$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft File: PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft (raw, json) Hash identifier: b/QUf+iT2/yDG913J8pfmFgP5G/1ljosLQlb61wah1M= Subject key identifier: F8:FB:B7:9A:82:9A:43:E5:B7:BE:89:B6:46:EC:CE:5E:35:46:3C:56 Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 0907 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft Manifest number: 0860 Signing time: Wed 20 May 2026 21:25:57 +0000 Manifest this update: Wed 20 May 2026 21:25:56 +0000 Manifest next update: Wed 27 May 2026 21:25:56 +0000 Files and hashes: 1: PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl (hash: UzTcDnlm3vgHJcfLYmJIhZ3VGJB9YLRDH1lZMYHkWdU=) 2: E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa (hash: 4maJF9WUbj7sjherc9bKMjHY3wXl4HcmhFEcf5r/F/Q=) 3: 0112375EA05411EDB043385AC4F9AE02.roa (hash: wt7sHeBZYX3+ynpGbSY8k/1ymNfDI2lkoFnaTMVP/Ps=) 4: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (hash: GPPwnFCIcpt0RgF++70GuCleWCDXuGcVYR4o3iza94k=) 5: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (hash: wVxc6nx/JmhL7VCPOsNGEB8sGimUMjqS6K/WHE14sqo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 21:25:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2311 (0x907) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB, serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Validity Not Before: May 20 21:25:56 2026 GMT Not After : May 27 21:25:56 2026 GMT Subject: CN=6a0e26e5-7b28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:39:a3:55:8d:36:0b:17:f7:1d:1c:e2:95:47: e9:42:5d:73:4d:f0:47:2c:7c:79:25:b0:39:eb:bb: 5f:8d:96:8d:46:39:7e:e7:be:a7:ce:d7:98:4f:27: 97:6d:64:c2:d9:3b:21:47:73:0c:cd:6f:56:58:35: a0:a9:73:09:65:6d:07:fd:90:74:02:56:e6:b1:6c: 08:6d:9c:21:e9:e0:9a:2e:e5:80:2c:ab:64:ef:61: 6f:0a:65:68:16:12:ff:a5:20:89:54:65:1f:86:db: 7b:ef:42:95:bc:21:ac:a7:d7:9d:3b:43:25:8e:c3: 86:d8:15:25:10:87:88:6c:59:3a:59:cf:dd:9f:49: ee:73:01:86:59:c7:8b:24:f0:96:50:af:b8:63:a8: 97:7d:d1:1c:0d:c5:3e:5c:54:8f:06:89:ca:e9:ef: 43:3b:b8:56:5a:24:5a:da:2d:c8:2b:6f:d8:97:09: 2e:97:25:96:7b:45:4f:8b:c9:19:66:78:f0:4f:8f: 12:66:5f:36:ed:89:48:6b:39:7a:cd:89:73:0b:49: eb:f8:49:f9:5b:48:d4:31:0c:ce:6e:7f:41:17:94: 09:ea:6f:84:4a:a6:10:32:ca:7d:ed:54:e8:e5:30: 1a:cf:ed:fe:fd:21:d9:68:ed:b0:a2:6d:2a:84:5e: a5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:FB:B7:9A:82:9A:43:E5:B7:BE:89:B6:46:EC:CE:5E:35:46:3C:56 X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:e7:e1:8c:39:48:bd:3d:8f:b1:9c:55:ba:a2:10:44:c4:46: 17:a6:ae:40:22:8e:03:ad:9f:d4:9c:83:25:27:ea:8e:30:f9: 85:73:2e:55:ad:51:d4:b5:6f:f3:50:9d:7b:cb:fd:e6:60:0a: fc:dc:5f:43:b6:84:40:29:66:e7:98:fc:82:e7:1d:9a:3b:74: 3e:31:22:54:98:b1:16:c9:29:c5:ec:22:95:d8:d6:98:10:c0: 71:3e:5b:53:b7:7a:c2:58:6e:d4:71:b7:de:c8:08:be:a0:e7: f6:e1:f0:0a:ff:28:25:43:5c:ec:20:74:61:47:16:54:9c:7a: 16:41:07:c2:87:d9:a8:f4:f7:78:27:a3:c0:74:c2:0f:5f:d6: be:82:6a:a8:80:a2:74:3f:af:04:bf:d8:70:0c:ff:c8:d6:de: f4:c6:25:39:a8:c5:c7:93:f9:67:29:e3:58:16:64:f7:b3:d8: 49:e2:81:30:35:bd:80:21:b9:4f:75:20:1d:aa:b4:2a:54:26: b1:57:56:78:51:5a:96:64:03:f3:7f:64:b9:14:8a:a7:df:ef: 66:bc:34:4a:85:54:76:b6:f2:01:37:9f:36:50:0a:a3:55:a4: 38:61:d0:73:1b:e0:b1:fb:2b:15:f7:10:3c:f4:06:a0:a8:6c: 3f:e9:92:e2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjYwNTIwMjEyNTU2WhcNMjYwNTI3MjEyNTU2WjAYMRYwFAYD VQQDEw02YTBlMjZlNS03YjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDmjVY02Cxf3HRzilUfpQl1zTfBHLHx5JbA567tfjZaNRjl+576nzteYTyeX bWTC2TshR3MMzW9WWDWgqXMJZW0H/ZB0AlbmsWwIbZwh6eCaLuWALKtk72FvCmVo FhL/pSCJVGUfhtt770KVvCGsp9edO0MljsOG2BUlEIeIbFk6Wc/dn0nucwGGWceL JPCWUK+4Y6iXfdEcDcU+XFSPBonK6e9DO7hWWiRa2i3IK2/YlwkulyWWe0VPi8kZ ZnjwT48SZl827YlIazl6zYlzC0nr+En5W0jUMQzObn9BF5QJ6m+ESqYQMsp97VTo 5TAaz+3+/SHZaO2wom0qhF6lJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPj7t5qC mkPlt76Jtkbszl41RjxWMB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjdBQi81Njc4NjU2ODQwMDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQ MlFnVVpRTGs4STVGYnoyYncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANOfhjDlIvT2PsZxVuqIQRMRGF6auQCKOA62f1JyDJSfqjjD5hXMuVa1R1LVv 81Cde8v95mAK/NxfQ7aEQClm55j8gucdmjt0PjEiVJixFskpxewildjWmBDAcT5b U7d6wlhu1HG33sgIvqDn9uHwCv8oJUNc7CB0YUcWVJx6FkEHwofZqPT3eCejwHTC D1/WvoJqqICidD+vBL/YcAz/yNbe9MYlOajFx5P5ZynjWBZk97PYSeKBMDW9gCG5 T3UgHaq0KlQmsVdWeFFalmQD839kuRSKp9/vZrw0SoVUdrbyATefNlAKo1WkOGHQ cxvgsfsrFfcQPPQGoKhsP+mS4g== -----END CERTIFICATE-----Generated at Fri May 22 15:09:49 2026 by rpki-client