$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft File: PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft (raw, json) Hash identifier: EQ5ZNPdlCA2PF1hqH6EeWfdIvhVAMkX1zgSBj8PMLno= Subject key identifier: 28:98:CD:69:41:45:FF:8A:79:E3:06:55:5A:72:1F:DE:58:20:FD:CA Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 086F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft Manifest number: 07D4 Signing time: Thu 04 Sep 2025 22:00:20 +0000 Manifest this update: Thu 04 Sep 2025 22:00:19 +0000 Manifest next update: Thu 11 Sep 2025 22:00:19 +0000 Files and hashes: 1: PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl (hash: XNAAGxCfcmYnRYSlJmSulyMu7H0h3yWzP7mt0W2b5BI=) 2: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (hash: JCIJiRdjoJPwGnugBIK3v/SX30S5Hj97puNSPDnZHa0=) 3: 0112375EA05411EDB043385AC4F9AE02.roa (hash: aBs0HSQclxaDqKZvgHQYQl981j8saXju4dpMEUuQAU4=) 4: E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa (hash: Rtf4SCa2SLq1aWm8pt96fKW5kPl75H0zBH9P2CmsGlU=) 5: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (hash: xyRyhhQBvFg1P0171dGNRFnwuXqCBoYXwtzjvJ6IHcw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2159 (0x86f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB, serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Validity Not Before: Sep 4 22:00:19 2025 GMT Not After : Sep 11 22:00:19 2025 GMT Subject: CN=68ba0bf4-f5ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:90:28:b2:09:d3:5b:d3:9e:03:54:b6:58:50: ea:f8:7b:f5:c2:b9:7b:6d:e5:65:45:f2:1e:e5:5b: 28:b6:66:13:9d:96:cd:fb:b7:c0:ea:40:d2:21:df: 34:b1:50:b2:9c:c7:4d:b1:7d:83:51:5b:f4:c7:ba: f3:97:b6:fb:94:c7:7a:28:88:88:6b:9d:14:ef:4e: 22:b7:b0:e6:4b:66:18:f6:ba:3a:89:80:cd:7f:20: 81:65:f0:23:73:03:29:70:7f:8d:71:70:84:1c:25: 43:58:f3:4a:c6:23:a3:c4:fd:85:ea:34:29:3f:bb: f0:c3:83:af:4e:5e:f2:b6:89:01:97:46:8c:a3:df: b6:59:b6:98:86:5c:38:4c:46:a1:f6:e8:04:f1:cc: 0b:4c:23:90:24:c1:13:b6:36:23:58:82:ff:df:0b: 7c:3d:f6:5e:a3:e3:ed:62:92:f3:6d:f0:63:8d:6f: 60:cc:51:54:b9:ef:55:f9:f3:86:51:11:d1:a2:80: 74:cb:a2:59:ce:b9:b5:75:e7:45:da:f7:24:d6:dd: 78:33:4d:c5:a7:86:c7:85:46:95:89:a7:e3:53:85: df:0f:f2:c8:47:05:dd:d0:49:d0:15:68:95:07:74: 4b:0c:d7:d4:ee:3a:7e:66:b6:d8:44:f6:45:71:6e: 3a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:98:CD:69:41:45:FF:8A:79:E3:06:55:5A:72:1F:DE:58:20:FD:CA X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:87:cc:b5:ab:47:8b:a3:c4:30:59:85:42:09:40:7f:8a:f1: 6a:5c:1f:5e:bb:f4:2f:ed:b0:1b:c1:49:f9:30:c6:06:ad:e8: 9c:28:3f:4f:54:b5:82:93:62:5d:48:39:1f:42:1a:0f:98:8c: 53:7e:2d:b9:00:d0:f4:d3:50:90:76:f2:f8:f9:bf:40:4b:86: a3:b5:45:1f:ff:68:38:fa:fc:e6:8c:4a:fc:27:75:5d:43:89: 07:f0:36:75:bb:4b:72:1b:0a:64:de:60:fa:5f:f1:77:42:60: 7d:e2:4f:2e:68:94:1a:2b:c6:fa:f5:b8:e5:3e:55:8a:c3:0e: ba:4b:b4:7b:1d:ca:7d:f9:f7:49:69:9b:cc:99:c7:13:cf:86: 99:55:3f:b6:2f:1c:96:c6:49:c7:de:71:52:d9:a4:1e:f6:d3: 2c:98:02:3f:4a:48:f3:4b:27:38:cd:83:b7:9f:22:d2:e7:c3: 54:10:95:d7:e9:53:e8:54:3b:dd:f0:8c:ea:c1:35:88:12:b8: 42:7f:d6:ac:6b:79:e6:72:14:fc:ea:31:58:67:77:0e:69:ef: 48:06:54:6a:81:d5:21:71:e5:2c:76:b7:47:35:06:be:42:d4: 32:c7:0f:ac:70:de:b2:60:49:25:c6:eb:36:ac:46:d8:48:6c: c5:66:a8:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjUwOTA0MjIwMDE5WhcNMjUwOTExMjIwMDE5WjAYMRYwFAYD VQQDEw02OGJhMGJmNC1mNWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA65AosgnTW9OeA1S2WFDq+Hv1wrl7beVlRfIe5VsotmYTnZbN+7fA6kDSId80 sVCynMdNsX2DUVv0x7rzl7b7lMd6KIiIa50U704it7DmS2YY9ro6iYDNfyCBZfAj cwMpcH+NcXCEHCVDWPNKxiOjxP2F6jQpP7vww4OvTl7ytokBl0aMo9+2WbaYhlw4 TEah9ugE8cwLTCOQJMETtjYjWIL/3wt8PfZeo+PtYpLzbfBjjW9gzFFUue9V+fOG URHRooB0y6JZzrm1dedF2vck1t14M03Fp4bHhUaViafjU4XfD/LIRwXd0EnQFWiV B3RLDNfU7jp+ZrbYRPZFcW465QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCiYzWlB Rf+KeeMGVVpyH95YIP3KMB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjdBQi81Njc4NjU2ODQwMDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQ MlFnVVpRTGs4STVGYnoyYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5h8y1q0eLo8QwWYVCCUB/ivFqXB9eu/Qv7bAbwUn5MMYGreicKD9P VLWCk2JdSDkfQhoPmIxTfi25AND001CQdvL4+b9AS4ajtUUf/2g4+vzmjEr8J3Vd Q4kH8DZ1u0tyGwpk3mD6X/F3QmB94k8uaJQaK8b69bjlPlWKww66S7R7Hcp9+fdJ aZvMmccTz4aZVT+2LxyWxknH3nFS2aQe9tMsmAI/SkjzSyc4zYO3nyLS58NUEJXX 6VPoVDvd8IzqwTWIErhCf9asa3nmchT86jFYZ3cOae9IBlRqgdUhceUsdrdHNQa+ QtQyxw+scN6yYEklxus2rEbYSGzFZqjc -----END CERTIFICATE-----Generated at Fri Sep 5 11:28:17 2025 by rpki-client