$ rpki-client -vvf rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft File: iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft (raw, json) Hash identifier: CZbsN+4DVqrw9lLm+gjqI176QPkx3fLCOS5GA7YhSwE= Subject key identifier: 05:DA:1D:44:4A:C7:E1:FF:99:19:21:12:BB:9A:BB:AE:B8:D7:7A:48 Authority key identifier: 88:12:C8:67:F6:A6:57:88:08:CD:92:A5:0B:B3:95:2A:F5:77:78:F8 Certificate issuer: /CN=A9182948/serialNumber=8812C867F6A6578808CD92A50BB3952AF57778F8 Certificate serial: 0FF4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft Manifest number: 0FEA Signing time: Sat 18 May 2024 18:02:00 +0000 Manifest this update: Sat 18 May 2024 18:02:00 +0000 Manifest next update: Sat 25 May 2024 18:02:00 +0000 Files and hashes: 1: iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl (hash: FoW6Af9NYZuz3x6623NjcjyqvW2bDxwtzmDyCY8Wp+o=) 2: 2DB6F886286111E9BA245A71C4F9AE02.roa (hash: pV9KN5MeTOu2qmu0WIHii3a+U30QMLMqCUvjqN3GmOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4084 (0xff4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182948/serialNumber=8812C867F6A6578808CD92A50BB3952AF57778F8 Validity Not Before: May 18 18:02:00 2024 GMT Not After : May 25 18:02:00 2024 GMT Subject: CN=6648ed18-f3e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d8:b6:58:c5:7c:19:c9:fb:d5:81:d3:02:e9: 9a:bb:4b:ba:5a:1c:83:c9:dc:8b:83:2a:77:24:e9: ff:24:e7:f5:c1:b9:3d:ed:ae:7d:99:85:b2:b8:e7: 3a:30:02:1f:0a:fb:99:70:86:f0:93:f7:e0:af:58: a9:c5:78:bb:4a:7f:01:de:c6:73:85:da:01:2c:94: a7:7f:e6:16:9b:74:00:bd:32:4e:7c:50:22:b4:d9: 6b:6b:0b:b6:3d:e9:ce:63:7e:c9:f5:d5:36:b7:b8: f7:06:3d:72:ce:d0:de:29:3e:cc:30:a7:38:76:10: 97:7a:61:59:33:20:7e:60:ee:47:60:c5:94:dd:56: 98:e2:da:db:1b:f3:f6:2a:0b:1f:c6:c7:5c:3a:7d: 96:d1:b5:44:d9:11:ca:69:3f:7d:3a:48:b9:0d:93: c7:03:91:5d:52:50:c4:4d:f5:ea:e9:e5:f6:2f:f6: b1:51:91:db:17:8e:3e:f2:24:3a:e8:fc:82:be:2b: d0:83:a8:50:17:38:27:8e:f2:ce:78:60:0f:74:ed: 21:e7:58:74:ed:ee:24:a2:ec:bc:70:e2:af:81:b5: fc:fa:d5:8c:1c:e1:b7:cf:d2:5a:c4:79:02:69:d5: 19:5a:a1:80:72:d9:06:20:91:c4:59:8a:76:40:0a: 17:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:DA:1D:44:4A:C7:E1:FF:99:19:21:12:BB:9A:BB:AE:B8:D7:7A:48 X509v3 Authority Key Identifier: keyid:88:12:C8:67:F6:A6:57:88:08:CD:92:A5:0B:B3:95:2A:F5:77:78:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:f3:b8:98:69:84:e0:00:a2:78:a0:62:65:0f:cf:f6:ca:c1: 