$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft File: 9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft (raw, json) Hash identifier: 6nvet5SFROE+G23zyWZFyHYf0HqiMofTKLGZOnMNpOo= Subject key identifier: 77:2D:59:F8:1B:38:8C:AD:C0:60:7D:6B:8A:28:46:03:EF:6E:29:6B Authority key identifier: F5:56:C3:AA:A1:00:1F:89:DC:0F:CE:D5:43:6A:21:BB:4F:F3:5D:7A Certificate issuer: /CN=F556C3AAA1001F89DC0FCED5436A21BB4FF35D7A Certificate serial: 0ACE Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9VbDqqEAH4ncD87VQ2ohu0_zXXo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft Manifest number: 0AC8 Signing time: Sat 01 Jun 2024 20:25:40 +0000 Manifest this update: Sat 01 Jun 2024 20:25:40 +0000 Manifest next update: Sun 02 Jun 2024 02:25:40 +0000 Files and hashes: 1: 9VbDqqEAH4ncD87VQ2ohu0_zXXo.crl (hash: bf0ITWY9GuqPFQ9dw5j58MceTq+aVgGMJipYqWCmM8Q=) 2: NA2S6vy8jIu7Jxj3d3kfFbbiWJU.roa (hash: e2Fan1zP5nWeEd4dQoDXz7WLJ/By6cvfc2bpj9fdx1Q=) 3: RL6wVVRBDl-NCbMqCPMWdi8d8kI.roa (hash: InT9zw/kxTq6Mox8mCkp+zX3pF3SilmYqrcvf2B3irw=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9VbDqqEAH4ncD87VQ2ohu0_zXXo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2766 (0xace) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F556C3AAA1001F89DC0FCED5436A21BB4FF35D7A Validity Not Before: Jun 1 20:25:40 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=772D59F81B388CADC0607D6B8A284603EF6E296B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:b3:a6:65:9c:e4:3f:1a:f8:4c:65:02:42:d8: 44:71:a7:a6:c2:64:48:59:ca:83:76:f1:7b:1f:f6: e2:c1:10:9d:c4:35:8f:2c:44:94:72:e2:03:e4:6a: d5:04:79:5a:59:d1:4b:3e:8e:96:65:7c:0a:2b:64: 95:41:b9:10:fd:30:c9:29:d7:48:a2:64:1c:9d:3c: 57:5b:69:17:43:d8:fc:a5:4b:1e:c6:18:7f:c5:d9: ce:10:82:cb:d7:4e:ca:b7:de:14:c4:93:7d:ae:b4: 84:02:05:92:7d:9c:05:3d:14:ce:a0:ac:c4:e9:63: ef:0f:67:ea:24:93:25:4a:9c:b0:d6:3b:5c:ea:4c: 3d:09:d0:4b:d7:83:cd:25:46:d6:a3:0a:19:30:9a: 7c:91:70:5b:78:41:3a:fc:65:bf:93:07:10:fe:9d: 95:db:39:84:d9:86:97:e2:e6:b0:0b:be:87:5a:95: 62:74:4f:ae:c9:ee:de:82:4a:26:81:5a:ca:b5:1f: af:7f:fc:02:4e:8c:2e:5f:c7:10:4e:9b:70:15:f4: 10:d1:46:d9:1e:bd:ab:19:07:53:79:d6:11:d3:53: 0a:87:e6:03:94:43:c5:46:b3:22:5d:62:d2:6e:b0: 6b:c3:91:6b:96:5a:e8:ec:bc:c1:46:9b:b8:ab:13: 1c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:2D:59:F8:1B:38:8C:AD:C0:60:7D:6B:8A:28:46:03:EF:6E:29:6B X509v3 Authority Key Identifier: keyid:F5:56:C3:AA:A1:00:1F:89:DC:0F:CE:D5:43:6A:21:BB:4F:F3:5D:7A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9VbDqqEAH4ncD87VQ2ohu0_zXXo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:18:fe:44:25:d8:58:e0:06:33:cc:d5:be:c5:68:98:42:a4: d0:73:83:49:4d:d9:bd:54:7b:81:4d:cd:56:fc:dd:76:de:25: f6:f7:bc:b7:1f:e2:93:db:bf:59:08:1a:df:03:8f:b7:31:5e: 81:44:36:d5:55:e8:ae:32:fa:a3:11:b4:98:01:eb:ea:60:65: b2:92:48:76:84:85:91:83:e4:27:d9:31:2b:38:71:42:86:66: d7:99:75:8d:c0:c8:1c:ff:e7:d9:c3:f5:f3:58:f3:5b:30:a5: 1e:0b:f8:2f:3d:a8:f3:4a:fe:42:62:59:bd:93:0d:ab:fe:fa: 55:d5:2e:64:ae:65:79:d6:03:cf:98:78:7e:3f:36:c2:31:c0: 32:94:8f:2a:09:8c:88:26:f2:91:bd:f7:5b:55:9d:56:6b:30: 1a:01:d2:e3:6b:99:1d:c8:66:e2:f4:f7:c7:d3:c4:e2:2d:a0: e1:9a:4b:e3:78:aa:4e:d6:95:58:73:f5:71:d6:04:58:6b:43: 9a:92:5d:f2:1b:1e:f9:65:65:02:ae:c9:26:67:87:77:7c:e8: fd:7c:79:25:44:3c:24:2a:72:e9:5c:0d:29:42:4f:cf:83:2b: ae:8d:53:10:fd:e6:d4:5e:d5:45:60:63:32:86:a0:9c:81:c7: 50:c5:a1:c0 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICCs4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjU1 NkMzQUFBMTAwMUY4OURDMEZDRUQ1NDM2QTIxQkI0RkYzNUQ3QTAeFw0yNDA2MDEy MDI1NDBaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDc3MkQ1OUY4MUIzODhD QURDMDYwN0Q2QjhBMjg0NjAzRUY2RTI5NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCTs6ZlnOQ/GvhMZQJC2ERxp6bCZEhZyoN28Xsf9uLBEJ3ENY8s RJRy4gPkatUEeVpZ0Us+jpZlfAorZJVBuRD9MMkp10iiZBydPFdbaRdD2PylSx7G GH/F2c4QgsvXTsq33hTEk32utIQCBZJ9nAU9FM6grMTpY+8PZ+okkyVKnLDWO1zq TD0J0EvXg80lRtajChkwmnyRcFt4QTr8Zb+TBxD+nZXbOYTZhpfi5rALvodalWJ0 T67J7t6CSiaBWsq1H69//AJOjC5fxxBOm3AV9BDRRtkevasZB1N51hHTUwqH5gOU Q8VGsyJdYtJusGvDkWuWWujsvMFGm7irExy9AgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUdy1Z+Bs4jK3AYH1riihGA+9uKWswHwYDVR0jBBgwFoAU9VbDqqEAH4ncD87V Q2ohu0/zXXowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTE5 LzlWYkRxcUVBSDRuY0Q4N1ZRMm9odTBfelhYby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvOVZiRHFxRUFING5jRDg3VlEyb2h1MF96WFhvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTE5LzlWYkRxcUVBSDRuY0Q4 N1ZRMm9odTBfelhYby5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBjGP5EJdhY4AYzzNW+xWiYQqTQc4NJTdm9VHuBTc1W/N123iX297y3H+KT279Z CBrfA4+3MV6BRDbVVeiuMvqjEbSYAevqYGWykkh2hIWRg+Qn2TErOHFChmbXmXWN wMgc/+fZw/XzWPNbMKUeC/gvPajzSv5CYlm9kw2r/vpV1S5krmV51gPPmHh+PzbC McAylI8qCYyIJvKRvfdbVZ1WazAaAdLja5kdyGbi9PfH08TiLaDhmkvjeKpO1pVY c/Vx1gRYa0Oakl3yGx75ZWUCrskmZ4d3fOj9fHklRDwkKnLpXA0pQk/PgyuujVMQ /ebUXtVFYGMyhqCcgcdQxaHA -----END CERTIFICATE-----Generated at Sat Jun 1 23:06:31 2024 by rpki-client on console-ams.rpki-client.org