$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft File: ngWjfokKtd79OHX80DVmocqs5DE.mft (raw, json) Hash identifier: x1Ef9pvo7R7Wy2gYO1RpIXOK88Zl7Hx8bgnVvWvRgQk= Subject key identifier: AD:8F:28:FA:DC:90:41:A9:43:59:BD:9C:F1:BD:B2:90:21:9C:ED:12 Authority key identifier: 9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31 Certificate issuer: /CN=9E05A37E890AB5DEFD3875FCD03566A1CAACE431 Certificate serial: 3285 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft Manifest number: 3285 Signing time: Fri 22 Nov 2024 15:26:07 +0000 Manifest this update: Fri 22 Nov 2024 15:26:07 +0000 Manifest next update: Fri 22 Nov 2024 21:26:07 +0000 Files and hashes: 1: ngWjfokKtd79OHX80DVmocqs5DE.crl (hash: Rl+c/TE4XI0DX4TyjmKiqmSB+Qv4Zw6Bd8y9bvkdDtI=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 19:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12933 (0x3285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E05A37E890AB5DEFD3875FCD03566A1CAACE431 Validity Not Before: Nov 22 15:26:07 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=AD8F28FADC9041A94359BD9CF1BDB290219CED12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8d:88:29:7a:74:23:e7:4c:55:04:6f:43:93: 5f:d7:6a:33:25:f4:5a:82:55:02:13:a6:8f:d8:d1: 21:9a:46:f9:4f:51:ee:ec:4b:dd:59:3b:89:64:08: 1b:ed:36:0a:91:aa:28:a8:bb:f0:63:fc:6d:14:89: a2:39:6f:8b:dd:73:b1:87:1c:7a:c3:81:11:f2:43: fc:4c:8b:5b:c8:02:44:e1:04:57:0c:6d:86:1e:ee: 37:83:3c:44:ea:39:c6:86:5b:5c:5e:6b:29:85:8f: 4c:6b:60:7d:f2:7e:15:cb:b8:72:8a:e9:44:89:cd: 50:3d:8a:81:8c:14:13:f2:34:f3:10:fa:81:cb:f1: ee:1a:b6:2b:f2:21:d2:e6:b7:a7:45:67:62:e9:09: 26:f0:73:14:2a:85:a2:f7:0d:79:31:c4:c7:9a:e0: 63:01:eb:61:b7:9c:59:61:80:43:30:6f:51:52:dc: e9:11:ca:e0:b7:42:38:e9:fb:b6:53:79:15:51:e4: 04:50:f1:16:b5:ca:d5:f6:81:db:d4:41:c1:2d:c3: 0f:e4:08:5e:3a:4c:93:99:e8:4a:3a:b3:ef:df:bc: 31:cd:56:d8:15:cc:97:1c:b4:1e:2d:ab:70:e8:27: bb:8c:1b:21:fa:85:53:b2:b0:c4:3e:35:f7:00:08: b1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:8F:28:FA:DC:90:41:A9:43:59:BD:9C:F1:BD:B2:90:21:9C:ED:12 X509v3 Authority Key Identifier: keyid:9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:51:58:92:ce:c1:6a:29:9f:53:15:65:cc:6e:04:6a:72:c0: ba:57:86:5c:a6:fa:ff:57:4c:5a:10:fc:32:73:fe:b0:08:2c: af:6c:fe:f4:d2:68:b7:9d:10:7d:f3:61:02:9f:0a:a5:2c:61: 0d:94:bf:d8:c3:07:aa:9c:a6:e0:25:3a:87:c9:8a:09:83:39: 2c:ed:b6:3b:b6:45:60:c3:28:ed:9b:55:20:bc:11:c6:1f:19: 86:ea:7d:99:5a:37:be:4c:b4:07:41:a2:32:c8:00:9a:ae:5f: e5:50:c3:35:c6:59:e1:da:fd:21:c2:ec:46:46:c9:96:58:fe: 9a:8a:c1:ad:cc:07:2e:c8:06:46:54:52:24:6e:db:0d:21:76: d8:26:6a:54:3c:f0:aa:77:d9:8a:e0:04:37:c8:5f:aa:24:41: 2c:32:be:d3:d8:b9:e1:d6:09:2c:83:4e:88:55:cb:ce:e2:f9: e8:c2:be:5a:02:04:ed:17:28:9e:7c:c8:25:83:78:15:49:f3: 35:da:6b:c9:7d:d6:8e:c5:4f:7b:1e:1f:d8:4c:4b:32:b4:2a: 52:8b:4e:eb:cd:18:f4:30:b6:c3:73:0d:ae:79:b1:83:45:9b: 30:5e:a1:4a:23:28:a5:e0:54:d8:d4:88:e8:68:b3:9f:78:6b: ff:09:a3:cd -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICMoUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUw NUEzN0U4OTBBQjVERUZEMzg3NUZDRDAzNTY2QTFDQUFDRTQzMTAeFw0yNDExMjIx NTI2MDdaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEFEOEYyOEZBREM5MDQx QTk0MzU5QkQ5Q0YxQkRCMjkwMjE5Q0VEMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsjYgpenQj50xVBG9Dk1/XajMl9FqCVQITpo/Y0SGaRvlPUe7s S91ZO4lkCBvtNgqRqiiou/Bj/G0UiaI5b4vdc7GHHHrDgRHyQ/xMi1vIAkThBFcM bYYe7jeDPETqOcaGW1xeaymFj0xrYH3yfhXLuHKK6USJzVA9ioGMFBPyNPMQ+oHL 8e4ativyIdLmt6dFZ2LpCSbwcxQqhaL3DXkxxMea4GMB62G3nFlhgEMwb1FS3OkR yuC3Qjjp+7ZTeRVR5ARQ8Ra1ytX2gdvUQcEtww/kCF46TJOZ6Eo6s+/fvDHNVtgV zJcctB4tq3DoJ7uMGyH6hVOysMQ+NfcACLGzAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUrY8o+tyQQalDWb2c8b2ykCGc7RIwHwYDVR0jBBgwFoAUngWjfokKtd79OHX8 0DVmocqs5DEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjAz OC9uZ1dqZm9rS3RkNzlPSFg4MERWbW9jcXM1REUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL25nV2pmb2tLdGQ3OU9IWDgwRFZtb2NxczVERS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIwMzgvbmdXamZva0t0ZDc5 T0hYODBEVm1vY3FzNURFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBACNRWJLOwWopn1MVZcxuBGpywLpXhlym+v9XTFoQ/DJz/rAILK9s/vTSaLed EH3zYQKfCqUsYQ2Uv9jDB6qcpuAlOofJigmDOSzttju2RWDDKO2bVSC8EcYfGYbq fZlaN75MtAdBojLIAJquX+VQwzXGWeHa/SHC7EZGyZZY/pqKwa3MBy7IBkZUUiRu 2w0hdtgmalQ88Kp32YrgBDfIX6okQSwyvtPYueHWCSyDTohVy87i+ejCvloCBO0X KJ58yCWDeBVJ8zXaa8l91o7FT3seH9hMSzK0KlKLTuvNGPQwtsNzDa55sYNFmzBe oUojKKXgVNjUiOhos594a/8Jo80= -----END CERTIFICATE-----Generated at Fri Nov 22 18:01:39 2024 by rpki-client on console-fra.rpki-client.org