$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft File: manifest.mft (raw, json) Hash identifier: wQH9roK1D6V91XelWBlIP5Wm3gmR9GYEAXqw6ARXcAg= Subject key identifier: 35:27:42:B2:CA:C0:8B:F8:30:AD:20:4B:8D:E6:75:A2:2F:65:55:B7 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 1D5DC103005F3E103C47D568BC2A8A0EDE2B4819 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft Manifest number: 0417 Signing time: Thu 24 Apr 2025 00:00:50 +0000 Manifest this update: Thu 24 Apr 2025 00:00:50 +0000 Manifest next update: Mon 28 Apr 2025 00:00:50 +0000 Files and hashes: 1: 05bc8dbb-c70a-48da-b45b-4448364614ff.roa (hash: 5CYPHRxWfJ3PEs9eD3Tt3hr4lLWTkgio4seBiepverY=) 2: 0bf15d3f-c546-4bb6-a764-82165c384d37.roa (hash: 5kzdK9AjyaCql5M01GVW6devRv8Kmhkc7+LTJZGwFYg=) 3: 0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa (hash: KzV8bX75/Zeinz9MFfPrUSUL++GJqbTyriAsomfLsAg=) 4: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (hash: dvRUX4oeoJxdYeJcXaOx2heD6pheCRMn8wlMKNvyjBQ=) 5: 3407e5b6-a83d-4668-898f-fdbb23092502.roa (hash: cH943DC4IwcYYVM5xLtZ3NJChO5pM1whgAnx0K/weZw=) 6: 3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa (hash: pyzwtWtvugnjJAQkzPyBldCLe1/01+NabCiaqfVAnp0=) 7: 48a67156-122e-41d4-a2a8-8046cc5ecc41.roa (hash: BYXaRbdt8KoCkkTeiHvqn7XvTC5pBCIvMqVsYwPYkL0=) 8: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (hash: Kc0XLw9eBx4ghIL+7KXd6FxYjRku8SBDxi7Q2XTfbv0=) 9: 6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl (hash: bty4t3g6b0m/mSoVFWAbo2sExNn8dgLb+VsfjTBiezg=) 10: 74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa (hash: OTtbI+AqHa7IMUb459/OtfVvgv0CNVRjV1VRiYtAXus=) 11: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (hash: 1IAXFIoP8Io5D68vUZ+0gvZCz7Ph9J6XToVIIdcTuTQ=) 12: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (hash: p0tRTrL867HAf/Ewqo8kXKHkQDoLIGRb1bTw5dVBRtc=) 13: 9b59fbe4-f242-4dbf-9964-15048c3da996.roa (hash: HyYk1qTMcbdjCco+oBYO4eDbEYlvBNmuV4W9QY2tSXY=) 14: 9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa (hash: IHcjtmjimrvEPtGcAvpRZVP9Kv9U9xdlS5UZzVEnQe8=) 15: a78b90df-233b-4ec6-89d2-de27ac2dc044.roa (hash: cBZSgyc9aRFZyj1jTmt6H/5F9c90GhLTVtOVx3JaGEA=) 16: b3ba338e-4843-454b-abe5-65f09756225a.roa (hash: eptWax8q+JOtZKjpJaa5BqXwHYObIO0PLM5pW6H/QLM=) 17: c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa (hash: WOrCZsuSU93907mrq1/8L9PYRpGTUReLldH2W+51axM=) 18: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (hash: TD2vtxZtVv9WlYe1BQ9c7uVYlhJVRmPc/DaPr+gYpXo=) Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:5d:c1:03:00:5f:3e:10:3c:47:d5:68:bc:2a:8a:0e:de:2b:48:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Apr 24 00:00:50 2025 GMT Not After : Apr 28 00:00:50 2025 GMT Subject: serialNumber=14d8d7877c37757c1ee362cbfbcd25158dcbffc7bab4c782d9cd27258908a6cc, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e4:fb:5f:54:2d:7f:c7:2a:dd:2c:17:90:90: 8e:49:a2:54:c9:a4:20:80:72:d5:12:c9:14:99:de: 3d:1e:a0:6f:73:4c:ca:a0:42:83:6f:66:0c:61:b5: 40:ce:51:70:61:f3:17:53:db:14:7b:37:da:e5:81: f1:7d:fe:ec:f3:10:56:78:b0:0b:b9:4c:57:9d:4e: 