$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft File: manifest.mft (raw, json) Hash identifier: arpHhBkZECmqgLzD0UTjFqKxhneCKDK2VXwGuqmiyec= Subject key identifier: B1:4C:04:40:92:2E:1B:6A:3A:B1:13:06:37:D4:85:F6:95:56:F8:B2 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 52D12478D9E48102BB9896A82BDD6C75AE033833 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft Manifest number: 0422 Signing time: Mon 05 May 2025 00:01:58 +0000 Manifest this update: Mon 05 May 2025 00:01:58 +0000 Manifest next update: Fri 09 May 2025 00:01:58 +0000 Files and hashes: 1: 05bc8dbb-c70a-48da-b45b-4448364614ff.roa (hash: 5CYPHRxWfJ3PEs9eD3Tt3hr4lLWTkgio4seBiepverY=) 2: 0bf15d3f-c546-4bb6-a764-82165c384d37.roa (hash: 5kzdK9AjyaCql5M01GVW6devRv8Kmhkc7+LTJZGwFYg=) 3: 0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa (hash: KzV8bX75/Zeinz9MFfPrUSUL++GJqbTyriAsomfLsAg=) 4: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (hash: dvRUX4oeoJxdYeJcXaOx2heD6pheCRMn8wlMKNvyjBQ=) 5: 3407e5b6-a83d-4668-898f-fdbb23092502.roa (hash: kbM0fe54RQa+TgOkXCYrHIogqoQ+b1assSFnkkUos9w=) 6: 3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa (hash: pyzwtWtvugnjJAQkzPyBldCLe1/01+NabCiaqfVAnp0=) 7: 48a67156-122e-41d4-a2a8-8046cc5ecc41.roa (hash: BYXaRbdt8KoCkkTeiHvqn7XvTC5pBCIvMqVsYwPYkL0=) 8: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (hash: Kc0XLw9eBx4ghIL+7KXd6FxYjRku8SBDxi7Q2XTfbv0=) 9: 6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl (hash: z9PMJL22FK5sCwi25wA/icINXP297hIwKFwatZTEdIQ=) 10: 74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa (hash: OTtbI+AqHa7IMUb459/OtfVvgv0CNVRjV1VRiYtAXus=) 11: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (hash: 1IAXFIoP8Io5D68vUZ+0gvZCz7Ph9J6XToVIIdcTuTQ=) 12: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (hash: p0tRTrL867HAf/Ewqo8kXKHkQDoLIGRb1bTw5dVBRtc=) 13: 9b59fbe4-f242-4dbf-9964-15048c3da996.roa (hash: HyYk1qTMcbdjCco+oBYO4eDbEYlvBNmuV4W9QY2tSXY=) 14: 9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa (hash: vGhyLtcQ4/5s5QWrPAdMsKzmYpiZtSyd4EV/vcFORMo=) 15: a78b90df-233b-4ec6-89d2-de27ac2dc044.roa (hash: cBZSgyc9aRFZyj1jTmt6H/5F9c90GhLTVtOVx3JaGEA=) 16: b3ba338e-4843-454b-abe5-65f09756225a.roa (hash: eptWax8q+JOtZKjpJaa5BqXwHYObIO0PLM5pW6H/QLM=) 17: c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa (hash: ueFgyDx0L2hVGX6abyo8zr5d0CANWtQ6zflQj1SuOHY=) 18: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (hash: 2nINrmuyvKIL7x4TEPXOcwzcpVTRnH3cAnehM0NodbY=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 00:01:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:d1:24:78:d9:e4:81:02:bb:98:96:a8:2b:dd:6c:75:ae:03:38:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 5 00:01:58 2025 GMT Not After : May 9 00:01:58 2025 GMT Subject: serialNumber=7f129d6ab3cbc3b0e6be5d3a61c33596b72ade5155f2e3b4f03afc6834aa7e08, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:14:2f:02:de:95:9e:54:47:c6:c3:c9:2a:80: 97:4a:b5:ed:9d:82:aa:d3:00:ef:c6:ba:8d:76:9a: 52:62:4d:03:7e:1d:d7:70:14:0c:9e:4c:cb:7e:cb: 