$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft File: PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft (raw, json) Hash identifier: 17RRsJXHu8dJbH3vsjmqsy+VTsBEVdLQ3Z/FNhvWs9s= Subject key identifier: 88:46:1E:63:F9:22:42:22:4A:64:83:B7:64:3E:E0:18:F2:EF:2F:DD Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 084D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft Manifest number: 07B2 Signing time: Mon 30 Jun 2025 22:08:51 +0000 Manifest this update: Mon 30 Jun 2025 22:08:50 +0000 Manifest next update: Mon 07 Jul 2025 22:08:50 +0000 Files and hashes: 1: PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl (hash: F5ATs5C87PkHGv6RkTBHaXCIsJ1VTgG99Bvrgr1V2P8=) 2: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (hash: JCIJiRdjoJPwGnugBIK3v/SX30S5Hj97puNSPDnZHa0=) 3: 0112375EA05411EDB043385AC4F9AE02.roa (hash: aBs0HSQclxaDqKZvgHQYQl981j8saXju4dpMEUuQAU4=) 4: E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa (hash: Rtf4SCa2SLq1aWm8pt96fKW5kPl75H0zBH9P2CmsGlU=) 5: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (hash: xyRyhhQBvFg1P0171dGNRFnwuXqCBoYXwtzjvJ6IHcw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:08:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2125 (0x84d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB, serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Validity Not Before: Jun 30 22:08:50 2025 GMT Not After : Jul 7 22:08:50 2025 GMT Subject: CN=68630af2-dd5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4f:07:fd:79:85:5c:14:9d:8c:19:c0:d5:a0: 78:76:b9:6f:32:87:a3:33:7d:07:61:b8:9b:d3:46: 73:04:d9:d6:a8:c9:3c:67:d6:ec:7f:45:6e:b4:6c: a6:5d:72:e4:4f:44:b7:d6:f9:a0:39:7e:16:12:72: e0:8a:0d:42:76:c2:c5:5c:6e:a4:14:e7:ae:8e:e7: c5:94:04:ed:b1:82:75:d7:14:3d:95:83:1a:55:12: b4:31:8c:5c:03:31:14:91:81:e4:16:33:ce:84:d8: 86:5f:2e:44:a3:b4:ea:09:af:f3:69:8c:ac:42:3b: 7e:42:f5:6f:fd:86:99:6b:8f:cf:79:01:03:bf:13: 99:d8:6d:59:9d:42:c3:20:98:9a:2b:99:3d:0e:b5: c9:5f:f6:6b:3d:28:c1:b7:d0:d0:7e:46:11:5e:34: b4:93:a8:8e:9b:8b:95:9b:e4:72:69:b8:11:2e:19: 34:d7:cf:61:09:02:40:5c:26:47:71:22:1e:5b:91: 30:24:49:39:df:43:f7:20:04:e5:04:92:36:fd:26: 8b:c9:4c:1a:f4:84:b9:40:74:d6:3a:e3:08:af:bd: 95:30:26:b2:d3:55:13:28:9a:26:6b:ba:3f:29:d2: ed:92:2c:b9:e8:86:99:3f:fd:a8:3a:6e:07:8f:a1: 2b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:46:1E:63:F9:22:42:22:4A:64:83:B7:64:3E:E0:18:F2:EF:2F:DD X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:af:90:50:58:84:de:80:21:d7:58:e9:c6:e6:fa:23:6f:77: 8f:c2:28:9d:b0:fb:8d:df:e9:1e:2d:26:14:41:07:84:a0:e7: a7:09:1c:43:b3:75:79:f8:f9:dc:52:62:c8:04:5a:f5:ee:5c: 30:aa:d8:ab:3c:e6:c0:86:c5:5e:fc:bb:17:19:5b:e8:ba:3b: 2e:6e:a5:f9:6f:27:4a:fa:6c:3a:80:4e:bd:67:11:79:0c:66: 1b:da:e2:1d:78:2e:7b:6a:ab:dd:bb:0e:d8:d3:54:45:7b:c2: f6:49:02:34:ea:3d:fa:2c:11:cf:e8:3a:da:63:2a:c6:45:b9: b2:7c:6a:c4:69:e6:ef:d7:96:d8:05:3a:de:b9:13:3a:dc:31: ba:da:96:0c:4c:f0:5f:c9:c7:14:3a:d9:0f:a8:44:3e:8d:47: 3f:c9:6a:e9:03:b1:c3:e3:2f:2e:13:fd:ec:c0:a4:43:49:7b: b6:cd:9d:9a:e9:3f:67:7a:cd:da:48:91:d4:27:41:6d:34:a7: 84:2c:94:02:3b:26:74:4e:79:4e:bf:2f:dc:a9:ec:04:9c:40: ed:87:04:5a:5a:e9:bf:72:08:62:a8:60:39:c5:71:df:b1:7c: 46:4b:89:e9:44:82:d4:c0:47:9e:83:9f:49:f2:0e:45:06:af: 62:52:a6:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCE0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjUwNjMwMjIwODUwWhcNMjUwNzA3MjIwODUwWjAYMRYwFAYD VQQDEw02ODYzMGFmMi1kZDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0E8H/XmFXBSdjBnA1aB4drlvMoejM30HYbib00ZzBNnWqMk8Z9bsf0VutGym XXLkT0S31vmgOX4WEnLgig1CdsLFXG6kFOeujufFlATtsYJ11xQ9lYMaVRK0MYxc AzEUkYHkFjPOhNiGXy5Eo7TqCa/zaYysQjt+QvVv/YaZa4/PeQEDvxOZ2G1ZnULD IJiaK5k9DrXJX/ZrPSjBt9DQfkYRXjS0k6iOm4uVm+RyabgRLhk0189hCQJAXCZH cSIeW5EwJEk530P3IATlBJI2/SaLyUwa9IS5QHTWOuMIr72VMCay01UTKJoma7o/ KdLtkiy56IaZP/2oOm4Hj6ErAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIhGHmP5 IkIiSmSDt2Q+4Bjy7y/dMB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjdBQi81Njc4NjU2ODQwMDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQ MlFnVVpRTGs4STVGYnoyYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmr5BQWITegCHXWOnG5vojb3ePwiidsPuN3+keLSYUQQeEoOenCRxD s3V5+PncUmLIBFr17lwwqtirPObAhsVe/LsXGVvoujsubqX5bydK+mw6gE69ZxF5 DGYb2uIdeC57aqvduw7Y01RFe8L2SQI06j36LBHP6DraYyrGRbmyfGrEaebv15bY BTreuRM63DG62pYMTPBfyccUOtkPqEQ+jUc/yWrpA7HD4y8uE/3swKRDSXu2zZ2a 6T9nes3aSJHUJ0FtNKeELJQCOyZ0TnlOvy/cqewEnEDthwRaWum/cghiqGA5xXHf sXxGS4npRILUwEeeg59J8g5FBq9iUqZh -----END CERTIFICATE-----Generated at Tue Jul 1 15:14:41 2025 by rpki-client