$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: KfrQ4lhfj+xJ4va6qgley5sfJbLhAnRYNLRddaALaFs= Subject key identifier: 68:B5:76:DB:56:AA:C7:68:C0:64:D8:F3:B6:30:12:C4:D2:21:4A:6C Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 4632C794B4DDB21857259AFD896BEF7A8F707EC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0475 Signing time: Sun 29 Jun 2025 00:02:54 +0000 Manifest this update: Sun 29 Jun 2025 00:02:54 +0000 Manifest next update: Thu 03 Jul 2025 00:02:54 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: PARNEnUNMqJNis6uThL9iPY+YceqLih3wSCIL0eeeU4=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: iPZXHJj6GhIfBmWaA7CSAIHjXIYp8qPR6znZEMX7GbI=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: pO1ZXG6sSfgfPTB9M91yC1+vKT6fjVgLHLXWYb4AAnM=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: c2EH2aTA8FYk83Qmxf7dwVcbVJ2Mi9mLkbL/sd8vc8g=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: aR/X6hVIqtLE2FkCFjtRdq3arGLWHZB3/hhDcWN2+7U=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: fCMWwlq7r64lnXLdelYFeIbgkRv8V76xhHBjaLF1TI8=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: OWV8Q86skh5oa+OzEjFSL1cJ+WN1fwgJqGrnX0afKvk=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: dpTwwGwUN8ci0QMRkJkmkDKvUoL+XoAG41b3JRF15x0=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: ZRPDjAHdxmWX1jrwbdqSfzreGkjgYNX/6YHCrNtXhiA=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: 0poBH9ZJIvm6o3WkVRQuwmCRSJDr2es/DEUsdpDssrw=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: gCeBQN+ekvH2K2ZZmIACMGOg1Zh29yCgVP8nrlCfA98=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: GmjTBXPCk2MheYMe3Ti89IM1ct0JP1/mtITjQvPPaJQ=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: xFW4C6CbOZIvVWF+EtVH4IiOy8S/XGy7V9Rs1IvWtd4=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: 0hUPSGWVkpM1DVpfbxZ+b3TvGt2Y0PP/EyAep+KQUKc=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: kJuAABBMqnIeYIoMqdCsUfjYd1db7aBbBCYk1Y9PjGw=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: jorKmjQGTLFrfGMvCHL7dpTuFYSLQ2ju9VOJeWwEeJU=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: MCFSo4p4hfWyGHa1bb10cJLk5iC7Xm35BqNCsVItFtQ=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: gZg05veLlxnjeSzm9ZcxJK7VEcNF/WOJb9FwgblxY74=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: kRpME6MIgos5VaFfSbeAqyYVnbwVuJ0aUPTo4GcLA8c=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: XnwrkVxmWlu3oxMlkNnilulDwQFjCB65v8yjRMLXLr8=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: 8pbrlWeDTsmzN4t4I9XM8Tm+FCp8sgg1LYPJ72x8tr8=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: AWFQYtS4JtKBF+AL8ufVYLUue9fKdNy3u57RAQGJ+Rc=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 00:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:32:c7:94:b4:dd:b2:18:57:25:9a:fd:89:6b:ef:7a:8f:70:7e:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Jun 29 00:02:54 2025 GMT Not After : Jul 3 00:02:54 2025 GMT Subject: serialNumber=c4bd52aeed0c83e3f57ce5e4861f3190caea2432b203b4f98fefd4a7833642e7, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:db:d8:69:d8:d8:5b:f7:73:69:6c:34:4c:c8: 2f:38:86:03:33:c0:b0:77:0c:83:5f:06:f5:92:36: be:ed:d9:20:d7:e3:71:68:58:44:71:6f:59:03:36: bc:74:a5:25:8a:6f:ba:38:4e:2d:9a:52:9e:c3:fc: be:4b:4e:6b:ea:bc:a2:c9:1c:b6:6f:88:5c:9e:06: d9:3f:bd:d6:00:2a:f9:b3:6b:a8:41:a5:b8:bb:4f: 6d:14:a2:1a:9f:9a:d2:d6:9a:18:61:15:0f:3a:65: 7d:45:00:da:d5:e4:d6:27:51:d0:db:bf:ab:eb:97: d1:1d:66:20:97:50:3b:0e:47:fe:08:04:df:2d:8c: eb:e1:d2:11:87:54:d0:ba:23:30:c5:fa:47:f2:fb: 46:7b:76:26:06:52:d6:3f:29:17:8d:99:05:05:58: a1:d0:64:53:a8:41:34:e6:19:19:fd:a5:4e:ba:da: 1c:64:5a:44:25:5e:5d:28:4f:f3:00:09:25:ee:70: e0:fb:02:6b:d1:cc:2a:fc:8f:ee:5e:83:f5:cd:1f: 93:23:ba:21:a7:ce:b8:c9:56:bf:29:55:b0:86:0b: e7:e4:c0:e8:ac:fe:2c:d0:18:ba:ef:7d:d8:8b:2f: ea:fd:98:e0:d3:1a:1c:40:9c:ce:ea:51:a8:9e:59: 32:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:B5:76:DB:56:AA:C7:68:C0:64:D8:F3:B6:30:12:C4:D2:21:4A:6C X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:a9:8d:d3:09:ea:1f:c9:4f:b1:76:ef:52:3c:84:54:8a:44: a4:cc:af:67:a1:65:79:90:00:63:b4:63:ae:75:ca:1a:37:7b: 5d:7a:05:16:b0:61:53:99:fe:01:d0:43:16:e0:ef:e7:13:0e: 70:93:b1:3d:f6:10:52:d0:13:db:dc:61:61:cf:8c:ea:da:91: 4c:63:4d:74:4d:06:99:67:9a:9f:c9:69:0f:03:88:b9:b1:9b: 6c:3f:3f:af:72:49:93:85:1c:35:88:07:aa:ac:36:2b:f6:7f: d4:ee:88:96:35:00:a1:7c:f6:e3:16:c1:bf:99:61:e3:21:cb: d8:bc:37:20:4f:41:fa:c0:23:f0:b5:5c:8c:21:b0:9b:43:6f: 7c:14:98:0b:2e:3f:f2:88:ab:ad:24:75:e8:6a:26:32:bf:93: 67:8a:9e:2c:87:29:f2:00:ba:4f:6c:b1:d5:ef:d1:4b:0e:f3: 24:be:1d:9d:31:e3:44:31:d2:a9:60:70:09:3e:5b:de:71:f6: 62:ad:1e:1d:07:47:ba:e1:fb:fb:6b:ca:5f:d1:bb:ec:38:66: 65:37:7b:18:77:a9:99:65:b8:b1:f1:f5:e9:0f:e8:da:93:df: b4:74:02:b5:f5:4e:d1:0f:0f:05:ed:d7:c5:a3:95:5e:51:13: 63:e5:0c:32 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIURjLHlLTdshhXJZr9iWvveo9wfsEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDYyOTAwMDI1NFoX DTI1MDcwMzAwMDI1NFowejFJMEcGA1UEBRNAYzRiZDUyYWVlZDBjODNlM2Y1N2Nl NWU0ODYxZjMxOTBjYWVhMjQzMmIyMDNiNGY5OGZlZmQ0YTc4MzM2NDJlNzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAstvYadjYW/dzaWw0TMgvOIYDM8Cw dwyDXwb1kja+7dkg1+NxaFhEcW9ZAza8dKUlim+6OE4tmlKew/y+S05r6ryiyRy2 b4hcngbZP73WACr5s2uoQaW4u09tFKIan5rS1poYYRUPOmV9RQDa1eTWJ1HQ27+r 65fRHWYgl1A7Dkf+CATfLYzr4dIRh1TQuiMwxfpH8vtGe3YmBlLWPykXjZkFBVih 0GRTqEE05hkZ/aVOutocZFpEJV5dKE/zAAkl7nDg+wJr0cwq/I/uXoP1zR+TI7oh p864yVa/KVWwhgvn5MDorP4s0Bi6733Yiy/q/Zjg0xocQJzO6lGonlkyaQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFGi1dttWqsdowGTY87YwEsTSIUpsMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAFmpjdMJ6h/JT7F271I8hFSKRKTMr2eh ZXmQAGO0Y651yho3e116BRawYVOZ/gHQQxbg7+cTDnCTsT32EFLQE9vcYWHPjOra kUxjTXRNBplnmp/JaQ8DiLmxm2w/P69ySZOFHDWIB6qsNiv2f9TuiJY1AKF89uMW wb+ZYeMhy9i8NyBPQfrAI/C1XIwhsJtDb3wUmAsuP/KIq60kdehqJjK/k2eKniyH KfIAuk9ssdXv0UsO8yS+HZ0x40Qx0qlgcAk+W95x9mKtHh0HR7rh+/tryl/Ru+w4 ZmU3exh3qZlluLHx9ekP6NqT37R0ArX1TtEPDwXt18WjlV5RE2PlDDI= -----END CERTIFICATE-----Generated at Sun Jun 29 07:21:25 2025 by rpki-client