95:e2:1b:7f:34:80:78:59:b8:d3:f6:21:43:66:a4: 94:1d:eb:3a:7b:0b:c4:90:cb:3a:7d:da:da:5d:4a: d6:7f:75:85:69:94:0c:b1:ac:ca:5b:9a:c9:db:3a: 2a:02:16:40:ad:02:d7:26:53:92:4e:82:00:0f:75: 08:10:52:b6:ab:5f:23:d3:10:98:d3:7f:21:27:a0: 3a:45:b3:c5:cc:33:e4:7f:c1:6f:82:6e:08:e0:65: 32:f0:7c:45:57:96:f4:d6:e9:98:5a:7c:e2:af:63: 2c:45:ed:5b:e4:f9:f0:09:9e:81:49:f2:f6:d9:5a: 37:03:bc:1d:90:84:d4:b6:77:04:c0:d2:2e:dd:c3: 4d:47:26:3d:5d:d9:a5:8e:a1:e3:05:59:0c:94:49: 6b:a8:4e:72:17:4b:ef:28:27:e5:26:96:43:76:d0: c7:87:48:ae:94:89:f8:de:b4:92:6c:18:63:6c:62: 7e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:27:42:B2:CA:C0:8B:F8:30:AD:20:4B:8D:E6:75:A2:2F:65:55:B7 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:3d:16:2b:86:a6:0e:0e:74:ad:e1:e9:6e:60:5d:f6:c2:8e: d5:8f:c4:8b:72:2b:38:43:85:85:3a:b3:ae:62:0b:ba:60:7f: 0d:88:a3:a2:a2:70:c7:fa:65:22:ba:46:1c:18:f1:f9:ca:6e: e7:ce:18:4c:6b:b6:aa:be:2a:fe:ef:1f:bd:26:49:22:fb:3b: 33:b6:8a:e7:42:2f:c9:0c:e2:6b:9e:8c:47:ec:8f:b3:74:c5: 23:77:95:bb:43:e9:68:f1:1f:9a:43:0a:67:59:e6:4a:e0:cd: 49:cc:a3:ff:e8:96:3f:e5:84:94:e4:db:25:69:ce:5b:d4:d5: fe:12:63:f1:4a:f3:61:75:fc:fd:da:c6:35:01:51:97:55:7b: cf:1b:3f:63:0c:c0:06:d4:01:3f:9a:c6:21:24:4b:50:b5:4b: d9:c9:d5:29:e8:62:03:18:e3:e2:be:3d:28:9e:e0:a2:23:50: c0:58:5b:32:c7:8e:ee:2a:f0:00:ff:36:ad:8a:3d:53:b1:5f: f8:9e:5c:78:b8:d3:e7:33:94:7f:dd:7a:98:bd:37:ed:75:4b: 88:37:a9:dc:08:c9:45:86:2e:17:65:9a:4c:6a:7e:6d:70:dd: 92:5a:be:69:7e:38:77:45:0a:fc:7b:39:d4:96:85:bb:c1:f3: 20:9b:93:d3 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIUHV3BAwBfPhA8R9VovCqKDt4rSBkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDQyNDAwMDA1MFoX DTI1MDQyODAwMDA1MFowejFJMEcGA1UEBRNAMTRkOGQ3ODc3YzM3NzU3YzFlZTM2 MmNiZmJjZDI1MTU4ZGNiZmZjN2JhYjRjNzgyZDljZDI3MjU4OTA4YTZjYzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOT7X1Qtf8cq3SwXkJCOSaJUyaQg gHLVEskUmd49HqBvc0zKoEKDb2YMYbVAzlFwYfMXU9sUezfa5YHxff7s8xBWeLAL uUxXnU6V4ht/NIB4WbjT9iFDZqSUHes6ewvEkMs6fdraXUrWf3WFaZQMsazKW5rJ 2zoqAhZArQLXJlOSToIAD3UIEFK2q18j0xCY038hJ6A6RbPFzDPkf8Fvgm4I4GUy 8HxFV5b01umYWnzir2MsRe1b5PnwCZ6BSfL22Vo3A7wdkITUtncEwNIu3cNNRyY9 XdmljqHjBVkMlElrqE5yF0vvKCflJpZDdtDHh0iulIn43rSSbBhjbGJ+HQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFDUnQrLKwIv4MK0gS43mdaIvZVW3MB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t L3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4ZTVkYmQyMTkvbWFu aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZGI5YTM3MmEtMDli Yy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5LzZlY2IzY2NhLTQ4OGQtNDNiOS1hNTBi LWQzN2MwYzU1YTllMS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw BKACBQAwDQYJKoZIhvcNAQELBQADggEBAIE9FiuGpg4OdK3h6W5gXfbCjtWPxIty KzhDhYU6s65iC7pgfw2Io6KicMf6ZSK6RhwY8fnKbufOGExrtqq+Kv7vH70mSSL7 OzO2iudCL8kM4muejEfsj7N0xSN3lbtD6WjxH5pDCmdZ5krgzUnMo//olj/lhJTk 2yVpzlvU1f4SY/FK82F1/P3axjUBUZdVe88bP2MMwAbUAT+axiEkS1C1S9nJ1Sno YgMY4+K+PSie4KIjUMBYWzLHju4q8AD/Nq2KPVOxX/ieXHi40+czlH/depi9N+11 S4g3qdwIyUWGLhdlmkxqfm1w3ZJavml+OHdFCvx7OdSWhbvB8yCbk9M= -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:54 2025 by rpki-client on console.sobornost.net