$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft File: iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft (raw, json) Hash identifier: lE4Q3LEcCqwkoGhco8Ybd3YmVBRHZR3IeJ6RpFQ4j3g= Subject key identifier: 5A:CA:5A:E6:10:3E:84:98:34:5B:CB:AB:D4:7A:44:3A:C0:93:C2:5A Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Certificate serial: 200C Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft Manifest number: 1B77 Signing time: Sun 02 Jun 2024 10:25:14 +0000 Manifest this update: Sun 02 Jun 2024 10:25:14 +0000 Manifest next update: Sun 02 Jun 2024 16:25:14 +0000 Files and hashes: 1: 6f5E7d7WPmZSftgs9ezOKogP4Ds.roa (hash: HkXsm2cg6s99F50j5mNIIXYYWPHYSg307dJAHV2SP50=) 2: 76cx8fquGQlU67eDFsoViD7rZXg.roa (hash: n9L11ufu3a/2aLZGTCC1juQpzKRigFfe6Jl/VTLRgWE=) 3: HR3bL3qASGUgtsbPEDxi85vFzRI.roa (hash: CU5KuQ/A8aHfiL4ZDlmrTi6Phm7mTrYnZ/OJtH4yb8Y=) 4: IiRFLwykCE55foHlT9Cyoni3dog.roa (hash: VZF43H+/Xb7dNEQdKEoiW4pZUDAI+mWd5eoYGgXSAoQ=) 5: Mw0AMcJ331Zk3LfIw4rGUcMnjA0.roa (hash: 6MvuvsWQ1pBcXJjGGEiPX7d7itOpdEaZUyt9brNvtkc=) 6: Upm3NFNJTgjaImZFTPOwqDOsodw.roa (hash: kxTQwsh8Ui9oq+ANhu0QENlwzWm7FjQWP+tuXPa7kKg=) 7: _sY32bpnYHuhk-LoecC86lNfRZU.roa (hash: DZvK3eIm+gzA0uWRZkODAbVkxm4LmEKJ1L+/jHrS4f8=) 8: iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl (hash: 3VFR8dYIDBjSAdeO+3QCiapsFpIlb4/8J+hXyNwBfGk=) 9: l7pq8USURZhbMz4dVzkliHTwzqc.roa (hash: FU4ykIIBjhclH3fHhZphmbq+W7cmGCCpYPTRAjwQDAc=) 10: n_fbJzcBeone-VCh6IJkLgJw3EE.roa (hash: bjY0FSjeG6Q2w9vrLDF+3orzuQJRmNxrodxNW24XpDg=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 16:25:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8204 (0x200c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Validity Not Before: Jun 2 10:25:14 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=5ACA5AE6103E8498345BCBABD47A443AC093C25A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f0:f9:68:52:99:6a:aa:0f:1d:28:ef:d6:32: 00:4b:4b:5b:e0:b8:b8:b9:11:b3:01:db:61:3e:66: 5e:29:0d:9d:15:62:48:a5:9a:8d:56:e4:ae:2c:e8: d7:c7:ad:fb:37:56:a2:f7:b7:17:64:bc:75:c9:84: df:61:26:6d:a0:94:db:60:2d:da:09:36:45:28:f1: d9:ff:98:4e:b8:6d:f9:7d:32:b4:c8:d5:ca:98:92: 04:70:f3:f0:98:8f:66:02:98:6f:8d:f9:48:98:68: 17:4b:99:d3:16:04:49:11:32:f7:db:5b:8e:bd:6c: 8f:e9:20:b7:11:b0:c5:47:f9:69:82:e9:84:ed:8d: 46:2e:a3:90:74:d5:31:bc:f7:36:b9:26:77:39:bb: 0f:c7:e2:59:11:83:9b:c8:41:1d:4c:cc:1f:5a:13: 99:ba:9a:1b:70:9d:f1:5e:88:99:c5:73:23:eb:c3: 8f:0b:61:f0:8d:d7:54:84:5a:9f:93:5a:c3:22:fa: c0:7a:0c:ee:bb:c9:34:3d:82:18:5f:52:96:8f:e1: e9:1f:4e:be:5b:ad:e5:88:61:79:9c:22:91:1f:64: 62:5b:6f:0e:0b:c8:6a:9d:34:03:13:56:2b:5f:36: