$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2688/1JQPURo42VRNSLTFxsObBYH4kf4.mft File: 1JQPURo42VRNSLTFxsObBYH4kf4.mft (raw, json) Hash identifier: jktxhemqohBMCNkk9J780ErhLknCNp7K7UdcZI3VjT0= Subject key identifier: 14:AB:6B:DC:F1:DE:B6:17:49:DD:01:29:29:6C:74:EC:90:D5:45:97 Authority key identifier: D4:94:0F:51:1A:38:D9:54:4D:48:B4:C5:C6:C3:9B:05:81:F8:91:FE Certificate issuer: /CN=D4940F511A38D9544D48B4C5C6C39B0581F891FE Certificate serial: 25 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1JQPURo42VRNSLTFxsObBYH4kf4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2688/1JQPURo42VRNSLTFxsObBYH4kf4.mft Manifest number: 23 Signing time: Mon 08 Sep 2025 04:03:44 +0000 Manifest this update: Mon 08 Sep 2025 04:03:44 +0000 Manifest next update: Mon 08 Sep 2025 10:03:44 +0000 Files and hashes: 1: 1JQPURo42VRNSLTFxsObBYH4kf4.crl (hash: CdR75HnbHVYHBSJDuJjs9lkBkXA6eLfFvb/zcuDxuN8=) 2: XlNquY_uQ_6rZ2JhVM3vRqciRe8.roa (hash: i76OhCIwCGUrBdnZ6U6M1/woB4YGh0bDGaiEq4xZxAA=) 3: o0yhMvDIOHV-tmQVctXjhUcSRiI.roa (hash: SLL3IhXfo60djFS/eMKmcoL3aMmfcJgrvUvuHnpcZXg=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2688/1JQPURo42VRNSLTFxsObBYH4kf4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2688/1JQPURo42VRNSLTFxsObBYH4kf4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1JQPURo42VRNSLTFxsObBYH4kf4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 07:06:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4940F511A38D9544D48B4C5C6C39B0581F891FE Validity Not Before: Sep 8 04:03:44 2025 GMT Not After : Sep 2 00:41:26 2026 GMT Subject: CN=14AB6BDCF1DEB61749DD0129296C74EC90D54597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e8:68:2c:b2:b8:bc:c5:b5:48:c0:a1:a5:53: 9f:cd:0b:3c:dc:35:37:92:98:86:ac:f8:a1:a5:c5: 4a:2c:d0:75:56:67:8b:bc:33:ed:9a:28:d5:16:83: ef:b0:a5:10:c1:44:98:da:c5:c0:75:ec:ed:72:f2: ce:1f:3f:23:0e:e6:a8:8e:88:ed:9a:62:30:f9:93: 4f:48:b2:8f:68:48:69:ad:c5:c8:f0:de:dd:60:19: e5:26:c7:52:54:f9:1f:31:43:12:1f:25:0c:53:0a: e8:16:c7:0b:30:67:70:d9:d0:a0:74:3e:df:fe:51: 1e:e9:1f:2b:20:a2:0e:89:18:ad:53:ec:08:0f:7f: 67:74:05:81:b5:11:8c:d3:8f:fa:d8:93:cb:61:5d: f0:a5:47:44:4b:5a:b0:25:5e:93:63:79:3c:51:cd: 3d:54:2d:1e:c6:4c:f5:11:65:65:95:b1:7b:9d:c7: 63:bd:ae:ec:11:16:fd:8a:30:ed:3c:8d:6f:3b:69: 56:d4:a2:c0:5a:a9:a8:13:ef:c5:36:22:86:71:65: 31:16:9b:2d:a1:29:d0:9f:46:b4:1c:be:0b:8a:05: d0:45:05:d4:52:62:a0:5d:96:af:ee:e6:e6:3d:51: 7d:b3:0e:67:82:3b:20:cc:ac:c2:fb:a8:36:36:2a: b2:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:AB:6B:DC:F1:DE:B6:17:49:DD:01:29:29:6C:74:EC:90:D5:45:97 X509v3 Authority Key Identifier: