$ rpki-client -vvf rpki.cernet.edu.cn/repo/cernet/1/9AAF2EFC0F899FEE1EC4D99E1C42C8D44164DA43.mft File: 9AAF2EFC0F899FEE1EC4D99E1C42C8D44164DA43.mft (raw, json) Hash identifier: 3174Rf7V4dMFrVd8p/3HFSSfupLrD88ajpexsMBAr4E= Subject key identifier: 43:68:09:78:9A:65:0D:1A:65:32:F7:60:33:67:46:2E:94:03:B6:96 Authority key identifier: 9A:AF:2E:FC:0F:89:9F:EE:1E:C4:D9:9E:1C:42:C8:D4:41:64:DA:43 Certificate issuer: /CN=A91E5D610000/serialNumber=9AAF2EFC0F899FEE1EC4D99E1C42C8D44164DA43 Certificate serial: 20CE605E4BA28631A9455A17EE581F1AC81897FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mq8u_A-Jn-4exNmeHELI1EFk2kM.cer Subject info access: rsync://rpki.cernet.edu.cn/repo/cernet/1/9AAF2EFC0F899FEE1EC4D99E1C42C8D44164DA43.mft Manifest number: 4A Signing time: Sat 04 May 2024 11:36:16 +0000 Manifest this update: Sat 04 May 2024 11:31:16 +0000 Manifest next update: Sun 05 May 2024 11:58:16 +0000 Files and hashes: 1: 3130332e3136352e3131312e302f32342d3234203d3e2034353338.roa (hash: M2F/1Y52p6FBQGkdTHB9vwPndXGrm+gqYsHCsixyZNA=) 2: 9AAF2EFC0F899FEE1EC4D99E1C42C8D44164DA43.crl (hash: ucEghiF842gy5O/MDDkSY1Bt4ue2OWCkQLnnCJdNGUU=) 3: 3130332e3136352e3131302e302f32342d3234203d3e2034353338.roa (hash: wcc6m6zeJgfv/RRIt2m8bFjCvnP1Tnjr0Wty5noIhLk=) Validation: OK Signature path: rsync://rpki.cernet.edu.cn/repo/cernet/1/9AAF2EFC0F899FEE1EC4D99E1C42C8D44164DA43.crl rsync://rpki.cernet.edu.cn/repo/cernet/1/9AAF2EFC0F899FEE1EC4D99E1C42C8D44164DA43.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mq8u_A-Jn-4exNmeHELI1EFk2kM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 11:58:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:ce:60:5e:4b:a2:86:31:a9:45:5a:17:ee:58:1f:1a:c8:18:97:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610000/serialNumber=9AAF2EFC0F899FEE1EC4D99E1C42C8D44164DA43 Validity Not Before: May 4 11:31:16 2024 GMT Not After : May 5 11:58:16 2024 GMT Subject: CN=436809789A650D1A6532F7603367462E9403B696 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:0b:ff:2e:fc:98:c3:69:67:c2:5d:79:ea:6b: 85:09:09:e0:d5:2c:86:3a:05:f4:d3:38:11:9f:9d: ad:4c:6e:4a:01:b9:5c:7a:6d:f3:a6:f1:60:70:ea: f7:c9:3d:bd:36:b8:15:f4:2b:91:53:a7:b7:e4:ff: c5:55:f5:be:4f:ca:0b:a2:44:06:7c:6a:27:03:12: 23:4a:a6:44:54:d4:67:50:b4:60:e0:f8:8c:9d:69: 09:df:2a:ee:65:34:08:31:4f:aa:ac:1b:aa:60:b9: ba:9f:05:28:9c:a6:20:cc:c4:16:6e:a4:52:f8:b0: 0b:a1:04:da:2c:84:20:cd:d1:59:70:91:4f:fe:41: 1b:9f:cd:21:8e:57:63:cd:ae:fc:5a:a2:d0:e2:79: cb:db:f6:25:3f:0e:79:bc:62:d4:d0:7e:9e:1a:06: 3e:23:9c:02:46:c1:20:f7:23:a2:f2:52:31:cb:90: f3:64:7d:bc:18:fd:df:61:07:bb:92:58:2f:51:2e: 85:56:f4:bd:a1:05:73:d5:3f:b0:2f:e0:40:3d:e8: dd:22:f3:c9:79:2f:b7:95:cb:52:35:2b:4f:b7:35: 2f:7e:cf:91:7d:a2:ad:a0:c3:dc:0a:b2:b7:c3:4c: 6c:4b:f4:20:bc:e1:c9:97:d5:76:f3:05:c8:c6:7b: 57:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:68:09:78:9A:65:0D:1A:65:32:F7:60:33:67:46:2E:94:03:B6:96 X509v3 Authority Key Identifier: keyid:9A:AF:2E:FC:0F:89:9F:EE:1E:C4:D9:9E:1C:42:C8:D4:41:64:DA:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/9AAF2EFC0F899FEE1EC4D99E1C42C8D44164DA43.