$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft File: manifest.mft (raw, json) Hash identifier: Ga3ruKaKXYFGvjsvo4lD568OCPqYZlrwzVJWpbTXkkU= Subject key identifier: 11:DF:FB:2C:90:0A:6B:BB:6B:17:59:B3:D7:71:2A:D7:73:9C:93:14 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 386B4136ECEB7EFFA93A1069A24C63D9FE3765A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft Manifest number: 0431 Signing time: Thu 24 Apr 2025 00:00:45 +0000 Manifest this update: Thu 24 Apr 2025 00:00:45 +0000 Manifest next update: Mon 28 Apr 2025 00:00:45 +0000 Files and hashes: 1: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (hash: qce6iLO5G+n77P9JBoYkEe1xDrhIpqAcBDj7BJ77OkA=) 2: 197500e2-3802-44b2-a561-ca3dad01e209.roa (hash: eU6Fj3F5NtpfXYjk4gNOHS01r0iS5RrZbX91gnuvXBY=) 3: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (hash: JT5P5GLQoywMnENOsohyrgZZOx13L8cDWuNYZAvSo/w=) 4: 220cee0c-6002-409a-8194-38e216c0096c.crl (hash: x0czZqzuIHr2jxoZ8vgy9q5XkZL6jfz0FAHN3Vkuf8M=) 5: 22707524-2248-48ea-815f-578f49b19436.roa (hash: 797OBlfgFazj8gZSTz4ZSkWYIL/+olJTMYp/RsGhDeA=) 6: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (hash: db3CyR59Niih+WGgIJIhmfB81vUULob+ee+Zp6CPc5w=) 7: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (hash: Rh/0b9lgrc187n91KIAUDjR8RC1URjBeRg7L6sXQbko=) 8: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (hash: S36YiYmI5eUM0T09dUVT97eg6W9XRWJ58EGb0eig47c=) 9: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (hash: 0a/QtObQ7lMU35WBFSp0v1vFkMlOf5t4jmrMD03jcfM=) 10: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (hash: fNmV2qAMORxEAu3Pvbdbb9tEgEtKVpyZDbDOI5HP9sA=) 11: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (hash: keUk1WbV7IfOmOAAqHmdgaCVRxpC6mUeLuZ0oKKmj+o=) 12: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (hash: 7R0QTem+mbzu8isbqqEjtKi6Ln8ex9lst7BbPqBv0b8=) 13: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (hash: qXuqHaKtRUUeFQc9s8xALzADcTg4Qo8MEd3gBv2XJyo=) 14: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (hash: kLNXjxAyfbQ0GhE78l1WrCPVEjuYmXCCBVnY4GfrWQQ=) 15: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (hash: TM8EDr6RdiNMS9DhiJ0NaSr6wqW0tI1u61NIg14iRw8=) 16: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (hash: RU8pQCkJlVdVPaUNRm3XJa/pKv5/97Eclu4tmxE7kvc=) 17: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (hash: /n6+p2KVQLPE2UZnUwu6aVmCXgcE2rj3BCfaFG1jfoo=) 18: cb2e5a8c-21f1-4679-a372-617732fc3ea6.roa (hash: zecatdykaa27g7mXIDSTfQuArxAd5lMSxye/9QTs+fI=) 19: cebef322-460c-4f6e-8a8a-2f4b41debd9b.roa (hash: Tu9EKCCvsSxodY6qi0HqOnrYwwpneGnOpWx8+fwDRTM=) 20: d953b731-7921-47dd-abf3-b7b8cc367900.roa (hash: snqPL+PgGEhj6UygAPdpECbQmZbIQC0xfp1LCHtXxQU=) 21: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (hash: cg47nb0N+Rraj3ghyNg2lut+jKBC4YpmrygyXYonxd4=) 22: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (hash: unJs7L9jBiYMzZ+XInHg3FoXSgS2BNdE+L1XxwQkdRU=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:6b:41:36:ec:eb:7e:ff:a9:3a:10:69:a2:4c:63:d9:fe:37:65:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 24 00:00:45 2025 GMT Not After : Apr 28 00:00:45 2025 GMT Subject: serialNumber=d365781e8db71f0a14d022e53d4ab821d77262715a263b8f995543019370b863, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bd:be:a5:34:d7:3c:9e:80:f7:f9:99:1f:bb: 