Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft
File:                     PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft (raw, json)
Hash identifier:          w8QeVV0dWHE9qSn9EBWNBOVrqdMlyxrrNB4dwGti1u8=
Subject key identifier:   47:B6:19:F3:B5:29:AE:42:6A:00:BA:CF:B3:F8:63:86:09:44:AF:B9
Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC
Certificate issuer:       /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC
Certificate serial:       091E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft
Manifest number:          0877
Signing time:             Sat 04 Jul 2026 21:33:57 +0000
Manifest this update:     Sat 04 Jul 2026 21:33:56 +0000
Manifest next update:     Sat 11 Jul 2026 21:33:56 +0000
Files and hashes:         1: PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl (hash: CdS5oJMdf7cZU32wpO7N2UFHEq+eQ97frpiQhTB/EGM=)
                          2: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (hash: wVxc6nx/JmhL7VCPOsNGEB8sGimUMjqS6K/WHE14sqo=)
                          3: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (hash: GPPwnFCIcpt0RgF++70GuCleWCDXuGcVYR4o3iza94k=)
                          4: E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa (hash: 4maJF9WUbj7sjherc9bKMjHY3wXl4HcmhFEcf5r/F/Q=)
                          5: 0112375EA05411EDB043385AC4F9AE02.roa (hash: wt7sHeBZYX3+ynpGbSY8k/1ymNfDI2lkoFnaTMVP/Ps=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl
                          rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 21:33:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2334 (0x91e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CB7AB, serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC
        Validity
            Not Before: Jul  4 21:33:56 2026 GMT
            Not After : Jul 11 21:33:56 2026 GMT
        Subject: CN=6a497c44-3f2b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:90:e2:af:d8:47:94:42:3b:83:8c:ce:10:34:
                    ad:4f:9f:23:c7:d0:c4:5a:4b:f8:0e:7f:c2:19:1c:
                    c5:b3:d8:80:c3:cc:3b:b8:ca:69:9e:b7:1c:bd:99:
                    60:8e:85:97:63:78:15:c3:2f:d7:4e:29:76:6b:0d:
                    16:09:25:9b:90:7a:4e:1f:af:b7:11:65:06:ad:66:
                    2d:9e:68:50:d6:bb:6e:93:d4:aa:1b:ee:c3:7c:d6:
                    e6:7a:c1:99:05:46:c0:7a:c1:9b:8f:23:2d:4d:7a:
                    dc:13:55:0c:2e:d4:d8:b1:ef:04:c6:02:99:95:7b:
                    b0:15:3d:1a:d8:a0:ee:6d:69:e7:d0:e7:79:60:36:
                    16:4d:39:6f:16:a1:9c:3a:d1:8d:bb:45:93:90:35:
                    a7:7c:79:ef:10:f2:49:fa:40:94:c9:29:9a:43:9c:
                    bf:36:6a:37:11:f0:e5:98:08:f3:fd:04:5f:51:f5:
                    4c:77:65:e3:23:cb:c7:9e:1a:e6:27:19:a1:16:b1:
                    da:a7:ee:1e:90:27:35:a3:b7:c8:7b:15:88:3c:a9:
                    49:0c:a6:58:2a:5b:8f:83:82:cd:02:4c:98:02:3f:
                    f1:57:46:ec:76:0b:1a:00:2d:0e:0b:65:86:4f:13:
                    ad:92:12:7b:59:66:99:e8:5c:ec:35:79:29:ce:82:
                    41:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:B6:19:F3:B5:29:AE:42:6A:00:BA:CF:B3:F8:63:86:09:44:AF:B9
            X509v3 Authority Key Identifier:
                keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         44:bb:f3:bd:fb:ca:ea:8e:8a:19:ea:93:75:07:81:58:4f:73:
         49:c1:2d:66:93:1f:b3:8b:e7:f0:46:08:49:51:3b:d6:77:e0:
         14:b8:c8:33:aa:c9:33:91:07:7f:f7:cb:27:17:d9:0b:90:cd:
         4f:ac:ce:34:66:52:88:d4:69:1e:f6:bf:d6:96:95:4b:b5:53:
         6a:74:76:65:c5:47:de:e7:78:9b:5a:40:a7:e2:9d:d7:4f:0c:
         85:12:2c:5d:8d:31:77:b2:b7:1f:c9:81:2a:2e:22:22:fd:90:
         5a:9c:c6:2a:a0:b4:79:3b:a3:ce:2a:46:0d:83:1f:08:fe:43:
         88:25:81:ed:d2:4b:da:0f:f7:16:b2:ae:d8:12:3d:dc:d8:2b:
         0d:f2:53:5a:a8:cb:1e:d1:7a:bb:16:0f:8f:96:c9:13:18:34:
         cd:3e:3a:f7:e5:d6:1f:b1:0e:ba:09:9c:58:ad:d6:7a:d0:2c:
         8a:19:4b:03:f0:3c:a3:7b:c9:e0:9b:29:cf:b8:7b:96:df:ee:
         c1:31:44:09:22:d2:9e:ae:f5:cb:5f:0b:3b:36:74:9b:c3:dc:
         94:03:cc:fd:45:58:47:9d:b9:a8:9f:65:61:20:aa:c4:de:bb:
         c5:bb:44:e6:25:cb:96:87:aa:b0:de:ae:79:4d:d8:a0:e1:e5:
         8e:fd:b6:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:18:14 2026 by rpki-client