$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft File: 9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft (raw, json) Hash identifier: 6m+vobBn78SPnFsaV9rrdwEgK265PTueUQ5k3o3R3N4= Subject key identifier: 77:2D:59:F8:1B:38:8C:AD:C0:60:7D:6B:8A:28:46:03:EF:6E:29:6B Authority key identifier: F5:56:C3:AA:A1:00:1F:89:DC:0F:CE:D5:43:6A:21:BB:4F:F3:5D:7A Certificate issuer: /CN=F556C3AAA1001F89DC0FCED5436A21BB4FF35D7A Certificate serial: 10BB Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9VbDqqEAH4ncD87VQ2ohu0_zXXo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft Manifest number: 10B3 Signing time: Fri 04 Apr 2025 14:05:43 +0000 Manifest this update: Fri 04 Apr 2025 14:05:43 +0000 Manifest next update: Fri 04 Apr 2025 20:05:43 +0000 Files and hashes: 1: 9VbDqqEAH4ncD87VQ2ohu0_zXXo.crl (hash: Ii/FHTTUSAFqy8UR97M1i/X2Yvj7HxQ2SV5XskvYdi0=) 2: BhAPA23_9841Ad-T5RPGRWrr8lU.roa (hash: kYugWE0/6l95HXjqsbTP6qrpO8X0FDHGL1s3owYnbDM=) 3: SC_pkcDhJ5o4NG17MetL3m9J4FE.roa (hash: 3QuKzabkQZa5U+aV6n5UNJwnM3YYQc4z4PuXFHFnB14=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9VbDqqEAH4ncD87VQ2ohu0_zXXo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 20:05:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4283 (0x10bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F556C3AAA1001F89DC0FCED5436A21BB4FF35D7A Validity Not Before: Apr 4 14:05:43 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=772D59F81B388CADC0607D6B8A284603EF6E296B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:b3:a6:65:9c:e4:3f:1a:f8:4c:65:02:42:d8: 44:71:a7:a6:c2:64:48:59:ca:83:76:f1:7b:1f:f6: e2:c1:10:9d:c4:35:8f:2c:44:94:72:e2:03:e4:6a: d5:04:79:5a:59:d1:4b:3e:8e:96:65:7c:0a:2b:64: 95:41:b9:10:fd:30:c9:29:d7:48:a2:64:1c:9d:3c: 57:5b:69:17:43:d8:fc:a5:4b:1e:c6:18:7f:c5:d9: ce:10:82:cb:d7:4e:ca:b7:de:14:c4:93:7d:ae:b4: 84:02:05:92:7d:9c:05:3d:14:ce:a0:ac:c4:e9:63: ef:0f:67:ea:24:93:25:4a:9c:b0:d6:3b:5c:ea:4c: 3d:09:d0:4b:d7:83:cd:25:46:d6:a3:0a:19:30:9a: 7c:91:70:5b:78:41:3a:fc:65:bf:93:07:10:fe:9d: 95:db:39:84:d9:86:97:e2:e6:b0:0b:be:87:5a:95: 62:74:4f:ae:c9:ee:de:82:4a:26:81:5a:ca:b5:1f: af:7f:fc:02:4e:8c:2e:5f:c7:10:4e:9b:70:15:f4: 10:d1:46:d9:1e:bd:ab:19:07:53:79:d6:11:d3:53: 0a:87:e6:03:94:43:c5:46:b3:22:5d:62:d2:6e:b0: 6b:c3:91:6b:96:5a:e8:ec:bc:c1:46:9b:b8:ab:13: 1c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:2D:59:F8:1B:38:8C:AD:C0:60:7D:6B:8A:28:46:03:EF:6E:29:6B X509v3 Authority Key Identifier: