$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft File: ngWjfokKtd79OHX80DVmocqs5DE.mft (raw, json) Hash identifier: j4YMkGK0U4F+IRkREkuoWnx2T3zbCFLEVDNi4dhsMlQ= Subject key identifier: AD:8F:28:FA:DC:90:41:A9:43:59:BD:9C:F1:BD:B2:90:21:9C:ED:12 Authority key identifier: 9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31 Certificate issuer: /CN=9E05A37E890AB5DEFD3875FCD03566A1CAACE431 Certificate serial: 3641 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft Manifest number: 3641 Signing time: Tue 03 Jun 2025 21:12:14 +0000 Manifest this update: Tue 03 Jun 2025 21:12:14 +0000 Manifest next update: Wed 04 Jun 2025 03:12:14 +0000 Files and hashes: 1: ngWjfokKtd79OHX80DVmocqs5DE.crl (hash: 9YS/FKApVA51SxUVRtSTi+//Toru0/aTqX9wBUqezME=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:12:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13889 (0x3641) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E05A37E890AB5DEFD3875FCD03566A1CAACE431 Validity Not Before: Jun 3 21:12:14 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=AD8F28FADC9041A94359BD9CF1BDB290219CED12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8d:88:29:7a:74:23:e7:4c:55:04:6f:43:93: 5f:d7:6a:33:25:f4:5a:82:55:02:13:a6:8f:d8:d1: 21:9a:46:f9:4f:51:ee:ec:4b:dd:59:3b:89:64:08: 1b:ed:36:0a:91:aa:28:a8:bb:f0:63:fc:6d:14:89: a2:39:6f:8b:dd:73:b1:87:1c:7a:c3:81:11:f2:43: fc:4c:8b:5b:c8:02:44:e1:04:57:0c:6d:86:1e:ee: 37:83:3c:44:ea:39:c6:86:5b:5c:5e:6b:29:85:8f: 4c:6b:60:7d:f2:7e:15:cb:b8:72:8a:e9:44:89:cd: 50:3d:8a:81:8c:14:13:f2:34:f3:10:fa:81:cb:f1: ee:1a:b6:2b:f2:21:d2:e6:b7:a7:45:67:62:e9:09: 26:f0:73:14:2a:85:a2:f7:0d:79:31:c4:c7:9a:e0: 63:01:eb:61:b7:9c:59:61:80:43:30:6f:51:52:dc: e9:11:ca:e0:b7:42:38:e9:fb:b6:53:79:15:51:e4: 04:50:f1:16:b5:ca:d5:f6:81:db:d4:41:c1:2d:c3: 0f:e4:08:5e:3a:4c:93:99:e8:4a:3a:b3:ef:df:bc: 31:cd:56:d8:15:cc:97:1c:b4:1e:2d:ab:70:e8:27: bb:8c:1b:21:fa:85:53:b2:b0:c4:3e:35:f7:00:08: b1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:8F:28:FA:DC:90:41:A9:43:59:BD:9C:F1:BD:B2:90:21:9C:ED:12 X509v3 Authority Key Identifier: keyid:9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:9f:8c:32:91:bf:e4:f7:5a:64:9e:a3:b5:cf:d7:6f:80:5b: 0d:21:d5:c8:28:b8:0a:2d:f4:22:71:71:64:0d:aa:9e:63:a0: 0a:73:f3:fc:b3:cb:d0:6d:28:92:7b:2f:fc:53:fb:c2:2c:7e: 53:17:a6:7d:79:21:5a:ca:72:7c:fd:89:b9:60:e2:ed:b7:cb: 28:ec:ea:8f:10:04:7f:5e:04:e3:09:69:4e:4c:18:7e:29:1d: 0a:51:65:08:38:ca:1a:ef:0d:1d:ef:3b:8d:0c:84:5a:e3:57: e9:b4:da:59:12:a1:51:1c:07:e9:ee:ae:c3:a2:12:ee:49:50: d7:55:52:02:12:66:3e:b5:ca:1e:bb:b4:e7:f3:d4:5f:5d:2f: 73:43:cc:2c:e7:47:13:55:ad:5f:d2:57:be:57:39:6a:ee:34: e0:e3:d3:23:24:fe:71:93:50:e8:68:fa:7d:19:96:ca:e8:21: 2d:17:3a:7f:21:8c:b1:02:0b:b5:fd:42:27:1c:b9:c2:4c:fb: c5:4f:0b:32:4b:46:61:b8:72:59:bf:3d:59:31:9f:a3:31:e3: b5:a0:99:77:80:9e:f5:b8:90:89:db:b7:ba:cd:32:35:a4:cf: 7e:f7:df:fd:0a:bb:91:74:fc:81:2d:38:25:4c:a7:28:cc:a3: 62:e3:42:eb -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICNkEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUw NUEzN0U4OTBBQjVERUZEMzg3NUZDRDAzNTY2QTFDQUFDRTQzMTAeFw0yNTA2MDMy MTEyMTRaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEFEOEYyOEZBREM5MDQx QTk0MzU5QkQ5Q0YxQkRCMjkwMjE5Q0VEMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsjYgpenQj50xVBG9Dk1/XajMl9FqCVQITpo/Y0SGaRvlPUe7s S91ZO4lkCBvtNgqRqiiou/Bj/G0UiaI5b4vdc7GHHHrDgRHyQ/xMi1vIAkThBFcM bYYe7jeDPETqOcaGW1xeaymFj0xrYH3yfhXLuHKK6USJzVA9ioGMFBPyNPMQ+oHL 8e4ativyIdLmt6dFZ2LpCSbwcxQqhaL3DXkxxMea4GMB62G3nFlhgEMwb1FS3OkR yuC3Qjjp+7ZTeRVR5ARQ8Ra1ytX2gdvUQcEtww/kCF46TJOZ6Eo6s+/fvDHNVtgV zJcctB4tq3DoJ7uMGyH6hVOysMQ+NfcACLGzAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUrY8o+tyQQalDWb2c8b2ykCGc7RIwHwYDVR0jBBgwFoAUngWjfokKtd79OHX8 0DVmocqs5DEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjAz OC9uZ1dqZm9rS3RkNzlPSFg4MERWbW9jcXM1REUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL25nV2pmb2tLdGQ3OU9IWDgwRFZtb2NxczVERS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIwMzgvbmdXamZva0t0ZDc5 T0hYODBEVm1vY3FzNURFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAHKfjDKRv+T3WmSeo7XP12+AWw0h1cgouAot9CJxcWQNqp5joApz8/yzy9Bt KJJ7L/xT+8IsflMXpn15IVrKcnz9iblg4u23yyjs6o8QBH9eBOMJaU5MGH4pHQpR ZQg4yhrvDR3vO40MhFrjV+m02lkSoVEcB+nursOiEu5JUNdVUgISZj61yh67tOfz 1F9dL3NDzCznRxNVrV/SV75XOWruNODj0yMk/nGTUOho+n0ZlsroIS0XOn8hjLEC C7X9QiccucJM+8VPCzJLRmG4clm/PVkxn6Mx47WgmXeAnvW4kInbt7rNMjWkz373 3/0Ku5F0/IEtOCVMpyjMo2LjQus= -----END CERTIFICATE-----Generated at Wed Jun 4 02:12:01 2025 by rpki-client