$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft File: iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft (raw, json) Hash identifier: MgRNjzGSP2m6kr9ooxrJbGFl/ZsUrIWsfaD9tCfuMHQ= Subject key identifier: 5A:CA:5A:E6:10:3E:84:98:34:5B:CB:AB:D4:7A:44:3A:C0:93:C2:5A Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Certificate serial: 5768 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft Manifest number: 3411 Signing time: Mon 08 Sep 2025 04:33:24 +0000 Manifest this update: Mon 08 Sep 2025 04:33:24 +0000 Manifest next update: Mon 08 Sep 2025 10:33:24 +0000 Files and hashes: 1: 1PjOYcD6n59OGHy74GY01mQgKWU.roa (hash: slNcbUJ32/fRic88R1QJAzj8l6OQcCQSFCDPq6Lf1Qo=) 2: 1pGP6piO9t8jbUERzDx-O4nhtLM.roa (hash: LgsHYyRchdYhJU6IjYfSwzPXfyeBNXFC/3oEFZaxr5E=) 3: 2VSJXBw1DlaA60bwgPxm1cv8GdI.roa (hash: 3Jnqysnp98kQsNIlhC3H4viLRR0BegKf4veuRJusQc4=) 4: 53NOHaDqiLVQPwemAA9Am8vl_Kg.roa (hash: O20FDHmD7LzI5lW0NxOzxqyAzXstCglRjK22XQKQ9Es=) 5: 6wu7C6LJRgzw0YqBCypPrWvyqtk.roa (hash: Cj+QZPNg8QQ9fmyZfIpGADWCHBPEkN4OpbVPkdHjLNc=) 6: 7ZLQjppKktjpEVsFjNwIPbpj_jg.roa (hash: KxZFwOHggNH2lY65Vv/Y6N1StfmpvbYKD/J/2TePgj8=) 7: Dhn_bw4xhJB691KP5jCNHDjKRbs.roa (hash: l/MtGIE5yzeoJWXqYNU8VMp88JGLtM3CJinlD5DtYWg=) 8: HV8GbztLWnbgNaaUwTkdlB5F9Cg.roa (hash: UaPfLW99jQntNU6IX0TRnO/sKj7H4WUu2nmdSv5P9sw=) 9: IFidcHNPXthCJghiVHydJRJn1rw.roa (hash: +pTlkb483uRH5SA8wmAgOQc/g2KfZ9hHgdcBfOy1Tco=) 10: JhZF6AuQEOuB8GjaXjankk0DljQ.roa (hash: scLEIBaljF9J/rvGMYhys3RwKVJ/QPY9DR7qT0S63uE=) 11: OFb16qiKV-ii6yDwaCXbU2B4frs.roa (hash: zLcZyjzbKuVPCGSGmrW0b6hqPp0C71AlyYXmHNIhZQk=) 12: P7vrT0OqESfvvu_BMqkyv34P5XU.roa (hash: 1nOqMb6cC7jEjFbdAJEezEi/w5D+hjzwf800kgNEd0M=) 13: TzcA4SvlW4dDnwgnj75iZobTJRo.roa (hash: Xv9Q2kxWm0g9IFUUrlfdAks/1WpiCsp5fLwysnIO7a4=) 14: VelanPogo3n-IDUuQtAnrMQHtks.roa (hash: yigw0sUAc47ePatlXweGpaaBpq/lsTcHML/wU8Aqh3A=) 15: YMG8FMcf58p5E-MgE2YagPtL8i4.roa (hash: A+vnDbISNONVCYDKKfy2MsLgNiCajHx4bRqCkfq54eY=) 16: Yq-wEJdpNyrsJ5M1lXcQMx95RI0.roa (hash: C1aXVx3626w3lC0qVGmhnn9Jj9Gy3ZQ5/AtReox93tU=) 17: Z6Z4vli2IUGPMxXq8u0d7CpvETo.roa (hash: iFyCSGfO3II9hoQD7VqZ0JzkPphrDQU9+b3q7pFEyuA=) 18: ZBWpzeAt4uqUq0zsmnYx0BN3IfQ.roa (hash: 9gV5/OPikxwwnMuhVftvUlu1wHHuXCirb8WorV2MFrM=) 19: ZT29OOC9Z7MkG06WXQhj1eon2nQ.roa (hash: nTNiOVkdppVAOZ6tb/ipCtFlrKVaOZKu3RMYe/FzQPY=) 20: bnw9kTdy3BRTsgqC_SqOm6AZd-4.roa (hash: CAs55FBJOva6KhEngyLR6yYd66qA1+au5mjD/3r8Dqk=) 21: e77FcoZ-9xgW1Udb28rM-7CYQVg.roa (hash: wWJ3YyX6sRH67Xw8WnY1oLjr8fTE9Fbsrgfhtd8Fy48=) 22: iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl (hash: xmbYJ2rnkcGd6OIcNlvhrA8GGcuc6T4Q73roBYoanhw=) 23: ns9wScn8kvFTzlA4eC2k95lXnvU.roa (hash: u8uqhchUVeTEY3phLIkm3f10i8O1nybT06HAnif5Qx0=) 24: sy_W5etql-BohH4Dck8XinjO0fw.roa (hash: gdmNlw52whZUd4pEW49OlCYXKV+8VLwYPzoqvRJ0ZHY=) 25: wBfzi9DVvJBqpWOdgn_Enb20PKE.roa (hash: vxQooelYK8GHAhBkJhdcEitFbO7l/Rpn4sTXfROBvj4=) 26: yASZAsuKpltkjXYnJ0q2zvTZQ0s.roa (hash: CwIh5fGnQ/SVdtUsyIfM2FJbYVKjc2PgFK4eHor269E=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 07:06:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22376 (0x5768) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Validity Not Before: Sep 8 04:33:24 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=5ACA5AE6103E8498345BCBABD47A443AC093C25A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f0:f9:68:52:99:6a:aa:0f:1d:28:ef:d6:32: 00:4b:4b:5b:e0:b8:b8:b9:11:b3:01:db:61:3e:66: 5e:29:0d:9d:15:62:48:a5:9a:8d:56:e4:ae:2c:e8: d7:c7:ad:fb:37:56:a2:f7:b7:17:64:bc:75:c9:84: df:61:26:6d:a0:94:db:60:2d:da:09:36:45:28:f1: d9:ff:98:4e:b8:6d:f9:7d:32:b4:c8:d5:ca:98:92: 04:70:f3:f0:98:8f:66:02:98:6f:8d:f9:48:98:68: 17:4b:99:d3:16:04:49:11:32:f7:db:5b:8e:bd:6c: 8f:e9:20:b7:11:b0:c5:47:f9:69:82:e9:84:ed:8d: 46:2e:a3:90:74:d5:31:bc:f7:36:b9:26:77:39:bb: 0f:c7:e2:59:11:83:9b:c8:41:1d:4c:cc:1f:5a:13: 99:ba:9a:1b:70:9d:f1:5e:88:99:c5:73:23:eb:c3: 8f:0b:61:f0:8d:d7:54:84:5a:9f:93:5a:c3:22:fa: c0:7a:0c:ee:bb:c9:34:3d:82:18:5f:52:96:8f:e1: e9:1f:4e:be:5b:ad:e5:88:61:79:9c:22:91:1f:64: 62:5b:6f:0e:0b:c8:6a:9d:34:03:13:56:2b:5f:36: b6:75:4f:d2:79:06:ae:67:e0:7f:59:46:9c:66:2e: 22:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:CA:5A:E6:10:3E:84:98:34:5B:CB:AB:D4:7A:44:3A:C0:93:C2:5A X509v3 Authority Key Identifier: keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:37:27:8d:d9:d6:fd:3e:2c:01:19:44:99:93:04:52:e4:d8: 5f:ba:a1:fa:0a:48:9f:2f:f5:f8:91:d7:3f:8c:94:7c:46:ee: 5f:0c:0f:e1:f9:f4:26:30:2c:c8:c8:bd:63:f4:13:93:30:fa: 