$ rpki-client -vvf rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft File: iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft (raw, json) Hash identifier: s8afELtcgtgx2E8iQjVYbZq86Z+kQU602hiS6fxynFo= Subject key identifier: 21:7A:5E:F2:FC:5D:71:39:6C:DC:E1:C5:41:75:DE:AF:BC:DA:CB:82 Authority key identifier: 88:12:C8:67:F6:A6:57:88:08:CD:92:A5:0B:B3:95:2A:F5:77:78:F8 Certificate issuer: /CN=A9182948/serialNumber=8812C867F6A6578808CD92A50BB3952AF57778F8 Certificate serial: 10D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft Manifest number: 10C6 Signing time: Tue 22 Jul 2025 17:27:50 +0000 Manifest this update: Tue 22 Jul 2025 17:27:49 +0000 Manifest next update: Tue 29 Jul 2025 17:27:49 +0000 Files and hashes: 1: iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl (hash: ok6JzWUMnnPUtXJ1i7aIoj0I4CebIIztYxygZTZV38U=) 2: 2DB6F886286111E9BA245A71C4F9AE02.roa (hash: u+yqPzFm9GwHKpt6ah61N8BF+hT/b/OI4bIwjmc4Bss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 17:27:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4305 (0x10d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182948, serialNumber=8812C867F6A6578808CD92A50BB3952AF57778F8 Validity Not Before: Jul 22 17:27:49 2025 GMT Not After : Jul 29 17:27:49 2025 GMT Subject: CN=687fca16-f911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e8:68:05:3f:4f:40:c4:75:b6:4b:3a:95:09: 40:1e:b3:50:21:ac:9f:13:ed:f0:10:b8:ef:2c:da: 3a:92:61:b0:31:f9:a0:c4:df:e9:85:21:59:1f:0b: 73:32:2a:39:3b:ac:c1:fe:6c:1f:2a:a5:1d:0f:21: d6:80:10:03:f5:02:e0:4f:79:48:e5:82:a8:44:ef: 99:7c:33:53:83:c6:60:3d:eb:24:7b:c4:e7:69:52: 69:3c:10:eb:28:b6:b3:d8:2e:60:c0:5b:d7:e1:90: af:ed:4d:3d:af:c6:49:32:d6:21:c9:28:b6:4c:25: d3:12:8f:fe:d4:d3:2f:d3:01:2b:be:f9:85:bb:ae: d7:a9:7e:e3:c6:33:a6:30:19:71:1a:f2:10:50:62: 20:af:c9:0e:a5:72:8b:22:46:44:79:a5:a7:c7:b4: 08:18:7d:55:e0:a9:27:0d:dd:1a:b6:09:7f:33:1b: b2:a6:22:79:1d:3b:21:dc:19:ec:0c:74:a9:f9:fc: b9:92:2f:78:8f:a6:ba:f0:55:25:31:4f:89:0f:f9: cc:b8:cc:a2:0e:5a:58:2a:0d:65:0f:d2:cf:5a:c8: 1e:3d:1b:ae:a8:2d:d4:43:e1:dc:ef:2b:74:f6:70: 00:98:ed:66:52:d8:3a:2f:54:d3:2c:58:c0:94:fa: c5:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:7A:5E:F2:FC:5D:71:39:6C:DC:E1:C5:41:75:DE:AF:BC:DA:CB:82 X509v3 Authority Key Identifier: keyid:88:12:C8:67:F6:A6:57:88:08:CD:92:A5:0B:B3:95:2A:F5:77:78:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:7d:43:d4:b3:20:df:d1:be:2f:6b:b5:1a:38:ed:9c:6c:45: