$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft File: ngWjfokKtd79OHX80DVmocqs5DE.mft (raw, json) Hash identifier: PwJc5Hn64SmWN+cScD+TUypnXNPHKQ7CQCsvGRE1A/g= Subject key identifier: AD:8F:28:FA:DC:90:41:A9:43:59:BD:9C:F1:BD:B2:90:21:9C:ED:12 Authority key identifier: 9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31 Certificate issuer: /CN=9E05A37E890AB5DEFD3875FCD03566A1CAACE431 Certificate serial: 3819 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft Manifest number: 3819 Signing time: Mon 08 Sep 2025 04:05:15 +0000 Manifest this update: Mon 08 Sep 2025 04:05:15 +0000 Manifest next update: Mon 08 Sep 2025 10:05:15 +0000 Files and hashes: 1: ngWjfokKtd79OHX80DVmocqs5DE.crl (hash: oYrn1Kv8jfZ5v/hx4fo8Hv124kdgHyqy3Ux99NmCbII=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 07:06:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14361 (0x3819) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E05A37E890AB5DEFD3875FCD03566A1CAACE431 Validity Not Before: Sep 8 04:05:15 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=AD8F28FADC9041A94359BD9CF1BDB290219CED12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8d:88:29:7a:74:23:e7:4c:55:04:6f:43:93: 5f:d7:6a:33:25:f4:5a:82:55:02:13:a6:8f:d8:d1: 21:9a:46:f9:4f:51:ee:ec:4b:dd:59:3b:89:64:08: 1b:ed:36:0a:91:aa:28:a8:bb:f0:63:fc:6d:14:89: a2:39:6f:8b:dd:73:b1:87:1c:7a:c3:81:11:f2:43: fc:4c:8b:5b:c8:02:44:e1:04:57:0c:6d:86:1e:ee: 37:83:3c:44:ea:39:c6:86:5b:5c:5e:6b:29:85:8f: 4c:6b:60:7d:f2:7e:15:cb:b8:72:8a:e9:44:89:cd: 50:3d:8a:81:8c:14:13:f2:34:f3:10:fa:81:cb:f1: ee:1a:b6:2b:f2:21:d2:e6:b7:a7:45:67:62:e9:09: 26:f0:73:14:2a:85:a2:f7:0d:79:31:c4:c7:9a:e0: 63:01:eb:61:b7:9c:59:61:80:43:30:6f:51:52:dc: e9:11:ca:e0:b7:42:38:e9:fb:b6:53:79:15:51:e4: 04:50:f1:16:b5:ca:d5:f6:81:db:d4:41:c1:2d:c3: 0f:e4:08:5e:3a:4c:93:99:e8:4a:3a:b3:ef:df:bc: 31:cd:56:d8:15:cc:97:1c:b4:1e:2d:ab:70:e8:27: bb:8c:1b:21:fa:85:53:b2:b0:c4:3e:35:f7:00:08: b1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:8F:28:FA:DC:90:41:A9:43:59:BD:9C:F1:BD:B2:90:21:9C:ED:12 X509v3 Authority Key Identifier: keyid:9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:cb:1c:5e:24:e8:34:ba:0c:35:85:b2:36:d1:8c:05:76:9c: 5f:9e:dd:6c:10:c6:da:d8:c2:61:a3:b0:c9:95:5e:af:59:a0: 7a:24:b7:c9:f0:7a:01:a7:2d:46:b1:0f:66:86:16:ab:34:4e: c6:9e:8b:a8:fe:a8:50:72:c4:69:66:28:57:c9:74:a9:a5:db: 1b:6e:06:ee:ef:e7:ff:fe:20:46:ec:1d:6e:e9:67:c6:c6:6b: 23:c8:1f:3b:f0:73:b0:f2:0d:c3:66:00:2a:b2:fe:dc:5e:1e: 07:ce:69:43:87:e1:9a:f1:8b:c0:46:f2:6b:fd:e6:d0:45:a2: d0:1e:53:14:56:91:b8:4e:d7:b6:bc:a8:cd:bd:1f:c3:0b:22: 82:ba:27:d2:f3:e6:6f:15:85:4d:9f:75:f5:c3:ab:92:9c:16: ea:75:ac:67:7b:d7:c2:f1:a8:ac:40:b6:3a:43:57:9c:df:7c: 26:bd:36:86:b9:70:2d:82:ec:cc:81:61:78:13:38:14:29:82: 96:21:ad:6f:4f:9c:c4:b9:f3:5d:c1:05:03:dc:c5:65:d4:82: d3:d5:13:fa:fe:4a:4b:a2:07:cd:c9:c5:68:d9:27:b4:72:c3: a1:fa:15:fc:d8:ca:f1:b3:22:e3:e6:7d:39:9f:42:74:5b:b1: 39:d9:3a:8c -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICOBkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUw NUEzN0U4OTBBQjVERUZEMzg3NUZDRDAzNTY2QTFDQUFDRTQzMTAeFw0yNTA5MDgw NDA1MTVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEFEOEYyOEZBREM5MDQx QTk0MzU5QkQ5Q0YxQkRCMjkwMjE5Q0VEMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsjYgpenQj50xVBG9Dk1/XajMl9FqCVQITpo/Y0SGaRvlPUe7s S91ZO4lkCBvtNgqRqiiou/Bj/G0UiaI5b4vdc7GHHHrDgRHyQ/xMi1vIAkThBFcM bYYe7jeDPETqOcaGW1xeaymFj0xrYH3yfhXLuHKK6USJzVA9ioGMFBPyNPMQ+oHL 8e4ativyIdLmt6dFZ2LpCSbwcxQqhaL3DXkxxMea4GMB62G3nFlhgEMwb1FS3OkR yuC3Qjjp+7ZTeRVR5ARQ8Ra1ytX2gdvUQcEtww/kCF46TJOZ6Eo6s+/fvDHNVtgV zJcctB4tq3DoJ7uMGyH6hVOysMQ+NfcACLGzAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUrY8o+tyQQalDWb2c8b2ykCGc7RIwHwYDVR0jBBgwFoAUngWjfokKtd79OHX8 0DVmocqs5DEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjAz OC9uZ1dqZm9rS3RkNzlPSFg4MERWbW9jcXM1REUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL25nV2pmb2tLdGQ3OU9IWDgwRFZtb2NxczVERS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIwMzgvbmdXamZva0t0ZDc5 T0hYODBEVm1vY3FzNURFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAIbLHF4k6DS6DDWFsjbRjAV2nF+e3WwQxtrYwmGjsMmVXq9ZoHokt8nwegGn LUaxD2aGFqs0Tsaei6j+qFByxGlmKFfJdKml2xtuBu7v5//+IEbsHW7pZ8bGayPI Hzvwc7DyDcNmACqy/txeHgfOaUOH4Zrxi8BG8mv95tBFotAeUxRWkbhO17a8qM29 H8MLIoK6J9Lz5m8VhU2fdfXDq5KcFup1rGd718LxqKxAtjpDV5zffCa9Noa5cC2C 7MyBYXgTOBQpgpYhrW9PnMS5813BBQPcxWXUgtPVE/r+SkuiB83JxWjZJ7Ryw6H6 FfzYyvGzIuPmfTmfQnRbsTnZOow= -----END CERTIFICATE-----Generated at Mon Sep 8 06:17:12 2025 by rpki-client