0e:47:a2:94:01:b7:cc:7a:cf:18:e0:87:a4:57:73: 99:e3:3c:98:bb:9c:8d:2c:6a:50:5c:b9:6c:13:0f: 8b:67:d9:20:89:56:6b:a5:c1:ff:f5:16:95:d7:c0: 75:ad:52:75:33:93:17:9b:14:2d:31:ab:7f:6c:81: 3d:3d:85:cf:0a:64:a4:cb:ea:23:67:36:c1:da:0f: f9:c7:05:3a:80:31:03:56:9d:19:5d:ba:a7:b1:17: 46:8c:60:ed:4d:02:3a:bd:bc:0b:e4:3b:71:d4:63: 1f:e0:56:f6:52:60:89:fe:fb:aa:0e:df:5d:4e:bf: 19:53:39:ef:28:21:d3:15:34:71:36:34:9f:6f:da: dc:0b:dd:bf:35:4b:24:0b:e4:3f:31:72:a5:53:5a: d4:d7:86:ca:8c:29:df:7d:3d:a7:e7:8d:44:0b:da: 25:6d:d7:88:bd:7f:17:5b:86:db:ce:70:aa:11:6b: a5:0a:98:6b:09:22:86:18:5e:00:df:fd:cc:b2:69: 02:89:78:49:9d:0a:0d:0f:19:7e:91:21:58:63:60: 97:61:e0:3c:1b:f3:ea:9c:e2:02:df:38:44:84:75: 83:c5:dc:be:5e:28:04:a2:ee:09:87:6f:b0:a7:ca: cb:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:DF:FB:2C:90:0A:6B:BB:6B:17:59:B3:D7:71:2A:D7:73:9C:93:14 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:6b:d8:a6:05:96:69:2c:34:ae:c2:b8:e5:28:61:db:25:66: c3:42:d5:68:49:05:e2:cc:6a:10:e2:0e:28:be:fa:52:25:65: 17:22:f6:e4:87:cb:6e:0e:c5:13:8e:47:92:f3:15:4a:78:ec: a2:a3:6c:3d:40:79:6c:12:38:a5:4d:d5:35:7c:50:b0:12:4a: 0f:83:84:60:ea:3f:33:26:60:dd:9d:6b:bb:8d:67:cb:cc:27: d5:d4:26:aa:6d:a6:8b:c1:91:66:b1:36:82:2b:e3:44:71:d4: d6:ac:38:0a:4b:05:c6:c1:c3:bd:db:09:da:0b:56:42:52:77: 01:57:3c:1c:bd:f7:84:fa:a1:43:44:cf:06:2b:99:c8:db:ed: cb:eb:35:79:b6:66:94:7d:4c:19:12:e4:bc:96:b0:78:13:1f: 70:f3:80:46:56:bd:40:16:6f:be:6d:94:41:82:35:fe:9f:b8: b4:3e:55:6d:8e:ab:73:f0:90:bc:78:2a:63:05:f3:68:c0:74: c7:63:ba:ad:88:6c:f4:3a:97:7b:45:ec:61:85:90:46:b4:13: aa:84:61:0f:6e:02:36:cd:a2:76:42:1a:28:8b:0f:00:ed:84: 17:36:0c:1b:df:a1:04:64:84:10:7b:bf:d0:e4:df:98:34:5c: 94:5c:98:9c -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUOGtBNuzrfv+pOhBpokxj2f43ZacwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDQyNDAwMDA0NVoX DTI1MDQyODAwMDA0NVowejFJMEcGA1UEBRNAZDM2NTc4MWU4ZGI3MWYwYTE0ZDAy MmU1M2Q0YWI4MjFkNzcyNjI3MTVhMjYzYjhmOTk1NTQzMDE5MzcwYjg2MzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAub2+pTTXPJ6A9/mZH7sOR6KUAbfM es8Y4IekV3OZ4zyYu5yNLGpQXLlsEw+LZ9kgiVZrpcH/9RaV18B1rVJ1M5MXmxQt Mat/bIE9PYXPCmSky+ojZzbB2g/5xwU6gDEDVp0ZXbqnsRdGjGDtTQI6vbwL5Dtx 1GMf4Fb2UmCJ/vuqDt9dTr8ZUznvKCHTFTRxNjSfb9rcC92/NUskC+Q/MXKlU1rU 14bKjCnffT2n541EC9olbdeIvX8XW4bbznCqEWulCphrCSKGGF4A3/3MsmkCiXhJ nQoNDxl+kSFYY2CXYeA8G/PqnOIC3zhEhHWDxdy+XigEou4Jh2+wp8rL9QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFBHf+yyQCmu7axdZs9dxKtdznJMUMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2Yjk2ODEzZTQvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3 MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0LzIyMGNlZTBjLTYwMDItNDA5YS04MTk0 LTM4ZTIxNmMwMDk2Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAEpr2KYFlmksNK7CuOUoYdslZsNC1WhJ BeLMahDiDii++lIlZRci9uSHy24OxROOR5LzFUp47KKjbD1AeWwSOKVN1TV8ULAS Sg+DhGDqPzMmYN2da7uNZ8vMJ9XUJqptpovBkWaxNoIr40Rx1NasOApLBcbBw73b CdoLVkJSdwFXPBy994T6oUNEzwYrmcjb7cvrNXm2ZpR9TBkS5LyWsHgTH3DzgEZW vUAWb75tlEGCNf6fuLQ+VW2Oq3PwkLx4KmMF82jAdMdjuq2IbPQ6l3tF7GGFkEa0 E6qEYQ9uAjbNonZCGiiLDwDthBc2DBvfoQRkhBB7v9Dk35g0XJRcmJw= -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:53 2025 by rpki-client on console.sobornost.net