$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft File: PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft (raw, json) Hash identifier: Ky3ls8Rvv7TDQlnpWLk97eVRp9TFRRcUz+gwbOVr6C4= Subject key identifier: EB:D6:AE:79:1E:F7:93:29:1A:D4:68:16:93:C4:21:6C:EA:E3:44:84 Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 07D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft Manifest number: 0740 Signing time: Wed 20 Nov 2024 21:44:45 +0000 Manifest this update: Wed 20 Nov 2024 21:44:44 +0000 Manifest next update: Wed 27 Nov 2024 21:44:44 +0000 Files and hashes: 1: PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl (hash: 8MKEtiMaKIjWE+jM39eF4in/mItVR4lEgJAOXVF6c8g=) 2: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (hash: SLmZFGSKKHSNTbp90Eqx5t4RQARpRICmuu6YOwjpeZs=) 3: 0112375EA05411EDB043385AC4F9AE02.roa (hash: Kq1jWdH8x/n2DzsxB5OFw0vmNSRkGTF3DaCAJgxryGQ=) 4: E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa (hash: v4nnpPd/eykpUqvk6830iaJ0LiCr5dhdRlxUb8DNbNM=) 5: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (hash: udEqLCtgKXaI1YwmV1HyckUBiaH+LidusYCEz2iqc3c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2007 (0x7d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Validity Not Before: Nov 20 21:44:44 2024 GMT Not After : Nov 27 21:44:44 2024 GMT Subject: CN=673e584d-5c1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c2:b6:87:2a:a1:8d:00:5a:e9:59:a7:05:e2: 3b:a9:b6:12:f7:49:4b:1f:d1:01:6c:32:b8:ef:d8: 0f:d9:cf:4b:b6:c2:30:94:99:bd:d8:60:17:52:ad: f0:fb:23:a0:11:45:d9:d7:87:99:56:b7:69:3f:e6: 14:f2:ee:7d:45:2c:e4:14:8e:22:8a:8f:05:20:ae: 2f:09:86:56:53:66:4e:78:29:5e:10:6a:ce:39:db: a4:34:d1:a8:19:e2:f8:b3:d9:75:ea:0c:7a:a5:6b: 97:ce:eb:98:7b:44:9b:61:1f:56:97:3c:4d:48:d7: 15:9a:3d:84:fa:98:6b:59:34:fd:b6:1e:74:45:3d: 58:ce:86:1f:56:7e:4d:20:a8:3a:90:4b:a3:3b:25: 26:f2:72:9e:51:3d:ae:7a:bf:b6:de:93:58:d8:e5: 6f:0b:43:68:1b:02:b3:15:a6:20:47:09:56:67:5a: 1c:4e:36:e4:cf:45:14:1b:7b:9c:a9:12:91:9e:31: ce:85:dd:a2:fa:a4:99:d9:c5:b2:df:cd:d9:76:63: ee:89:08:a1:b3:ae:0a:e0:0e:52:51:08:e4:ba:28: a6:5b:75:be:59:72:0a:3f:bc:e3:1a:cd:45:2f:42: 22:ad:aa:c1:84:1d:fb:75:3e:ae:03:ab:e9:8c:e8: 4b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:D6:AE:79:1E:F7:93:29:1A:D4:68:16:93:C4:21:6C:EA:E3:44:84 X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:13:65:d7:93:eb:cc:1b:cd:bc:d6:bd:a9:c3:83:0d:94:11: c8:d5:fa:4f:37:72:2d:00:b7:e3:8f:a3:81:cd:be:41:94:41: ac:c1:4e:cb:8b:30:05:e1:3d:fd:a3:35:a6:0b:9e:b5:b5:c6: 10:cf:d5:03:12:26:75:39:36:c4:29:cd:e6:0e:0f:fb:26:38: 1d:c3:cb:2c:a5:ca:b9:17:b8:c2:11:59:fc:c7:05:54:b8:b3: f4:5c:e2:0f:f2:c5:8b:aa:f8:ac:db:d5:12:ed:6d:6a:3d:4a: f8:79:c2:00:41:f6:d0:7f:08:a9:14:a2:53:81:8f:d6:ab:51: d3:2c:d2:74:f9:d6:99:f9:c5:ab:c5:18:03:c7:93:f5:9e:6a: d7:9b:4b:af:e0:99:99:9a:69:c1:87:54:9d:05:c5:81:65:ad: 7c:98:fd:03:ec:90:39:d0:ef:60:19:45:0d:27:6a:89:a7:f2: f5:08:eb:15:db:7f:1e:01:d7:64:06:f0:c2:52:c5:72:8a:18: 61:67:30:ca:8f:22:86:af:8b:bf:d5:cf:2f:fb:2a:99:13:1f: 89:8e:aa:84:6c:ca:50:01:63:5b:b2:d0:aa:5a:53:0e:e8:ee: 4c:a9:35:1e:b6:47:dc:2c:a4:e5:be:7e:84:40:52:28:8f:21: 68:de:ab:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjQxMTIwMjE0NDQ0WhcNMjQxMTI3MjE0NDQ0WjAYMRYwFAYD VQQDEw02NzNlNTg0ZC01YzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8K2hyqhjQBa6VmnBeI7qbYS90lLH9EBbDK479gP2c9LtsIwlJm92GAXUq3w +yOgEUXZ14eZVrdpP+YU8u59RSzkFI4iio8FIK4vCYZWU2ZOeCleEGrOOdukNNGo GeL4s9l16gx6pWuXzuuYe0SbYR9WlzxNSNcVmj2E+phrWTT9th50RT1YzoYfVn5N IKg6kEujOyUm8nKeUT2uer+23pNY2OVvC0NoGwKzFaYgRwlWZ1ocTjbkz0UUG3uc qRKRnjHOhd2i+qSZ2cWy383ZdmPuiQihs64K4A5SUQjkuiimW3W+WXIKP7zjGs1F L0IirarBhB37dT6uA6vpjOhLfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOvWrnke 95MpGtRoFpPEIWzq40SEMB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjdBQi81Njc4NjU2ODQwMDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQ MlFnVVpRTGs4STVGYnoyYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRE2XXk+vMG8281r2pw4MNlBHI1fpPN3ItALfjj6OBzb5BlEGswU7L izAF4T39ozWmC561tcYQz9UDEiZ1OTbEKc3mDg/7Jjgdw8sspcq5F7jCEVn8xwVU uLP0XOIP8sWLqvis29US7W1qPUr4ecIAQfbQfwipFKJTgY/Wq1HTLNJ0+daZ+cWr xRgDx5P1nmrXm0uv4JmZmmnBh1SdBcWBZa18mP0D7JA50O9gGUUNJ2qJp/L1COsV 238eAddkBvDCUsVyihhhZzDKjyKGr4u/1c8v+yqZEx+JjqqEbMpQAWNbstCqWlMO 6O5MqTUetkfcLKTlvn6EQFIojyFo3qtg -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:48 2024 by rpki-client on console-fra.rpki-client.org