$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.mft File: kIQDi2b0UmxBx2aNFCjNIrM_vng.mft (raw, json) Hash identifier: qhaKjuRu9q4JITA0KG9ImHH45gqvjS5rXJN3YUgS9/A= Subject key identifier: 56:8C:CE:B4:B1:41:9C:6C:D2:B3:58:86:1A:C5:BE:2D:44:30:92:2C Authority key identifier: 90:84:03:8B:66:F4:52:6C:41:C7:66:8D:14:28:CD:22:B3:3F:BE:78 Certificate issuer: /CN=9084038B66F4526C41C7668D1428CD22B33FBE78 Certificate serial: 10B2 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kIQDi2b0UmxBx2aNFCjNIrM_vng.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.mft Manifest number: 10AF Signing time: Fri 22 Nov 2024 10:22:00 +0000 Manifest this update: Fri 22 Nov 2024 10:22:00 +0000 Manifest next update: Fri 22 Nov 2024 16:22:00 +0000 Files and hashes: 1: 1eAS7-hUU41CTNzjdXn_5f-4mfk.roa (hash: TJcoDrqM0c5Y89PzjxvrShrvCZeh2y3C8O6Py8QtCZI=) 2: kIQDi2b0UmxBx2aNFCjNIrM_vng.crl (hash: 8gI4Sdqh956TEpmdvO/NEBJwwIOGXRhY/MxcDUs2TOw=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kIQDi2b0UmxBx2aNFCjNIrM_vng.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4274 (0x10b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9084038B66F4526C41C7668D1428CD22B33FBE78 Validity Not Before: Nov 22 10:22:00 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=568CCEB4B1419C6CD2B358861AC5BE2D4430922C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f4:66:ea:ce:41:dc:81:61:5a:19:48:b8:2e: aa:34:54:2f:d4:cf:5b:0f:7b:a6:82:83:36:2c:ba: 72:f5:92:c1:f8:f1:62:9b:72:0c:a8:a2:15:f1:da: e8:a8:6b:d7:81:3c:27:66:69:ff:54:1e:ef:ee:1b: a2:90:c5:84:b1:2a:a0:d4:f9:62:3d:4f:e3:f8:ed: b3:a9:84:8f:77:3d:58:cc:16:c7:cd:fd:fc:9e:52: d8:ae:51:02:4a:8c:b8:e8:eb:ab:1e:21:5a:8e:10: 05:4e:9d:2b:29:4a:b6:de:7a:f1:0f:7e:9f:bc:3e: 4a:34:f3:fe:93:29:9c:e5:62:85:6f:58:ae:6c:61: f7:b1:e5:2d:6b:85:c2:3c:00:ea:e1:8d:42:4a:47: 3d:b3:b8:76:7e:b0:5e:68:a5:19:be:f5:12:27:30: ee:08:3d:39:84:b5:a0:7c:fc:d9:c9:85:63:95:a2: 92:04:cb:eb:35:d1:69:6d:7b:d2:5e:b8:f3:3a:1d: d8:85:c0:3a:db:7c:92:8f:fa:f2:6b:65:76:9b:15: dd:f6:22:f8:2e:1a:c9:39:7f:c5:a5:90:3c:ba:a7: a0:b3:3a:a0:ff:8b:4c:a6:1f:02:5e:a4:18:ac:04: ea:1c:57:9e:38:f5:e8:72:ea:46:ae:39:3b:4a:b1: 50:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:8C:CE:B4:B1:41:9C:6C:D2:B3:58:86:1A:C5:BE:2D:44:30:92:2C X509v3 Authority Key Identifier: keyid:90:84:03:8B:66:F4:52:6C:41:C7:66:8D:14:28:CD:22:B3:3F:BE:78 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kIQDi2b0UmxBx2aNFCjNIrM_vng.