$ rpki-client -vvf rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft File: iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft (raw, json) Hash identifier: a6GkrUh+9FtxUxx/6faAuI8jCApZgKv/gaaXDi5zQK4= Subject key identifier: 39:45:31:D7:67:EC:0A:D5:57:8E:8B:41:E7:29:18:92:46:D4:DB:9E Authority key identifier: 88:12:C8:67:F6:A6:57:88:08:CD:92:A5:0B:B3:95:2A:F5:77:78:F8 Certificate issuer: /CN=A9182948/serialNumber=8812C867F6A6578808CD92A50BB3952AF57778F8 Certificate serial: 10E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft Manifest number: 10D6 Signing time: Fri 22 Aug 2025 17:25:56 +0000 Manifest this update: Fri 22 Aug 2025 17:25:55 +0000 Manifest next update: Fri 29 Aug 2025 17:25:55 +0000 Files and hashes: 1: iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl (hash: kZhDEMCxSuF0NNpfZpa+ZYwYcFguZcPEd37stX9FMaw=) 2: 2DB6F886286111E9BA245A71C4F9AE02.roa (hash: u+yqPzFm9GwHKpt6ah61N8BF+hT/b/OI4bIwjmc4Bss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:25:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4321 (0x10e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182948, serialNumber=8812C867F6A6578808CD92A50BB3952AF57778F8 Validity Not Before: Aug 22 17:25:55 2025 GMT Not After : Aug 29 17:25:55 2025 GMT Subject: CN=68a8a824-1f42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:29:73:c6:18:50:33:6f:14:ef:00:20:b2:8f: 74:86:0e:ab:5e:23:b6:c1:1d:9f:d3:13:c5:46:80: 9e:6d:34:5f:bf:99:1e:c9:64:0e:1a:48:48:67:e5: ed:e4:d6:cd:61:56:cc:31:54:89:62:fe:2d:d4:a4: f9:91:9f:69:7c:ad:50:e6:c8:38:e6:1f:7c:30:5f: fc:27:b5:27:84:17:df:f9:46:e5:67:1e:6c:6d:3d: 2d:e3:c6:b3:eb:d4:f1:25:b6:25:3e:b3:23:7f:66: 2f:0b:2d:aa:27:61:96:4b:04:bd:4b:48:ef:4a:58: 6c:68:c9:61:7c:e9:a0:cd:a1:05:ce:ad:ea:2e:bd: 92:28:bc:33:6c:30:6d:3f:be:87:b1:fe:15:32:18: 60:d4:ff:bd:a4:5c:42:65:49:4e:c9:a5:61:c1:34: 96:42:9b:b2:22:de:b3:60:14:2d:6d:12:1b:6d:86: 4f:a6:6a:72:c8:67:56:c3:4b:0c:d4:4e:8d:5b:3a: a7:25:d6:b2:fa:b6:08:91:b0:21:b3:27:02:f8:5b: 00:c1:7e:a1:81:aa:dc:dd:f9:d0:1c:54:de:4c:48: 46:ad:e0:33:3c:76:1c:41:93:74:83:86:cd:87:55: 21:7b:ac:04:0b:20:ec:cd:33:88:9c:10:cd:32:b8: 0b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:45:31:D7:67:EC:0A:D5:57:8E:8B:41:E7:29:18:92:46:D4:DB:9E X509v3 Authority Key Identifier: keyid:88:12:C8:67:F6:A6:57:88:08:CD:92:A5:0B:B3:95:2A:F5:77:78:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:6c:c4:d9:00:2e:66:32:40:9f:80:67:b7:ae:54:b5:36:fc: