$ rpki-client -vvf rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft File: iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft (raw, json) Hash identifier: cU3+rG3R2X3Ucu1CoR+7mGCeogOHYJqkwcPnC3aS6bc= Subject key identifier: 02:AB:2B:D0:96:D2:EB:76:AC:92:B7:67:D6:AA:08:7B:F7:D0:58:16 Authority key identifier: 88:12:C8:67:F6:A6:57:88:08:CD:92:A5:0B:B3:95:2A:F5:77:78:F8 Certificate issuer: /CN=A9182948/serialNumber=8812C867F6A6578808CD92A50BB3952AF57778F8 Certificate serial: 10AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft Manifest number: 10A3 Signing time: Mon 12 May 2025 17:15:57 +0000 Manifest this update: Mon 12 May 2025 17:15:57 +0000 Manifest next update: Mon 19 May 2025 17:15:57 +0000 Files and hashes: 1: iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl (hash: uh2ruHu1K6S+wRCgBzXjVvgGZk9xATnAD4bFWEBTYCk=) 2: 2DB6F886286111E9BA245A71C4F9AE02.roa (hash: u+yqPzFm9GwHKpt6ah61N8BF+hT/b/OI4bIwjmc4Bss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:15:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4270 (0x10ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182948, serialNumber=8812C867F6A6578808CD92A50BB3952AF57778F8 Validity Not Before: May 12 17:15:57 2025 GMT Not After : May 19 17:15:57 2025 GMT Subject: CN=68222ccd-c393 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d6:40:2f:04:f0:61:c4:30:41:2a:7b:a6:cb: 4d:74:47:c7:53:31:70:76:e0:81:e1:79:77:1b:89: b3:13:c5:1f:58:7b:06:12:f7:aa:e7:b7:86:27:15: 2f:94:03:45:d1:c8:00:3b:1f:7b:cb:cf:c3:31:a0: cc:ef:88:14:ee:82:2d:30:7f:0a:62:ff:3d:55:cf: 24:0a:c0:cb:74:07:54:12:53:4b:d4:41:dd:d4:6d: 07:a0:37:45:84:ef:bb:d7:8f:d6:b9:a6:0d:4a:43: 1c:45:bc:84:03:2e:17:5a:21:ec:85:8d:35:c5:23: a2:b8:8b:d7:19:50:75:51:54:19:9b:b4:0f:b3:1c: 0f:c1:43:6b:1d:38:28:64:b5:70:89:ab:31:ea:5d: ee:ea:70:58:f0:d2:46:e7:ea:fd:8b:1a:86:fb:e7: 33:ca:46:60:f9:5d:89:56:f7:f2:90:b6:97:3a:15: 82:8e:73:e1:07:b4:e8:0b:bb:af:85:ad:7d:0f:6b: d0:22:65:40:45:6c:d5:1c:78:88:25:fb:9a:63:bd: c2:d5:9c:a0:78:da:a5:94:be:02:29:4d:39:37:03: da:1f:c5:dc:1c:c2:3a:47:d3:a7:b6:c1:10:96:88: b1:6f:9f:ee:c5:af:f7:97:e1:db:93:e5:1c:92:d3: c1:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:AB:2B:D0:96:D2:EB:76:AC:92:B7:67:D6:AA:08:7B:F7:D0:58:16 X509v3 Authority Key Identifier: keyid:88:12:C8:67:F6:A6:57:88:08:CD:92:A5:0B:B3:95:2A:F5:77:78:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:56:fb:bb:b5:e5:da:f9:54:cc:73:05:ab:45:95:0d:6c:db: 