$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft File: PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft (raw, json) Hash identifier: YTp7qb7MKBQaF65uTFyvfZENdFBTPWRFhABNq37gaJw= Subject key identifier: 37:9F:ED:B8:59:C8:B3:4B:F3:EF:93:BC:4B:F6:5D:FE:C8:CF:EA:74 Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 082D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft Manifest number: 0792 Signing time: Sat 26 Apr 2025 21:37:00 +0000 Manifest this update: Sat 26 Apr 2025 21:37:00 +0000 Manifest next update: Sat 03 May 2025 21:37:00 +0000 Files and hashes: 1: PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl (hash: KeXZ6ztgHdjQaQmBvLf5qbxGkvBOWYTdhVBodyx905c=) 2: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (hash: JCIJiRdjoJPwGnugBIK3v/SX30S5Hj97puNSPDnZHa0=) 3: 0112375EA05411EDB043385AC4F9AE02.roa (hash: aBs0HSQclxaDqKZvgHQYQl981j8saXju4dpMEUuQAU4=) 4: E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa (hash: Rtf4SCa2SLq1aWm8pt96fKW5kPl75H0zBH9P2CmsGlU=) 5: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (hash: xyRyhhQBvFg1P0171dGNRFnwuXqCBoYXwtzjvJ6IHcw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2093 (0x82d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB, serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Validity Not Before: Apr 26 21:37:00 2025 GMT Not After : May 3 21:37:00 2025 GMT Subject: CN=680d51fc-7933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:80:d9:5e:4f:be:92:60:77:9a:0b:90:1b:f3: 15:5f:e6:18:f6:4a:82:16:23:aa:4c:45:41:73:c2: dd:bf:fa:10:c7:f2:e8:13:97:a4:0f:a6:61:38:3b: 07:e7:06:86:39:b0:8a:2d:48:5e:33:f1:d5:8e:5b: 3b:ca:3c:fa:57:4c:c7:b4:38:ff:b6:d2:ff:53:bf: a0:9f:63:df:1f:02:9e:31:e7:9f:73:b8:34:3d:9a: 40:29:88:ab:f8:41:eb:20:4b:db:2f:76:7f:eb:42: 29:ea:bd:72:f1:7b:56:3b:55:f0:40:a4:76:00:54: 3a:3b:47:38:78:57:0e:e6:93:70:16:52:ae:15:c6: 2a:79:6f:83:77:3e:25:46:cf:d6:68:b6:be:b2:4c: 0b:c6:a9:38:0a:7e:b6:b1:5a:fd:17:47:6d:50:d5: 17:32:2f:62:df:d8:24:02:7e:36:eb:2a:e5:54:18: 00:8d:cb:e4:fc:18:30:f4:46:73:3e:62:6d:e2:b4: cb:af:26:a8:7c:8a:0c:56:72:ca:ba:49:1a:40:07: 6d:e6:54:42:eb:c5:bf:ff:bf:ea:3e:06:f6:93:f9: c5:31:1d:4b:f9:6b:2f:6b:b2:0b:ea:d6:80:bb:25: 03:2a:72:5a:52:d6:63:3c:ad:6a:01:df:53:c6:ca: 46:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:9F:ED:B8:59:C8:B3:4B:F3:EF:93:BC:4B:F6:5D:FE:C8:CF:EA:74 X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:62:8a:7d:0a:12:0b:05:df:49:05:07:01:a2:88:e3:50:86: 79:4b:ca:9c:69:5d:e2:6e:a3:88:20:40:5a:eb:08:81:10:fe: a6:34:98:3d:fd:ff:a3:e2:cf:2e:bd:b1:54:cd:8f:78:94:94: fb:f1:54:66:df:9b:5f:0f:61:b2:5d:1e:6a:3c:3f:32:1c:89: 31:38:40:f5:dc:21:14:cb:bd:46:0f:8e:10:5a:fa:32:69:72: f7:fe:ae:c0:b2:0d:f6:f2:5b:b9:05:0b:bf:23:19:66:90:5d: 05:20:64:c2:37:0b:65:90:99:1b:ec:3c:87:74:e6:a2:94:e0: 73:38:c7:51:3e:d6:e5:bc:a4:8b:d2:0b:e4:96:3a:06:86:ad: 8b:d8:21:2e:f9:00:d8:e4:de:f3:36:87:5e:c2:b5:36:30:8c: 4f:71:51:2c:f6:5b:0b:ba:33:0f:fc:30:75:e5:e4:50:ba:75: 82:2a:7f:e2:4d:bd:79:95:2b:be:16:06:f0:8b:ae:ee:d3:62: 70:f4:20:a4:50:57:55:09:de:4e:04:7a:d5:c3:49:56:8a:dc: 49:6e:30:78:35:44:58:90:62:15:59:55:2e:e2:68:6a:8f:5f: d2:5c:38:04:36:32:4c:f1:87:83:2f:4d:62:91:06:5e:17:36: 46:88:35:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjUwNDI2MjEzNzAwWhcNMjUwNTAzMjEzNzAwWjAYMRYwFAYD VQQDEw02ODBkNTFmYy03OTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYDZXk++kmB3mguQG/MVX+YY9kqCFiOqTEVBc8Ldv/oQx/LoE5ekD6ZhODsH 5waGObCKLUheM/HVjls7yjz6V0zHtDj/ttL/U7+gn2PfHwKeMeefc7g0PZpAKYir +EHrIEvbL3Z/60Ip6r1y8XtWO1XwQKR2AFQ6O0c4eFcO5pNwFlKuFcYqeW+Ddz4l Rs/WaLa+skwLxqk4Cn62sVr9F0dtUNUXMi9i39gkAn426yrlVBgAjcvk/Bgw9EZz PmJt4rTLryaofIoMVnLKukkaQAdt5lRC68W//7/qPgb2k/nFMR1L+Wsva7IL6taA uyUDKnJaUtZjPK1qAd9TxspGVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDef7bhZ yLNL8++TvEv2Xf7Iz+p0MB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjdBQi81Njc4NjU2ODQwMDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQ MlFnVVpRTGs4STVGYnoyYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqYop9ChILBd9JBQcBoojjUIZ5S8qcaV3ibqOIIEBa6wiBEP6mNJg9 /f+j4s8uvbFUzY94lJT78VRm35tfD2GyXR5qPD8yHIkxOED13CEUy71GD44QWvoy aXL3/q7Asg328lu5BQu/IxlmkF0FIGTCNwtlkJkb7DyHdOailOBzOMdRPtblvKSL 0gvkljoGhq2L2CEu+QDY5N7zNodewrU2MIxPcVEs9lsLujMP/DB15eRQunWCKn/i Tb15lSu+Fgbwi67u02Jw9CCkUFdVCd5OBHrVw0lWitxJbjB4NURYkGIVWVUu4mhq j1/SXDgENjJM8YeDL01ikQZeFzZGiDUB -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:10 2025 by rpki-client on console.sobornost.net