keyid:F5:56:C3:AA:A1:00:1F:89:DC:0F:CE:D5:43:6A:21:BB:4F:F3:5D:7A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9VbDqqEAH4ncD87VQ2ohu0_zXXo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:a8:b7:7f:c4:77:99:db:0e:2a:d0:f8:5f:44:8a:b7:72:e6: ef:a8:e8:66:fd:18:65:45:e3:52:b3:ed:9d:11:25:14:ae:40: 41:19:18:cb:13:bf:b6:f3:1f:7d:e3:77:17:d3:94:15:87:91: d5:d9:8c:e9:62:0f:54:05:2f:73:ee:8f:75:cb:6b:2d:c4:94: 02:f9:ee:28:0a:04:07:30:08:73:46:68:d3:ef:68:ef:3a:3e: 8b:a9:12:00:4d:ae:84:96:63:3c:a6:1f:9f:9a:fb:53:b6:51: 57:66:cc:a4:89:69:31:99:0a:3a:62:06:67:04:b9:5c:da:df: 4e:39:50:20:dd:34:20:05:ca:84:5f:95:17:c8:cd:b8:27:76: 4b:4e:81:f3:5e:86:50:6f:2b:16:f8:7a:55:f6:06:d5:a2:11: 5a:a2:5e:c3:7a:0b:3a:9e:aa:ca:81:b4:f6:eb:c2:0f:1e:a9: ff:c4:4c:4c:25:b5:8c:08:64:76:88:56:2b:88:3d:4a:c1:e9: 61:c3:4d:d7:73:e6:3d:2a:97:79:05:83:e1:1d:9d:d3:fb:9b: 22:ab:67:af:95:b4:a2:9b:a5:46:92:3e:01:2b:cf:95:c3:1a: 28:9f:51:4a:76:95:fb:31:75:4b:7d:65:60:4d:b4:3a:05:ad: 9e:a5:ce:3b -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICELswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjU1 NkMzQUFBMTAwMUY4OURDMEZDRUQ1NDM2QTIxQkI0RkYzNUQ3QTAeFw0yNTA0MDQx NDA1NDNaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDc3MkQ1OUY4MUIzODhD QURDMDYwN0Q2QjhBMjg0NjAzRUY2RTI5NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCTs6ZlnOQ/GvhMZQJC2ERxp6bCZEhZyoN28Xsf9uLBEJ3ENY8s RJRy4gPkatUEeVpZ0Us+jpZlfAorZJVBuRD9MMkp10iiZBydPFdbaRdD2PylSx7G GH/F2c4QgsvXTsq33hTEk32utIQCBZJ9nAU9FM6grMTpY+8PZ+okkyVKnLDWO1zq TD0J0EvXg80lRtajChkwmnyRcFt4QTr8Zb+TBxD+nZXbOYTZhpfi5rALvodalWJ0 T67J7t6CSiaBWsq1H69//AJOjC5fxxBOm3AV9BDRRtkevasZB1N51hHTUwqH5gOU Q8VGsyJdYtJusGvDkWuWWujsvMFGm7irExy9AgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUdy1Z+Bs4jK3AYH1riihGA+9uKWswHwYDVR0jBBgwFoAU9VbDqqEAH4ncD87V Q2ohu0/zXXowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTE5 LzlWYkRxcUVBSDRuY0Q4N1ZRMm9odTBfelhYby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvOVZiRHFxRUFING5jRDg3VlEyb2h1MF96WFhvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTE5LzlWYkRxcUVBSDRuY0Q4 N1ZRMm9odTBfelhYby5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAiqLd/xHeZ2w4q0PhfRIq3cubvqOhm/RhlReNSs+2dESUUrkBBGRjLE7+28x99 43cX05QVh5HV2YzpYg9UBS9z7o91y2stxJQC+e4oCgQHMAhzRmjT72jvOj6LqRIA Ta6ElmM8ph+fmvtTtlFXZsykiWkxmQo6YgZnBLlc2t9OOVAg3TQgBcqEX5UXyM24 J3ZLToHzXoZQbysW+HpV9gbVohFaol7Degs6nqrKgbT268IPHqn/xExMJbWMCGR2 iFYriD1Kwelhw03Xc+Y9Kpd5BYPhHZ3T+5siq2evlbSim6VGkj4BK8+Vwxoon1FK dpX7MXVLfWVgTbQ6Ba2epc47 -----END CERTIFICATE-----Generated at Fri Apr 4 18:42:51 2025 by rpki-client