$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/27/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.mft File: nytoVL5wlH8Hhf-WYgO7ZQvdFoI.mft (raw, json) Hash identifier: Cx5eWrUQ4/J5Dgffg6f+UqDFteZWB47Vpr2vUO3bNBI= Subject key identifier: 16:3A:BB:E5:6F:10:2D:33:B9:0E:73:51:13:FE:62:30:9D:ED:5F:29 Authority key identifier: 9F:2B:68:54:BE:70:94:7F:07:85:FF:96:62:03:BB:65:0B:DD:16:82 Certificate issuer: /CN=9F2B6854BE70947F0785FF966203BB650BDD1682 Certificate serial: 0E59 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.mft Manifest number: 0E4E Signing time: Sun 02 Jun 2024 10:26:08 +0000 Manifest this update: Sun 02 Jun 2024 10:26:08 +0000 Manifest next update: Sun 02 Jun 2024 16:26:08 +0000 Files and hashes: 1: -0d9Ih2_4xrstIEFPLAr5YDyDWE.roa (hash: puWBp8oudYuH+BhgQnZwi091SZQ8sGEFcEdJYSj4y0Y=) 2: 7x2nclPCMO8BeUq4S_PlgUS4DBg.roa (hash: g0T92moQN5eb21VLNeF6X7atiXQvLL6ieycRhWgQCrs=) 3: nytoVL5wlH8Hhf-WYgO7ZQvdFoI.crl (hash: R66ZEyPa9EIFL8ufZY01OuIULQSQr7leimhLSLd4aKU=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 16:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3673 (0xe59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F2B6854BE70947F0785FF966203BB650BDD1682 Validity Not Before: Jun 2 10:26:08 2024 GMT Not After : Aug 10 07:41:13 2024 GMT Subject: CN=163ABBE56F102D33B90E735113FE62309DED5F29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:63:c7:d5:0c:b7:d9:a1:28:70:c6:c1:96:e7: 95:e0:64:80:f8:75:eb:1d:34:83:17:01:c1:81:bf: 0e:68:0d:18:46:12:9d:16:42:cb:d4:82:57:17:44: c0:70:6f:55:e1:2f:79:06:d4:c0:8b:34:4d:5c:35: 23:89:06:72:9c:3d:39:12:ea:49:67:e5:80:7a:58: 43:2a:0c:48:36:51:ce:28:83:33:52:29:be:5d:52: 62:4f:d0:03:77:86:96:e3:e5:28:c0:d1:6a:24:3f: 1b:8e:84:29:3f:e8:13:cc:f0:e4:f7:29:71:f3:cc: d6:e6:f1:3d:d4:d3:d0:4c:b5:8e:89:2f:d4:4f:dd: 62:01:10:ce:80:ad:f8:03:25:a0:c7:5a:aa:f8:06: fa:07:98:57:17:28:b4:20:6d:44:6c:28:e8:1e:b1: 22:78:ea:1a:7e:61:42:ec:9a:6e:04:54:ce:1f:f6: 24:1c:0f:6d:88:50:e3:14:3f:e3:66:11:fa:2a:c6: c8:e8:c8:64:9d:4b:24:40:c1:a8:72:61:ad:18:fc: 33:0e:92:14:d9:ce:0c:fd:87:f6:59:34:ea:16:2f: 48:83:93:c2:aa:2f:09:61:00:6b:56:d8:cc:25:0d: 30:89:c1:c5:f3:32:85:f0:1c:5e:da:d0:29:f2:ea: e7:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:3A:BB:E5:6F:10:2D:33:B9:0E:73:51:13:FE:62:30:9D:ED:5F:29 X509v3 Authority Key Identifier: keyid:9F:2B:68:54:BE:70:94:7F:07:85:FF:96:62:03:BB:65:0B:DD:16:82 