$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft File: 1xHsDTeBWKRHb-bqfXClSpUZWhE.mft (raw, json) Hash identifier: iUYXmN2E3wBDPg4/sH+q4jP1GmVodFE5qJlo3ZCpWgg= Subject key identifier: DE:FE:8D:12:0E:20:39:ED:ED:40:36:20:CD:C7:B9:A6:CB:AC:2E:D1 Authority key identifier: D7:11:EC:0D:37:81:58:A4:47:6F:E6:EA:7D:70:A5:4A:95:19:5A:11 Certificate issuer: /CN=A9162E3D0000/serialNumber=D711EC0D378158A4476FE6EA7D70A54A95195A11 Certificate serial: 3401 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft Manifest number: 32DC Signing time: Wed 08 May 2024 01:00:50 +0000 Manifest this update: Wed 08 May 2024 01:00:50 +0000 Manifest next update: Wed 08 May 2024 07:00:50 +0000 Files and hashes: 1: -b4zQsn-jbYuLzt5mzMMzeP-DAQ.cer (hash: UqXee78NRSop6Q/K2voITx0b9CmuEVtUSl/QqghErNo=) 2: -owMyhaYvyIusPXJ1jDjlZgfj2Q.cer (hash: MkPjSI0lYPJHDr0GutXZYkPfcgNIAE8fTCUcRRgffH0=) 3: 1xHsDTeBWKRHb-bqfXClSpUZWhE.crl (hash: rM8EXL1cCC4aqlAhccd+a8A00pVWRnYwtp98K+PPzBM=) 4: 3MTV8l8-ospnw9i-tmvzCTPlkWo.cer (hash: j3XUSyeDfRfheAnDNXd9uQ1OzQ9AzI3s7krhG4ODeAI=) 5: 5s9GyFg2VMtp4t_DroPdwUXkkyo.cer (hash: m7H+8G293vOXYCrfVBy1kTCqHkG6O9QkTtBdisVxI+o=) 6: 8eEYZjFmXucC71BAp9J-rFDMXf0.cer (hash: 3YJJg+BafC85tqqjK9Awu3iFFamv11rMZPqLjjsjEEc=) 7: HgmeBebBoQHvBXkS-8Ez8XDe4Kc.cer (hash: AZh9X8RCfBU/bdlbcTckmu4D43TtozunSeu5/y8FDZI=) 8: IdyHWWXCumHR2su0je4UBVSqWu8.cer (hash: pqq3+h5jO5TLJajdtlrvuHjdFPRzUzV7b/ZlArRc+Rc=) 9: LKOQ4ngFUOROwDWYCC4ZlUdN8vs.cer (hash: NGEAybi9mT5ES1qVo3OVoZw4SZOAITKo1+1LQ5/fdRw=) 10: N3Z104GJWPsoPxmxJ8mVg1G0Vh4.cer (hash: hsGYqXQt1/fr3rko6qhA73W3/ZopRjytyiPq6WGxC4s=) 11: NJtamVn9EvndSwGEz41q1msimH4.cer (hash: GNGR9X2cYtLiebUrHqGkxGPRpo+73A2SgqR9CxYZKLI=) 12: O9PjKvOv0JXELXIXKlnGWfMty-c.cer (hash: e5/uUJeNOonekpIxl3w4KXnn77ijUmPGZu6C7G0iipI=) 13: OstT3inBC2LxfO9hjR44QUU6wOg.cer (hash: PQc1knKdR9BikPqiAxV+AdEqInpMFdOrAftFh0p58wQ=) 14: PCDtT5rXgpNWMjM6hYTw4iScTPk.cer (hash: 8mCcfuYbisal/+jXi8v7AJuC1QO4u50unh7y19S56P4=) 15: RyhixVmBCWIZpgbgCB1D16Iarxw.cer (hash: arn+JS1JOT6da39aqoa9xHlsLzA+AYvFMc2UyDhHNQs=) 16: TnhsicjML72c4lQNmb4SziD2uLM.cer (hash: fBaYShyW1L+nDOASxuIrl7eoYRGqrD1ClCgHCR7+FrY=) 17: _63I3WE2bNhNmVIbY4OA6LUC5uQ.cer (hash: 0IL6oPFuYiyuns+QOiDbPTOHlerR090sAb9ImZtnpi4=) 18: aKDPmms080wyohTyM89mbhBEwAI.cer (hash: AEqWjlQhUPTCBXMKAhoafHPwKGzePy2ASPuIL0iBZso=) 19: b-E6pVVIlBKyiSJnpJ2uxEaTpqs.cer (hash: KwMjQvGvdzEXh8JSFpYPSKX7SSyv5DkAcjNZMe9j7OE=) 20: ewmQZr0q8jQpPIeRezOxq4YZcO8.cer (hash: CJPJ0W2+QKMw/j1wAio0Eix8+M+AqdKwY5et5AMndnE=) 21: fqAJFXsfPqY8WYHIemo7xFXhcd0.cer (hash: jNArh1Hk3+FgtqWVkJvYOUggg9Rjc0UqQ1H9QSq/ob4=) 22: gZQTSW-NG4qcKpMSrCzZAljzOwY.cer (hash: u23lxDhUdxwoRmXnxst7j/jvhyDrfaaX2vGTSBii9Gk=) 23: jKUFZzApbEGdb3sKeKTpEenwOXY.cer (hash: