$ rpki-client -vvf rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft File: iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft (raw, json) Hash identifier: d4O1usQ37Zkh1CsqSB+qVCf9TuT7pA4KysDgpbwDIow= Subject key identifier: B0:89:B6:A8:62:8A:0E:FF:CD:87:34:CD:AC:3F:79:02:EF:29:85:4B Authority key identifier: 88:12:C8:67:F6:A6:57:88:08:CD:92:A5:0B:B3:95:2A:F5:77:78:F8 Certificate issuer: /CN=A9182948/serialNumber=8812C867F6A6578808CD92A50BB3952AF57778F8 Certificate serial: 109E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft Manifest number: 1093 Signing time: Thu 10 Apr 2025 17:21:57 +0000 Manifest this update: Thu 10 Apr 2025 17:21:56 +0000 Manifest next update: Thu 17 Apr 2025 17:21:56 +0000 Files and hashes: 1: iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl (hash: VCSnqqnYZypnVdWTIHVbw6nTFfc7u472JkxeNEafNnQ=) 2: 2DB6F886286111E9BA245A71C4F9AE02.roa (hash: u+yqPzFm9GwHKpt6ah61N8BF+hT/b/OI4bIwjmc4Bss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 17:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4254 (0x109e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182948, serialNumber=8812C867F6A6578808CD92A50BB3952AF57778F8 Validity Not Before: Apr 10 17:21:56 2025 GMT Not After : Apr 17 17:21:56 2025 GMT Subject: CN=67f7fe34-75e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6f:1b:2a:af:64:65:9b:16:0e:cb:1f:b9:90: a3:ec:a2:a3:bf:65:77:c6:0c:8a:b5:27:5f:18:b7: 11:59:be:8c:1d:13:6f:00:04:53:81:05:69:d1:bd: c9:79:37:8f:d4:05:de:12:bd:9d:b7:c1:5f:5e:39: 95:6a:3f:11:4a:b6:a6:73:b8:7e:c5:0d:a8:1f:99: 60:53:08:bd:e5:02:8f:32:49:41:ba:4a:37:78:00: 1c:b7:b9:09:3f:91:f6:24:a1:5e:64:2e:b8:34:00: 63:86:a8:f7:90:59:33:1d:cc:5b:c2:c2:e9:90:7c: 8b:74:a0:3c:75:c6:be:e5:eb:d9:f0:38:f3:df:ab: be:3d:f0:75:f7:b4:ff:25:57:ef:fc:a3:38:6a:d7: c1:d9:57:d5:40:8a:a3:de:4a:38:f7:6d:ab:b4:ba: 13:1f:ea:89:17:b9:28:54:9c:7e:f8:27:82:af:9f: 72:e2:ee:04:c9:3f:9e:c8:5a:41:05:8d:0a:13:7c: d2:b4:15:d1:17:59:39:45:1c:a3:b2:03:27:e8:dc: 24:bb:83:31:35:89:b0:22:ba:76:f0:56:6a:f6:13: e1:33:52:53:92:00:e2:c9:8d:64:ab:6b:d6:8d:24: 5c:57:32:83:49:20:f9:a2:14:04:b8:7b:09:8a:df: 6b:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:89:B6:A8:62:8A:0E:FF:CD:87:34:CD:AC:3F:79:02:EF:29:85:4B X509v3 Authority Key Identifier: keyid:88:12:C8:67:F6:A6:57:88:08:CD:92:A5:0B:B3:95:2A:F5:77:78:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:35:df:8f:d3:a6:5f:d2:b7:c1:3a:71:36:61:1c:87:67:7c: ab:5f:fb:36:f7:39:67:bd:5c:f7:d0:2c:ae:69:6c:78:70:f2: 49:5e:f6:a9:bd:36:c0:f6:5a:10:be:b6:ad:b9:05:bc:91:cc: bd:86:7d:5e:6a:a7:81:ca:99:1d:f9:9b:ad:c9:86:de:d4:ff: bc:de:36:f5:0b:ba:fc:79:82:16:e9:bb:f2:5d:ab:36:06:84: d2:55:06:05:5f:6c:5c:c0:e9:19:23:97:da:38:50:43:a0:fb: e5:30:af:c5:84:e7:60:a5:5e:03:4b:10:77:4f:19:9f:e4:f2: f3:fe:ab:14:b6:3c:53:f4:ad:c2:ef:86:08:9b:29:ee:a1:53: 1e:de:00:1e:9b:f3:28:22:29:4d:71:3b:9c:d8:e9:f1:5c:f6: 46:11:cf:da:e2:29:14:e1:ae:75:04:77:e8:79:0d:2a:a8:83: 01:18:07:79:8e:75:45:25:08:b8:9f:bd:ed:ba:ee:d3:86:db: 78:42:c7:6f:7c:60:98:92:a9:e0:4c:31:8a:49:74:8e:c5:9e: 7a:ed:d8:1e:3f:89:9f:b9:27:eb:66:a2:1c:4d:78:64:82:1d: d8:ce:34:ac:a8:bd:0e:f5:f5:fd:e3:fa:be:c0:cc:8e:40:1d: ab:8f:7c:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI5NDgxMTAvBgNVBAUTKDg4MTJDODY3RjZBNjU3ODgwOENEOTJBNTBCQjM5NTJB RjU3Nzc4RjgwHhcNMjUwNDEwMTcyMTU2WhcNMjUwNDE3MTcyMTU2WjAYMRYwFAYD VQQDEw02N2Y3ZmUzNC03NWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr28bKq9kZZsWDssfuZCj7KKjv2V3xgyKtSdfGLcRWb6MHRNvAARTgQVp0b3J eTeP1AXeEr2dt8FfXjmVaj8RSramc7h+xQ2oH5lgUwi95QKPMklBuko3eAAct7kJ P5H2JKFeZC64NABjhqj3kFkzHcxbwsLpkHyLdKA8dca+5evZ8Djz36u+PfB197T/ JVfv/KM4atfB2VfVQIqj3ko4922rtLoTH+qJF7koVJx++CeCr59y4u4EyT+eyFpB BY0KE3zStBXRF1k5RRyjsgMn6Nwku4MxNYmwIrp28FZq9hPhM1JTkgDiyY1kq2vW jSRcVzKDSSD5ohQEuHsJit9rHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLCJtqhi ig7/zYc0zaw/eQLvKYVLMB8GA1UdIwQYMBaAFIgSyGf2pleICM2SpQuzlSr1d3j4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mjk0OC9FRkE1OEJENjI3 RjAxMUU5ODg0NjhDMUJDNEY5QUUwMi9pQkxJWl9hbVY0Z0l6WktsQzdPVkt2VjNl UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lCTElaX2FtVjRnSXpaS2xDN09WS3ZWM2VQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Mjk0OC9FRkE1OEJENjI3RjAxMUU5ODg0NjhDMUJDNEY5QUUwMi9pQkxJWl9hbVY0 Z0l6WktsQzdPVkt2VjNlUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbNd+P06Zf0rfBOnE2YRyHZ3yrX/s29zlnvVz30CyuaWx4cPJJXvap vTbA9loQvratuQW8kcy9hn1eaqeBypkd+ZutyYbe1P+83jb1C7r8eYIW6bvyXas2 BoTSVQYFX2xcwOkZI5faOFBDoPvlMK/FhOdgpV4DSxB3Txmf5PLz/qsUtjxT9K3C 74YImynuoVMe3gAem/MoIilNcTuc2OnxXPZGEc/a4ikU4a51BHfoeQ0qqIMBGAd5 jnVFJQi4n73tuu7Thtt4QsdvfGCYkqngTDGKSXSOxZ567dgeP4mfuSfrZqIcTXhk gh3YzjSsqL0O9fX94/q+wMyOQB2rj3wW -----END CERTIFICATE-----Generated at Sat Apr 12 17:55:30 2025 by rpki-client