5a:12:fd:a5:aa:fb:32:20:2a:d4:34:58:d1:d5:32:9f:83:9b: 98:b5:63:7a:da:57:e6:47:67:d7:b0:f1:70:40:6d:24:e4:53: 17:ba:bd:ad:e3:e8:a4:ee:55:4e:01:f4:4a:08:23:cf:2c:3d: 44:6a:5a:ab:a4:e9:38:3c:50:14:30:a5:f7:3c:cf:7d:d0:a2: f3:7b:3d:cf:c8:5f:64:60:af:20:aa:fd:2b:a0:e4:13:2a:90: 7f:08:8a:93:5d:e7:a8:9b:4c:93:22:70:1c:f6:50:ff:19:da: 6e:45:59:ba:a4:70:93:23:9c:75:11:27:9d:ec:91:ac:d5:95: ed:fb:e4:66:ae:08:17:c8:8a:be:14:e0:be:d1:4e:2c:d2:48: fa:fc:af:01:60:c4:d3:08:4d:a0:4c:23:5d:d8:2f:94:31:aa: d5:30:7e:c8:f8:e9:1d:9f:8a:b6:4c:ed:44:12:75:c5:e2:b8: 8f:4c:17:88:8d:9f:9e:6a:d1:25:4d:5b:45:52:5f:6d:af:5f: 06:ab:2f:6d:92:13:ec:87:53:3e:77:2b:9f:c2:6b:8f:73:8a: 76:dd:09:25:86:b0:83:ef:07:50:07:f9:0a:a9:74:41:7b:16: d1:fc:43:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI5NDgxMTAvBgNVBAUTKDg4MTJDODY3RjZBNjU3ODgwOENEOTJBNTBCQjM5NTJB RjU3Nzc4RjgwHhcNMjQwNTE4MTgwMjAwWhcNMjQwNTI1MTgwMjAwWjAYMRYwFAYD VQQDEw02NjQ4ZWQxOC1mM2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0di2WMV8Gcn71YHTAumau0u6WhyDydyLgyp3JOn/JOf1wbk97a59mYWyuOc6 MAIfCvuZcIbwk/fgr1ipxXi7Sn8B3sZzhdoBLJSnf+YWm3QAvTJOfFAitNlrawu2 PenOY37J9dU2t7j3Bj1yztDeKT7MMKc4dhCXemFZMyB+YO5HYMWU3VaY4trbG/P2 KgsfxsdcOn2W0bVE2RHKaT99Oki5DZPHA5FdUlDETfXq6eX2L/axUZHbF44+8iQ6 6PyCvivQg6hQFzgnjvLOeGAPdO0h51h07e4kouy8cOKvgbX8+tWMHOG3z9JaxHkC adUZWqGActkGIJHEWYp2QAoXMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXaHURK x+H/mRkhEruau66413pIMB8GA1UdIwQYMBaAFIgSyGf2pleICM2SpQuzlSr1d3j4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mjk0OC9FRkE1OEJENjI3 RjAxMUU5ODg0NjhDMUJDNEY5QUUwMi9pQkxJWl9hbVY0Z0l6WktsQzdPVkt2VjNl UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lCTElaX2FtVjRnSXpaS2xDN09WS3ZWM2VQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Mjk0OC9FRkE1OEJENjI3RjAxMUU5ODg0NjhDMUJDNEY5QUUwMi9pQkxJWl9hbVY0 Z0l6WktsQzdPVkt2VjNlUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCk87iYaYTgAKJ4oGJlD8/2ysFaEv2lqvsyICrUNFjR1TKfg5uYtWN6 2lfmR2fXsPFwQG0k5FMXur2t4+ik7lVOAfRKCCPPLD1EalqrpOk4PFAUMKX3PM99 0KLzez3PyF9kYK8gqv0roOQTKpB/CIqTXeeom0yTInAc9lD/GdpuRVm6pHCTI5x1 ESed7JGs1ZXt++RmrggXyIq+FOC+0U4s0kj6/K8BYMTTCE2gTCNd2C+UMarVMH7I +Okdn4q2TO1EEnXF4riPTBeIjZ+eatElTVtFUl9tr18Gqy9tkhPsh1M+dyufwmuP c4p23QklhrCD7wdQB/kKqXRBexbR/EMQ -----END CERTIFICATE-----Generated at Sat May 18 18:46:46 2024 by rpki-client on console-fra.rpki-client.org