nCkg7KFfJedwVNCk8o2kuV47UZxhTSNnIYwYnAjbB6M=) 24: kHfnsK9YD3j-AQaZ-g24EH4Ybwc.cer (hash: 9XaKi6cS25fvcJOAcVHPxFIl5mkrTWl52wpT54N9Yjo=) 25: kPMOHfMn0QOQfxvgjtPqZL-3eOM.cer (hash: KTe5SAQnwvEBHsIngjVncH9YbpjowF3QroNop5ps4bg=) 26: kyJKXF8ZT3ppLYvrg_4sgV33P6E.cer (hash: JdkFrUYUF19atKRRdULVRSr+9TjR7MKWaJLjRkBpNds=) 27: n2FqH-9ETrX-pbjXOI8opMzn528.cer (hash: XRX+13lN3u7iRFnqEuMNW5zZ+K7Xk042MnYCqh2YyKk=) 28: nLvcfdaWZoc5BMwxZuPrC0W0KJA.cer (hash: 8HwuRQKp1jH3LwkVM0k5MWM1VXfb7oJqJnbPDK5Pdrg=) 29: tS8PP_c3H_HOnYI-lUn8EVixaio.cer (hash: CrcPEtx6LPLx9C5TqRCTIRdE3bpXsF3OnH6AMwe2qFY=) 30: tWGZILjL08qnMy3Uu5GM4uZcmlI.cer (hash: kiej4knzLdU9EboYyn+65N6ahstJ4596bmw32CKrs/4=) 31: vMAGgVZFL5mzQ1jfeKpFJEqmayE.cer (hash: GPAHgzI9jQL0pIOOVr3DO1hc0vv8PY0EiZcM3RzNxGM=) 32: w2lZ9ie_P5SuFVwQLnPbHAf73Xg.cer (hash: r5E23m0VTkP6zxX6p/v3LFjfdmqO/nXrjfDMEjaBOZ4=) 33: wdMSkWOPSkBAzT1S3sP_K5cJxfI.cer (hash: QdHZ4h/Fruj9p5NTYrNBPzsJNuBjIT9zzVM9mglz3hY=) 34: xuX5wWRNY_ogamb_ZxfB0RoqMC0.cer (hash: KuCwJg3hoRSzF+6xL6p2Z3qj+HZoFVIMuXEwjk/Jotk=) 35: zBtg6j6uZjJNZkoP-s-_dYid_qE.cer (hash: fbMlmyJz4uR9YInSrdwNmCGQCdQNOreBQ9ZcipqFATs=) 36: zgqcsCk3tX3OZqF_uEIW16vnZDQ.cer (hash: 19lr6JL4RfpZASG7e5weto3oCLpOvfMAM7l5UGCAOvs=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 07:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13313 (0x3401) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000/serialNumber=D711EC0D378158A4476FE6EA7D70A54A95195A11 Validity Not Before: May 8 01:00:50 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=DEFE8D120E2039EDED403620CDC7B9A6CBAC2ED1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:75:b5:cb:94:9f:20:dc:c4:96:62:1b:07:cc: a6:69:4e:5a:dc:27:40:69:45:24:b7:4e:76:7f:60: 38:ab:56:3d:19:a4:72:8c:8b:c1:c9:00:90:6c:aa: d2:db:e9:21:3d:6c:77:8a:94:43:6a:d7:ab:34:59: 46:77:45:55:8d:2b:9f:88:ba:f3:49:c7:03:28:a7: f0:3e:64:74:65:0e:7e:40:45:87:a5:09:1a:60:39: 6f:ad:f5:0a:fa:80:e8:56:9a:02:b9:b3:13:0d:19: 61:9a:af:4a:09:40:98:ce:66:c9:0e:0b:9f:e6:60: 2c:aa:af:c0:ca:77:0e:21:1b:c5:38:e0:78:ee:c2: 58:51:45:f8:7f:59:43:74:e3:82:ac:de:50:55:53: aa:13:a7:6e:22:53:25:a3:5b:d2:c6:24:cb:07:24: 07:27:8f:1f:d4:72:fe:bc:f7:4e:05:ed:a9:9d:7b: ac:df:8a:5b:34:94:2f:2c:84:ee:15:59:d2:13:4e: cf:d3:cc:ce:f6:e4:44:ad:22:79:81:64:90:f4:c1: 72:b0:1a:06:2a:bc:8a:e5:03:1c:01:07:b9:36:c6: 9f:9d:75:6a:ab:66:77:71:cf:e9:da:89:83:c2:7c: 1c:24:3c:37:a6:53:4b:36:1d:83:79:2a:87:fc:4a: 70:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:FE:8D:12:0E:20:39:ED:ED:40:36:20:CD:C7:B9:A6:CB:AC:2E:D1 X509v3 Authority Key Identifier: keyid:D7:11:EC:0D:37:81:58:A4:47:6F:E6:EA:7D:70:A5:4A:95:19:5A:11 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:a0:b3:24:87:65:25:ed:f2:25:43:b3:e4:aa:00:65:df:19: 