b6:75:4f:d2:79:06:ae:67:e0:7f:59:46:9c:66:2e: 22:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:CA:5A:E6:10:3E:84:98:34:5B:CB:AB:D4:7A:44:3A:C0:93:C2:5A X509v3 Authority Key Identifier: keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:d9:fe:29:3c:fb:3e:a6:0f:30:1b:13:38:96:e5:b2:b5:d4: cb:5e:f7:aa:4e:1f:41:48:ac:0b:66:37:e5:25:f5:77:3e:30: 66:c6:e8:c0:c1:4f:30:f0:3b:02:11:90:4b:42:34:cb:59:43: 82:34:66:24:54:8f:b0:01:3e:e2:c5:a0:49:83:6f:e4:f5:f5: 27:04:cb:ac:9f:ff:69:ad:29:42:40:a6:ed:5b:60:c0:35:0f: db:9a:04:cb:4c:ea:bd:64:d5:d2:95:8d:39:29:36:61:9d:ea: 15:a8:55:5c:a5:b8:b0:cb:d9:bd:df:7f:27:d1:ab:04:c9:61: 2a:a4:8e:dc:6a:b3:42:53:5f:12:bb:bd:ef:79:a2:13:5a:9a: 67:13:49:ed:eb:7d:e2:12:18:22:d4:ec:f9:9b:1b:f8:cd:d5: ca:d1:fe:ef:0d:29:b7:8b:e0:98:db:d9:43:18:60:12:20:82: 3d:3d:17:2d:a5:e0:f6:8d:96:34:38:e9:e0:10:c4:1b:76:db: c4:ef:ea:33:dd:25:e6:85:b4:b4:25:f3:6b:4c:fb:53:95:d0: b7:7d:a3:ec:7f:17:36:ae:42:00:96:5f:d7:bc:4e:5a:30:1d: ff:98:f2:c0:5e:b5:76:14:02:42:40:32:10:a7:92:05:f1:01: 8b:87:bd:02 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICIAwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEFF NENGNzhCNDlERjBCMkMxRDI5RDMyRTQ4QTk0M0FFNEY0MUFDQzAeFw0yNDA2MDIx MDI1MTRaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDVBQ0E1QUU2MTAzRTg0 OTgzNDVCQ0JBQkQ0N0E0NDNBQzA5M0MyNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDb8PloUplqqg8dKO/WMgBLS1vguLi5EbMB22E+Zl4pDZ0VYkil mo1W5K4s6NfHrfs3VqL3txdkvHXJhN9hJm2glNtgLdoJNkUo8dn/mE64bfl9MrTI 1cqYkgRw8/CYj2YCmG+N+UiYaBdLmdMWBEkRMvfbW469bI/pILcRsMVH+WmC6YTt jUYuo5B01TG89za5Jnc5uw/H4lkRg5vIQR1MzB9aE5m6mhtwnfFeiJnFcyPrw48L YfCN11SEWp+TWsMi+sB6DO67yTQ9ghhfUpaP4ekfTr5breWIYXmcIpEfZGJbbw4L yGqdNAMTVitfNrZ1T9J5Bq5n4H9ZRpxmLiK7AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUWspa5hA+hJg0W8ur1HpEOsCTwlowHwYDVR0jBBgwFoAUiuTPeLSd8LLB0p0y 5IqUOuT0GswwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTY2 My9pdVRQZUxTZDhMTEIwcDB5NUlxVU91VDBHc3cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2l1VFBlTFNkOExMQjBwMHk1SXFVT3VUMEdzdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2NjMvaXVUUGVMU2Q4TExC MHAweTVJcVVPdVQwR3N3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAG3Z/ik8+z6mDzAbEziW5bK11Mte96pOH0FIrAtmN+Ul9Xc+MGbG6MDBTzDw OwIRkEtCNMtZQ4I0ZiRUj7ABPuLFoEmDb+T19ScEy6yf/2mtKUJApu1bYMA1D9ua BMtM6r1k1dKVjTkpNmGd6hWoVVyluLDL2b3ffyfRqwTJYSqkjtxqs0JTXxK7ve95 ohNammcTSe3rfeISGCLU7PmbG/jN1crR/u8NKbeL4Jjb2UMYYBIggj09Fy2l4PaN ljQ46eAQxBt228Tv6jPdJeaFtLQl82tM+1OV0Ld9o+x/FzauQgCWX9e8TlowHf+Y 8sBetXYUAkJAMhCnkgXxAYuHvQI= -----END CERTIFICATE-----Generated at Sun Jun 2 11:54:52 2024 by rpki-client on console-fra.rpki-client.org