$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft File: PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft (raw, json) Hash identifier: wQgd1OjZErYdDV9vOXNXjiDjCt1Eg++T4CsI6/v/3ag= Subject key identifier: 05:EF:B3:7B:82:57:AD:9A:A3:66:37:0B:99:B4:26:49:9B:FA:34:D8 Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 08EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft Manifest number: 0843 Signing time: Tue 24 Mar 2026 21:12:20 +0000 Manifest this update: Tue 24 Mar 2026 21:12:19 +0000 Manifest next update: Tue 31 Mar 2026 21:12:19 +0000 Files and hashes: 1: PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl (hash: NxoyxFp9gZJUzI7haQ5bTvGQdUbotg+0WuAo71/g1vY=) 2: 0112375EA05411EDB043385AC4F9AE02.roa (hash: wt7sHeBZYX3+ynpGbSY8k/1ymNfDI2lkoFnaTMVP/Ps=) 3: E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa (hash: 4maJF9WUbj7sjherc9bKMjHY3wXl4HcmhFEcf5r/F/Q=) 4: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (hash: wVxc6nx/JmhL7VCPOsNGEB8sGimUMjqS6K/WHE14sqo=) 5: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (hash: GPPwnFCIcpt0RgF++70GuCleWCDXuGcVYR4o3iza94k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:12:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2282 (0x8ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB, serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Validity Not Before: Mar 24 21:12:19 2026 GMT Not After : Mar 31 21:12:19 2026 GMT Subject: CN=69c2fe34-df05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:97:29:a3:ec:c7:5d:c3:27:86:d3:01:22:2b: 0e:ac:2f:f5:c0:4f:0e:1b:15:7e:ac:40:75:96:ad: e0:fc:9b:57:03:ec:67:1f:60:4d:ca:a8:6a:0e:29: f4:b6:0f:68:f8:3f:38:4c:08:1f:08:3e:43:6d:64: 2c:c0:55:3d:70:35:05:ed:ed:ea:0d:32:12:e0:b8: bf:5a:b2:44:ee:a9:19:0d:2a:d8:e7:1e:a5:3f:31: 93:80:fc:73:4a:99:d7:d3:2b:0e:de:aa:04:01:59: d7:88:e2:ca:ee:63:24:39:ad:81:7f:bb:03:0a:53: c3:f6:8d:e2:9d:28:49:94:ea:87:56:38:8d:d8:0d: 27:48:dc:55:6f:18:0e:cf:17:b6:2b:f5:84:95:32: 34:3b:28:3b:1e:8a:ab:9f:51:7d:69:3e:85:56:3d: 19:4a:f0:bb:79:67:b6:a8:8f:5e:23:e2:5f:fc:19: 9d:61:88:60:cf:60:5b:20:ec:68:2f:95:86:4b:a1: 47:a7:6a:14:16:41:c8:c8:4b:88:d1:7d:58:b6:1c: 6c:7c:3b:b6:44:82:57:d6:98:fd:59:48:39:65:46: bf:79:7e:76:cb:4d:4e:cf:d6:f9:19:64:6f:95:20: b4:e9:1d:92:f5:a6:4a:e4:41:43:4a:e0:59:82:2c: dc:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:EF:B3:7B:82:57:AD:9A:A3:66:37:0B:99:B4:26:49:9B:FA:34:D8 X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:d5:9d:79:b5:3d:82:cb:41:be:a2:aa:fc:83:3e:2c:17:ee: 5f:95:83:c7:54:12:14:32:ad:eb:0b:b4:7d:eb:b4:a7:b3:42: 3b:a8:71:5a:6e:dd:48:4e:4a:fe:8c:71:3a:45:3e:4c:f7:3c: a6:e3:53:e4:f0:1a:77:99:af:f4:9a:c4:71:df:ee:23:69:8b: 0a:20:0e:2f:41:89:8d:d2:30:36:29:4d:09:78:18:ca:c1:3d: 11:41:b1:e0:a7:85:a3:a1:2e:f6:da:df:d2:19:1e:bb:23:ef: d9:8e:01:5d:15:51:4a:24:10:90:4f:f6:37:92:42:dd:bb:ef: e2:32:fc:b6:fc:e0:66:62:cc:e2:ad:8b:6d:68:3c:30:c4:8a: 2c:9b:d8:81:36:95:75:14:6c:84:ac:2e:a5:e8:ec:c8:17:ec: 7f:a1:4e:ef:a2:bd:d1:3a:5c:aa:69:08:f4:1d:ac:b7:84:81: 99:26:d9:8a:6b:3a:df:2a:56:f7:82:fc:ed:d3:51:b8:95:80: 57:c5:bb:2f:bb:fd:a0:c1:86:6c:a8:8d:95:6d:e1:51:ef:01: 7b:cf:95:55:51:e7:e9:69:f6:44:53:a6:ac:e9:e9:3f:30:7f: db:2f:67:64:a9:7c:7b:9e:6b:04:7c:87:94:70:1f:a4:f2:d5: 1d:83:80:42 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjYwMzI0MjExMjE5WhcNMjYwMzMxMjExMjE5WjAYMRYwFAYD VQQDEw02OWMyZmUzNC1kZjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpcpo+zHXcMnhtMBIisOrC/1wE8OGxV+rEB1lq3g/JtXA+xnH2BNyqhqDin0 tg9o+D84TAgfCD5DbWQswFU9cDUF7e3qDTIS4Li/WrJE7qkZDSrY5x6lPzGTgPxz SpnX0ysO3qoEAVnXiOLK7mMkOa2Bf7sDClPD9o3inShJlOqHVjiN2A0nSNxVbxgO zxe2K/WElTI0Oyg7Hoqrn1F9aT6FVj0ZSvC7eWe2qI9eI+Jf/BmdYYhgz2BbIOxo L5WGS6FHp2oUFkHIyEuI0X1YthxsfDu2RIJX1pj9WUg5ZUa/eX52y01Oz9b5GWRv lSC06R2S9aZK5EFDSuBZgizc8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAXvs3uC V62ao2Y3C5m0Jkmb+jTYMB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjdBQi81Njc4NjU2ODQwMDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQ MlFnVVpRTGs4STVGYnoyYncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAw9WdebU9gstBvqKq/IM+LBfuX5WDx1QSFDKt6wu0feu0p7NCO6hxWm7dSE5K /oxxOkU+TPc8puNT5PAad5mv9JrEcd/uI2mLCiAOL0GJjdIwNilNCXgYysE9EUGx 4KeFo6Eu9trf0hkeuyPv2Y4BXRVRSiQQkE/2N5JC3bvv4jL8tvzgZmLM4q2LbWg8 MMSKLJvYgTaVdRRshKwupejsyBfsf6FO76K90TpcqmkI9B2st4SBmSbZims63ypW 94L87dNRuJWAV8W7L7v9oMGGbKiNlW3hUe8Be8+VVVHn6Wn2RFOmrOnpPzB/2y9n ZKl8e55rBHyHlHAfpPLVHYOAQg== -----END CERTIFICATE-----Generated at Thu Mar 26 11:12:23 2026 by rpki-client