04:bb:bc:56:10:81:21:5f:6d:f8:05:b8:2f:13:19:d3:36:6e: 61:6a:10:45:b2:3e:0a:09:7b:10:a0:0f:0f:fc:e6:b0:8b:03: 83:f8:55:bb:1f:c0:d1:0a:c3:44:70:a4:16:4a:73:26:b2:7b: 9c:af:d7:ec:f6:46:96:bb:13:df:13:52:66:70:35:d0:5f:a1: 7a:40:ed:f5:da:ae:cd:57:97:ea:e4:6b:09:df:d8:2c:46:4b: 36:ac:ec:e0:c2:eb:4d:87:8e:ae:1a:ee:c0:b0:37:7f:14:9c: 7e:ce:54:a4:ce:47:38:10:ed:83:8c:7d:bb:51:b2:61:ae:f8: c4:66:cd:40:5a:77:e5:e2:9c:9c:2e:6c:5e:43:63:61:96:3e: 73:d9:b5:26:aa:0c:5c:bc:c2:94:99:63:2d:9d:30:e8:16:7e: 5b:f9:cf:80:6d:d9:84:d9:cc:83:66:18:1a:8b:a9:ca:fb:70: 87:c3:94:8d:19:ac:55:9d:d5:62:dc:a0:87:b2:38:09:87:12: e2:f7:74:a0:51:3c:2c:7c:80:3e:a9:f3:2f:14:4e:59:d7:37: 02:7a:f0:c4:77:95:5d:d9:70:de:96:37:1c:b7:3a:38:08:d6: 68:a1:36:f2 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgICNAEwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx NjJFM0QwMDAwMTEwLwYDVQQFEyhENzExRUMwRDM3ODE1OEE0NDc2RkU2RUE3RDcw QTU0QTk1MTk1QTExMB4XDTI0MDUwODAxMDA1MFoXDTI0MDkzMDAwMDAwMFowMzEx MC8GA1UEAxMoREVGRThEMTIwRTIwMzlFREVENDAzNjIwQ0RDN0I5QTZDQkFDMkVE MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOh1tcuUnyDcxJZiGwfM pmlOWtwnQGlFJLdOdn9gOKtWPRmkcoyLwckAkGyq0tvpIT1sd4qUQ2rXqzRZRndF VY0rn4i680nHAyin8D5kdGUOfkBFh6UJGmA5b631CvqA6FaaArmzEw0ZYZqvSglA mM5myQ4Ln+ZgLKqvwMp3DiEbxTjgeO7CWFFF+H9ZQ3TjgqzeUFVTqhOnbiJTJaNb 0sYkywckByePH9Ry/rz3TgXtqZ17rN+KWzSULyyE7hVZ0hNOz9PMzvbkRK0ieYFk kPTBcrAaBiq8iuUDHAEHuTbGn511aqtmd3HP6dqJg8J8HCQ8N6ZTSzYdg3kqh/xK cPUCAwEAAaOCAh0wggIZMB0GA1UdDgQWBBTe/o0SDiA57e1ANiDNx7mmy6wu0TAf BgNVHSMEGDAWgBTXEewNN4FYpEdv5up9cKVKlRlaETAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFgGA1UdHwRRME8wTaBLoEmGR3JzeW5jOi8vcnBraS5jbm5pYy5j bi9ycGtpL0E5MTYyRTNEMDAwMC8xeEhzRFRlQldLUkhiLWJxZlhDbFNwVVpXaEUu Y3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFw bmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQx RkYyLzF4SHNEVGVCV0tSSGItYnFmWENsU3BVWldoRS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGYBggrBgEFBQcBCwSBizCBiDBTBggrBgEFBQcwC4ZHcnN5bmM6Ly9ycGtp LmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzF4SHNEVGVCV0tSSGItYnFmWENs U3BVWldoRS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5pYy5jbi9y cmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcB BwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBxoLMk h2Ul7fIlQ7PkqgBl3xkEu7xWEIEhX234BbgvExnTNm5hahBFsj4KCXsQoA8P/Oaw iwOD+FW7H8DRCsNEcKQWSnMmsnucr9fs9kaWuxPfE1JmcDXQX6F6QO312q7NV5fq 5GsJ39gsRks2rOzgwutNh46uGu7AsDd/FJx+zlSkzkc4EO2DjH27UbJhrvjEZs1A Wnfl4pycLmxeQ2Nhlj5z2bUmqgxcvMKUmWMtnTDoFn5b+c+AbdmE2cyDZhgai6nK +3CHw5SNGaxVndVi3KCHsjgJhxLi93SgUTwsfIA+qfMvFE5Z1zcCevDEd5Vd2XDe ljcctzo4CNZooTby -----END CERTIFICATE-----Generated at Wed May 8 02:23:11 2024 by rpki-client on console-ams.rpki-client.org