$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1030/erbi9MRXMdA8J66v3WCGEYcbQjw.mft File: erbi9MRXMdA8J66v3WCGEYcbQjw.mft (raw, json) Hash identifier: TEwIDLlqjcbnzxSw1fCihvnojEFeWOk5l0A7I7l8M6k= Subject key identifier: 53:02:D3:FB:83:49:03:BC:D0:6F:61:22:61:62:1D:D1:64:57:EF:C6 Authority key identifier: 7A:B6:E2:F4:C4:57:31:D0:3C:27:AE:AF:DD:60:86:11:87:1B:42:3C Certificate issuer: /CN=7AB6E2F4C45731D03C27AEAFDD608611871B423C Certificate serial: 0E34 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/erbi9MRXMdA8J66v3WCGEYcbQjw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/erbi9MRXMdA8J66v3WCGEYcbQjw.mft Manifest number: 0E2B Signing time: Sat 01 Jun 2024 10:27:30 +0000 Manifest this update: Sat 01 Jun 2024 10:27:30 +0000 Manifest next update: Sat 01 Jun 2024 16:27:30 +0000 Files and hashes: 1: erbi9MRXMdA8J66v3WCGEYcbQjw.crl (hash: qYTU5G0b0ZfsvCD0YKlzYKN6hMq7axZoxrW5RuI/ml0=) 2: r7WQGMREEfI4Fmg6PQ3ktSkAtpc.roa (hash: HFIG7iXNBsXb+vT7M7qx9nPx1zt4/JVmwPHUeyaqDfU=) 3: rtWQWkNzdmM7X4cgcVVh0l6Nwcw.roa (hash: GH/OShse8GQ4IEPWkcEUIqoGm88NyQuvgij1K2K17yc=) 4: v7BCrE2vagBj7IKaaD72gqvDsZg.roa (hash: 35v0vkO/Pxf5ZzM1m6kgzGZZX6mDLFimhwTmlHj8J5g=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/erbi9MRXMdA8J66v3WCGEYcbQjw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/erbi9MRXMdA8J66v3WCGEYcbQjw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/erbi9MRXMdA8J66v3WCGEYcbQjw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 16:27:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3636 (0xe34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7AB6E2F4C45731D03C27AEAFDD608611871B423C Validity Not Before: Jun 1 10:27:30 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=5302D3FB834903BCD06F612261621DD16457EFC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:38:d0:bc:40:3a:6b:7a:7d:30:ef:be:30:85: 5f:20:c6:96:af:28:70:95:54:1a:36:59:81:1e:fc: d4:50:40:45:72:e6:0e:bc:1c:1d:e8:82:cc:3d:f7: bf:84:97:e0:3e:b9:62:df:99:4e:49:97:da:78:78: 1c:1f:8d:fe:05:ed:dc:4c:7e:e0:ab:d4:04:85:83: 8f:6b:a5:65:cf:48:09:9b:a1:7f:86:24:1d:41:6d: cb:79:3e:79:a4:a9:e2:34:9b:1c:3a:d3:02:61:f4: 0a:3c:24:84:38:4d:ac:87:5c:e1:80:43:e7:5c:19: b4:14:3a:40:3a:93:b3:a5:73:da:10:be:52:de:2a: 95:ce:d1:58:36:b6:ab:84:cd:5b:ce:12:4c:fa:91: 3a:7d:37:55:78:71:a1:ba:09:77:7a:9d:86:3b:24: 70:8f:be:34:a0:42:f7:9f:9e:fe:45:43:95:69:e2: d9:b9:86:b4:12:51:2a:e9:4b:fb:ab:d0:8b:93:4d: f0:6f:b7:84:79:eb:c0:90:d4:58:e3:0c:b4:63:df: 7e:df:ba:f7:d4:13:6e:38:9d:33:57:f3:a9:da:af: d9:19:69:97:9b:fb:23:0a:2a:9f:e8:d9:0a:1e:e9: 5e:9f:0d:29:8a:c3:ee:6f:1c:57:25:f2:c6:1f:74: 64:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:02:D3:FB:83:49:03:BC:D0:6F:61:22:61:62:1D:D1:64:57:EF:C6 X509v3 Authority Key Identifier: keyid:7A:B6:E2:F4:C4:57:31:D0:3C:27:AE:AF:DD:60:86:11:87:1B:42:3C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/erbi9MRXMdA8J66v3WCGEYcbQjw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/erbi9MRXMdA8J66v3WCGEYcbQjw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/erbi9MRXMdA8J66v3WCGEYcbQjw.