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mq8u_A-Jn-4exNmeHELI1EFk2kM.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/9AAF2EFC0F899FEE1EC4D99E1C42C8D44164DA43.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:83:85:e0:45:c4:df:9c:0d:f6:83:94:b8:4d:03:6d:b5:ba: 1f:63:70:cf:f3:cc:2a:0f:df:da:43:c5:cd:8a:90:65:af:c9: 33:14:fd:72:24:56:b1:b1:5a:16:9b:e6:17:9d:d4:15:5a:45: 1b:79:e4:9a:e0:37:c3:d5:5b:ed:2e:e5:62:0e:7f:13:05:df: 06:79:95:20:90:ae:03:16:63:a0:27:b4:46:19:24:e6:f3:e3: 99:87:fb:01:d6:ba:eb:6c:40:2b:b2:0e:4e:31:c8:ef:e0:70: 44:92:79:a2:dd:ac:6c:18:a2:7a:3a:24:e9:76:5d:7e:2e:c1: 86:9c:4f:45:f8:51:db:5d:51:0c:60:bf:ae:3b:ea:6b:fd:d8: f2:7c:38:bb:92:02:12:fd:16:6e:ce:46:75:af:1a:8d:54:aa: f0:02:62:f4:be:f2:fb:f5:2c:8e:ce:54:6c:bb:2c:6a:b3:bc: df:2a:95:b9:df:bd:5c:ae:1b:42:6c:46:d5:32:f9:79:f8:4c: 0b:bd:89:0b:a2:6a:f3:03:60:c1:84:ea:61:88:b0:de:f3:ec: 58:89:12:a7:17:e4:29:38:40:e3:0e:0f:7b:9c:ff:16:fb:e9: ff:dd:fe:5d:16:11:9a:09:43:c0:b2:c6:ee:2a:06:2a:ba:5a: 1b:a4:98:cf -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUIM5gXkuihjGpRVoX7lgfGsgYl/swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAwMTEwLwYDVQQFEyg5QUFGMkVGQzBG ODk5RkVFMUVDNEQ5OUUxQzQyQzhENDQxNjREQTQzMB4XDTI0MDUwNDExMzExNloX DTI0MDUwNTExNTgxNlowMzExMC8GA1UEAxMoNDM2ODA5Nzg5QTY1MEQxQTY1MzJG NzYwMzM2NzQ2MkU5NDAzQjY5NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANUL/y78mMNpZ8JdeeprhQkJ4NUshjoF9NM4EZ+drUxuSgG5XHpt86bxYHDq 98k9vTa4FfQrkVOnt+T/xVX1vk/KC6JEBnxqJwMSI0qmRFTUZ1C0YOD4jJ1pCd8q 7mU0CDFPqqwbqmC5up8FKJymIMzEFm6kUviwC6EE2iyEIM3RWXCRT/5BG5/NIY5X Y82u/Fqi0OJ5y9v2JT8Oebxi1NB+nhoGPiOcAkbBIPcjovJSMcuQ82R9vBj932EH u5JYL1EuhVb0vaEFc9U/sC/gQD3o3SLzyXkvt5XLUjUrT7c1L37PkX2iraDD3Aqy t8NMbEv0ILzhyZfVdvMFyMZ7V50CAwEAAaOCAgMwggH/MB0GA1UdDgQWBBRDaAl4 mmUNGmUy92AzZ0YulAO2ljAfBgNVHSMEGDAWgBSary78D4mf7h7E2Z4cQsjUQWTa QzAOBgNVHQ8BAf8EBAMCB4AwZgYDVR0fBF8wXTBboFmgV4ZVcnN5bmM6Ly9ycGtp LmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS85QUFGMkVGQzBGODk5RkVFMUVD NEQ5OUUxQzQyQzhENDQxNjREQTQzLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1 ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9tcTh1X0EtSm4tNGV4Tm1lSEVMSTFF Rmsya00uY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9y cGtpLmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS85QUFGMkVGQzBGODk5RkVF MUVDNEQ5OUUxQzQyQzhENDQxNjREQTQzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADoOF4EXE35wN9oOU uE0DbbW6H2Nwz/PMKg/f2kPFzYqQZa/JMxT9ciRWsbFaFpvmF53UFVpFG3nkmuA3 w9Vb7S7lYg5/EwXfBnmVIJCuAxZjoCe0Rhkk5vPjmYf7Ada662xAK7IOTjHI7+Bw RJJ5ot2sbBiiejok6XZdfi7BhpxPRfhR211RDGC/rjvqa/3Y8nw4u5ICEv0Wbs5G da8ajVSq8AJi9L7y+/Usjs5UbLssarO83yqVud+9XK4bQmxG1TL5efhMC72JC6Jq 8wNgwYTqYYiw3vPsWIkSpxfkKThA4w4Pe5z/Fvvp/93+XRYRmglDwLLG7ioGKrpa G6SYzw== -----END CERTIFICATE-----Generated at Sat May 4 12:14:02 2024 by rpki-client on console-fra.rpki-client.org