keyid:D4:94:0F:51:1A:38:D9:54:4D:48:B4:C5:C6:C3:9B:05:81:F8:91:FE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2688/1JQPURo42VRNSLTFxsObBYH4kf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1JQPURo42VRNSLTFxsObBYH4kf4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2688/1JQPURo42VRNSLTFxsObBYH4kf4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:c0:a8:c8:80:ad:77:50:a6:d4:05:bf:ff:9e:bc:f9:a1:1f: 75:1c:6f:81:2c:6d:87:ff:cf:3b:13:97:bb:2d:d1:3a:e1:71: 52:68:b8:48:ec:9b:6a:a4:78:d1:d4:c3:66:1e:27:ee:32:34: 3b:11:b6:21:e1:25:e4:58:2a:87:d6:ec:9a:d0:11:b6:d3:d9: 8c:98:c5:c5:b2:8e:58:f1:13:4f:92:0d:14:0c:5e:61:18:ce: 72:63:74:a8:c2:56:37:64:1e:3f:b8:a1:11:d2:75:07:18:0f: 15:45:62:ec:8a:3a:7f:f3:4c:20:d3:b3:35:e6:9d:72:37:c4: a0:6e:05:f8:76:84:de:fa:9a:e4:23:d3:8a:46:56:59:61:5b: 08:35:b6:60:b9:72:0f:85:6e:9d:d1:c5:14:c5:ec:03:51:ab: 6b:4d:9e:de:b2:24:08:9b:be:e8:80:0c:23:32:9a:cc:50:5a: b6:c6:cf:c2:78:fa:17:ae:f6:e8:59:3b:9b:23:f7:c1:57:1e: 13:6f:84:15:45:02:59:2b:f4:07:78:77:c7:26:a8:c9:6f:41: e2:88:d2:ad:c4:61:d2:4c:a4:81:cd:7a:6e:3b:ed:64:6e:84: 8d:05:3e:41:b3:9b:ed:0e:80:fd:fc:a5:c1:7d:99:22:39:a1: 30:67:44:fe -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgIBJTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENDk0 MEY1MTFBMzhEOTU0NEQ0OEI0QzVDNkMzOUIwNTgxRjg5MUZFMB4XDTI1MDkwODA0 MDM0NFoXDTI2MDkwMjAwNDEyNlowMzExMC8GA1UEAxMoMTRBQjZCRENGMURFQjYx NzQ5REQwMTI5Mjk2Qzc0RUM5MEQ1NDU5NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMHoaCyyuLzFtUjAoaVTn80LPNw1N5KYhqz4oaXFSizQdVZni7wz 7Zoo1RaD77ClEMFEmNrFwHXs7XLyzh8/Iw7mqI6I7ZpiMPmTT0iyj2hIaa3FyPDe 3WAZ5SbHUlT5HzFDEh8lDFMK6BbHCzBncNnQoHQ+3/5RHukfKyCiDokYrVPsCA9/ Z3QFgbURjNOP+tiTy2Fd8KVHREtasCVek2N5PFHNPVQtHsZM9RFlZZWxe53HY72u 7BEW/Yow7TyNbztpVtSiwFqpqBPvxTYihnFlMRabLaEp0J9GtBy+C4oF0EUF1FJi oF2Wr+7m5j1RfbMOZ4I7IMyswvuoNjYqss8CAwEAAaOCAgwwggIIMB0GA1UdDgQW BBQUq2vc8d62F0ndASkpbHTskNVFlzAfBgNVHSMEGDAWgBTUlA9RGjjZVE1ItMXG w5sFgfiR/jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNjg4 LzFKUVBVUm80MlZSTlNMVEZ4c09iQllINGtmNC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvMUpRUFVSbzQyVlJOU0xURnhzT2JCWUg0a2Y0LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY4OC8xSlFQVVJvNDJWUk5T TFRGeHNPYkJZSDRrZjQubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFsCoyICtd1Cm1AW//568+aEfdRxvgSxth//POxOXuy3ROuFxUmi4SOybaqR4 0dTDZh4n7jI0OxG2IeEl5Fgqh9bsmtARttPZjJjFxbKOWPETT5INFAxeYRjOcmN0 qMJWN2QeP7ihEdJ1BxgPFUVi7Io6f/NMINOzNeadcjfEoG4F+HaE3vqa5CPTikZW WWFbCDW2YLlyD4VundHFFMXsA1Gra02e3rIkCJu+6IAMIzKazFBatsbPwnj6F672 6Fk7myP3wVceE2+EFUUCWSv0B3h3xyaoyW9B4ojSrcRh0kykgc16bjvtZG6EjQU+ QbOb7Q6A/fylwX2ZIjmhMGdE/g== -----END CERTIFICATE-----Generated at Mon Sep 8 06:00:21 2025 by rpki-client