$ rpki-client -vvf rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft File: D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft (raw, json) Hash identifier: JnAjUNtp4dTRZT1Az0dIdbuU/jS8NHZx19aEfq23zaI= Subject key identifier: FA:AA:F0:23:0A:83:EE:6C:2F:89:96:5B:A2:95:B7:2D:BC:2B:50:7A Authority key identifier: D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 Certificate issuer: /CN=A91E5D610000/serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Certificate serial: 4F50BE32056992EDC05980CB105D699D13281C5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject info access: rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft Manifest number: 34 Signing time: Wed 16 Apr 2025 04:45:11 +0000 Manifest this update: Wed 16 Apr 2025 04:40:11 +0000 Manifest next update: Thu 17 Apr 2025 07:36:11 +0000 Files and hashes: 1: A828E0147CD8DE9E7A474DCDF06AD96FB37738EE.cer (hash: f7exy09Qe6ik4aLqqKmpADRHOOTa550ov7CNAjQ9pWo=) 2: 3130332e3136352e3131302e302f32342d3234203d3e2034353338.roa (hash: JFCS9e0aLryMYeNDBnDNiNrsCRSXbd1lFhCNwVkVDrU=) 3: D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl (hash: duWVRcEzbDcHjsiUSvJsi+nyEhfeKPSOkV19FTZQafg=) 4: 3130332e3136352e3131312e302f32342d3234203d3e2034353338.roa (hash: PNHsRydJIcZcSuQ0M2TmRWfZvicOhf+CKjeYcEuSD58=) Validation: OK Signature path: rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 07:36:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:50:be:32:05:69:92:ed:c0:59:80:cb:10:5d:69:9d:13:28:1c:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610000, serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Validity Not Before: Apr 16 04:40:11 2025 GMT Not After : Apr 17 07:36:11 2025 GMT Subject: CN=FAAAF0230A83EE6C2F89965BA295B72DBC2B507A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c2:36:f2:4f:6b:13:00:3b:90:5e:c6:ca:c3: f8:14:9d:6d:7a:bb:49:57:b5:b3:38:62:e9:21:b0: 03:8e:e8:22:98:3d:d9:17:19:47:fb:06:4c:9f:29: 40:8a:fa:29:30:1b:6f:2b:bb:43:c7:4d:01:d1:a1: a5:4f:0f:5f:62:13:e6:a1:a9:ef:65:e9:a1:17:33: 4a:dd:49:48:9c:3e:23:32:6a:81:40:b9:74:d1:46: 2c:ab:39:3e:88:d4:29:83:93:06:b5:11:6d:ec:de: 4d:56:1e:18:98:77:99:29:c2:c2:6a:dd:df:cd:ed: 63:37:70:02:ab:d7:e8:76:8e:93:a5:8a:74:55:4f: 82:92:c0:ea:85:74:7b:74:f4:61:92:cd:20:0a:df: 85:11:44:3a:d3:98:52:a3:d6:b9:5c:f7:c3:22:84: ca:37:9d:8d:b2:fc:77:a8:2d:63:b6:e6:ee:99:00: 88:81:43:b7:43:00:a6:62:bb:d3:da:bf:2d:d9:82: 62:a2:3d:6c:52:9e:1c:42:11:3d:b1:19:d0:95:99: f7:32:e1:b6:09:be:72:76:b5:01:9a:99:b4:d1:9c: ce:49:1e:c4:64:e0:fc:98:23:6b:76:2c:f7:eb:cd: b0:d8:8f:d2:60:c8:80:50:55:aa:55:82:4c:56:80: 56:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:AA:F0:23:0A:83:EE:6C:2F:89:96:5B:A2:95:B7:2D:BC:2B:50:7A