$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft File: fPRMBtXqffDL1PaFCPFOhNoIt1I.mft (raw, json) Hash identifier: bbTOvwDyuhlf7Cfm4/P45zKkwMyIv/0X5mL8mnQI1+c= Subject key identifier: 7C:23:A7:76:81:71:4E:FB:35:C9:01:DA:63:0F:2C:52:5E:FE:19:BF Authority key identifier: 7C:F4:4C:06:D5:EA:7D:F0:CB:D4:F6:85:08:F1:4E:84:DA:08:B7:52 Certificate issuer: /CN=7CF44C06D5EA7DF0CBD4F68508F14E84DA08B752 Certificate serial: 1694 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fPRMBtXqffDL1PaFCPFOhNoIt1I.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft Manifest number: 168F Signing time: Tue 03 Jun 2025 21:15:10 +0000 Manifest this update: Tue 03 Jun 2025 21:15:10 +0000 Manifest next update: Wed 04 Jun 2025 03:15:10 +0000 Files and hashes: 1: OYh5JEj0uWuUFwdKjB10pF76_pI.roa (hash: An6u7oH3sagNhBru0T5ojCoKJVfFfrmJ66mlx7PcbhI=) 2: fPRMBtXqffDL1PaFCPFOhNoIt1I.crl (hash: 6ZMqnSD027TLYytWovUDn6Sh77dNYnOhWW4pKOIJ+Bg=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fPRMBtXqffDL1PaFCPFOhNoIt1I.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5780 (0x1694) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CF44C06D5EA7DF0CBD4F68508F14E84DA08B752 Validity Not Before: Jun 3 21:15:10 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=7C23A77681714EFB35C901DA630F2C525EFE19BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:2a:bb:7b:59:64:df:24:f6:6c:eb:bb:11:8a: b8:10:c4:dc:0b:39:e9:39:6c:d6:f4:fe:8e:d2:6e: e7:2d:e0:8d:d1:3e:30:0e:e9:e9:40:0f:13:58:9a: 69:08:05:09:2f:da:e8:f6:ad:0c:58:f4:89:f1:ca: 1d:29:f9:c3:d9:7f:c6:67:52:8e:67:28:ac:e3:d8: 38:37:9d:d0:40:be:39:4c:d1:d0:16:c4:e8:ef:c9: be:0c:de:94:15:2f:53:6a:a7:3a:00:77:42:a3:19: af:82:30:ff:13:d5:ad:8d:1e:56:28:9f:59:a7:74: 5d:f8:3c:7e:c9:cf:96:8d:f7:12:24:92:e7:5d:da: 7a:86:6c:c4:44:4e:34:4c:12:22:b8:ae:6b:4f:21: 78:f5:ca:31:5f:72:7c:2d:16:ae:01:e0:b5:f1:52: ae:78:6d:ac:46:c0:99:f9:ea:79:13:92:fa:7f:3e: 3b:d6:b1:98:50:b4:d0:4d:24:f2:1d:87:61:f9:75: 25:cc:b7:5f:cc:c7:a8:38:03:d3:32:d6:7a:73:37: e7:d2:db:ab:8a:b2:86:aa:9f:8d:c0:b6:f4:6e:cf: 8d:8f:3c:69:99:b6:07:1d:af:c5:23:e0:a2:01:63: df:7a:72:b4:89:b0:38:aa:e4:f5:97:12:29:1d:f1: 07:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:23:A7:76:81:71:4E:FB:35:C9:01:DA:63:0F:2C:52:5E:FE:19:BF X509v3 Authority Key Identifier: keyid:7C:F4:4C:06:D5:EA:7D:F0:CB:D4:F6:85:08:F1:4E:84:DA:08:B7:52 