$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft File: PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft (raw, json) Hash identifier: ql8k90MDuwm0KgZarSmr9ObvsmX0DF1Oy8GS5RbOZFQ= Subject key identifier: FA:1B:FB:1C:33:F6:45:34:91:99:58:C1:B2:9F:19:C6:38:34:81:0E Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 0761 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft Manifest number: 06CD Signing time: Wed 24 Apr 2024 23:40:37 +0000 Manifest this update: Wed 24 Apr 2024 23:40:36 +0000 Manifest next update: Wed 01 May 2024 23:40:36 +0000 Files and hashes: 1: PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl (hash: +BeJZKNDJjdg1D/6bhhOzfxcyisPnbJNqHEDl4mq+vI=) 2: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (hash: SLmZFGSKKHSNTbp90Eqx5t4RQARpRICmuu6YOwjpeZs=) 3: 0112375EA05411EDB043385AC4F9AE02.roa (hash: Kq1jWdH8x/n2DzsxB5OFw0vmNSRkGTF3DaCAJgxryGQ=) 4: 8A8DFF6C850111EEAE266623C4F9AE02.roa (hash: iGYX3B/IkkkfRtF03/OTWETd2AEHP1Oy6Q8xpuFKgCM=) 5: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (hash: udEqLCtgKXaI1YwmV1HyckUBiaH+LidusYCEz2iqc3c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 23:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1889 (0x761) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Validity Not Before: Apr 24 23:40:36 2024 GMT Not After : May 1 23:40:36 2024 GMT Subject: CN=66299874-67ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:36:59:b1:4e:41:ee:2d:3a:c0:87:bb:98:75: a5:8e:d1:f2:46:36:de:37:6e:b8:2a:25:7e:0d:aa: 74:e7:a2:b2:7f:58:4c:fa:0b:b1:f4:0c:aa:e8:6c: fd:5f:0c:65:65:6f:03:05:cc:a1:fd:b5:7a:d5:f1: 1d:0a:57:c7:03:5a:4e:ad:a5:70:92:e4:7c:22:23: fb:3c:66:40:4b:8e:c1:4b:bd:39:a0:81:81:ad:42: 9d:2d:ff:e3:24:c9:16:99:9c:d2:75:38:ba:f1:8f: 98:bc:f5:84:52:41:dd:14:d6:79:b4:53:52:01:91: a4:57:80:ad:b4:02:1c:38:ff:21:77:a3:01:1f:ff: 20:59:3a:e6:ff:dc:b6:bb:f0:e8:43:a1:07:b9:d7: 70:3b:83:d0:39:44:3e:e2:38:38:86:09:ff:22:8b: ca:9a:28:68:b5:70:fb:28:9d:13:a3:e0:c3:f6:7f: 69:d6:6f:f4:06:3d:de:b6:79:e6:b8:2f:8d:fe:79: d7:5a:4a:8d:ca:73:e4:6b:97:68:e6:46:51:68:3a: b1:65:68:18:7f:8e:7d:25:8b:08:46:d6:f5:88:f6: ea:b5:4e:ee:83:5e:ed:a2:92:c5:b7:3f:29:d4:cd: d1:e4:24:c9:09:7a:d9:4d:c0:1c:70:1b:ad:02:f7: d3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:1B:FB:1C:33:F6:45:34:91:99:58:C1:B2:9F:19:C6:38:34:81:0E X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:5b:46:5a:e8:9b:6f:ab:e9:44:6c:c8:71:f6:03:22:11:4e: 4e:f3:c0:b2:a4:ea:1f:76:df:1c:3c:84:ee:d0:d6:69:d2:99: 6c:dd:21:36:a2:62:a7:44:d7:46:c3:2f:40:ab:bf:60:2c:01: f4:e2:1d:39:9d:b2:65:3e:da:68:4b:09:62:02:9c:a2:63:eb: 5e:1c:9d:73:d5:4d:96:9f:10:77:ed:d8:c5:27:7b:7f:3d:92: 0c:cd:18:ff:00:91:3c:a0:f2:78:86:de:93:a8:ce:b5:94:15: a9:23:33:75:fc:ce:eb:08:a0:79:bc:f0:bf:e3:cf:ee:d9:eb: 78:71:55:bd:02:ff:a0:1a:aa:a2:79:9f:00:03:e1:e9:ca:55: 60:25:d6:d6:63:6f:db:f5:44:12:66:c1:4f:a1:8e:84:d0:91: 2b:03:05:d7:e0:7a:b9:ee:3a:ef:f6:e0:48:d4:b6:37:d9:22: a4:73:c8:5b:35:b5:2d:a9:82:24:7f:1e:25:f5:82:91:04:89: 46:e4:1f:52:24:d1:ec:31:1f:6d:4e:8e:20:9b:d3:4e:cf:6c: 54:0d:fa:76:04:c2:27:eb:8f:3e:4c:d7:c2:f0:7e:bb:8a:91: 2b:e1:b2:12:a7:d2:a5:fe:a4:73:79:8f:7d:93:20:74:1b:87: 0d:af:2c:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjQwNDI0MjM0MDM2WhcNMjQwNTAxMjM0MDM2WjAYMRYwFAYD VQQDEw02NjI5OTg3NC02N2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4zZZsU5B7i06wIe7mHWljtHyRjbeN264KiV+Dap056Kyf1hM+gux9Ayq6Gz9 XwxlZW8DBcyh/bV61fEdClfHA1pOraVwkuR8IiP7PGZAS47BS705oIGBrUKdLf/j JMkWmZzSdTi68Y+YvPWEUkHdFNZ5tFNSAZGkV4CttAIcOP8hd6MBH/8gWTrm/9y2 u/DoQ6EHuddwO4PQOUQ+4jg4hgn/IovKmihotXD7KJ0To+DD9n9p1m/0Bj3etnnm uC+N/nnXWkqNynPka5do5kZRaDqxZWgYf459JYsIRtb1iPbqtU7ug17topLFtz8p 1M3R5CTJCXrZTcAccButAvfT9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPob+xwz 9kU0kZlYwbKfGcY4NIEOMB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjdBQi81Njc4NjU2ODQwMDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQ MlFnVVpRTGs4STVGYnoyYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDW0Za6Jtvq+lEbMhx9gMiEU5O88CypOofdt8cPITu0NZp0pls3SE2 omKnRNdGwy9Aq79gLAH04h05nbJlPtpoSwliApyiY+teHJ1z1U2WnxB37djFJ3t/ PZIMzRj/AJE8oPJ4ht6TqM61lBWpIzN1/M7rCKB5vPC/48/u2et4cVW9Av+gGqqi eZ8AA+HpylVgJdbWY2/b9UQSZsFPoY6E0JErAwXX4Hq57jrv9uBI1LY32SKkc8hb NbUtqYIkfx4l9YKRBIlG5B9SJNHsMR9tTo4gm9NOz2xUDfp2BMIn648+TNfC8H67 ipEr4bISp9Kl/qRzeY99kyB0G4cNryyb -----END CERTIFICATE-----Generated at Thu Apr 25 02:01:32 2024 by rpki-client on console-ams.rpki-client.org