99:40:b7:88:03:8c:9c:d5:e5:9b:18:f3:80:df:38:93:30:58: 80:05:74:79:02:27:01:c4:75:89:9c:56:70:6c:48:eb:6b:9a: 92:f9:5c:ed:72:c8:26:e0:b5:b7:65:d5:aa:59:03:11:0a:b6: e4:ef:16:f0:74:91:cd:a7:70:a3:d5:c6:73:ad:82:e4:a4:b3: db:6f:31:b9:03:42:11:c9:6b:1e:db:4c:b3:e6:76:39:0d:4d: 5a:3d:72:4c:22:a1:53:92:79:40:4e:0a:28:50:89:94:c5:2b: 18:0a:77:ac:c0:87:e9:dc:53:97:db:ab:15:00:6b:7e:8b:2c: 24:33:fc:58:5e:24:24:1c:3e:5f:7b:39:18:72:cb:3e:3f:6a: 6b:bd:52:ff:71:7b:02:c5:9a:cc:33:65:36:79:67:af:3e:f7: 16:e7:1b:f0:26:f4:16:9d:28:7f:59:c1:a4:76:92:31:5a:50: 2c:83:3c:d8:41:b9:25:7c:92:2b:e0:2f:28:1a:ab:aa:90:89: 83:0b:d9:df -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICV2gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEFF NENGNzhCNDlERjBCMkMxRDI5RDMyRTQ4QTk0M0FFNEY0MUFDQzAeFw0yNTA5MDgw NDMzMjRaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDVBQ0E1QUU2MTAzRTg0 OTgzNDVCQ0JBQkQ0N0E0NDNBQzA5M0MyNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDb8PloUplqqg8dKO/WMgBLS1vguLi5EbMB22E+Zl4pDZ0VYkil mo1W5K4s6NfHrfs3VqL3txdkvHXJhN9hJm2glNtgLdoJNkUo8dn/mE64bfl9MrTI 1cqYkgRw8/CYj2YCmG+N+UiYaBdLmdMWBEkRMvfbW469bI/pILcRsMVH+WmC6YTt jUYuo5B01TG89za5Jnc5uw/H4lkRg5vIQR1MzB9aE5m6mhtwnfFeiJnFcyPrw48L YfCN11SEWp+TWsMi+sB6DO67yTQ9ghhfUpaP4ekfTr5breWIYXmcIpEfZGJbbw4L yGqdNAMTVitfNrZ1T9J5Bq5n4H9ZRpxmLiK7AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUWspa5hA+hJg0W8ur1HpEOsCTwlowHwYDVR0jBBgwFoAUiuTPeLSd8LLB0p0y 5IqUOuT0GswwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTY2 My9pdVRQZUxTZDhMTEIwcDB5NUlxVU91VDBHc3cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2l1VFBlTFNkOExMQjBwMHk1SXFVT3VUMEdzdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2NjMvaXVUUGVMU2Q4TExC MHAweTVJcVVPdVQwR3N3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAII3J43Z1v0+LAEZRJmTBFLk2F+6ofoKSJ8v9fiR1z+MlHxG7l8MD+H59CYw LMjIvWP0E5Mw+plAt4gDjJzV5ZsY84DfOJMwWIAFdHkCJwHEdYmcVnBsSOtrmpL5 XO1yyCbgtbdl1apZAxEKtuTvFvB0kc2ncKPVxnOtguSks9tvMbkDQhHJax7bTLPm djkNTVo9ckwioVOSeUBOCihQiZTFKxgKd6zAh+ncU5fbqxUAa36LLCQz/FheJCQc Pl97ORhyyz4/amu9Uv9xewLFmswzZTZ5Z68+9xbnG/Am9BadKH9ZwaR2kjFaUCyD PNhBuSV8kivgLygaq6qQiYML2d8= -----END CERTIFICATE-----Generated at Mon Sep 8 05:59:31 2025 by rpki-client