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fPRMBtXqffDL1PaFCPFOhNoIt1I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:26:77:c7:a9:b7:83:95:6e:47:3c:00:ee:89:d1:5b:64:88: ab:a7:3b:a4:22:13:67:00:ea:a5:d6:43:01:ac:d9:e8:86:a8: ab:63:2f:01:8e:af:b6:31:2b:92:6e:e6:2a:65:2f:76:c8:5d: 0f:e5:e2:7b:d9:d2:d5:09:1b:14:af:42:c8:2c:86:10:16:86: bd:4d:94:f7:45:ac:41:a9:e4:e6:69:c5:99:58:f1:b6:cb:99: 52:16:3e:3a:8b:a6:8a:0b:e6:cc:84:8b:13:f1:29:98:98:b4: 62:f7:ca:16:8d:d8:9a:68:33:42:db:33:68:4e:db:bc:1d:ea: df:4d:72:5b:48:8b:da:35:fa:bb:ae:ce:be:8c:b6:9f:8f:ae: ec:46:89:25:ad:c6:5c:f1:dc:72:e4:c6:f3:7c:64:ed:15:25: 92:61:1f:98:ba:96:b4:0c:7f:05:6c:2d:31:2a:d1:40:03:d2: a0:59:be:af:da:1c:4d:d4:ee:7d:8b:95:15:cb:89:7b:08:cf: 9e:77:69:1a:c0:e7:70:b1:8e:33:9e:af:46:8b:50:00:df:d7: 68:11:1c:a6:55:48:c4:34:b0:81:eb:42:f8:f3:9a:2c:8a:66: 32:72:45:4a:b9:1b:2b:56:5c:b4:1a:63:f6:b5:76:26:77:8a: 0b:77:26:d7 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICFpQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0NG NDRDMDZENUVBN0RGMENCRDRGNjg1MDhGMTRFODREQTA4Qjc1MjAeFw0yNTA2MDMy MTE1MTBaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDdDMjNBNzc2ODE3MTRF RkIzNUM5MDFEQTYzMEYyQzUyNUVGRTE5QkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDuKrt7WWTfJPZs67sRirgQxNwLOek5bNb0/o7Sbuct4I3RPjAO 6elADxNYmmkIBQkv2uj2rQxY9Inxyh0p+cPZf8ZnUo5nKKzj2Dg3ndBAvjlM0dAW xOjvyb4M3pQVL1NqpzoAd0KjGa+CMP8T1a2NHlYon1mndF34PH7Jz5aN9xIkkudd 2nqGbMRETjRMEiK4rmtPIXj1yjFfcnwtFq4B4LXxUq54baxGwJn56nkTkvp/PjvW sZhQtNBNJPIdh2H5dSXMt1/Mx6g4A9My1npzN+fS26uKsoaqn43AtvRuz42PPGmZ tgcdr8Uj4KIBY996crSJsDiq5PWXEikd8QdHAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUfCOndoFxTvs1yQHaYw8sUl7+Gb8wHwYDVR0jBBgwFoAUfPRMBtXqffDL1PaF CPFOhNoIt1IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjU3 OC9mUFJNQnRYcWZmREwxUGFGQ1BGT2hOb0l0MUkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2ZQUk1CdFhxZmZETDFQYUZDUEZPaE5vSXQxSS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI1NzgvZlBSTUJ0WHFmZkRM MVBhRkNQRk9oTm9JdDFJLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAEUmd8ept4OVbkc8AO6J0VtkiKunO6QiE2cA6qXWQwGs2eiGqKtjLwGOr7Yx K5Ju5iplL3bIXQ/l4nvZ0tUJGxSvQsgshhAWhr1NlPdFrEGp5OZpxZlY8bbLmVIW PjqLpooL5syEixPxKZiYtGL3yhaN2JpoM0LbM2hO27wd6t9NcltIi9o1+ruuzr6M tp+PruxGiSWtxlzx3HLkxvN8ZO0VJZJhH5i6lrQMfwVsLTEq0UAD0qBZvq/aHE3U 7n2LlRXLiXsIz553aRrA53CxjjOer0aLUADf12gRHKZVSMQ0sIHrQvjzmiyKZjJy RUq5GytWXLQaY/a1diZ3igt3Jtc= -----END CERTIFICATE-----Generated at Wed Jun 4 00:57:01 2025 by rpki-client