$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.mft File: jj4CcULGM9VlmEGN9t68Ab3YAIw.mft (raw, json) Hash identifier: omrb/71aGppa3wYGxZytqRerimGV4CJJ/8Mx2DfmrAk= Subject key identifier: CD:0D:A4:34:76:61:96:21:68:38:80:26:EA:89:66:59:95:64:31:6C Authority key identifier: 8E:3E:02:71:42:C6:33:D5:65:98:41:8D:F6:DE:BC:01:BD:D8:00:8C Certificate issuer: /CN=8E3E027142C633D56598418DF6DEBC01BDD8008C Certificate serial: 118D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/jj4CcULGM9VlmEGN9t68Ab3YAIw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.mft Manifest number: 1187 Signing time: Fri 22 Nov 2024 15:22:32 +0000 Manifest this update: Fri 22 Nov 2024 15:22:32 +0000 Manifest next update: Fri 22 Nov 2024 21:22:32 +0000 Files and hashes: 1: 26JAN-CElFZXYfD9eWMpt46Gbz8.roa (hash: xzkwQv0+G7HmRZAd1+89vnRwG4dxt5kBbRUn0y8Ts6I=) 2: P_zn1bBIrBUhyvji1gbHOKtVhNc.roa (hash: R5ICvkhVFgRwlrgIYz/MhUorH6qql94PSSGMt2HSZGg=) 3: jj4CcULGM9VlmEGN9t68Ab3YAIw.crl (hash: yKpPU4hHWVAx7o7PXX67GK1hQ2aDpt9HvBkp/bbmgsQ=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/jj4CcULGM9VlmEGN9t68Ab3YAIw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 19:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4493 (0x118d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E3E027142C633D56598418DF6DEBC01BDD8008C Validity Not Before: Nov 22 15:22:32 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=CD0DA4347661962168388026EA8966599564316C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2c:1c:56:12:f8:80:bf:f0:c2:fd:a7:4d:2d: 16:9e:1d:4d:9e:3e:08:a2:38:57:36:91:63:3d:f1: e4:5b:44:e8:9e:e7:a7:79:48:59:02:ec:34:53:6b: ac:59:7f:70:4b:62:43:fa:08:97:27:12:4f:31:13: e9:1a:eb:49:15:35:eb:7f:75:7c:2e:98:23:ed:f4: 7c:15:ec:81:50:d2:bb:63:2b:70:f6:af:ce:34:eb: 88:fe:46:f2:d3:9f:fa:3c:f2:96:6b:31:26:5a:f4: c3:7f:19:06:92:95:ae:2c:ac:5e:eb:77:b4:c8:1b: 26:15:84:ec:8e:f0:a9:48:25:5f:d9:46:3a:16:42: 8d:5f:aa:ef:04:6f:2d:5b:7d:68:ea:0f:44:48:d5: d1:db:ff:ce:07:3f:7b:65:09:55:7b:b2:2f:b0:be: 55:97:02:ef:2e:a3:8b:f0:01:87:57:38:a8:24:bf: b9:5f:65:23:4a:7d:56:3b:b2:3d:71:04:31:d5:74: dd:c0:b1:12:81:8f:82:50:8d:5f:3e:50:d6:f6:18: b4:66:f1:27:d9:90:62:79:c2:c1:0b:d5:d9:7c:20: 12:0c:b6:5b:ce:6f:6c:8a:c9:0e:c4:db:18:65:53: d6:17:a0:aa:da:28:8e:d2:25:62:50:bd:0e:51:20: 0e:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:0D:A4:34:76:61:96:21:68:38:80:26:EA:89:66:59:95:64:31:6C X509v3 Authority Key Identifier: keyid:8E:3E:02:71:42:C6:33:D5:65:98:41:8D:F6:DE:BC:01:BD:D8:00:8C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/jj4CcULGM9VlmEGN9t68Ab3YAIw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:f0:28:e3:41:0a:a6:98:7f:7b:53:a2:4b:67:a3:a3:26:c0: 5b:99:48:40:85:cd:b3:bd:8c:c4:57:4c:52:7f:c3:96:93:45: 3c:d1:67:cc:3f:57:22:3a:4a:40:f9:bc:8b:95:d1:a9:3a:6c: 18:fe:86:49:b4:f1:5e:53:20:e2:c0:55:b1:d2:04:ab:04:5f: 70:d5:43:94:28:fc:62:d1:74:ed:72:be:3e:91:c5:9c:50:8f: 8f:65:b1:1b:af:5b:b1:35:d8:1a:85:31:ae:68:45:25:a8:20: 00:ce:1f:ea:78:c1:22:62:98:2e:d8:04:b8:56:ef:fe:7e:13: 05:3b:ed:7b:65:3e:67:3b:04:0f:9d:0a:48:41:24:ad:08:77: c3:3e:db:f2:c9:b3:74:17:71:72:82:39:4e:55:de:26:b3:c5: 9a:b9:97:f6:e5:7d:0a:9d:24:79:e9:02:55:f5:ed:c3:72:9b: b6:d6:e6:13:b1:99:55:97:de:65:a0:88:eb:ca:9d:51:54:fb: ff:0c:e7:af:5e:db:22:ba:75:97:d5:79:8f:fa:24:ec:cb:b3: 6f:0c:a9:c5:00:fb:25:f8:af:37:ba:15:90:8a:3f:5e:c5:90: 25:27:3b:4b:42:28:29:f6:b6:e7:e6:5c:05:15:d4:32:66:1e: 46:ef:88:eb -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICEY0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEUz RTAyNzE0MkM2MzNENTY1OTg0MThERjZERUJDMDFCREQ4MDA4QzAeFw0yNDExMjIx NTIyMzJaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKENEMERBNDM0NzY2MTk2 MjE2ODM4ODAyNkVBODk2NjU5OTU2NDMxNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsLBxWEviAv/DC/adNLRaeHU2ePgiiOFc2kWM98eRbROie56d5 SFkC7DRTa6xZf3BLYkP6CJcnEk8xE+ka60kVNet/dXwumCPt9HwV7IFQ0rtjK3D2 r84064j+RvLTn/o88pZrMSZa9MN/GQaSla4srF7rd7TIGyYVhOyO8KlIJV/ZRjoW Qo1fqu8Eby1bfWjqD0RI1dHb/84HP3tlCVV7si+wvlWXAu8uo4vwAYdXOKgkv7lf ZSNKfVY7sj1xBDHVdN3AsRKBj4JQjV8+UNb2GLRm8SfZkGJ5wsEL1dl8IBIMtlvO b2yKyQ7E2xhlU9YXoKraKI7SJWJQvQ5RIA6FAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUzQ2kNHZhliFoOIAm6olmWZVkMWwwHwYDVR0jBBgwFoAUjj4CcULGM9VlmEGN 9t68Ab3YAIwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcz OC9qajRDY1VMR005VmxtRUdOOXQ2OEFiM1lBSXcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2pqNENjVUxHTTlWbG1FR045dDY4QWIzWUFJdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3Mzgvamo0Q2NVTEdNOVZs bUVHTjl0NjhBYjNZQUl3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAEjwKONBCqaYf3tToktno6MmwFuZSECFzbO9jMRXTFJ/w5aTRTzRZ8w/VyI6 SkD5vIuV0ak6bBj+hkm08V5TIOLAVbHSBKsEX3DVQ5Qo/GLRdO1yvj6RxZxQj49l sRuvW7E12BqFMa5oRSWoIADOH+p4wSJimC7YBLhW7/5+EwU77XtlPmc7BA+dCkhB JK0Id8M+2/LJs3QXcXKCOU5V3iazxZq5l/blfQqdJHnpAlX17cNym7bW5hOxmVWX 3mWgiOvKnVFU+/8M569e2yK6dZfVeY/6JOzLs28MqcUA+yX4rze6FZCKP17FkCUn O0tCKCn2tufmXAUV1DJmHkbviOs= -----END CERTIFICATE-----Generated at Fri Nov 22 18:01:39 2024 by rpki-client on console-fra.rpki-client.org