a0:db:3e:d8:31:ef:bc:2b:42: 51:5f:ce:26:a3:14:a0:7e:47:66:24:53:3c:f4:14: cd:f5:2d:fd:b6:1a:2f:08:47:b1:5b:64:e0:6a:c4: 16:e2:97:10:93:27:c8:e6:86:0b:50:9a:f7:46:a0: 8b:f2:56:ce:fc:de:91:3d:74:31:5b:9a:20:3e:a5: cc:36:cd:7e:cf:ff:44:6e:d7:4e:e8:b1:70:94:42: a9:12:b1:ce:13:f9:8b:0a:cf:ea:28:88:1c:ce:d7: f0:cc:f2:eb:ad:5c:09:6d:62:8c:f4:ec:85:bb:df: 1e:a7:fb:f7:e0:16:66:ed:4d:34:db:b7:ba:cf:2c: a1:6e:d7:26:42:05:15:7a:d2:7d:f3:a5:fd:16:20: a4:42:e5:19:df:8f:7b:6e:6b:61:7b:50:f5:d1:98: db:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:17:EB:DB:4B:A4:64:3E:32:13:3F:FA:6F:38:EA:6A:B3:BD:22:0F X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:f8:ba:88:5e:84:cb:19:6f:fd:5e:44:6f:b8:6b:33:11:8d: 25:72:6d:e2:53:e0:f2:0d:08:0b:65:e5:d5:7d:41:ef:f4:94: f5:0e:ac:9e:31:aa:52:51:8b:a1:34:31:aa:ec:16:7f:da:44: e4:d2:78:4d:59:01:8a:e4:ed:a2:d8:61:e9:2d:dc:b0:40:a5: 8e:4c:db:98:56:4e:71:fb:66:a0:9b:01:02:1b:d8:06:99:23: bd:02:f7:94:64:cf:57:58:43:20:fd:fe:73:b3:6d:3e:a2:88: 0f:a6:80:6e:9b:d9:d5:c9:ed:f3:ef:06:38:af:34:27:41:a2: c4:04:20:f9:8b:89:77:f1:7a:d6:86:f1:9d:3f:20:7e:4b:37: 0b:2c:22:7a:4f:a2:87:ac:fe:58:25:4f:ac:5e:45:c2:77:08: 5a:e6:5a:ee:28:e5:00:1b:03:7f:6b:4a:61:d4:c9:9e:2c:e8: 20:33:45:f3:44:c8:51:52:61:c3:62:48:5b:6e:02:3b:22:06: 4b:6f:76:d6:45:b2:e3:c0:79:ed:65:1c:91:79:f5:10:2d:25: 69:79:d0:15:ed:d6:ce:0f:0c:cd:43:0c:cf:02:eb:54:da:d8: 0c:46:63:a7:be:bb:70:f2:67:37:f4:49:77:31:8d:cb:ad:b5: 88:4d:d3:7d -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUERjmgUWlLiCjIsXV5grGvTwoevgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MDgyMzAwMDQwMloX DTI1MDgyNzAwMDQwMlowejFJMEcGA1UEBRNAYjFhZWY3MzBjM2YyMzcyNGU1Njdi ZmRhMDU0NDdiYjc4NWU0N2MwMzhmZWRlZTAzNzRmOTE5YjZhN2NmMjIwYjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8bv4iiREIFXSfqD6AeWKUUZ9sjd I1ERFVyAXVhX5QsgCfCh/1krCB9jJSLa7y7u8iERJNQeTgN+DYWR9tzUxcWKfqEs JyiRhUmLVCXXjOoWK6x2kVcSbUuyi/EhlSyg2z7YMe+8K0JRX84moxSgfkdmJFM8 9BTN9S39thovCEexW2TgasQW4pcQkyfI5oYLUJr3RqCL8lbO/N6RPXQxW5ogPqXM Ns1+z/9EbtdO6LFwlEKpErHOE/mLCs/qKIgcztfwzPLrrVwJbWKM9OyFu98ep/v3 4BZm7U0027e6zyyhbtcmQgUVetJ986X9FiCkQuUZ3497bmthe1D10ZjbhQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFNMX69tLpGQ+MhM/+m846mqzvSIPMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBADv4uohehMsZb/1eRG+4azMRjSVybeJT 4PINCAtl5dV9Qe/0lPUOrJ4xqlJRi6E0MarsFn/aROTSeE1ZAYrk7aLYYekt3LBA pY5M25hWTnH7ZqCbAQIb2AaZI70C95Rkz1dYQyD9/nOzbT6iiA+mgG6b2dXJ7fPv BjivNCdBosQEIPmLiXfxetaG8Z0/IH5LNwssInpPooes/lglT6xeRcJ3CFrmWu4o 5QAbA39rSmHUyZ4s6CAzRfNEyFFSYcNiSFtuAjsiBktvdtZFsuPAee1lHJF59RAt JWl50BXt1s4PDM1DDM8C61Ta2AxGY6e+u3DyZzf0SXcxjcuttYhN030= -----END CERTIFICATE-----Generated at Sat Aug 23 09:49:44 2025 by rpki-client