Manifest
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
File: manifest.mft (raw, json)
Hash identifier: 0l4SNDsyYT8ggl3l1dowMoxeTkEjm/26lNkUZLmo1gY=
Subject key identifier: 00:1D:05:F3:19:0D:FC:3F:2F:B9:F4:0F:C8:4B:6C:4C:F8:D0:FC:90
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial: 4A19FE75B2586D924A2B03493130EAFB00C20FA4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
Manifest number: 0433
Signing time: Fri 31 Jan 2025 15:03:39 +0000
Manifest this update: Fri 31 Jan 2025 15:03:39 +0000
Manifest next update: Tue 04 Feb 2025 15:03:39 +0000
Files and hashes: 1: 0b0c2d18-2b42-4e53-9e6a-d6f7d5dc2334.roa (hash: jkfCldReBg4ti4NRgq3Xz2fi7+YlyIezbNVptz4DW+Y=)
2: 12e59001-35ac-4abf-858f-37b955a24b3f.crl (hash: 8wCggrU98yNV57aC3zCrpBgm+zmpP5YVbylO1TrDmfo=)
3: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (hash: Y1CXTx++DyY4mytREpQ8udZMn9kt0f8SfwLdhN//7yI=)
4: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (hash: s/+mM7vdn9fbJRJ+e7Bx0G99PMHXMV5+bFciUf/sMlc=)
5: 4bbd1bdf-866e-4b25-9ac6-e929a05080b9.roa (hash: klQ50KQSSPIOcIrVrdyD0UWzIpjemiq90SNt/GcU+sk=)
6: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (hash: HR65o9tlK+RLM2+gSv8runRrH8PwuHE7YJMH/60DOvY=)
7: 6982f3ac-c7ae-423c-a028-517d7541d973.roa (hash: Qr2A82VwQRcnl4OkguNroU0dq60vDHPA4zP2FQBQM7k=)
8: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (hash: e4oweRX7RGre1aqAxR/01hZbsJYMDQfCRwKUBFLa6Tw=)
9: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (hash: Vn7FPgX6FPBe/lGLyiVPjvLwdILtOLU2Jw0PruRD2v4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:19:fe:75:b2:58:6d:92:4a:2b:03:49:31:30:ea:fb:00:c2:0f:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Validity
Not Before: Jan 31 15:03:39 2025 GMT
Not After : Feb 4 15:03:39 2025 GMT
Subject: serialNumber=acdea94eefef3090c5110be27db0cb845f11ea20587dd12c4546213272525d38, CN=bb9a9116-f615-462e-a680-5266b327e0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:32:b6:2d:5b:a6:0a:0f:75:16:12:ee:8a:bc:
91:75:17:2a:50:3b:cf:b0:fe:ca:2c:e8:3f:f6:fd:
49:4b:96:06:7d:71:99:fb:8b:29:81:10:23:40:76:
c1:a9:5e:41:b0:aa:4f:01:4c:4a:6a:e3:72:b0:6b:
ea:4d:d2:28:9e:3d:5e:cf:cc:3b:02:c4:a9:5f:ed:
ea:48:25:5e:c7:fa:dc:5b:be:a5:4e:7d:aa:56:dd:
7c:8f:e3:22:16:9b:91:00:e3:20:6a:67:f5:3a:13:
72:f9:1a:82:01:3a:b0:91:2f:11:7e:e5:49:29:f2:
62:3a:ee:8e:4a:4e:74:49:5f:41:87:9e:6f:1b:29:
7f:db:56:5f:01:4d:ae:fa:a1:84:0d:6d:6c:e2:10:
ca:c2:19:26:62:35:5c:53:65:cb:29:f8:14:13:ea:
42:98:6e:27:43:4a:83:5b:b2:9d:34:30:4b:d4:f8:
3c:29:e7:8e:86:a8:c3:5f:c2:37:01:30:e9:01:fc:
12:8d:a2:1d:d3:9d:60:b0:f1:9e:ff:ca:c2:56:50:
72:f1:b5:0a:86:2a:50:39:5b:2f:b8:68:b1:6a:48:
8d:d4:81:05:b8:74:be:35:12:f0:a3:2c:b5:11:c3:
6d:76:81:3e:b4:55:28:2c:ce:fa:92:ac:46:cb:49:
