$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2785/3uCPUof2aTE85pkPEXQBsXmEiuE.mft File: 3uCPUof2aTE85pkPEXQBsXmEiuE.mft (raw, json) Hash identifier: 3UhVbdqSFPdwdsfgtKMV0bCc+NUT9c2nkOVEYwfP1YY= Subject key identifier: 73:76:0A:42:48:92:4B:44:02:2C:EF:E6:67:D6:9A:69:43:DA:A4:EA Authority key identifier: DE:E0:8F:52:87:F6:69:31:3C:E6:99:0F:11:74:01:B1:79:84:8A:E1 Certificate issuer: /CN=DEE08F5287F669313CE6990F117401B179848AE1 Certificate serial: 1AA9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3uCPUof2aTE85pkPEXQBsXmEiuE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2785/3uCPUof2aTE85pkPEXQBsXmEiuE.mft Manifest number: 1AA4 Signing time: Fri 22 Nov 2024 15:25:42 +0000 Manifest this update: Fri 22 Nov 2024 15:25:42 +0000 Manifest next update: Fri 22 Nov 2024 21:25:42 +0000 Files and hashes: 1: 3uCPUof2aTE85pkPEXQBsXmEiuE.crl (hash: 0UlW40To81xkXtrVcjGri+s6wtvh/Zaxx+05m/VcGTQ=) 2: gSkd6A4h9soSgsnL1gwv_ZaTpXk.roa (hash: /ePEyOx0cammh0obLmcE/YBuFH1gX+5nN6CzmwxqWsM=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2785/3uCPUof2aTE85pkPEXQBsXmEiuE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2785/3uCPUof2aTE85pkPEXQBsXmEiuE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3uCPUof2aTE85pkPEXQBsXmEiuE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 19:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6825 (0x1aa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEE08F5287F669313CE6990F117401B179848AE1 Validity Not Before: Nov 22 15:25:42 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=73760A4248924B44022CEFE667D69A6943DAA4EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ed:fe:97:b2:a2:7a:a1:62:92:45:75:1a:ed: 5c:02:01:0f:3b:ca:31:45:89:26:35:14:ff:50:e9: f0:b0:2d:43:37:2c:11:61:ac:7d:82:b8:8f:62:a6: f5:f0:b0:a2:bb:25:64:69:8a:68:85:a7:73:eb:a5: aa:1e:2c:e7:1b:63:27:d8:c9:ce:75:9e:de:7e:4b: 2b:9e:cd:d7:37:8d:cf:bd:e7:1c:79:05:8a:eb:a2: ac:b5:1c:67:67:88:7f:be:83:e5:29:00:9e:3f:db: 11:ba:25:56:29:68:34:a6:74:af:cd:f2:42:33:da: 76:7b:3d:22:e3:55:62:3f:a6:89:e7:1d:de:62:81: 3d:8c:e7:f8:2e:53:1d:68:88:a3:f3:2a:f0:6e:f1: 96:df:ba:22:bf:24:c7:c4:eb:59:e3:57:5f:e4:ab: 0f:01:13:69:7c:c9:aa:4c:e8:cc:18:f0:3e:4d:f7: de:b5:a5:8f:df:61:e6:aa:7a:dc:4f:48:43:a0:4f: 51:f5:3e:de:74:ea:fd:1f:c5:d8:b1:e9:7d:32:0c: 9b:51:7a:0d:1f:7c:17:64:3b:63:22:51:b3:95:ba: ea:0b:07:4b:c4:6b:b3:6f:b1:83:bb:4d:e9:10:82: a6:5c:1f:18:c9:78:80:8d:c4:38:ef:20:9e:ad:f1: ac:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:76:0A:42:48:92:4B:44:02:2C:EF:E6:67:D6:9A:69:43:DA:A4:EA X509v3 Authority Key Identifier: keyid:DE:E0:8F:52:87:F6:69:31:3C:E6:99:0F:11:74:01:B1:79:84:8A:E1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2785/3uCPUof2aTE85pkPEXQBsXmEiuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3uCPUof2aTE85pkPEXQBsXmEiuE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2785/3uCPUof2aTE85pkPEXQBsXmEiuE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:f0:42:fa:7b:2e:84:d6:2e:a7:b4:fa:ad:0b:3f:43:6f:ef: a2:b4:25:fb:cd:56:1c:00:d9:e3:24:c2:e2:ae:24:49:cb:3c: a1:17:62:79:3b:36:28:71:d3:23:a5:87:8d:96:55:33:d2:92: 96:12:d7:0f:ba:c2:4f:7a:c9:d9:71:6e:34:b1:fb:51:0a:cb: 40:5c:c2:23:83:ac:5d:46:6f:b3:f3:2f:55:f3:0d:db:2d:94: fd:d6:53:32:3c:39:db:cf:78:f6:01:0f:84:a9:bd:6e:b3:c7: 6b:ce:ee:ba:b5:26:f5:ef:60:0c:6a:a7:eb:28:40:a8:52:65: 4b:1c:17:4a:1a:bc:5a:0a:53:0a:3b:34:32:97:6c:21:9c:91: 36:8a:74:84:37:15:ce:cb:67:21:f0:08:01:e0:d9:7a:ad:8b: b0:13:42:4c:cd:b5:c6:59:10:99:2b:2b:36:89:92:84:fd:7b: 34:8e:7f:4d:b6:84:30:2e:19:a2:0b:f8:25:f1:ac:50:44:51: 96:37:0b:77:80:46:82:91:25:7c:48:7e:4a:67:e5:ee:11:03: ff:de:e7:49:2e:f6:80:92:3c:c4:0a:cd:2b:1e:f7:17:29:53: cd:f2:46:a4:e5:9b:30:d2:dd:76:3e:4b:ce:20:ed:c2:5e:c2: e4:fd:c0:da -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICGqkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREVF MDhGNTI4N0Y2NjkzMTNDRTY5OTBGMTE3NDAxQjE3OTg0OEFFMTAeFw0yNDExMjIx NTI1NDJaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDczNzYwQTQyNDg5MjRC NDQwMjJDRUZFNjY3RDY5QTY5NDNEQUE0RUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCb7f6XsqJ6oWKSRXUa7VwCAQ87yjFFiSY1FP9Q6fCwLUM3LBFh rH2CuI9ipvXwsKK7JWRpimiFp3PrpaoeLOcbYyfYyc51nt5+Syuezdc3jc+95xx5 BYrroqy1HGdniH++g+UpAJ4/2xG6JVYpaDSmdK/N8kIz2nZ7PSLjVWI/ponnHd5i gT2M5/guUx1oiKPzKvBu8ZbfuiK/JMfE61njV1/kqw8BE2l8yapM6MwY8D5N9961 pY/fYeaqetxPSEOgT1H1Pt506v0fxdix6X0yDJtReg0ffBdkO2MiUbOVuuoLB0vE a7NvsYO7TekQgqZcHxjJeICNxDjvIJ6t8axxAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUc3YKQkiSS0QCLO/mZ9aaaUPapOowHwYDVR0jBBgwFoAU3uCPUof2aTE85pkP EXQBsXmEiuEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc4 NS8zdUNQVW9mMmFURTg1cGtQRVhRQnNYbUVpdUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzN1Q1BVb2YyYVRFODVwa1BFWFFCc1htRWl1RS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3ODUvM3VDUFVvZjJhVEU4 NXBrUEVYUUJzWG1FaXVFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAKbwQvp7LoTWLqe0+q0LP0Nv76K0JfvNVhwA2eMkwuKuJEnLPKEXYnk7Nihx 0yOlh42WVTPSkpYS1w+6wk96ydlxbjSx+1EKy0BcwiODrF1Gb7PzL1XzDdstlP3W UzI8OdvPePYBD4SpvW6zx2vO7rq1JvXvYAxqp+soQKhSZUscF0oavFoKUwo7NDKX bCGckTaKdIQ3Fc7LZyHwCAHg2Xqti7ATQkzNtcZZEJkrKzaJkoT9ezSOf022hDAu GaIL+CXxrFBEUZY3C3eARoKRJXxIfkpn5e4RA//e50ku9oCSPMQKzSse9xcpU83y RqTlmzDS3XY+S84g7cJewuT9wNo= -----END CERTIFICATE-----Generated at Fri Nov 22 17:36:43 2024 by rpki-client on console-ams.rpki-client.org