This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft File: PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft (raw, json) Hash identifier: ucf98fPjRA81QI8BGzVAMr+Jmge7xd5in8WDl4+EXHo= Subject key identifier: 85:D1:B5:5F:6F:63:B6:9B:48:CD:BC:74:65:96:52:03:51:8C:30:EA Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 08B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft Manifest number: 081E Signing time: Sat 24 Jan 2026 20:53:38 +0000 Manifest this update: Sat 24 Jan 2026 20:53:37 +0000 Manifest next update: Sat 31 Jan 2026 20:53:37 +0000 Files and hashes: 1: PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl (hash: z5syClznz4nwf7UL1RJhy3ycBwTWKZ7um3VqxGld+OI=) 2: 0112375EA05411EDB043385AC4F9AE02.roa (hash: aBs0HSQclxaDqKZvgHQYQl981j8saXju4dpMEUuQAU4=) 3: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (hash: xyRyhhQBvFg1P0171dGNRFnwuXqCBoYXwtzjvJ6IHcw=) 4: E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa (hash: Rtf4SCa2SLq1aWm8pt96fKW5kPl75H0zBH9P2CmsGlU=) 5: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (hash: JCIJiRdjoJPwGnugBIK3v/SX30S5Hj97puNSPDnZHa0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:53:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2233 (0x8b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB, serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Validity Not Before: Jan 24 20:53:37 2026 GMT Not After : Jan 31 20:53:37 2026 GMT Subject: CN=69753152-70df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:fb:79:c0:53:9a:e8:e2:87:30:4a:d4:e4:aa: de:69:bd:fd:74:21:2a:7c:ec:df:f1:af:2f:05:af: e7:fd:33:68:bc:90:64:e7:5e:2d:98:88:83:c0:df: 8f:fc:a4:8e:1a:c5:5f:31:6a:5a:91:b4:9a:90:eb: 28:9d:8f:22:74:c9:ef:ef:de:f1:d9:da:94:0b:86: be:80:7a:3f:23:7d:b1:c6:bc:6b:bd:7b:cb:7b:eb: 53:33:9c:6b:44:d0:9c:12:95:53:7f:c3:e7:05:ae: 83:72:b1:40:6b:07:64:16:95:32:b8:53:11:88:21: d7:90:e4:da:3e:77:97:dc:07:b8:33:2d:93:ae:cd: 19:0f:7b:05:36:7b:9b:85:f2:c8:3c:c7:a2:74:cf: 8e:7f:7b:ef:d9:2f:cc:bb:4b:87:f0:7f:0d:0b:18: b4:29:c6:fa:ce:c7:20:2e:84:31:8e:6a:fb:4e:bc: 1d:8b:c8:a0:d8:5c:cb:92:0a:e9:af:47:9e:7a:91: 0e:c2:c5:20:0a:e2:51:01:ac:6f:7d:be:28:eb:23: ca:0d:20:d5:93:1e:ce:01:27:19:52:22:f3:b1:b1: 0a:87:6d:a6:db:da:e0:e0:82:90:b2:26:33:7d:a9: 57:79:29:5a:4a:f6:7a:38:ac:2c:0d:b0:d9:2c:8a: 60:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:D1:B5:5F:6F:63:B6:9B:48:CD:BC:74:65:96:52:03:51:8C:30:EA X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:1e:22:10:04:ff:a2:b7:60:95:cf:6f:45:e5:4c:d1:48:c8: 83:7c:46:81:e9:a6:b2:d0:1f:3f:38:d1:27:80:6c:f1:25:11: 1c:70:a8:02:0c:d6:92:3e:e7:53:32:9f:52:70:2e:a8:bf:e2: bb:c4:ab:82:c9:c5:f4:2b:50:26:a0:c2:ca:cc:3e:66:c1:d3: 0a:cd:f8:f3:9f:ac:f8:47:b9:1d:e9:0b:34:ed:fb:55:5b:3e: 8f:7e:6c:cd:1e:75:1f:04:7b:f9:00:b0:98:01:a2:5e:fa:fd: 80:7c:16:b9:b1:e7:2b:74:36:f5:01:6a:8a:9b:c4:62:59:b5: ae:6a:3e:96:bc:b8:65:e1:4c:e8:52:60:c2:7f:e4:9e:ca:e3: 66:c0:cc:60:8c:3a:e4:7d:ee:90:e6:f3:21:df:f0:46:66:50: fc:83:a2:8b:e4:79:80:e1:b8:34:12:08:18:c1:23:90:18:e2: 64:aa:c1:01:ec:82:f4:e2:52:29:e2:8c:f9:a1:1a:f0:4a:4b: a6:fc:2e:3a:65:9f:ca:2d:f3:b4:44:fe:91:50:4e:47:c6:38: 7c:44:b1:24:e1:6c:fc:ff:4a:87:7e:0f:c9:83:e8:60:f8:0b: 08:6b:a5:2d:9e:a9:cb:f8:b3:8c:81:04:b5:56:7b:cf:b9:84: eb:9c:da:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjYwMTI0MjA1MzM3WhcNMjYwMTMxMjA1MzM3WjAYMRYwFAYD VQQDDA02OTc1MzE1Mi03MGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvt5wFOa6OKHMErU5Kreab39dCEqfOzf8a8vBa/n/TNovJBk514tmIiDwN+P /KSOGsVfMWpakbSakOsonY8idMnv797x2dqUC4a+gHo/I32xxrxrvXvLe+tTM5xr RNCcEpVTf8PnBa6DcrFAawdkFpUyuFMRiCHXkOTaPneX3Ae4My2Trs0ZD3sFNnub hfLIPMeidM+Of3vv2S/Mu0uH8H8NCxi0Kcb6zscgLoQxjmr7Trwdi8ig2FzLkgrp r0eeepEOwsUgCuJRAaxvfb4o6yPKDSDVkx7OAScZUiLzsbEKh22m29rg4IKQsiYz falXeSlaSvZ6OKwsDbDZLIpgKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIXRtV9v Y7abSM28dGWWUgNRjDDqMB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjdBQi81Njc4NjU2ODQwMDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQ MlFnVVpRTGs4STVGYnoyYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5HiIQBP+it2CVz29F5UzRSMiDfEaB6aay0B8/ONEngGzxJREccKgC DNaSPudTMp9ScC6ov+K7xKuCycX0K1AmoMLKzD5mwdMKzfjzn6z4R7kd6Qs07ftV Wz6PfmzNHnUfBHv5ALCYAaJe+v2AfBa5secrdDb1AWqKm8RiWbWuaj6WvLhl4Uzo UmDCf+SeyuNmwMxgjDrkfe6Q5vMh3/BGZlD8g6KL5HmA4bg0EggYwSOQGOJkqsEB 7IL04lIp4oz5oRrwSkum/C46ZZ/KLfO0RP6RUE5Hxjh8RLEk4Wz8/0qHfg/Jg+hg +AsIa6UtnqnL+LOMgQS1VnvPuYTrnNop -----END CERTIFICATE-----Generated at Sun Jan 25 09:21:18 2026 by rpki-client