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:b0:b5:50:28:3b:67:84:f0:67:a7:54:6f:07:19:ba:8a:52: 7f:86:62:ec:60:e7:d7:34:33:bf:fe:d9:8b:e8:c2:de:4a:f9: db:55:f5:23:37:d2:09:10:c1:01:63:cd:e8:a3:e1:fb:12:ef: c7:46:6f:e3:0e:46:29:cc:f8:22:bd:e5:75:12:3b:60:f5:ad: 8c:7b:57:5f:af:31:35:d6:96:33:52:6e:66:d7:aa:2f:1d:5a: c9:e8:6c:63:bb:b0:fb:b0:3d:10:da:80:9e:89:2a:7a:ff:35: aa:55:cc:77:79:71:f6:57:a2:6e:6c:01:1b:3a:e6:0a:90:1e: 55:d1:a1:ad:88:04:8e:ca:1c:2d:f7:7f:ad:6d:11:01:23:d1: 53:87:05:73:ba:9b:a7:5f:89:2f:58:ec:31:05:15:36:77:a0: 85:52:5d:e1:cc:f1:ca:da:69:6f:6b:bd:e8:3c:29:4b:1e:7d: 98:cb:c9:26:c8:1b:80:5f:09:2d:36:3d:37:8c:ec:78:f1:ab: 03:b1:7f:b8:f4:61:00:cb:e9:58:73:d5:cf:7a:29:11:b2:0d: a9:34:69:db:1a:72:a0:32:c4:6c:9a:09:3f:03:c3:99:d8:a2: 3d:93:91:dc:0d:51:89:72:4d:bc:d2:cf:7e:95:b8:19:1d:60: b7:71:cc:9d -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgICDlkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUYy QjY4NTRCRTcwOTQ3RjA3ODVGRjk2NjIwM0JCNjUwQkREMTY4MjAeFw0yNDA2MDIx MDI2MDhaFw0yNDA4MTAwNzQxMTNaMDMxMTAvBgNVBAMTKDE2M0FCQkU1NkYxMDJE MzNCOTBFNzM1MTEzRkU2MjMwOURFRDVGMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpY8fVDLfZoShwxsGW55XgZID4desdNIMXAcGBvw5oDRhGEp0W QsvUglcXRMBwb1XhL3kG1MCLNE1cNSOJBnKcPTkS6kln5YB6WEMqDEg2Uc4ogzNS Kb5dUmJP0AN3hpbj5SjA0WokPxuOhCk/6BPM8OT3KXHzzNbm8T3U09BMtY6JL9RP 3WIBEM6ArfgDJaDHWqr4BvoHmFcXKLQgbURsKOgesSJ46hp+YULsmm4EVM4f9iQc D22IUOMUP+NmEfoqxsjoyGSdSyRAwahyYa0Y/DMOkhTZzgz9h/ZZNOoWL0iDk8Kq LwlhAGtW2MwlDTCJwcXzMoXwHF7a0Cny6udtAgMBAAGjggIIMIICBDAdBgNVHQ4E FgQUFjq75W8QLTO5DnNRE/5iMJ3tXykwHwYDVR0jBBgwFoAUnytoVL5wlH8Hhf+W YgO7ZQvdFoIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcv bnl0b1ZMNXdsSDhIaGYtV1lnTzdaUXZkRm9JLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9ueXRvVkw1d2xIOEhoZi1XWWdPN1pRdmRGb0kuY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNy9ueXRvVkw1d2xIOEhoZi1X WWdPN1pRdmRGb0kubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYB BQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEA i7C1UCg7Z4TwZ6dUbwcZuopSf4Zi7GDn1zQzv/7Zi+jC3kr521X1IzfSCRDBAWPN 6KPh+xLvx0Zv4w5GKcz4Ir3ldRI7YPWtjHtXX68xNdaWM1JuZteqLx1ayehsY7uw +7A9ENqAnokqev81qlXMd3lx9leibmwBGzrmCpAeVdGhrYgEjsocLfd/rW0RASPR U4cFc7qbp1+JL1jsMQUVNneghVJd4czxytppb2u96DwpSx59mMvJJsgbgF8JLTY9 N4zsePGrA7F/uPRhAMvpWHPVz3opEbINqTRp2xpyoDLEbJoJPwPDmdiiPZOR3A1R iXJNvNLPfpW4GR1gt3HMnQ== -----END CERTIFICATE-----Generated at Sun Jun 2 12:47:01 2024 by rpki-client on console-ams.rpki-client.org