$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft File: PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft (raw, json) Hash identifier: Ly1PuLGH15Vne2dXHAP8d3lOFEO4KR8+AQPy+6/vpcs= Subject key identifier: 04:68:C5:9A:5D:90:F3:AC:88:13:74:A6:A7:1C:7C:4F:D8:F9:F6:A6 Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 0885 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft Manifest number: 07EA Signing time: Sat 18 Oct 2025 23:03:15 +0000 Manifest this update: Sat 18 Oct 2025 23:03:14 +0000 Manifest next update: Sat 25 Oct 2025 23:03:14 +0000 Files and hashes: 1: PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl (hash: WCaBEb7tNUZ2kqxIYvh63D7AiW9SepDMl83TBdOrXR4=) 2: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (hash: JCIJiRdjoJPwGnugBIK3v/SX30S5Hj97puNSPDnZHa0=) 3: 0112375EA05411EDB043385AC4F9AE02.roa (hash: aBs0HSQclxaDqKZvgHQYQl981j8saXju4dpMEUuQAU4=) 4: E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa (hash: Rtf4SCa2SLq1aWm8pt96fKW5kPl75H0zBH9P2CmsGlU=) 5: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (hash: xyRyhhQBvFg1P0171dGNRFnwuXqCBoYXwtzjvJ6IHcw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:03:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2181 (0x885) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB, serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Validity Not Before: Oct 18 23:03:14 2025 GMT Not After : Oct 25 23:03:14 2025 GMT Subject: CN=68f41cb2-6ec6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e7:21:8a:1b:ea:b2:13:8d:15:22:88:2b:83: 81:53:e2:00:27:84:52:ab:ad:39:70:7b:71:bc:a6: b0:25:83:dd:22:1d:36:91:63:2c:5f:54:14:ff:71: 06:bf:03:0f:3b:4e:16:7d:04:5b:63:c1:2c:cc:ed: 6a:6b:88:7b:8b:0b:1c:2e:64:ab:fa:0c:c4:12:1f: dc:5c:a0:ac:89:ed:9b:fe:fa:0c:bc:77:a0:14:10: 2e:e4:7f:5b:87:8f:50:87:db:e5:44:ce:da:6d:c8: 91:16:2b:03:7e:ab:be:ea:04:2d:b6:d8:cd:57:57: d3:75:7d:63:ba:18:92:cd:c1:64:be:ab:6a:6f:81: b0:79:c4:ad:5b:14:37:40:db:91:ff:92:bd:4f:53: 75:d5:01:2c:a0:4a:1b:4c:0c:5d:1d:22:f9:0b:91: 65:90:cc:53:00:8f:fc:dd:ba:0e:d0:75:f5:39:15: 46:45:0c:62:24:60:e1:40:21:31:76:01:69:b0:94: 29:ba:b4:52:23:aa:43:1b:8c:33:32:e8:c3:e4:02: 75:26:2e:6e:77:75:d6:95:d6:5a:35:1f:4f:5c:1b: 7d:cf:cd:d4:33:7a:80:9d:bd:69:4b:cd:ba:8b:ca: 87:1e:d2:cd:b5:9f:8b:8f:0a:44:50:37:49:da:69: 12:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:68:C5:9A:5D:90:F3:AC:88:13:74:A6:A7:1C:7C:4F:D8:F9:F6:A6 X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:b2:0b:6c:1a:00:5b:25:9f:0f:9b:ef:d8:0f:a5:44:23:61: 6d:49:57:bb:07:b2:f3:d3:02:1a:e7:d9:10:32:a4:30:3a:33: 4a:23:7b:0a:18:5c:a5:84:da:16:5e:2c:c2:6b:9d:2b:9a:ea: 2c:55:7b:ff:2e:67:24:4f:8d:76:2d:9e:a0:48:dd:f9:da:16: e1:6b:3b:a7:f9:21:3d:9c:7a:24:db:59:04:1a:01:b1:5c:60: e0:76:f8:fd:09:f7:49:62:00:7c:2e:cd:1f:a0:17:43:56:54: 37:5d:f8:6b:e4:5c:23:a0:79:27:03:ef:3d:99:89:0a:08:2f: b6:3a:01:f5:83:84:c3:c1:50:04:75:73:24:1b:78:d5:fa:b1: 9d:f7:64:33:ef:35:4d:64:37:39:5b:e9:14:f2:20:e9:81:fb: ba:98:3e:2a:15:c8:4a:bf:fa:0c:99:dc:04:40:95:23:6a:62: 03:c0:64:c0:f7:b0:c4:77:9f:3c:ed:a6:8f:f6:13:d3:bd:a5: f7:65:76:e1:c9:d2:81:f1:d2:b5:c7:16:61:28:2a:b7:31:cb: 92:ee:cd:27:6d:c6:f1:d0:e9:b8:e1:98:67:7a:34:64:ba:af: 1b:d9:1c:2a:35:25:1d:ea:80:72:0d:5c:88:19:8c:93:33:84: e1:05:26:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjUxMDE4MjMwMzE0WhcNMjUxMDI1MjMwMzE0WjAYMRYwFAYD VQQDEw02OGY0MWNiMi02ZWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzechihvqshONFSKIK4OBU+IAJ4RSq605cHtxvKawJYPdIh02kWMsX1QU/3EG vwMPO04WfQRbY8EszO1qa4h7iwscLmSr+gzEEh/cXKCsie2b/voMvHegFBAu5H9b h49Qh9vlRM7abciRFisDfqu+6gQtttjNV1fTdX1juhiSzcFkvqtqb4GwecStWxQ3 QNuR/5K9T1N11QEsoEobTAxdHSL5C5FlkMxTAI/83boO0HX1ORVGRQxiJGDhQCEx dgFpsJQpurRSI6pDG4wzMujD5AJ1Ji5ud3XWldZaNR9PXBt9z83UM3qAnb1pS826 i8qHHtLNtZ+LjwpEUDdJ2mkS/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFARoxZpd kPOsiBN0pqccfE/Y+famMB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjdBQi81Njc4NjU2ODQwMDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQ MlFnVVpRTGs4STVGYnoyYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcsgtsGgBbJZ8Pm+/YD6VEI2FtSVe7B7Lz0wIa59kQMqQwOjNKI3sK GFylhNoWXizCa50rmuosVXv/LmckT412LZ6gSN352hbhazun+SE9nHok21kEGgGx XGDgdvj9CfdJYgB8Ls0foBdDVlQ3Xfhr5FwjoHknA+89mYkKCC+2OgH1g4TDwVAE dXMkG3jV+rGd92Qz7zVNZDc5W+kU8iDpgfu6mD4qFchKv/oMmdwEQJUjamIDwGTA 97DEd5887aaP9hPTvaX3ZXbhydKB8dK1xxZhKCq3McuS7s0nbcbx0Om44ZhnejRk uq8b2RwqNSUd6oByDVyIGYyTM4ThBSZm -----END CERTIFICATE-----Generated at Mon Oct 20 09:32:23 2025 by rpki-client