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:75:9e:0f:aa:82:8d:a0:ba:d8:72:14:f2:20:82:2c:be:94: 51:1b:74:65:2f:70:39:4b:66:5d:8e:14:7b:86:53:05:ec:31: 28:1d:d6:9c:8d:98:d0:4d:b2:1b:ba:5e:f3:6c:ed:eb:d7:13: 8a:6d:13:7f:33:44:8e:2b:73:0d:dc:4a:e1:a2:87:d9:a0:7b: f1:a9:81:a5:b3:ba:df:54:7c:34:c7:61:83:24:93:65:f3:c0: 2d:e2:77:df:03:74:f5:b1:7f:c3:d8:2f:8f:36:25:47:9b:25: 1f:b6:56:60:0c:d4:4b:4a:9e:97:e9:f4:49:ad:95:dc:fb:6b: b6:3a:3e:3f:d0:2e:1e:c5:d7:08:07:65:2f:d0:36:77:a0:fd: 7f:ed:11:86:60:c2:9a:fd:47:e8:63:ef:88:61:8b:8d:a7:1c: 50:5c:14:63:76:79:a0:32:5f:f6:09:b1:b2:b7:56:66:ac:3f: 31:d1:01:a2:d1:eb:6d:d9:34:ce:4f:a6:3f:8b:a4:d8:15:14: 3f:53:e2:8f:ec:52:79:27:d6:19:8f:ca:fb:cc:4b:f6:4b:55: 72:fb:b6:2a:5d:b4:fc:9f:f2:28:28:e5:c2:fd:f8:9b:0a:ca: d3:f8:74:10:20:25:7b:e7:36:fe:9b:26:4b:69:71:32:ed:f6: 5c:e2:e2:17 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICDjQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0FC NkUyRjRDNDU3MzFEMDNDMjdBRUFGREQ2MDg2MTE4NzFCNDIzQzAeFw0yNDA2MDEx MDI3MzBaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDUzMDJEM0ZCODM0OTAz QkNEMDZGNjEyMjYxNjIxREQxNjQ1N0VGQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvONC8QDpren0w774whV8gxpavKHCVVBo2WYEe/NRQQEVy5g68 HB3ogsw997+El+A+uWLfmU5Jl9p4eBwfjf4F7dxMfuCr1ASFg49rpWXPSAmboX+G JB1Bbct5PnmkqeI0mxw60wJh9Ao8JIQ4TayHXOGAQ+dcGbQUOkA6k7Olc9oQvlLe KpXO0Vg2tquEzVvOEkz6kTp9N1V4caG6CXd6nYY7JHCPvjSgQvefnv5FQ5Vp4tm5 hrQSUSrpS/ur0IuTTfBvt4R568CQ1FjjDLRj337fuvfUE244nTNX86nar9kZaZeb +yMKKp/o2Qoe6V6fDSmKw+5vHFcl8sYfdGTBAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUUwLT+4NJA7zQb2EiYWId0WRX78YwHwYDVR0jBBgwFoAUerbi9MRXMdA8J66v 3WCGEYcbQjwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTAz MC9lcmJpOU1SWE1kQThKNjZ2M1dDR0VZY2JRancuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2VyYmk5TVJYTWRBOEo2NnYzV0NHRVljYlFqdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEwMzAvZXJiaTlNUlhNZEE4 SjY2djNXQ0dFWWNiUWp3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBABV1ng+qgo2guthyFPIggiy+lFEbdGUvcDlLZl2OFHuGUwXsMSgd1pyNmNBN shu6XvNs7evXE4ptE38zRI4rcw3cSuGih9mge/GpgaWzut9UfDTHYYMkk2XzwC3i d98DdPWxf8PYL482JUebJR+2VmAM1EtKnpfp9Emtldz7a7Y6Pj/QLh7F1wgHZS/Q Nneg/X/tEYZgwpr9R+hj74hhi42nHFBcFGN2eaAyX/YJsbK3VmasPzHRAaLR623Z NM5Ppj+LpNgVFD9T4o/sUnkn1hmPyvvMS/ZLVXL7tipdtPyf8igo5cL9+JsKytP4 dBAgJXvnNv6bJktpcTLt9lzi4hc= -----END CERTIFICATE-----Generated at Sat Jun 1 13:43:22 2024 by rpki-client on console-fra.rpki-client.org