$ rpki-client -vvf rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft File: iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft (raw, json) Hash identifier: vCKV1KFmLG9cof84ZXJWLIO9SJILq1n37sLwvrx0pB8= Subject key identifier: C0:D6:9A:7D:F9:7A:6D:19:2A:48:11:17:EE:81:59:6C:37:C3:FF:2A Authority key identifier: 88:12:C8:67:F6:A6:57:88:08:CD:92:A5:0B:B3:95:2A:F5:77:78:F8 Certificate issuer: /CN=A9182948/serialNumber=8812C867F6A6578808CD92A50BB3952AF57778F8 Certificate serial: 10C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft Manifest number: 10BC Signing time: Wed 02 Jul 2025 17:31:09 +0000 Manifest this update: Wed 02 Jul 2025 17:31:08 +0000 Manifest next update: Wed 09 Jul 2025 17:31:08 +0000 Files and hashes: 1: iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl (hash: groo79LqYOJML1UGlPSVLEEvJp1dw+wdfKF6UGf5qmg=) 2: 2DB6F886286111E9BA245A71C4F9AE02.roa (hash: u+yqPzFm9GwHKpt6ah61N8BF+hT/b/OI4bIwjmc4Bss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:31:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4295 (0x10c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182948, serialNumber=8812C867F6A6578808CD92A50BB3952AF57778F8 Validity Not Before: Jul 2 17:31:08 2025 GMT Not After : Jul 9 17:31:08 2025 GMT Subject: CN=68656cdd-90f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:36:84:11:ea:bf:76:d0:33:78:3b:4f:32:18: 3f:7e:4c:12:77:26:74:63:67:8e:4a:1c:22:92:35: 86:9b:7f:65:ee:7b:23:52:73:69:f2:49:b1:41:87: e9:fa:a4:54:8a:f5:11:a8:58:b0:bf:a9:89:a3:14: f5:91:e6:d4:3f:ae:d0:af:7b:cc:2f:ef:e8:3e:9b: 31:a8:34:ad:a7:9d:ed:f9:ef:3f:22:69:2d:b4:b6: 33:47:f3:f3:bc:03:c7:1d:a2:74:b7:a3:93:89:63: 51:59:c0:77:1d:70:f9:d6:a2:03:fa:74:0c:dd:9e: 89:ea:ab:75:d6:b5:1b:ba:90:e0:87:2e:88:2f:f0: 9c:f9:58:57:76:90:c5:da:b7:2d:e0:b5:d5:9a:64: 7d:76:32:e5:b5:1c:38:15:95:4d:f3:71:e2:e2:e9: 0e:ad:40:d8:6c:21:fd:2f:71:f4:f2:38:14:4a:01: 8d:df:89:cc:0d:91:d3:c3:1d:d0:52:e5:e8:8d:e1: 25:a8:d0:fd:66:37:fe:01:a8:f6:62:d9:b2:7c:ae: 7f:04:be:b8:6f:1a:c4:d4:44:e8:bc:4b:5d:b1:c2: 9b:e1:88:a9:ec:7c:22:4e:c6:a0:e8:e9:82:a5:22: 5e:71:53:9a:e9:41:00:1b:08:75:5e:06:de:ff:72: a3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:D6:9A:7D:F9:7A:6D:19:2A:48:11:17:EE:81:59:6C:37:C3:FF:2A X509v3 Authority Key Identifier: keyid:88:12:C8:67:F6:A6:57:88:08:CD:92:A5:0B:B3:95:2A:F5:77:78:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:85:e4:00:7f:fd:72:94:99:c1:77:cb:e3:49:ab:8b:2f:84: 