8a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:1D:05:F3:19:0D:FC:3F:2F:B9:F4:0F:C8:4B:6C:4C:F8:D0:FC:90
X509v3 Authority Key Identifier:
keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:f7:a6:49:c4:b2:d6:d8:15:70:32:8d:f1:63:83:00:70:c0:
16:d9:55:77:d3:88:e3:33:76:82:f4:13:4f:6b:aa:42:63:ea:
6c:61:64:ee:4a:2e:c4:b4:93:5c:7e:80:62:db:f2:1b:f3:ea:
18:46:63:93:c8:d1:c2:e9:7c:03:59:40:15:e2:8d:94:a9:fb:
e1:e5:56:32:3e:a2:55:eb:b4:19:07:fb:36:20:83:2e:63:01:
c6:04:ce:99:94:2e:b5:ee:a6:f1:cd:f2:26:41:88:f3:d9:39:
49:4e:e9:a7:a1:ff:69:09:4e:9f:fb:76:11:5f:ff:03:ae:70:
ba:18:10:18:40:d7:e5:3f:6e:a8:b4:ad:97:89:2e:67:78:a0:
43:db:80:e5:2e:2a:84:e0:42:70:17:58:f3:2b:fd:9b:7e:b3:
75:c5:5a:56:bc:14:ba:64:83:14:64:49:2a:ae:39:3d:b2:8f:
c6:76:70:d9:e2:77:71:c3:8d:b5:0b:2a:34:bc:ab:73:83:cb:
4e:66:24:0e:26:19:4d:36:1a:34:e8:41:0a:98:cb:15:e9:6f:
0b:86:4c:b2:1d:7e:f2:38:6b:db:6a:e8:e5:08:4e:37:40:7e:
a3:87:1b:84:35:a8:ae:a9:74:3f:06:e3:2f:80:75:07:d8:82:
c8:f5:cc:68
-----BEGIN CERTIFICATE-----
MIIFlTCCBH2gAwIBAgIUShn+dbJYbZJKKwNJMTDq+wDCD6QwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4
ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MDEzMTE1MDMzOVoX
DTI1MDIwNDE1MDMzOVowejFJMEcGA1UEBRNAYWNkZWE5NGVlZmVmMzA5MGM1MTEw
YmUyN2RiMGNiODQ1ZjExZWEyMDU4N2RkMTJjNDU0NjIxMzI3MjUyNWQzODEtMCsG
A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4jK2LVumCg91FhLuiryRdRcqUDvP
sP7KLOg/9v1JS5YGfXGZ+4spgRAjQHbBqV5BsKpPAUxKauNysGvqTdIonj1ez8w7
AsSpX+3qSCVex/rcW76lTn2qVt18j+MiFpuRAOMgamf1OhNy+RqCATqwkS8RfuVJ
KfJiOu6OSk50SV9Bh55vGyl/21ZfAU2u+qGEDW1s4hDKwhkmYjVcU2XLKfgUE+pC
mG4nQ0qDW7KdNDBL1Pg8KeeOhqjDX8I3ATDpAfwSjaId051gsPGe/8rCVlBy8bUK
hipQOVsvuGixakiN1IEFuHS+NRLwoyy1EcNtdoE+tFUoLM76kqxGy0mKIwIDAQAB
o4ICQTCCAj0wHQYDVR0OBBYEFAAdBfMZDfw/L7n0D8hLbEz40PyQMB8GA1UdIwQY
MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp
QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEF
BQcwC4ZjcnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29t
L3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMyY2EzMGY1N2IvbWFu
aWZlc3QubWZ0MIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1y
c3luYy51cy1lYXN0LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNzA4YWFmYWYtMDBi
NC00ODViLTg1NGMtMGIzMmNhMzBmNTdiLzEyZTU5MDAxLTM1YWMtNGFiZi04NThm
LTM3Yjk1NWEyNGIzZi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYw
BKACBQAwDQYJKoZIhvcNAQELBQADggEBADv3pknEstbYFXAyjfFjgwBwwBbZVXfT
iOMzdoL0E09rqkJj6mxhZO5KLsS0k1x+gGLb8hvz6hhGY5PI0cLpfANZQBXijZSp
++HlVjI+olXrtBkH+zYggy5jAcYEzpmULrXupvHN8iZBiPPZOUlO6aeh/2kJTp/7
dhFf/wOucLoYEBhA1+U/bqi0rZeJLmd4oEPbgOUuKoTgQnAXWPMr/Zt+s3XFWla8
FLpkgxRkSSquOT2yj8Z2cNnid3HDjbULKjS8q3ODy05mJA4mGU02GjToQQqYyxXp
bwuGTLIdfvI4a9tq6OUITjdAfqOHG4Q1qK6pdD8G4y+AdQfYgsj1zGg=
-----END CERTIFICATE-----
Generated at Fri Apr 25 08:14:06 2025 by rpki-client