$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft File: PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft (raw, json) Hash identifier: GzY5iiBtjUfbwm5MtJuhq7pQjbwx/PxWKazZGh1M0GQ= Subject key identifier: 3E:85:2D:91:A7:1F:85:9F:2F:C7:49:EC:56:C0:85:62:5C:3D:F6:73 Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 0834 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft Manifest number: 0799 Signing time: Sat 10 May 2025 21:33:09 +0000 Manifest this update: Sat 10 May 2025 21:33:08 +0000 Manifest next update: Sat 17 May 2025 21:33:08 +0000 Files and hashes: 1: PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl (hash: gZo95YLQILQ01kQTK8yEgQxbSTR4jtHN2PhqXfbI3dg=) 2: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (hash: JCIJiRdjoJPwGnugBIK3v/SX30S5Hj97puNSPDnZHa0=) 3: 0112375EA05411EDB043385AC4F9AE02.roa (hash: aBs0HSQclxaDqKZvgHQYQl981j8saXju4dpMEUuQAU4=) 4: E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa (hash: Rtf4SCa2SLq1aWm8pt96fKW5kPl75H0zBH9P2CmsGlU=) 5: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (hash: xyRyhhQBvFg1P0171dGNRFnwuXqCBoYXwtzjvJ6IHcw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 21:33:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2100 (0x834) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB, serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Validity Not Before: May 10 21:33:08 2025 GMT Not After : May 17 21:33:08 2025 GMT Subject: CN=681fc614-ffe0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c7:13:45:bf:40:94:0a:f4:9f:25:51:a3:43: 73:65:a0:cb:81:3e:b2:33:7d:86:b8:e4:f3:f0:99: be:cb:26:d5:b7:18:15:67:41:71:2f:05:3d:31:00: c7:31:e4:03:e0:fd:ec:37:4a:94:fc:a3:5e:b0:a8: c0:b2:56:f8:35:6b:e7:03:62:0b:ea:39:77:3e:39: be:3a:fa:3b:60:01:4c:2a:b7:99:34:6e:27:d2:38: d1:53:c3:a6:40:08:69:60:36:b7:10:8f:2d:88:d7: 1e:15:54:25:ff:3b:c7:99:d8:cf:79:61:f4:fa:3d: 6d:99:5d:7f:84:67:18:e4:b2:15:55:7d:2c:7c:14: d4:3d:e6:fb:38:fb:2e:19:4b:26:b1:de:cc:df:5d: fb:1b:f4:ed:04:67:01:27:e9:4a:15:7b:a7:76:83: b7:2d:93:93:d1:24:9e:5e:ae:a2:8b:bb:08:78:99: 08:d2:20:47:fe:bf:12:cc:0f:b7:16:bc:2f:bc:b9: ef:a1:4f:3d:02:1c:db:e4:a5:ad:33:01:e6:35:e4: aa:fc:14:9b:b7:ad:f4:6e:85:bf:1a:6a:8f:fa:dc: 72:08:4e:c9:16:94:5d:0c:71:45:4f:b3:c2:4a:ba: 20:63:10:4a:66:0f:7a:da:0e:e9:03:95:31:51:b2: 5b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:85:2D:91:A7:1F:85:9F:2F:C7:49:EC:56:C0:85:62:5C:3D:F6:73 X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:9d:1b:17:1d:a4:80:10:e3:4d:e8:01:17:63:90:6e:46:a5: 70:06:b6:79:0e:2f:a6:36:8f:31:99:3f:16:b0:ff:7d:a6:a1: 38:ed:a8:11:77:b9:7f:c0:78:6c:c6:80:0d:7e:ba:d8:a1:42: 2f:b2:90:40:ea:92:c0:24:51:30:13:f9:9d:2d:37:31:4a:ee: 01:ed:1f:8f:ff:be:58:df:15:1e:55:81:c3:3f:0d:87:e2:42: 43:aa:78:cc:44:6d:ae:75:3b:01:68:e4:b0:c3:65:df:8a:b7: f8:b9:3d:16:b7:d3:5b:90:76:b7:b8:7a:d4:7a:2b:38:d0:89: ac:82:a7:5f:c2:3d:14:06:8d:71:a8:53:b3:e9:87:19:2f:f8: 92:2c:91:b2:9c:77:44:a1:47:97:fb:a7:91:82:c7:e6:f3:e8: 57:0c:0c:f2:e3:3b:bb:ab:25:bd:87:ff:90:0a:df:6d:93:e4: 4c:c9:8e:56:ab:6c:77:a8:5e:8e:87:58:fe:ba:8b:27:73:3e: 94:7f:e4:7e:f9:32:a2:e4:7a:0f:6c:4f:e5:4c:59:20:71:2c: 0c:ab:d8:71:83:7f:26:17:a7:f7:a5:e7:4e:dd:0a:82:d8:45: 09:53:84:da:ba:7b:39:c9:4a:1b:93:b7:85:39:bc:e0:8f:3f: e3:1b:db:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjUwNTEwMjEzMzA4WhcNMjUwNTE3MjEzMzA4WjAYMRYwFAYD VQQDEw02ODFmYzYxNC1mZmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8cTRb9AlAr0nyVRo0NzZaDLgT6yM32GuOTz8Jm+yybVtxgVZ0FxLwU9MQDH MeQD4P3sN0qU/KNesKjAslb4NWvnA2IL6jl3Pjm+Ovo7YAFMKreZNG4n0jjRU8Om QAhpYDa3EI8tiNceFVQl/zvHmdjPeWH0+j1tmV1/hGcY5LIVVX0sfBTUPeb7OPsu GUsmsd7M3137G/TtBGcBJ+lKFXundoO3LZOT0SSeXq6ii7sIeJkI0iBH/r8SzA+3 FrwvvLnvoU89Ahzb5KWtMwHmNeSq/BSbt630boW/GmqP+txyCE7JFpRdDHFFT7PC SrogYxBKZg962g7pA5UxUbJbbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD6FLZGn H4WfL8dJ7FbAhWJcPfZzMB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjdBQi81Njc4NjU2ODQwMDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQ MlFnVVpRTGs4STVGYnoyYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCenRsXHaSAEONN6AEXY5BuRqVwBrZ5Di+mNo8xmT8WsP99pqE47agR d7l/wHhsxoANfrrYoUIvspBA6pLAJFEwE/mdLTcxSu4B7R+P/75Y3xUeVYHDPw2H 4kJDqnjMRG2udTsBaOSww2Xfirf4uT0Wt9NbkHa3uHrUeis40Imsgqdfwj0UBo1x qFOz6YcZL/iSLJGynHdEoUeX+6eRgsfm8+hXDAzy4zu7qyW9h/+QCt9tk+RMyY5W q2x3qF6Oh1j+uosncz6Uf+R++TKi5HoPbE/lTFkgcSwMq9hxg38mF6f3pedO3QqC 2EUJU4Tauns5yUobk7eFObzgjz/jG9ud -----END CERTIFICATE-----Generated at Sun May 11 15:23:32 2025 by rpki-client