$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2329/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.mft File: 7BDJNFV1nGWdK7gZ-wf_cGPOzDI.mft (raw, json) Hash identifier: L5P5GbOJ3K6qYR0yTqhLPJasg7JHUU+//fOqdvXcQeo= Subject key identifier: 84:B2:46:AC:88:B2:39:A0:6B:33:57:4C:E0:F4:1B:77:81:94:AA:21 Authority key identifier: EC:10:C9:34:55:75:9C:65:9D:2B:B8:19:FB:07:FF:70:63:CE:CC:32 Certificate issuer: /CN=EC10C93455759C659D2BB819FB07FF7063CECC32 Certificate serial: 1ADE Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2329/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.mft Manifest number: 1AB5 Signing time: Fri 22 Nov 2024 15:22:59 +0000 Manifest this update: Fri 22 Nov 2024 15:22:59 +0000 Manifest next update: Fri 22 Nov 2024 21:22:59 +0000 Files and hashes: 1: 2t9z-mAVBAfPPjta5cdq-xdY6FY.roa (hash: NB7QEK3n7SM2IFPIg3WvdnreNxTMHdZ7cexpOwaBXGw=) 2: 7BDJNFV1nGWdK7gZ-wf_cGPOzDI.crl (hash: L00E8KFo49TWjDhGHZV49ahbeuQD0UPG/PMtfqxrKoI=) 3: 7hLQo2jX9sCx4Fq0JltJVYxjOow.roa (hash: nMwzMYWulxDRuoPlh6XOhLF1yaoXwBU9a7MPEggAXU0=) 4: BSmvnMNOKFcCngwVf7TyTYFVr80.roa (hash: U8NgkHDxIiXlsC3csGmrIN0QiPdqG65WxHtOBK1CNx0=) 5: HKDwIDf66kZXwr7Hy_Wozz5DkaQ.roa (hash: BxkGFBfhsfuKtO3KsG396l1v4jaB+QwE6DSsCxpvYAw=) 6: J09ozKdmxWT48Tw7uTHcz09CotE.roa (hash: 5b3Sbmg4DeAODQr8tBFfNxK31a866aETzDAqah4rt1Y=) 7: d-YM1Oi3snO_a5_MMsy2MffhMAY.roa (hash: T0pjqDRJHyF5oP/xDBqywS0+QNlw467EiTmLkconLYI=) 8: gjWiTT_VQ2bn68fGawe6oIO2_S0.roa (hash: BkWsHeV1KDkEmsUKsFm/vFyb5VqZw0273JHoxzP0Nzs=) 9: j2eVOi1H3uOhaKDcCnTLkO8eHkk.roa (hash: zHUSjYsIau0oh7ZtB5HOh94PQFNlz6j6OG8d8VtvHyg=) 10: pugquLUFYSpvquhYJRnfd5T-40o.roa (hash: MF5Aa2usxIQ9qrkn2IP9kOBp1jIR+DfOSs7h0UPQGcg=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2329/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2329/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 19:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6878 (0x1ade) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EC10C93455759C659D2BB819FB07FF7063CECC32 Validity Not Before: Nov 22 15:22:59 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=84B246AC88B239A06B33574CE0F41B778194AA21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d4:83:33:f7:e8:35:66:fc:41:d5:38:bf:41: 50:d3:bc:85:e9:5e:f3:30:72:7e:b2:f6:ee:16:86: 9f:78:74:fe:c0:32:1b:6c:80:33:2f:38:7e:28:9e: b3:f8:13:f4:ee:0a:bc:9c:b6:65:ea:b6:61:2a:8d: 0f:f6:53:c3:ce:74:e5:24:43:1a:29:32:28:28:9d: d8:fe:11:6b:12:4c:d0:6b:e7:81:65:c3:d5:64:9f: f5:9e:0a:1e:66:94:09:c8:9f:2a:46:fb:1e:b3:22: be:84:dd:bd:ec:64:b7:2e:cf:c8:de:80:d9:f8:db: 6e:45:aa:93:98:ec:ec:31:2d:7d:38:c5:2c:02:08: fe:ca:c5:46:8e:ce:3c:9f:90:be:bc:f7:e5:0b:fe: d6:48:2c:22:90:ef:3c:fb:da:e3:6f:4c:09:0f:83: e6:d1:5c:cb:cd:75:30:88:3c:c6:04:1b:e0:c9:83: 51:79:ef:07:77:f8:81:13:b6:86:1f:80:d2:21:f8: 67:3a:0b:55:9f:d5:bc:93:9b:b6:45:c1:e8:b9:1f: 0d:8e:32:ce:f9:f9:b9:e7:2b:e1:72:14:8c:dc:b7: