$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft File: PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft (raw, json) Hash identifier: gP8Osofywk8I6hGdO6oDFUPyYIs/rKgfUArREIeQ5IQ= Subject key identifier: EC:23:A1:FC:CB:9E:43:09:E7:E8:95:35:BB:D5:BD:CC:21:A8:2C:37 Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 083D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft Manifest number: 07A2 Signing time: Fri 30 May 2025 22:06:11 +0000 Manifest this update: Fri 30 May 2025 22:06:10 +0000 Manifest next update: Fri 06 Jun 2025 22:06:10 +0000 Files and hashes: 1: PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl (hash: iuia7uDhoDu6guROy2Dqbu+dPWl8XTd20Pf/dlJ2yEY=) 2: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (hash: JCIJiRdjoJPwGnugBIK3v/SX30S5Hj97puNSPDnZHa0=) 3: 0112375EA05411EDB043385AC4F9AE02.roa (hash: aBs0HSQclxaDqKZvgHQYQl981j8saXju4dpMEUuQAU4=) 4: E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa (hash: Rtf4SCa2SLq1aWm8pt96fKW5kPl75H0zBH9P2CmsGlU=) 5: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (hash: xyRyhhQBvFg1P0171dGNRFnwuXqCBoYXwtzjvJ6IHcw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:06:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2109 (0x83d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB, serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Validity Not Before: May 30 22:06:10 2025 GMT Not After : Jun 6 22:06:10 2025 GMT Subject: CN=683a2bd2-1d2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:17:7c:d4:f0:73:21:ed:26:97:b6:c1:7c:dc: f1:a4:59:1e:36:c9:c6:18:21:10:29:2b:53:b9:3a: c2:d2:6c:f6:a9:bb:8b:40:c7:b4:73:e7:8d:16:68: fa:93:5f:0a:d6:2e:01:0f:d9:81:41:82:f7:46:da: b0:32:be:d5:88:5f:ab:63:aa:b1:dd:cf:48:3b:99: 8d:47:3f:50:1a:fd:91:83:7f:59:c9:05:8b:d7:e1: 60:0b:1f:bf:90:4f:a1:c4:eb:91:3b:c7:45:bd:b2: 5c:6f:50:dc:09:7c:75:c0:a6:95:30:89:c6:7f:0a: 0f:75:e1:a6:4f:56:bd:c3:99:fc:b9:e7:43:a6:dd: bb:17:5a:5f:c1:4d:68:db:77:cb:98:d8:5a:c7:f9: 5b:ad:44:bc:10:97:21:40:3c:57:c6:05:b0:1e:42: 1a:f4:9f:1d:db:5c:2e:5d:35:d6:a0:aa:25:b1:50: 69:48:4c:21:71:c6:ba:11:55:85:c7:d3:c9:5e:27: 6c:87:76:e1:f3:9c:52:4d:b6:bb:37:7a:e6:dd:aa: 2f:9a:02:bc:c6:fa:5a:7f:22:fe:3c:eb:7a:de:ff: 1b:43:49:2c:f2:60:8a:9c:b5:ff:87:07:c9:2f:cd: 63:e5:1c:89:c9:e1:f5:23:30:bd:1b:cd:b0:4c:a2: 4f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:23:A1:FC:CB:9E:43:09:E7:E8:95:35:BB:D5:BD:CC:21:A8:2C:37 X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:31:b4:37:74:0c:00:ca:fe:04:e0:23:dc:e3:8c:0b:76:e2: a4:76:25:9a:00:51:b0:69:a7:95:15:26:d3:c6:6b:3e:f6:60: c4:f2:ba:ac:86:26:c6:1f:1e:f8:ee:90:32:8b:94:4d:11:bf: b7:a9:93:ae:58:f5:03:11:97:76:ff:69:5a:ba:39:4b:24:5c: 05:30:59:54:f0:27:42:d3:58:a8:57:12:57:aa:a4:ee:db:67: 2a:6a:d4:0b:a7:e7:3c:85:12:85:35:7d:99:ce:b4:44:be:fa: 9e:e7:cd:7e:f9:19:e6:22:b6:fe:e8:0e:49:d0:a1:8f:e7:39: ac:cc:90:f4:c3:ff:92:48:f1:b5:87:e9:da:9c:6d:51:b8:01: 30:ae:a8:89:ed:41:98:68:aa:f8:30:0d:ea:6e:1a:3d:b9:2e: f6:fb:38:f6:30:1e:4c:d7:20:3b:0e:98:71:e9:5f:e1:a8:42: 06:28:24:02:50:2e:26:ea:c9:5e:e7:00:a7:98:45:f7:2f:56: 05:51:86:46:0c:cd:15:fd:53:c1:fa:f0:79:fd:b1:11:1f:1a: 71:3c:b7:9c:d1:c2:58:b1:89:2e:e1:28:77:37:a3:82:e1:c6: 7f:43:be:a2:e5:9b:9f:86:5d:af:c0:59:3d:56:1e:62:8c:ee: 14:9a:28:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjUwNTMwMjIwNjEwWhcNMjUwNjA2MjIwNjEwWjAYMRYwFAYD VQQDEw02ODNhMmJkMi0xZDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBd81PBzIe0ml7bBfNzxpFkeNsnGGCEQKStTuTrC0mz2qbuLQMe0c+eNFmj6 k18K1i4BD9mBQYL3RtqwMr7ViF+rY6qx3c9IO5mNRz9QGv2Rg39ZyQWL1+FgCx+/ kE+hxOuRO8dFvbJcb1DcCXx1wKaVMInGfwoPdeGmT1a9w5n8uedDpt27F1pfwU1o 23fLmNhax/lbrUS8EJchQDxXxgWwHkIa9J8d21wuXTXWoKolsVBpSEwhcca6EVWF x9PJXidsh3bh85xSTba7N3rm3aovmgK8xvpafyL+POt63v8bQ0ks8mCKnLX/hwfJ L81j5RyJyeH1IzC9G82wTKJPcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOwjofzL nkMJ5+iVNbvVvcwhqCw3MB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjdBQi81Njc4NjU2ODQwMDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQ MlFnVVpRTGs4STVGYnoyYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPMbQ3dAwAyv4E4CPc44wLduKkdiWaAFGwaaeVFSbTxms+9mDE8rqs hibGHx747pAyi5RNEb+3qZOuWPUDEZd2/2laujlLJFwFMFlU8CdC01ioVxJXqqTu 22cqatQLp+c8hRKFNX2ZzrREvvqe581++RnmIrb+6A5J0KGP5zmszJD0w/+SSPG1 h+nanG1RuAEwrqiJ7UGYaKr4MA3qbho9uS72+zj2MB5M1yA7Dphx6V/hqEIGKCQC UC4m6sle5wCnmEX3L1YFUYZGDM0V/VPB+vB5/bERHxpxPLec0cJYsYku4Sh3N6OC 4cZ/Q76i5Zufhl2vwFk9Vh5ijO4Umig3 -----END CERTIFICATE-----Generated at Sat May 31 16:38:55 2025 by rpki-client