$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.mft File: kIQDi2b0UmxBx2aNFCjNIrM_vng.mft (raw, json) Hash identifier: wkU5zrrYrIX6AM6aee8u8vJYLJUSscevLlfhFySMoss= Subject key identifier: 56:8C:CE:B4:B1:41:9C:6C:D2:B3:58:86:1A:C5:BE:2D:44:30:92:2C Authority key identifier: 90:84:03:8B:66:F4:52:6C:41:C7:66:8D:14:28:CD:22:B3:3F:BE:78 Certificate issuer: /CN=9084038B66F4526C41C7668D1428CD22B33FBE78 Certificate serial: 0D12 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kIQDi2b0UmxBx2aNFCjNIrM_vng.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.mft Manifest number: 0D10 Signing time: Tue 21 May 2024 11:23:50 +0000 Manifest this update: Tue 21 May 2024 11:23:50 +0000 Manifest next update: Tue 21 May 2024 17:23:50 +0000 Files and hashes: 1: kIQDi2b0UmxBx2aNFCjNIrM_vng.crl (hash: 1KYORYFX5Msvs9B/DtJ2iCbH7c+r1hmy7j44qfD2Hcs=) 2: logUXtFfJPDLAdmPfgBY-hH8HXs.roa (hash: yESiK6QZQaiNnZGjeAzh3xBTo04O42ubTX56rHYGSlo=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kIQDi2b0UmxBx2aNFCjNIrM_vng.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 14:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3346 (0xd12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9084038B66F4526C41C7668D1428CD22B33FBE78 Validity Not Before: May 21 11:23:50 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=568CCEB4B1419C6CD2B358861AC5BE2D4430922C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f4:66:ea:ce:41:dc:81:61:5a:19:48:b8:2e: aa:34:54:2f:d4:cf:5b:0f:7b:a6:82:83:36:2c:ba: 72:f5:92:c1:f8:f1:62:9b:72:0c:a8:a2:15:f1:da: e8:a8:6b:d7:81:3c:27:66:69:ff:54:1e:ef:ee:1b: a2:90:c5:84:b1:2a:a0:d4:f9:62:3d:4f:e3:f8:ed: b3:a9:84:8f:77:3d:58:cc:16:c7:cd:fd:fc:9e:52: d8:ae:51:02:4a:8c:b8:e8:eb:ab:1e:21:5a:8e:10: 05:4e:9d:2b:29:4a:b6:de:7a:f1:0f:7e:9f:bc:3e: 4a:34:f3:fe:93:29:9c:e5:62:85:6f:58:ae:6c:61: f7:b1:e5:2d:6b:85:c2:3c:00:ea:e1:8d:42:4a:47: 3d:b3:b8:76:7e:b0:5e:68:a5:19:be:f5:12:27:30: ee:08:3d:39:84:b5:a0:7c:fc:d9:c9:85:63:95:a2: 92:04:cb:eb:35:d1:69:6d:7b:d2:5e:b8:f3:3a:1d: d8:85:c0:3a:db:7c:92:8f:fa:f2:6b:65:76:9b:15: dd:f6:22:f8:2e:1a:c9:39:7f:c5:a5:90:3c:ba:a7: a0:b3:3a:a0:ff:8b:4c:a6:1f:02:5e:a4:18:ac:04: ea:1c:57:9e:38:f5:e8:72:ea:46:ae:39:3b:4a:b1: 50:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:8C:CE:B4:B1:41:9C:6C:D2:B3:58:86:1A:C5:BE:2D:44:30:92:2C X509v3 Authority Key Identifier: keyid:90:84:03:8B:66:F4:52:6C:41:C7:66:8D:14:28:CD:22:B3:3F:BE:78 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kIQDi2b0UmxBx2aNFCjNIrM_vng.