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:87:38:04:da:de:76:32:e4:11:aa:d6:9e:3e:0d:f1:3a:77: 79:70:82:5d:e5:ae:c1:39:2e:63:af:b1:f5:be:b8:a4:a0:09: b3:ae:7b:cc:f8:1f:05:00:68:77:29:77:8f:ac:7a:c0:2f:d7: 15:82:b3:a5:32:52:d2:f2:53:df:b9:2a:e6:a0:72:64:d0:3e: 8a:99:18:f1:17:f2:73:b2:12:88:55:97:5f:db:64:28:ba:83: 37:fd:5f:c2:39:c2:50:c4:d2:8a:56:2c:83:09:18:53:79:67: e0:09:74:31:b8:49:f6:f7:ce:29:88:0c:a1:11:38:14:07:b4: 33:bd:a3:74:1e:1e:99:7b:8b:a0:04:56:59:5c:db:d9:70:0e: 52:c2:85:3f:a2:d8:86:80:30:ad:76:24:ad:45:6c:8b:ea:7f: ab:65:f1:38:6e:51:49:1a:e0:59:ae:26:2f:f7:70:36:3e:ee: ef:10:7c:45:4a:f0:d0:58:42:76:bc:c2:e6:03:5a:da:ae:7f: da:c1:f8:bc:b8:d7:6b:7a:97:f7:5b:7f:fb:d8:95:4e:5c:40: 2e:16:a7:e5:1e:1c:5d:e9:48:e7:2b:c8:1d:18:c5:a0:29:06: 59:9f:41:7d:91:24:d7:c6:e3:8c:fd:9e:e2:3d:e3:17:db:8e: 3a:ba:c2:ac -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICELIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTA4 NDAzOEI2NkY0NTI2QzQxQzc2NjhEMTQyOENEMjJCMzNGQkU3ODAeFw0yNDExMjIx MDIyMDBaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDU2OENDRUI0QjE0MTlD NkNEMkIzNTg4NjFBQzVCRTJENDQzMDkyMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCm9GbqzkHcgWFaGUi4Lqo0VC/Uz1sPe6aCgzYsunL1ksH48WKb cgyoohXx2uioa9eBPCdmaf9UHu/uG6KQxYSxKqDU+WI9T+P47bOphI93PVjMFsfN /fyeUtiuUQJKjLjo66seIVqOEAVOnSspSrbeevEPfp+8Pko08/6TKZzlYoVvWK5s Yfex5S1rhcI8AOrhjUJKRz2zuHZ+sF5opRm+9RInMO4IPTmEtaB8/NnJhWOVopIE y+s10Wlte9JeuPM6HdiFwDrbfJKP+vJrZXabFd32IvguGsk5f8WlkDy6p6CzOqD/ i0ymHwJepBisBOocV5449ehy6kauOTtKsVA3AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUVozOtLFBnGzSs1iGGsW+LUQwkiwwHwYDVR0jBBgwFoAUkIQDi2b0UmxBx2aN FCjNIrM/vngwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjI5 Mi9rSVFEaTJiMFVteEJ4MmFORkNqTklyTV92bmcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2tJUURpMmIwVW14QngyYU5GQ2pOSXJNX3ZuZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIyOTIva0lRRGkyYjBVbXhC eDJhTkZDak5Jck1fdm5nLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBACSHOATa3nYy5BGq1p4+DfE6d3lwgl3lrsE5LmOvsfW+uKSgCbOue8z4HwUA aHcpd4+sesAv1xWCs6UyUtLyU9+5KuagcmTQPoqZGPEX8nOyEohVl1/bZCi6gzf9 X8I5wlDE0opWLIMJGFN5Z+AJdDG4Sfb3zimIDKEROBQHtDO9o3QeHpl7i6AEVllc 29lwDlLChT+i2IaAMK12JK1FbIvqf6tl8ThuUUka4FmuJi/3cDY+7u8QfEVK8NBY Qna8wuYDWtquf9rB+Ly412t6l/dbf/vYlU5cQC4Wp+UeHF3pSOcryB0YxaApBlmf QX2RJNfG44z9nuI94xfbjjq6wqw= -----END CERTIFICATE-----Generated at Fri Nov 22 14:30:51 2024 by rpki-client on console-ams.rpki-client.org