X509v3 Authority Key Identifier: keyid:D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:4e:f0:6c:de:4b:28:fb:cb:b9:e0:cb:4e:16:d8:8d:38:ab: 21:2c:f0:87:ca:66:55:18:a7:eb:fc:17:8a:33:05:87:a3:83: dd:1c:6f:a4:c0:ed:67:6f:c3:4a:3e:9a:b7:3f:08:53:95:b9: 8c:64:02:20:d4:5d:ff:bb:9b:f6:bb:1f:fc:25:36:21:bb:4a: 3b:d9:b1:3a:51:e7:ad:50:43:d7:7d:35:de:f4:2a:60:56:6b: 03:ab:38:ce:08:18:4f:1d:21:ce:5b:b1:b1:e9:03:2a:66:d5: f1:62:a9:ec:5f:57:8d:be:6e:3f:ab:e8:a9:3a:be:c4:14:3b: fd:b3:15:a1:03:21:af:5a:f4:f7:9c:f5:b1:42:92:4d:b1:d0: ea:26:ae:5d:37:d4:f1:bf:a8:56:4f:d2:f1:5a:df:c2:ee:51: 12:df:4e:79:3e:76:b9:c9:b8:9c:4d:76:4a:0a:3c:c0:9b:7f: e0:26:74:44:34:05:8d:c3:91:f2:da:cc:d1:fe:5b:64:ad:63: c0:e3:8c:a0:8b:e8:b0:e3:5e:be:de:f7:c5:9e:1e:5d:3c:7a: a4:e8:c7:03:5b:2e:83:c8:2e:a2:ef:fd:ec:17:d3:1d:fd:b1: 32:87:16:55:ef:f9:17:4c:a9:f2:f0:5d:d0:d8:ec:06:86:ea: 32:92:bd:97 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUT1C+MgVpku3AWYDLEF1pnRMoHF8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAwMTEwLwYDVQQFEyhEMTI0ODYwN0Iw REREMEEyMTZFOEQ3RkFDNUUyQzJFNzc3MEExMTM5MB4XDTI1MDQxNjA0NDAxMVoX DTI1MDQxNzA3MzYxMVowMzExMC8GA1UEAxMoRkFBQUYwMjMwQTgzRUU2QzJGODk5 NjVCQTI5NUI3MkRCQzJCNTA3QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALjCNvJPaxMAO5BexsrD+BSdbXq7SVe1szhi6SGwA47oIpg92RcZR/sGTJ8p QIr6KTAbbyu7Q8dNAdGhpU8PX2IT5qGp72XpoRczSt1JSJw+IzJqgUC5dNFGLKs5 PojUKYOTBrURbezeTVYeGJh3mSnCwmrd383tYzdwAqvX6HaOk6WKdFVPgpLA6oV0 e3T0YZLNIArfhRFEOtOYUqPWuVz3wyKEyjedjbL8d6gtY7bm7pkAiIFDt0MApmK7 09q/LdmCYqI9bFKeHEIRPbEZ0JWZ9zLhtgm+cna1AZqZtNGczkkexGTg/Jgja3Ys 9+vNsNiP0mDIgFBVqlWCTFaAVmMCAwEAAaOCAgMwggH/MB0GA1UdDgQWBBT6qvAj CoPubC+JlluilbctvCtQejAfBgNVHSMEGDAWgBTRJIYHsN3Qohbo1/rF4sLndwoR OTAOBgNVHQ8BAf8EBAMCB4AwZgYDVR0fBF8wXTBboFmgV4ZVcnN5bmM6Ly9ycGtp LmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS9EMTI0ODYwN0IwREREMEEyMTZF OEQ3RkFDNUUyQzJFNzc3MEExMTM5LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1 ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8wU1NHQjdEZDBLSVc2TmY2eGVMQzUz Y0tFVGsuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9y cGtpLmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS9EMTI0ODYwN0IwREREMEEy MTZFOEQ3RkFDNUUyQzJFNzc3MEExMTM5Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmE7wbN5LKPvLueDL ThbYjTirISzwh8pmVRin6/wXijMFh6OD3RxvpMDtZ2/DSj6atz8IU5W5jGQCINRd /7ub9rsf/CU2IbtKO9mxOlHnrVBD13013vQqYFZrA6s4zggYTx0hzluxsekDKmbV 8WKp7F9Xjb5uP6voqTq+xBQ7/bMVoQMhr1r095z1sUKSTbHQ6iauXTfU8b+oVk/S 8Vrfwu5REt9OeT52ucm4nE12Sgo8wJt/4CZ0RDQFjcOR8trM0f5bZK1jwOOMoIvo sONevt73xZ4eXTx6pOjHA1sug8guou/97BfTHf2xMocWVe/5F0yp8vBd0NjsBobq MpK9lw== -----END CERTIFICATE-----Generated at Wed Apr 16 16:40:06 2025 by rpki-client