$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/620/MJwqlDso3AhYw5uSCKFgnAlz5Jo.mft File: MJwqlDso3AhYw5uSCKFgnAlz5Jo.mft (raw, json) Hash identifier: r13Zs1VVfncY3FBW0mUQvn+f4ZbGpArCI30lHBc3OxM= Subject key identifier: E5:2A:0D:13:FE:FC:2B:DD:04:16:97:AF:04:0A:22:E5:40:1F:69:44 Authority key identifier: 30:9C:2A:94:3B:28:DC:08:58:C3:9B:92:08:A1:60:9C:09:73:E4:9A Certificate issuer: /CN=309C2A943B28DC0858C39B9208A1609C0973E49A Certificate serial: 0228 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MJwqlDso3AhYw5uSCKFgnAlz5Jo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/620/MJwqlDso3AhYw5uSCKFgnAlz5Jo.mft Manifest number: 020B Signing time: Tue 22 Apr 2025 11:07:09 +0000 Manifest this update: Tue 22 Apr 2025 11:07:09 +0000 Manifest next update: Tue 22 Apr 2025 17:07:09 +0000 Files and hashes: 1: 0dZ5I09lAVDwwdBtKw3W4Fcbgvg.roa (hash: lQOR7nSJBC3nQwtfsQk1dpFJvbVpxwW7pzrGhAUqM3s=) 2: 5A8OYpToLInFfJkhoIWfEiFtIPQ.roa (hash: x+60aO4gLQoDRENjkiVVPQUJwdAw7b4rkcp8n/rhQUc=) 3: 5xs6q9kYSJs7xTxojHCGDufbz_A.roa (hash: vnzGUEdBuD1T8Njqq7T/LcFQTgcgO72+hsaDv3JZDh8=) 4: 7Z7H7XDbGSChn1KThGrbYqqjJHE.roa (hash: CKgQ1EEnL7Kx3DHSKdphsYIEX6AeW/sIq4uCgtNcOUM=) 5: 9Jdk8KOSJRfL2mrB3YfKxFMxZQE.roa (hash: m5o9rgoWIViF2OCxVgXp3gjdyjYdlkUCHSrZyBPT+jQ=) 6: KaWNUh_TG8Mk6sJVwRnXPmiEp0g.roa (hash: Qafk9mMby1vgCNhomBv1/D3xlTQb7JRe+cNcpklkkiU=) 7: MJwqlDso3AhYw5uSCKFgnAlz5Jo.crl (hash: hzPVmMmlmqcQZTkjgrdKZ4611W7witrRxP65O1xzMn0=) 8: NBU-Fjpng-fIM7FOJ-bo-ZrSyeo.roa (hash: NoAdiBRSj2MPKratBpWYTmG1nBombkXXFayuCYIwDFM=) 9: QJ0xQwU7ijDp-eqfpnkAMcTc2P8.roa (hash: Sc7N7ab71h6ekql6Ip1MsG7JlEfSt7H8gJto9mf9+98=) 10: TGpPZx1ww8lW2mKRZ-93CBlUOhw.roa (hash: 4X/bwQBxm2EEo2XuX5P6q+VUpO3hZQDVpWWa27WjSWg=) 11: UyCaqegX0-eEEhnSjZvBk6mm-0E.roa (hash: wOvH8cOq6jMa075cTj4pdqejCseoQGoIaw+as+jKw6I=) 12: ZV-9aaDrSePueGbfAb5U19hIRlo.roa (hash: cColCtlqChZqwj6Bhh9HRTPN0nK6S3A1VxfEaPBxgQo=) 13: fzGGKAAfHyqtYtW64JLqUp9n_b4.roa (hash: se+OESlX8I0t+5SLDVJuEIL25hPdvScG79kkWgLg9zU=) 14: l5nUWeN92cd3JFn9Sc3V8XNoyn8.roa (hash: 5oisv+ANdee4sV0PH+IN9kvzfrdxZ5UuhIOmlifariI=) 15: oo1RAhDNLpypJ4DY-FhJaypVYdc.roa (hash: p20QDfifNmzC/E34EhawcSFaYE4WAwts4xpfIBZiMZk=) 16: plj4h6VJRl_xUalf0ulWubT4YSk.roa (hash: iWAQhoZ9eLQrp93ZcwCNmFDmjJoRhBvYr7ebppkeWl8=) 17: puk7qV1IA8WGE7-uMRA6VJBCmfo.roa (hash: rj7pjmyfQeQkOZRupb32bJgd9wIXMz6GCV+uWL5+LOc=) 18: v4d1-p-3ZxksqaCK5sQnSOumPX4.roa (hash: v9JLyW4CyKz9olTqbMME5NpXQah5W39H0O1CPcZ3/Ik=) 19: wM98mz6k7POB_T0MejRXUHUVaGo.roa (hash: WNcoKWTZ1mOgrWS4oU63OxebnJDM9+7UOuhg2pg9Irc=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/620/MJwqlDso3AhYw5uSCKFgnAlz5Jo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/620/MJwqlDso3AhYw5uSCKFgnAlz5Jo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MJwqlDso3AhYw5uSCKFgnAlz5Jo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 17:07:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 552 (0x228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=309C2A943B28DC0858C39B9208A1609C0973E49A Validity Not Before: Apr 22 11:07:09 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=E52A0D13FEFC2BDD041697AF040A22E5401F6944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6a:f8:c1:c1:45:a0:13:fa:bd:c7:1f:be:be: 11:82:be:ae:65:1a:95:6a:6b:78:dc:2c:32:fe:eb: 61:76:81:cf:71:98:07:cb:05:b4:83:86:30:2e:96: e5:86:71:5e:4f:40:23:29:a0:5e:24:c5:8f:31:33: 85:7a:85:7f:55:7c:39:53:c7:a7:06:a4:fa:db:1c: 96:7b:97:fc:5c:35:17:c5:3e:56:f3:9c:76:33:cc: 93:81:ee:a7:e3:2a:86:c8:12:46:2c:0f:ac:0a:5a: e0:e1:46:83:7e:6c:3f:37:92:05:2d:80:c7:09:04: 3c:fd:87:c7:b6:65:f4:5e:48:29:22:71:d8:d7:0d: f0:68:a7:70:2c:b6:f2:f6:93:de:24:0f:9f:16:94: 7e:fb:43:db:fd:0d:07:ce:56:4c:46:cf:c2:63:52: 8a:a0:fe:c9:c0:f6:ec:cb:d6:2e:b6:4f:06:0f:a3: b0:a3:cc:0c:3f:de:17:40:39:a7:58:7e:89:dd:8d: 90:93:c8:21:4d:4d:c6:d3:12:5e:6e:12:01:15:25: d1:47:26:3e:d6:6f:c3:5a:63:08:bc:13:25:1c:f0: df:3c:ed:bf:dd:62:95:ec:31:a2:3a:fc:bf:35:1f: cc:d2:46:e5:a7:32:f1:db:c4:d3:ec:62:7e:10:a6: 47:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:2A:0D:13:FE:FC:2B:DD:04:16:97:AF:04:0A:22:E5:40:1F:69:44 X509v3 Authority Key Identifier: keyid:30:9C:2A:94:3B:28:DC:08:58:C3:9B:92:08:A1:60:9C:09:73:E4:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/620/MJwqlDso3AhYw5uSCKFgnAlz5Jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MJwqlDso3AhYw5uSCKFgnAlz5Jo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/620/MJwqlDso3AhYw5uSCKFgnAlz5Jo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:ee:5f:42:df:30:22:2c:8e:7b:10:72:a7:30:db:30:cf:2c: c9:1a:15:3e:54:e0:53:81:be:43:b4:af:fc:45:52:85:91:f5: 06:34:0e:6e:29:3e:af:35:ce:bd:ac:06:c3:c4:77:f7:35:c9: 7d:dc:2a:f0:b0:96:4a:5d:9b:1d:0d:a0:b4:c0:2f:80:2e:a2: 82:43:65:93:dc:db:d5:59:93:f7:4c:d4:92:aa:82:1c:cb:fa: fa:c2:68:7e:6e:6d:c7:9c:43:a0:5b:0f:13:ec:3c:18:85:ba: 53:1c:07:39:2a:5c:df:a5:e5:e4:ef:ba:3d:5f:0a:e6:c4:24: fd:76:c8:c4:7c:ac:f8:90:83:53:ea:06:48:67:47:e2:33:75: a8:29:1f:3b:d8:d3:a5:da:9e:9e:8c:c2:0e:d8:2d:dd:9a:0c: 32:66:99:5d:88:9c:93:bf:69:d0:dc:f5:c5:fa:ac:ed:bb:56: 08:35:6f:f8:c1:53:e0:b6:24:50:a2:8c:39:1c:49:b3:ea:1b: 98:29:08:2f:6a:92:9b:ad:fc:82:51:dd:62:0e:ed:83:97:82: 62:c6:05:40:5b:f7:fe:79:06:a3:bf:e8:1c:a4:ee:6b:ee:c7: 7f:ce:fd:76:5f:ee:96:dc:3f:d5:a3:b6:29:bb:45:22:cf:f4: e9:4b:e4:b9 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICAigwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzA5 QzJBOTQzQjI4REMwODU4QzM5QjkyMDhBMTYwOUMwOTczRTQ5QTAeFw0yNTA0MjIx MTA3MDlaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEU1MkEwRDEzRkVGQzJC REQwNDE2OTdBRjA0MEEyMkU1NDAxRjY5NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAavjBwUWgE/q9xx++vhGCvq5lGpVqa3jcLDL+62F2gc9xmAfL BbSDhjAuluWGcV5PQCMpoF4kxY8xM4V6hX9VfDlTx6cGpPrbHJZ7l/xcNRfFPlbz nHYzzJOB7qfjKobIEkYsD6wKWuDhRoN+bD83kgUtgMcJBDz9h8e2ZfReSCkicdjX DfBop3AstvL2k94kD58WlH77Q9v9DQfOVkxGz8JjUoqg/snA9uzL1i62TwYPo7Cj zAw/3hdAOadYfondjZCTyCFNTcbTEl5uEgEVJdFHJj7Wb8NaYwi8EyUc8N887b/d YpXsMaI6/L81H8zSRuWnMvHbxNPsYn4Qpkd1AgMBAAGjggIKMIICBjAdBgNVHQ4E FgQU5SoNE/78K90EFpevBAoi5UAfaUQwHwYDVR0jBBgwFoAUMJwqlDso3AhYw5uS CKFgnAlz5JowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIw L01Kd3FsRHNvM0FoWXc1dVNDS0ZnbkFsejVKby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvTUp3cWxEc28zQWhZdzV1U0NLRmduQWx6NUpvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIwL01Kd3FsRHNvM0FoWXc1 dVNDS0ZnbkFsejVKby5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQDP7l9C3zAiLI57EHKnMNswzyzJGhU+VOBTgb5DtK/8RVKFkfUGNA5uKT6vNc69 rAbDxHf3Ncl93CrwsJZKXZsdDaC0wC+ALqKCQ2WT3NvVWZP3TNSSqoIcy/r6wmh+ bm3HnEOgWw8T7DwYhbpTHAc5KlzfpeXk77o9XwrmxCT9dsjEfKz4kINT6gZIZ0fi M3WoKR872NOl2p6ejMIO2C3dmgwyZpldiJyTv2nQ3PXF+qztu1YINW/4wVPgtiRQ oow5HEmz6huYKQgvapKbrfyCUd1iDu2Dl4JixgVAW/f+eQajv+gcpO5r7sd/zv12 X+6W3D/Vo7Ypu0Uiz/TpS+S5 -----END CERTIFICATE-----Generated at Tue Apr 22 14:53:33 2025 by rpki-client