8e:73:23:89:28:4e:39:73:58:52:83:d5:e3:c5:52: ce:c6:2c:86:b0:14:e9:d4:97:89:2b:bd:7a:29:a9: 60:05:51:41:39:90:3b:ba:3d:ef:d4:44:ee:40:8e: 43:ed:31:58:f0:0d:c2:4b:48:1b:ca:9d:6a:8f:d5: 02:a4:f8:8c:20:eb:20:bf:1a:84:21:19:34:46:29: 72:8c:c1:f3:c9:c9:2c:15:f4:f4:e5:67:9b:18:d6: a5:d5:a1:b8:3c:06:0c:02:c6:3c:d9:99:d2:20:db: 97:7a:82:11:32:d7:fc:ac:8d:2c:5c:49:40:29:92: e6:1f:00:0b:6a:54:04:ed:84:f3:62:54:e4:30:c1: 75:ae:fc:ba:89:e2:a2:d1:c3:57:3e:b6:5f:57:25: 5f:3e:77:cd:3e:74:e5:48:50:34:a9:8d:34:7c:40: c3:93:0f:b4:29:13:7f:43:4e:45:2e:9f:c4:67:29: 25:33:4a:c4:4f:ab:a8:5a:67:9f:79:85:6b:53:84: eb:a5:dd:8d:3f:9d:87:8c:31:18:70:91:f0:93:3d: bd:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:4C:04:40:92:2E:1B:6A:3A:B1:13:06:37:D4:85:F6:95:56:F8:B2 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:50:66:d7:ab:22:3a:34:d5:79:38:a7:d8:79:c9:ca:58:7d: bf:85:f0:a1:15:ca:5a:4a:a7:e9:0d:3e:a0:5b:99:0f:53:b7: 43:82:93:63:7e:e1:d4:06:a3:e5:da:fd:b0:1b:ba:6f:31:9a: 5e:0e:f7:69:d9:bc:4e:d2:73:ae:c5:82:2f:a6:95:a3:0c:35: de:f6:93:0d:4f:f4:db:82:05:fa:28:5c:91:86:da:76:5d:8e: 86:f9:26:78:21:08:d0:e7:58:25:bc:11:14:fe:eb:f0:c5:96: 35:80:62:b4:99:e0:56:69:48:f5:e9:e4:9f:67:28:53:62:a8: 0c:ce:54:05:0e:58:49:b8:5d:c5:8b:34:b2:1a:87:97:dd:37: f8:51:d5:da:ee:2c:10:9c:30:9b:77:c9:79:66:81:00:d9:37: 40:4a:b5:5e:42:6d:99:49:0f:ac:32:21:f9:59:3a:5d:1b:b6: 00:eb:77:97:45:ac:61:af:51:26:f4:91:1e:8b:5a:47:8b:2a: 8f:d2:65:06:63:83:64:2d:d5:d5:de:c8:dc:24:04:22:97:6c: 86:cf:39:f2:4d:5b:e6:1f:91:6d:e5:97:ca:20:66:0a:76:09: 97:d7:86:a5:97:81:fa:81:07:6c:7b:f6:a7:be:29:68:eb:58: c1:d2:63:c4 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUUtEkeNnkgQK7mJaoK91sda4DODMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDUwNTAwMDE1OFoX DTI1MDUwOTAwMDE1OFowejFJMEcGA1UEBRNAN2YxMjlkNmFiM2NiYzNiMGU2YmU1 ZDNhNjFjMzM1OTZiNzJhZGU1MTU1ZjJlM2I0ZjAzYWZjNjgzNGFhN2UwODEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhQvAt6VnlRHxsPJKoCXSrXtnYKq 0wDvxrqNdppSYk0Dfh3XcBQMnkzLfsuOcyOJKE45c1hSg9XjxVLOxiyGsBTp1JeJ K716KalgBVFBOZA7uj3v1ETuQI5D7TFY8A3CS0gbyp1qj9UCpPiMIOsgvxqEIRk0 RilyjMHzycksFfT05WebGNal1aG4PAYMAsY82ZnSINuXeoIRMtf8rI0sXElAKZLm HwALalQE7YTzYlTkMMF1rvy6ieKi0cNXPrZfVyVfPnfNPnTlSFA0qY00fEDDkw+0 KRN/Q05FLp/EZyklM0rET6uoWmefeYVrU4Trpd2NP52HjDEYcJHwkz29lQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFLFMBECSLhtqOrETBjfUhfaVVviyMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4ZTVkYmQyMTkvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZGI5YTM3MmEtMDli Yy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5LzZlY2IzY2NhLTQ4OGQtNDNiOS1hNTBi LWQzN2MwYzU1YTllMS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBALBQZterIjo01Xk4p9h5ycpYfb+F8KEV ylpKp+kNPqBbmQ9Tt0OCk2N+4dQGo+Xa/bAbum8xml4O92nZvE7Sc67Fgi+mlaMM Nd72kw1P9NuCBfooXJGG2nZdjob5JnghCNDnWCW8ERT+6/DFljWAYrSZ4FZpSPXp 5J9nKFNiqAzOVAUOWEm4XcWLNLIah5fdN/hR1druLBCcMJt3yXlmgQDZN0BKtV5C bZlJD6wyIflZOl0btgDrd5dFrGGvUSb0kR6LWkeLKo/SZQZjg2Qt1dXeyNwkBCKX bIbPOfJNW+YfkW3ll8ogZgp2CZfXhqWXgfqBB2x79qe+KWjrWMHSY8Q= -----END CERTIFICATE-----Generated at Mon May 5 18:59:42 2025 by rpki-client