$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft File: 1xHsDTeBWKRHb-bqfXClSpUZWhE.mft (raw, json) Hash identifier: Yd4yV1eYO9c+3bVSm2b8ixa2VE2RQXUbU06baOqAuM4= Subject key identifier: DE:FE:8D:12:0E:20:39:ED:ED:40:36:20:CD:C7:B9:A6:CB:AC:2E:D1 Authority key identifier: D7:11:EC:0D:37:81:58:A4:47:6F:E6:EA:7D:70:A5:4A:95:19:5A:11 Certificate issuer: /CN=A9162E3D0000/serialNumber=D711EC0D378158A4476FE6EA7D70A54A95195A11 Certificate serial: 344A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft Manifest number: 3320 Signing time: Mon 20 May 2024 04:26:50 +0000 Manifest this update: Mon 20 May 2024 04:26:50 +0000 Manifest next update: Mon 20 May 2024 10:26:50 +0000 Files and hashes: 1: -b4zQsn-jbYuLzt5mzMMzeP-DAQ.cer (hash: UqXee78NRSop6Q/K2voITx0b9CmuEVtUSl/QqghErNo=) 2: -owMyhaYvyIusPXJ1jDjlZgfj2Q.cer (hash: MkPjSI0lYPJHDr0GutXZYkPfcgNIAE8fTCUcRRgffH0=) 3: 1xHsDTeBWKRHb-bqfXClSpUZWhE.crl (hash: ZSr4dv0pYA0DRWuf/Hl5XZunBTmvbzsrYoIBllnWrpo=) 4: 2P0wEmBd2oDHj4k1lkjXtICZzc4.cer (hash: L1JSTsUw9GYCjbNgsNmzUxMuxWkOBYMn2XqoOmngJ/g=) 5: 3MTV8l8-ospnw9i-tmvzCTPlkWo.cer (hash: j3XUSyeDfRfheAnDNXd9uQ1OzQ9AzI3s7krhG4ODeAI=) 6: 43TDfhgAlB4aNVhdEMhLffz80nA.cer (hash: h6c8hRbCN8gt37w3IFGpiDgIkvQUpV1IOcogLqFF250=) 7: 5h1TOY8HiA3d4pTW7WfyR-iSm94.cer (hash: oZNGi0icrr0556/Y0KUqeGttsGJ2jz4J152KGnfpsMg=) 8: 5s9GyFg2VMtp4t_DroPdwUXkkyo.cer (hash: m7H+8G293vOXYCrfVBy1kTCqHkG6O9QkTtBdisVxI+o=) 9: 8eEYZjFmXucC71BAp9J-rFDMXf0.cer (hash: 3YJJg+BafC85tqqjK9Awu3iFFamv11rMZPqLjjsjEEc=) 10: HgmeBebBoQHvBXkS-8Ez8XDe4Kc.cer (hash: AZh9X8RCfBU/bdlbcTckmu4D43TtozunSeu5/y8FDZI=) 11: IdyHWWXCumHR2su0je4UBVSqWu8.cer (hash: pqq3+h5jO5TLJajdtlrvuHjdFPRzUzV7b/ZlArRc+Rc=) 12: LKOQ4ngFUOROwDWYCC4ZlUdN8vs.cer (hash: NGEAybi9mT5ES1qVo3OVoZw4SZOAITKo1+1LQ5/fdRw=) 13: N3Z104GJWPsoPxmxJ8mVg1G0Vh4.cer (hash: hsGYqXQt1/fr3rko6qhA73W3/ZopRjytyiPq6WGxC4s=) 14: NJtamVn9EvndSwGEz41q1msimH4.cer (hash: GNGR9X2cYtLiebUrHqGkxGPRpo+73A2SgqR9CxYZKLI=) 15: O9PjKvOv0JXELXIXKlnGWfMty-c.cer (hash: e5/uUJeNOonekpIxl3w4KXnn77ijUmPGZu6C7G0iipI=) 16: OstT3inBC2LxfO9hjR44QUU6wOg.cer (hash: PQc1knKdR9BikPqiAxV+AdEqInpMFdOrAftFh0p58wQ=) 17: PCDtT5rXgpNWMjM6hYTw4iScTPk.cer (hash: 8mCcfuYbisal/+jXi8v7AJuC1QO4u50unh7y19S56P4=) 18: RyhixVmBCWIZpgbgCB1D16Iarxw.cer (hash: arn+JS1JOT6da39aqoa9xHlsLzA+AYvFMc2UyDhHNQs=) 19: TPCRRt5gTA5ELVbGj8hsxQQArSE.cer (hash: aJxVdxUSs2QsBvIAWjBKx7yS5gqg3xJt7s7Gov7WkHw=) 20: TnhsicjML72c4lQNmb4SziD2uLM.cer (hash: fBaYShyW1L+nDOASxuIrl7eoYRGqrD1ClCgHCR7+FrY=) 21: _63I3WE2bNhNmVIbY4OA6LUC5uQ.cer (hash: 0IL6oPFuYiyuns+QOiDbPTOHlerR090sAb9ImZtnpi4=) 22: aKDPmms080wyohTyM89mbhBEwAI.cer (hash: AEqWjlQhUPTCBXMKAhoafHPwKGzePy2ASPuIL0iBZso=) 23: b-E6pVVIlBKyiSJnpJ2uxEaTpqs.cer (hash: KwMjQvGvdzEXh8JSFpYPSKX7SSyv5DkAcjNZMe9j7OE=) 24: eT8rX6S7_af6t4IpN3kCKtwZ9W0.cer (hash: r4WM+C5L/+Cs5aT9a4pTK9QUg6KMstlADtuO64Zm6B8=) 25: ewmQZr0q8jQpPIeRezOxq4YZcO8.cer (hash: CJPJ0W2+QKMw/j1wAio0Eix8+M+AqdKwY5et5AMndnE=) 26: fqAJFXsfPqY8WYHIemo7xFXhcd0.cer (hash: jNArh1Hk3+FgtqWVkJvYOUggg9Rjc0UqQ1H9QSq/ob4=) 27: gZQTSW-NG4qcKpMSrCzZAljzOwY.cer (hash: u23lxDhUdxwoRmXnxst7j/jvhyDrfaaX2vGTSBii9Gk=) 28: jKUFZzApbEGdb3sKeKTpEenwOXY.cer (hash: nCkg7KFfJedwVNCk8o2kuV47UZxhTSNnIYwYnAjbB6M=) 29: kHfnsK9YD3j-AQaZ-g24EH4Ybwc.cer (hash: 9XaKi6cS25fvcJOAcVHPxFIl5mkrTWl52wpT54N9Yjo=) 30: kPMOHfMn0QOQfxvgjtPqZL-3eOM.cer (hash: KTe5SAQnwvEBHsIngjVncH9YbpjowF3QroNop5ps4bg=) 31: kyJKXF8ZT3ppLYvrg_4sgV33P6E.cer (hash: JdkFrUYUF19atKRRdULVRSr+9TjR7MKWaJLjRkBpNds=) 32: n2FqH-9ETrX-pbjXOI8opMzn528.cer (hash: XRX+13lN3u7iRFnqEuMNW5zZ+K7Xk042MnYCqh2YyKk=) 33: nLvcfdaWZoc5BMwxZuPrC0W0KJA.cer (hash: 8HwuRQKp1jH3LwkVM0k5MWM1VXfb7oJqJnbPDK5Pdrg=) 34: tS8PP_c3H_HOnYI-lUn8EVixaio.cer (hash: CrcPEtx6LPLx9C5TqRCTIRdE3bpXsF3OnH6AMwe2qFY=) 35: tWGZILjL08qnMy3Uu5GM4uZcmlI.cer (hash: kiej4knzLdU9EboYyn+65N6ahstJ4596bmw32CKrs/4=) 36: vMAGgVZFL5mzQ1jfeKpFJEqmayE.cer (hash: GPAHgzI9jQL0pIOOVr3DO1hc0vv8PY0EiZcM3RzNxGM=) 37: w2lZ9ie_P5SuFVwQLnPbHAf73Xg.cer (hash: r5E23m0VTkP6zxX6p/v3LFjfdmqO/nXrjfDMEjaBOZ4=) 38: wdMSkWOPSkBAzT1S3sP_K5cJxfI.cer (hash: QdHZ4h/Fruj9p5NTYrNBPzsJNuBjIT9zzVM9mglz3hY=) 39: xuX5wWRNY_ogamb_ZxfB0RoqMC0.cer (hash: KuCwJg3hoRSzF+6xL6p2Z3qj+HZoFVIMuXEwjk/Jotk=) 40: zBtg6j6uZjJNZkoP-s-_dYid_qE.cer (hash: fbMlmyJz4uR9YInSrdwNmCGQCdQNOreBQ9ZcipqFATs=) 41: zgqcsCk3tX3OZqF_uEIW16vnZDQ.cer (hash: 19lr6JL4RfpZASG7e5weto3oCLpOvfMAM7l5UGCAOvs=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 10:26:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13386 (0x344a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=D711EC0D378158A4476FE6EA7D70A54A95195A11 Validity Not Before: May 20 04:26:50 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=DEFE8D120E2039EDED403620CDC7B9A6CBAC2ED1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:75:b5:cb:94:9f:20:dc:c4:96:62:1b:07:cc: a6:69:4e:5a:dc:27:40:69:45:24:b7:4e:76:7f:60: 38:ab:56:3d:19:a4:72:8c:8b:c1:c9:00:90:6c:aa: d2:db:e9:21:3d:6c:77:8a:94:43:6a:d7:ab:34:59: 46:77:45:55:8d:2b:9f:88:ba:f3:49:c7:03:28:a7: f0:3e:64:74:65:0e:7e:40:45:87:a5:09:1a:60:39: 6f:ad:f5:0a:fa:80:e8:56:9a:02:b9:b3:13:0d:19: 61:9a:af:4a:09:40:98:ce:66:c9:0e:0b:9f:e6:60: 2c:aa:af:c0:ca:77:0e:21:1b:c5:38:e0:78:ee:c2: 58:51:45:f8:7f:59:43:74:e3:82:ac:de:50:55:53: aa:13:a7:6e:22:53:25:a3:5b:d2:c6:24:cb:07:24: 07:27:8f:1f:d4:72:fe:bc:f7:4e:05:ed:a9:9d:7b: ac:df:8a:5b:34:94:2f:2c:84:ee:15:59:d2:13:4e: cf:d3:cc:ce:f6:e4:44:ad:22:79:81:64:90:f4:c1: 72:b0:1a:06:2a:bc:8a:e5:03:1c:01:07:b9:36:c6: 9f:9d:75:6a:ab:66:77:71:cf:e9:da:89:83:c2:7c: 1c:24:3c:37:a6:53:4b:36:1d:83:79:2a:87:fc:4a: 70:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:FE:8D:12:0E:20:39:ED:ED:40:36:20:CD:C7:B9:A6:CB:AC:2E:D1 X509v3 Authority Key Identifier: keyid:D7:11:EC:0D:37:81:58:A4:47:6F:E6:EA:7D:70:A5:4A:95:19:5A:11 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:fe:a2:07:e0:40:59:f8:31:4c:aa:e5:2d:1f:a5:22:cc:50: e5:18:0a:f4:da:97:d0:ec:5f:91:82:11:b2:b6:88:38:9b:49: 0b:79:45:11:13:48:46:7b:45:2b:6e:18:95:28:ea:87:2d:cd: 9c:82:13:94:f9:cd:6f:ff:56:80:f0:32:a5:a7:b4:6f:cf:28: c5:72:f2:fd:d8:63:bb:84:86:42:7f:1e:5b:41:8b:91:48:e4: 96:72:ad:b8:5d:b2:21:53:10:16:1e:c1:ef:fc:f6:52:19:c6: 50:37:62:10:d2:53:8f:0f:8d:35:76:8a:d8:cb:c5:53:a9:8d: 7d:3a:cd:88:e9:26:4c:78:9e:be:8b:3f:03:b2:6f:55:57:58: e3:d0:1e:87:d9:25:55:ce:bf:f9:a2:59:34:aa:48:2e:b7:f7: cd:8d:d6:e4:a6:04:64:1b:eb:57:48:a5:97:cd:f5:c2:ce:ba: be:f5:d7:d5:39:40:c6:8e:2b:40:16:1a:62:ff:a1:3d:b3:12: f7:dd:6f:75:94:6f:d0:b3:60:84:f5:27:6d:e5:d4:3a:cd:92: d5:a8:b8:bf:89:d1:b3:a3:53:11:77:fa:04:ee:1d:65:3c:fc: b0:81:9e:34:4c:21:96:c4:6b:6d:b5:4e:67:37:f9:39:2b:92: f9:14:fa:29 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgICNEowDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx NjJFM0QwMDAwMTEwLwYDVQQFEyhENzExRUMwRDM3ODE1OEE0NDc2RkU2RUE3RDcw QTU0QTk1MTk1QTExMB4XDTI0MDUyMDA0MjY1MFoXDTI0MDkzMDAwMDAwMFowMzEx MC8GA1UEAxMoREVGRThEMTIwRTIwMzlFREVENDAzNjIwQ0RDN0I5QTZDQkFDMkVE MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOh1tcuUnyDcxJZiGwfM pmlOWtwnQGlFJLdOdn9gOKtWPRmkcoyLwckAkGyq0tvpIT1sd4qUQ2rXqzRZRndF VY0rn4i680nHAyin8D5kdGUOfkBFh6UJGmA5b631CvqA6FaaArmzEw0ZYZqvSglA mM5myQ4Ln+ZgLKqvwMp3DiEbxTjgeO7CWFFF+H9ZQ3TjgqzeUFVTqhOnbiJTJaNb 0sYkywckByePH9Ry/rz3TgXtqZ17rN+KWzSULyyE7hVZ0hNOz9PMzvbkRK0ieYFk kPTBcrAaBiq8iuUDHAEHuTbGn511aqtmd3HP6dqJg8J8HCQ8N6ZTSzYdg3kqh/xK cPUCAwEAAaOCAh0wggIZMB0GA1UdDgQWBBTe/o0SDiA57e1ANiDNx7mmy6wu0TAf BgNVHSMEGDAWgBTXEewNN4FYpEdv5up9cKVKlRlaETAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFgGA1UdHwRRME8wTaBLoEmGR3JzeW5jOi8vcnBraS5jbm5pYy5j bi9ycGtpL0E5MTYyRTNEMDAwMC8xeEhzRFRlQldLUkhiLWJxZlhDbFNwVVpXaEUu Y3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFw bmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQx RkYyLzF4SHNEVGVCV0tSSGItYnFmWENsU3BVWldoRS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGYBggrBgEFBQcBCwSBizCBiDBTBggrBgEFBQcwC4ZHcnN5bmM6Ly9ycGtp LmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzF4SHNEVGVCV0tSSGItYnFmWENs U3BVWldoRS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5pYy5jbi9y cmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcB BwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCY/qIH 4EBZ+DFMquUtH6UizFDlGAr02pfQ7F+RghGytog4m0kLeUURE0hGe0UrbhiVKOqH Lc2cghOU+c1v/1aA8DKlp7RvzyjFcvL92GO7hIZCfx5bQYuRSOSWcq24XbIhUxAW HsHv/PZSGcZQN2IQ0lOPD401dorYy8VTqY19Os2I6SZMeJ6+iz8Dsm9VV1jj0B6H 2SVVzr/5olk0qkgut/fNjdbkpgRkG+tXSKWXzfXCzrq+9dfVOUDGjitAFhpi/6E9 sxL33W91lG/Qs2CE9Sdt5dQ6zZLVqLi/idGzo1MRd/oE7h1lPPywgZ40TCGWxGtt tU5nN/k5K5L5FPop -----END CERTIFICATE-----Generated at Mon May 20 06:22:23 2024 by rpki-client on console-fra.rpki-client.org