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:cc:eb:74:ef:dc:f1:fb:73:10:3a:eb:d9:d9:10:af:96:25: 4a:a0:5d:eb:72:ce:6b:ad:f9:cb:78:e3:8d:86:7e:88:13:33: c5:f3:c4:ce:63:d5:7f:13:e3:a3:f8:6f:2d:63:73:08:09:b3: c9:b2:a8:8e:32:36:2b:22:13:39:72:d6:d2:59:42:a2:bd:e5: 7e:10:3b:3e:65:55:61:93:1a:ee:1d:85:75:03:b9:2c:81:90: a7:ef:cc:13:a1:48:e0:3e:e1:ae:b0:0b:96:e8:61:bd:41:83: f5:67:ac:e7:03:d3:ef:fd:4b:93:28:0f:dc:0a:73:7c:5b:77: 3b:e4:44:ba:69:26:1c:e8:53:3d:dd:e9:73:8a:9b:b5:0b:f9: 64:24:7d:ad:04:d6:4e:99:b7:74:6d:f0:8d:1d:42:2a:ba:6e: 86:20:9e:3e:eb:24:21:47:c5:e5:f7:a6:f4:7c:10:aa:a8:d1: 23:55:8e:4b:71:34:c5:01:3b:ae:4f:ed:6a:8c:cf:a0:ff:7c: df:65:a4:6a:46:aa:c6:ec:1c:3b:4e:00:41:ed:8c:5b:f5:36: c0:33:93:ae:a1:c8:c8:fa:10:00:b0:b7:49:44:d8:6d:74:3c: 58:11:3c:ad:53:bf:9a:08:ab:e7:a5:c5:34:cc:97:40:8e:2c: ea:bd:57:06 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICDRIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTA4 NDAzOEI2NkY0NTI2QzQxQzc2NjhEMTQyOENEMjJCMzNGQkU3ODAeFw0yNDA1MjEx MTIzNTBaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDU2OENDRUI0QjE0MTlD NkNEMkIzNTg4NjFBQzVCRTJENDQzMDkyMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCm9GbqzkHcgWFaGUi4Lqo0VC/Uz1sPe6aCgzYsunL1ksH48WKb cgyoohXx2uioa9eBPCdmaf9UHu/uG6KQxYSxKqDU+WI9T+P47bOphI93PVjMFsfN /fyeUtiuUQJKjLjo66seIVqOEAVOnSspSrbeevEPfp+8Pko08/6TKZzlYoVvWK5s Yfex5S1rhcI8AOrhjUJKRz2zuHZ+sF5opRm+9RInMO4IPTmEtaB8/NnJhWOVopIE y+s10Wlte9JeuPM6HdiFwDrbfJKP+vJrZXabFd32IvguGsk5f8WlkDy6p6CzOqD/ i0ymHwJepBisBOocV5449ehy6kauOTtKsVA3AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUVozOtLFBnGzSs1iGGsW+LUQwkiwwHwYDVR0jBBgwFoAUkIQDi2b0UmxBx2aN FCjNIrM/vngwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjI5 Mi9rSVFEaTJiMFVteEJ4MmFORkNqTklyTV92bmcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2tJUURpMmIwVW14QngyYU5GQ2pOSXJNX3ZuZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIyOTIva0lRRGkyYjBVbXhC eDJhTkZDak5Jck1fdm5nLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAKLM63Tv3PH7cxA669nZEK+WJUqgXetyzmut+ct4442GfogTM8XzxM5j1X8T 46P4by1jcwgJs8myqI4yNisiEzly1tJZQqK95X4QOz5lVWGTGu4dhXUDuSyBkKfv zBOhSOA+4a6wC5boYb1Bg/VnrOcD0+/9S5MoD9wKc3xbdzvkRLppJhzoUz3d6XOK m7UL+WQkfa0E1k6Zt3Rt8I0dQiq6boYgnj7rJCFHxeX3pvR8EKqo0SNVjktxNMUB O65P7WqMz6D/fN9lpGpGqsbsHDtOAEHtjFv1NsAzk66hyMj6EACwt0lE2G10PFgR PK1Tv5oIq+elxTTMl0COLOq9VwY= -----END CERTIFICATE-----Generated at Tue May 21 13:20:14 2024 by rpki-client on console-ams.rpki-client.org