c0:90:02:fd:0f:5c:23:7d:ae:07:b9:8d:51:9d:0a: 4b:7c:c5:f7:ca:9e:a0:a1:96:ce:b3:34:46:80:6c: 12:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B2:46:AC:88:B2:39:A0:6B:33:57:4C:E0:F4:1B:77:81:94:AA:21 X509v3 Authority Key Identifier: keyid:EC:10:C9:34:55:75:9C:65:9D:2B:B8:19:FB:07:FF:70:63:CE:CC:32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2329/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2329/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:b7:d8:a3:0e:c0:e4:54:ae:04:a9:57:1b:6b:7e:9c:80:ff: 1d:b2:83:fd:66:66:da:5f:ef:e7:68:0b:8b:f5:18:de:01:34: b2:1e:6f:ba:70:bc:73:b1:d6:60:55:53:93:f1:40:a3:0c:9b: 01:c1:55:63:8c:f5:2a:8b:90:1d:e1:4d:45:c3:e3:e5:bf:12: 5b:45:ca:45:f4:1b:7a:d9:e6:0e:c2:d0:28:cf:95:7f:f2:71: e8:18:f5:b9:4d:f4:f6:13:10:7b:0b:d2:f3:d4:6b:13:b6:fa: 14:f4:c7:40:3b:a2:cc:41:de:2b:99:a1:fa:6d:c9:7f:54:1c: 4e:58:96:1c:35:fa:71:b3:ae:08:a7:84:0d:35:9e:22:36:19: 9e:6c:fc:9c:5e:56:c9:da:b7:a0:a7:52:e9:7f:04:23:16:d5: 6f:ad:78:19:70:c4:f2:ec:3c:ec:f6:aa:87:92:cf:7a:01:f7: 7f:82:f5:b0:3f:ce:bf:b5:00:2e:d1:c6:4a:8e:9b:48:d5:4f: 3d:93:81:55:06:9c:fe:23:73:11:3a:c2:3b:a6:e9:ba:95:5a: a4:b9:ae:5c:da:12:6f:d6:70:db:8e:e2:45:02:ec:31:cd:b8: 4e:b0:41:f3:2c:f4:a6:46:cc:02:3f:55:3d:58:86:9f:8b:67: 99:7e:88:1a -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICGt4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUMx MEM5MzQ1NTc1OUM2NTlEMkJCODE5RkIwN0ZGNzA2M0NFQ0MzMjAeFw0yNDExMjIx NTIyNTlaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDg0QjI0NkFDODhCMjM5 QTA2QjMzNTc0Q0UwRjQxQjc3ODE5NEFBMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCw1IMz9+g1ZvxB1Ti/QVDTvIXpXvMwcn6y9u4Whp94dP7AMhts gDMvOH4onrP4E/TuCryctmXqtmEqjQ/2U8POdOUkQxopMigondj+EWsSTNBr54Fl w9Vkn/WeCh5mlAnInypG+x6zIr6E3b3sZLcuz8jegNn4225FqpOY7OwxLX04xSwC CP7KxUaOzjyfkL689+UL/tZILCKQ7zz72uNvTAkPg+bRXMvNdTCIPMYEG+DJg1F5 7wd3+IETtoYfgNIh+Gc6C1Wf1byTm7ZFwei5Hw2OMs75+bnnK+FyFIzct8CQAv0P XCN9rge5jVGdCkt8xffKnqChls6zNEaAbBJ/AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUhLJGrIiyOaBrM1dM4PQbd4GUqiEwHwYDVR0jBBgwFoAU7BDJNFV1nGWdK7gZ +wf/cGPOzDIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjMy OS83QkRKTkZWMW5HV2RLN2daLXdmX2NHUE96REkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzdCREpORlYxbkdXZEs3Z1otd2ZfY0dQT3pESS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIzMjkvN0JESk5GVjFuR1dk SzdnWi13Zl9jR1BPekRJLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAEq32KMOwORUrgSpVxtrfpyA/x2yg/1mZtpf7+doC4v1GN4BNLIeb7pwvHOx 1mBVU5PxQKMMmwHBVWOM9SqLkB3hTUXD4+W/EltFykX0G3rZ5g7C0CjPlX/ycegY 9blN9PYTEHsL0vPUaxO2+hT0x0A7osxB3iuZofptyX9UHE5Ylhw1+nGzrginhA01 niI2GZ5s/JxeVsnat6CnUul/BCMW1W+teBlwxPLsPOz2qoeSz3oB93+C9bA/zr+1 AC7RxkqOm0jVTz2TgVUGnP4jcxE6wjum6bqVWqS5rlzaEm/WcNuO4kUC7DHNuE6w QfMs9KZGzAI/VT1Yhp+LZ5l+iBo= -----END CERTIFICATE-----Generated at Fri Nov 22 18:01:39 2024 by rpki-client on console-fra.rpki-client.org