d9:f6:1e:0c:9f:67:84:a6:a3:1c:32:39:18:eb:94:e4:a7:c8: 17:79:f4:9b:09:f6:6a:5f:7d:ae:60:66:86:d3:64:42:a7:d3: 0f:a7:22:ad:41:24:d3:70:4c:9f:81:51:2b:46:7f:05:db:34: 6f:d8:4d:f8:91:4c:5e:dd:1e:a1:e8:69:5e:19:fe:d3:95:35: 7d:51:9a:10:20:ea:3c:31:7e:ac:d3:1b:77:5d:56:b9:09:b8: 7c:46:83:cf:b4:24:82:51:fb:cd:12:5c:1d:07:5e:6a:bb:0b: 7a:8c:01:66:58:f7:45:81:4c:13:cf:93:e3:bc:a6:64:48:57: 44:a9:14:20:41:85:a3:e6:16:43:10:37:53:d6:0b:89:ee:2f: d6:dd:c7:39:4b:7f:d1:29:47:c2:e5:f9:5d:36:d4:3c:0e:4a: 0c:db:5d:0a:c3:d6:a2:e5:b6:f5:90:5f:71:19:2d:e5:b0:27: 22:3f:44:b3:3b:90:db:f0:9b:62:c7:d6:52:da:5f:fb:b6:9d: f9:7f:97:c4:62:43:68:8c:ba:99:e9:43:aa:15:64:53:aa:81: f1:ef:11:a3:0c:27:4c:30:bf:ed:4f:c8:44:89:c4:f0:cc:6f: a8:d4:4d:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICENEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI5NDgxMTAvBgNVBAUTKDg4MTJDODY3RjZBNjU3ODgwOENEOTJBNTBCQjM5NTJB RjU3Nzc4RjgwHhcNMjUwNzIyMTcyNzQ5WhcNMjUwNzI5MTcyNzQ5WjAYMRYwFAYD VQQDEw02ODdmY2ExNi1mOTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OhoBT9PQMR1tks6lQlAHrNQIayfE+3wELjvLNo6kmGwMfmgxN/phSFZHwtz Mio5O6zB/mwfKqUdDyHWgBAD9QLgT3lI5YKoRO+ZfDNTg8ZgPeske8TnaVJpPBDr KLaz2C5gwFvX4ZCv7U09r8ZJMtYhySi2TCXTEo/+1NMv0wErvvmFu67XqX7jxjOm MBlxGvIQUGIgr8kOpXKLIkZEeaWnx7QIGH1V4KknDd0atgl/MxuypiJ5HTsh3Bns DHSp+fy5ki94j6a68FUlMU+JD/nMuMyiDlpYKg1lD9LPWsgePRuuqC3UQ+Hc7yt0 9nAAmO1mUtg6L1TTLFjAlPrFywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCF6XvL8 XXE5bNzhxUF13q+82suCMB8GA1UdIwQYMBaAFIgSyGf2pleICM2SpQuzlSr1d3j4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mjk0OC9FRkE1OEJENjI3 RjAxMUU5ODg0NjhDMUJDNEY5QUUwMi9pQkxJWl9hbVY0Z0l6WktsQzdPVkt2VjNl UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lCTElaX2FtVjRnSXpaS2xDN09WS3ZWM2VQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Mjk0OC9FRkE1OEJENjI3RjAxMUU5ODg0NjhDMUJDNEY5QUUwMi9pQkxJWl9hbVY0 Z0l6WktsQzdPVkt2VjNlUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpfUPUsyDf0b4va7UaOO2cbEXZ9h4Mn2eEpqMcMjkY65Tkp8gXefSb CfZqX32uYGaG02RCp9MPpyKtQSTTcEyfgVErRn8F2zRv2E34kUxe3R6h6GleGf7T lTV9UZoQIOo8MX6s0xt3XVa5Cbh8RoPPtCSCUfvNElwdB15quwt6jAFmWPdFgUwT z5PjvKZkSFdEqRQgQYWj5hZDEDdT1guJ7i/W3cc5S3/RKUfC5fldNtQ8DkoM210K w9ai5bb1kF9xGS3lsCciP0SzO5Db8Jtix9ZS2l/7tp35f5fEYkNojLqZ6UOqFWRT qoHx7xGjDCdMML/tT8hEicTwzG+o1E1M -----END CERTIFICATE-----Generated at Wed Jul 23 02:30:51 2025 by rpki-client