$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: y5zEscWkfrizLcG4K/YgG8FCDXxTiNHMpdVr2kLBCwE= Subject key identifier: BA:E1:2E:3F:8D:D3:FB:DD:1C:ED:B5:AE:64:05:85:D1:96:3A:25:19 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 78420A04535CF667C68DDF2C9F4C4DD3AAF4B4A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 043D Signing time: Tue 06 May 2025 00:02:02 +0000 Manifest this update: Tue 06 May 2025 00:02:02 +0000 Manifest next update: Sat 10 May 2025 00:02:02 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: qce6iLO5G+n77P9JBoYkEe1xDrhIpqAcBDj7BJ77OkA=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: eU6Fj3F5NtpfXYjk4gNOHS01r0iS5RrZbX91gnuvXBY=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: JT5P5GLQoywMnENOsohyrgZZOx13L8cDWuNYZAvSo/w=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: JYDb6yo9gtQwBbcFFY0+kIKbkm02rVyk++QD+/G2GXo=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: 797OBlfgFazj8gZSTz4ZSkWYIL/+olJTMYp/RsGhDeA=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: OsFdhR8ozEDg92BcCmN0sUHbhykDCRXRo+cAtTa1EkM=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: Rh/0b9lgrc187n91KIAUDjR8RC1URjBeRg7L6sXQbko=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: yjfecjTMOvWeK4VS4FSgCe8wrraaf1T4Q5Xuf33QGlA=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 0a/QtObQ7lMU35WBFSp0v1vFkMlOf5t4jmrMD03jcfM=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: fNmV2qAMORxEAu3Pvbdbb9tEgEtKVpyZDbDOI5HP9sA=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: keUk1WbV7IfOmOAAqHmdgaCVRxpC6mUeLuZ0oKKmj+o=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: 7R0QTem+mbzu8isbqqEjtKi6Ln8ex9lst7BbPqBv0b8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: qXuqHaKtRUUeFQc9s8xALzADcTg4Qo8MEd3gBv2XJyo=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: kLNXjxAyfbQ0GhE78l1WrCPVEjuYmXCCBVnY4GfrWQQ=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: Jv5vlS1sStoe3nVb0ysi7t6dwAvnoWywgzpQm48Ba4g=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: RU8pQCkJlVdVPaUNRm3XJa/pKv5/97Eclu4tmxE7kvc=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: /n6+p2KVQLPE2UZnUwu6aVmCXgcE2rj3BCfaFG1jfoo=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zecatdykaa27g7mXIDSTfQuArxAd5lMSxye/9QTs+fI=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: aHPqZ4TQ5MstcaBFDMnqp9HG8RnCGzPnwNYpMd3K7s4=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: snqPL+PgGEhj6UygAPdpECbQmZbIQC0xfp1LCHtXxQU=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: cg47nb0N+Rraj3ghyNg2lut+jKBC4YpmrygyXYonxd4=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: RxCoixiZkXvcBcq1Z46bl7ZvRLMSpAEc0iNqmKEbTRU=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 00:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:42:0a:04:53:5c:f6:67:c6:8d:df:2c:9f:4c:4d:d3:aa:f4:b4:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 6 00:02:02 2025 GMT Not After : May 10 00:02:02 2025 GMT Subject: serialNumber=41896b95c16b0b6d412b97c104b3598d6f0598aac425c55116ccedd974892b1c, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:60:03:47:7b:d7:90:59:f8:43:14:37:a8:b1: 45:17:26:2b:ab:72:2d:e1:aa:9a:e1:f3:18:c2:74: ec:be:58:ea:b1:b1:3b:8d:e7:d1:32:ac:ad:80:5f: 6d:9a:4f:ad:01:cf:6b:2b:22:e5:e2:43:93:50:9b: 45:6f:ff:e0:97:b1:f0:1d:34:47:82:5b:bd:80:97: cf:92:e5:34:6c:68:ad:4f:76:82:5f:02:b0:e5:cd: 5c:91:1c:7d:4d:9b:3a:aa:c1:29:42:02:53:c3:33: 8e:40:94:e8:67:17:a0:59:49:53:4f:0f:f9:d5:ea: 48:9b:7f:92:ec:0d:0f:c3:0c:96:7d:45:3c:5f:57: 76:92:d5:1e:4a:15:d4:de:ae:9a:d6:09:3f:b2:08: 2a:2c:56:2a:20:06:63:8c:a2:73:ea:64:2c:29:aa: 40:f9:81:3e:0b:45:43:3d:9f:9b:c2:75:55:26:46: 8b:1d:ad:3b:d9:3d:39:c8:3c:80:d9:4d:7d:da:31: 8b:31:6a:b1:1c:11:7a:21:92:0e:bc:95:a8:03:45: f7:be:5e:07:2a:9c:b7:65:6c:6d:77:50:e9:b0:53: a9:21:fb:30:74:f1:42:22:19:c8:d0:00:4f:92:1d: 9a:7c:3e:d5:f0:41:4f:db:7c:f5:c9:26:69:54:87: a4:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:E1:2E:3F:8D:D3:FB:DD:1C:ED:B5:AE:64:05:85:D1:96:3A:25:19 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:ae:d0:8a:45:59:9a:f3:07:c2:5e:fa:2c:b7:3a:29:8d:d0: 7e:71:49:5e:b8:6f:c0:7b:4f:64:d9:66:df:a7:8d:4a:fc:ac: ea:d7:5c:3b:c2:41:56:fa:d3:59:3e:56:e0:c4:c2:1e:0a:f3: 7c:c8:10:19:24:5a:41:d5:8e:8a:e4:db:ac:11:cd:fd:b8:7c: 0f:55:07:27:d5:27:40:ab:a7:3d:b7:86:a7:f8:5f:ff:c9:df: 8a:71:23:16:d4:86:07:94:21:69:80:b7:73:0b:8d:4e:74:6d: c0:13:d9:93:1b:d3:da:14:19:8d:97:1e:45:61:07:24:e1:66: 35:32:db:83:fd:ef:f3:c5:63:4a:06:f6:70:71:bc:77:24:c1: dd:af:60:dd:c3:95:25:d6:78:25:c6:31:1a:3b:f7:e5:ec:a2: 16:e5:09:14:66:82:72:1d:16:4e:ce:dc:04:6b:51:f2:37:c2: e7:bf:b4:77:9c:09:f7:fc:4c:89:4e:de:42:3e:99:d9:e6:e8: d5:66:13:14:7a:9b:55:6a:aa:b2:03:89:f3:91:fd:3c:09:c2: a6:4b:ba:58:8a:d7:f5:b6:39:da:34:02:2b:22:93:e8:bd:ff: b3:ec:02:27:e2:f9:fe:cc:54:de:8a:44:aa:df:b5:ed:1d:76: 04:a6:63:b7 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUeEIKBFNc9mfGjd8sn0xN06r0tKIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDUwNjAwMDIwMloX DTI1MDUxMDAwMDIwMlowejFJMEcGA1UEBRNANDE4OTZiOTVjMTZiMGI2ZDQxMmI5 N2MxMDRiMzU5OGQ2ZjA1OThhYWM0MjVjNTUxMTZjY2VkZDk3NDg5MmIxYzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo2ADR3vXkFn4QxQ3qLFFFyYrq3It 4aqa4fMYwnTsvljqsbE7jefRMqytgF9tmk+tAc9rKyLl4kOTUJtFb//gl7HwHTRH glu9gJfPkuU0bGitT3aCXwKw5c1ckRx9TZs6qsEpQgJTwzOOQJToZxegWUlTTw/5 1epIm3+S7A0PwwyWfUU8X1d2ktUeShXU3q6a1gk/sggqLFYqIAZjjKJz6mQsKapA +YE+C0VDPZ+bwnVVJkaLHa072T05yDyA2U192jGLMWqxHBF6IZIOvJWoA0X3vl4H Kpy3ZWxtd1DpsFOpIfswdPFCIhnI0ABPkh2afD7V8EFP23z1ySZpVIekeQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFLrhLj+N0/vdHO21rmQFhdGWOiUZMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBADGu0IpFWZrzB8Je+iy3OimN0H5xSV64 b8B7T2TZZt+njUr8rOrXXDvCQVb601k+VuDEwh4K83zIEBkkWkHVjork26wRzf24 fA9VByfVJ0Crpz23hqf4X//J34pxIxbUhgeUIWmAt3MLjU50bcAT2ZMb09oUGY2X HkVhByThZjUy24P97/PFY0oG9nBxvHckwd2vYN3DlSXWeCXGMRo79+XsohblCRRm gnIdFk7O3ARrUfI3wue/tHecCff8TIlO3kI+mdnm6NVmExR6m1VqqrIDifOR/TwJ wqZLuliK1/W2Odo0Aisik+i9/7PsAifi+f7MVN6KRKrfte0ddgSmY7c= -----END CERTIFICATE-----Generated at Tue May 6 04:59:05 2025 by rpki-client