0c:cf:5d:e8:1a:70:f2:35:30:f7:17:70:96:34:cd:f8:67:81: e9:b5:6a:42:40:6d:b5:46:a0:45:8a:cf:df:e8:ca:d4:1d:d2: 9e:2a:4a:c8:9b:77:86:a7:b5:19:a7:b2:dd:0e:12:a1:ca:43: 07:db:8f:25:19:d4:1d:41:c4:f4:44:29:44:e8:30:87:bd:15: 9f:01:38:59:84:1d:c1:23:fe:8d:da:ab:4b:7e:49:3a:c4:fa: 77:b8:12:e0:5a:ef:35:cc:dd:94:7e:d6:07:80:d8:dc:31:69: c6:9a:d4:68:60:b5:ed:16:3f:98:14:8e:08:53:14:71:83:ab: 68:a5:e8:a0:3e:af:2f:70:02:e3:80:c8:64:24:02:df:7b:b3: 92:a1:33:74:2e:83:74:28:90:84:e6:2b:9e:5b:4a:8d:9e:d6: 3e:3d:b3:90:50:c5:71:42:98:42:b8:21:74:0b:8f:1f:ad:f8: 8a:2d:92:5b:fc:b8:58:9b:55:1b:65:76:9c:92:c1:97:94:d8: 00:6f:b3:74:b2:68:3c:10:54:73:c6:02:e0:b2:a3:2e:73:cd: 15:34:52:21:3a:6d:d9:61:85:a3:98:75:cb:d5:4d:29:d7:e4: 08:01:d9:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI5NDgxMTAvBgNVBAUTKDg4MTJDODY3RjZBNjU3ODgwOENEOTJBNTBCQjM5NTJB RjU3Nzc4RjgwHhcNMjUwNTEyMTcxNTU3WhcNMjUwNTE5MTcxNTU3WjAYMRYwFAYD VQQDEw02ODIyMmNjZC1jMzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdZALwTwYcQwQSp7pstNdEfHUzFwduCB4Xl3G4mzE8UfWHsGEveq57eGJxUv lANF0cgAOx97y8/DMaDM74gU7oItMH8KYv89Vc8kCsDLdAdUElNL1EHd1G0HoDdF hO+714/WuaYNSkMcRbyEAy4XWiHshY01xSOiuIvXGVB1UVQZm7QPsxwPwUNrHTgo ZLVwiasx6l3u6nBY8NJG5+r9ixqG++czykZg+V2JVvfykLaXOhWCjnPhB7ToC7uv ha19D2vQImVARWzVHHiIJfuaY73C1ZygeNqllL4CKU05NwPaH8XcHMI6R9OntsEQ loixb5/uxa/3l+Hbk+UcktPBAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKrK9CW 0ut2rJK3Z9aqCHv30FgWMB8GA1UdIwQYMBaAFIgSyGf2pleICM2SpQuzlSr1d3j4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mjk0OC9FRkE1OEJENjI3 RjAxMUU5ODg0NjhDMUJDNEY5QUUwMi9pQkxJWl9hbVY0Z0l6WktsQzdPVkt2VjNl UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lCTElaX2FtVjRnSXpaS2xDN09WS3ZWM2VQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Mjk0OC9FRkE1OEJENjI3RjAxMUU5ODg0NjhDMUJDNEY5QUUwMi9pQkxJWl9hbVY0 Z0l6WktsQzdPVkt2VjNlUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkVvu7teXa+VTMcwWrRZUNbNsMz13oGnDyNTD3F3CWNM34Z4HptWpC QG21RqBFis/f6MrUHdKeKkrIm3eGp7UZp7LdDhKhykMH248lGdQdQcT0RClE6DCH vRWfAThZhB3BI/6N2qtLfkk6xPp3uBLgWu81zN2UftYHgNjcMWnGmtRoYLXtFj+Y FI4IUxRxg6topeigPq8vcALjgMhkJALfe7OSoTN0LoN0KJCE5iueW0qNntY+PbOQ UMVxQphCuCF0C48frfiKLZJb/LhYm1UbZXacksGXlNgAb7N0smg8EFRzxgLgsqMu c80VNFIhOm3ZYYWjmHXL1U0p1+QIAdnl -----END CERTIFICATE-----Generated at Wed May 14 17:32:18 2025 by rpki-client