18:02:fb:3e:66:78:61:67:1f:67:61:0b:ee:3c:0b:48:30:85: cc:3e:da:5a:e7:f6:73:a2:d4:d0:86:89:29:0e:e8:f1:58:ee: 6b:ff:56:5a:e7:b0:14:e0:15:a2:f9:b2:09:34:c8:61:d7:6b: 51:3c:67:a4:b5:5c:17:9f:ae:a7:1a:e2:8a:55:75:26:95:ca: 7b:bc:32:46:85:48:81:7f:ee:51:ee:86:12:29:0f:0b:85:48: 6c:c4:03:f9:f9:48:6b:eb:46:a7:27:b7:bd:6c:74:36:30:31: c3:9f:7f:ad:be:61:1f:06:ec:b6:a3:2f:a5:da:68:ae:25:80: ca:30:16:f0:4e:33:b7:77:71:5e:82:bf:14:15:b0:d5:5d:b5: 90:99:51:41:2d:ec:4f:f3:0a:0d:0f:e9:b8:33:d8:d9:e8:a4: 9f:c4:bc:ef:5f:9b:97:9d:f9:cd:a2:3a:ba:6c:29:92:63:26: 63:bd:30:5a:27:3a:1b:fb:9d:b6:90:27:52:57:ea:f3:6e:9a: e1:70:8e:cf:fb:e9:96:05:d0:68:7b:95:81:8d:9a:57:0e:92: 24:19:16:66:0b:71:38:2f:90:8e:a9:55:ff:9f:df:5d:fe:80: f0:e0:02:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI5NDgxMTAvBgNVBAUTKDg4MTJDODY3RjZBNjU3ODgwOENEOTJBNTBCQjM5NTJB RjU3Nzc4RjgwHhcNMjUwNzAyMTczMTA4WhcNMjUwNzA5MTczMTA4WjAYMRYwFAYD VQQDEw02ODY1NmNkZC05MGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzaEEeq/dtAzeDtPMhg/fkwSdyZ0Y2eOShwikjWGm39l7nsjUnNp8kmxQYfp +qRUivURqFiwv6mJoxT1kebUP67Qr3vML+/oPpsxqDStp53t+e8/ImkttLYzR/Pz vAPHHaJ0t6OTiWNRWcB3HXD51qID+nQM3Z6J6qt11rUbupDghy6IL/Cc+VhXdpDF 2rct4LXVmmR9djLltRw4FZVN83Hi4ukOrUDYbCH9L3H08jgUSgGN34nMDZHTwx3Q UuXojeElqND9Zjf+Aaj2YtmyfK5/BL64bxrE1ETovEtdscKb4Yip7HwiTsag6OmC pSJecVOa6UEAGwh1Xgbe/3KjLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMDWmn35 em0ZKkgRF+6BWWw3w/8qMB8GA1UdIwQYMBaAFIgSyGf2pleICM2SpQuzlSr1d3j4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mjk0OC9FRkE1OEJENjI3 RjAxMUU5ODg0NjhDMUJDNEY5QUUwMi9pQkxJWl9hbVY0Z0l6WktsQzdPVkt2VjNl UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lCTElaX2FtVjRnSXpaS2xDN09WS3ZWM2VQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Mjk0OC9FRkE1OEJENjI3RjAxMUU5ODg0NjhDMUJDNEY5QUUwMi9pQkxJWl9hbVY0 Z0l6WktsQzdPVkt2VjNlUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOheQAf/1ylJnBd8vjSauLL4QYAvs+ZnhhZx9nYQvuPAtIMIXMPtpa 5/ZzotTQhokpDujxWO5r/1Za57AU4BWi+bIJNMhh12tRPGektVwXn66nGuKKVXUm lcp7vDJGhUiBf+5R7oYSKQ8LhUhsxAP5+Uhr60anJ7e9bHQ2MDHDn3+tvmEfBuy2 oy+l2miuJYDKMBbwTjO3d3Fegr8UFbDVXbWQmVFBLexP8woND+m4M9jZ6KSfxLzv X5uXnfnNojq6bCmSYyZjvTBaJzob+522kCdSV+rzbprhcI7P++mWBdBoe5WBjZpX DpIkGRZmC3E4L5COqVX/n99d/oDw4AIQ -----END CERTIFICATE-----Generated at Thu Jul 3 05:53:48 2025 by rpki-client