d1:cb:30:46:17:e5:1f:41:31:45:e0:27:e2:6d:99:99:99:25: 51:90:c8:01:b4:09:00:e9:f7:8e:a8:29:30:5b:13:91:7b:31: 03:39:c4:e4:98:28:f9:7d:72:85:f2:29:32:47:83:54:c3:a9: 16:d5:40:1d:e9:25:e0:bd:f3:46:87:4c:b1:4f:d0:8d:6f:20: b2:dd:02:43:f0:02:73:60:2d:10:7e:70:22:ef:8c:fa:9b:10: 34:ad:28:0c:3d:b9:f2:4d:24:a1:7b:a0:2e:2c:e7:fc:74:5b: cf:1a:27:04:9a:b1:3c:37:ef:df:08:d5:54:2b:da:94:6b:a3: 5e:13:ee:63:9c:a9:10:7f:f6:36:3e:0d:0c:0d:89:53:f6:92: c7:19:f7:ac:8b:7d:cc:e0:d8:99:1e:a3:65:c8:1d:be:87:ff: e1:df:93:9e:b6:27:9a:ad:33:4a:6d:91:81:b4:8a:f7:d5:b9: 8e:18:ec:3b:df:3d:be:66:29:a3:5f:86:3b:2f:a2:a6:f2:61: 78:d4:0a:cd:2b:73:53:07:ae:bd:04:0b:a3:29:7d:9e:c1:8e: 9e:38:3e:89:80:61:45:fd:b6:cc:6d:dc:c8:38:a4:89:eb:03: 8f:70:4d:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI5NDgxMTAvBgNVBAUTKDg4MTJDODY3RjZBNjU3ODgwOENEOTJBNTBCQjM5NTJB RjU3Nzc4RjgwHhcNMjUwODIyMTcyNTU1WhcNMjUwODI5MTcyNTU1WjAYMRYwFAYD VQQDEw02OGE4YTgyNC0xZjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyClzxhhQM28U7wAgso90hg6rXiO2wR2f0xPFRoCebTRfv5keyWQOGkhIZ+Xt 5NbNYVbMMVSJYv4t1KT5kZ9pfK1Q5sg45h98MF/8J7UnhBff+UblZx5sbT0t48az 69TxJbYlPrMjf2YvCy2qJ2GWSwS9S0jvSlhsaMlhfOmgzaEFzq3qLr2SKLwzbDBt P76Hsf4VMhhg1P+9pFxCZUlOyaVhwTSWQpuyIt6zYBQtbRIbbYZPpmpyyGdWw0sM 1E6NWzqnJday+rYIkbAhsycC+FsAwX6hgarc3fnQHFTeTEhGreAzPHYcQZN0g4bN h1Uhe6wECyDszTOInBDNMrgL1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDlFMddn 7ArVV46LQecpGJJG1NueMB8GA1UdIwQYMBaAFIgSyGf2pleICM2SpQuzlSr1d3j4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mjk0OC9FRkE1OEJENjI3 RjAxMUU5ODg0NjhDMUJDNEY5QUUwMi9pQkxJWl9hbVY0Z0l6WktsQzdPVkt2VjNl UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lCTElaX2FtVjRnSXpaS2xDN09WS3ZWM2VQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Mjk0OC9FRkE1OEJENjI3RjAxMUU5ODg0NjhDMUJDNEY5QUUwMi9pQkxJWl9hbVY0 Z0l6WktsQzdPVkt2VjNlUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhbMTZAC5mMkCfgGe3rlS1NvzRyzBGF+UfQTFF4CfibZmZmSVRkMgB tAkA6feOqCkwWxORezEDOcTkmCj5fXKF8ikyR4NUw6kW1UAd6SXgvfNGh0yxT9CN byCy3QJD8AJzYC0QfnAi74z6mxA0rSgMPbnyTSShe6AuLOf8dFvPGicEmrE8N+/f CNVUK9qUa6NeE+5jnKkQf/Y2Pg0MDYlT9pLHGfesi33M4NiZHqNlyB2+h//h35Oe tiearTNKbZGBtIr31bmOGOw73z2+ZimjX4Y7L6Km8mF41ArNK3NTB669BAujKX2e wY6eOD6JgGFF/bbMbdzIOKSJ6wOPcE2O -----END CERTIFICATE-----Generated at Sat Aug 23 21:35:22 2025 by rpki-client