$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2785/3uCPUof2aTE85pkPEXQBsXmEiuE.mft File: 3uCPUof2aTE85pkPEXQBsXmEiuE.mft (raw, json) Hash identifier: 5G0InNW0Ea6Bv+ctXZlTrqCItPMC+7Jwxs/nxnqjpOY= Subject key identifier: 73:76:0A:42:48:92:4B:44:02:2C:EF:E6:67:D6:9A:69:43:DA:A4:EA Authority key identifier: DE:E0:8F:52:87:F6:69:31:3C:E6:99:0F:11:74:01:B1:79:84:8A:E1 Certificate issuer: /CN=DEE08F5287F669313CE6990F117401B179848AE1 Certificate serial: 174E Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3uCPUof2aTE85pkPEXQBsXmEiuE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2785/3uCPUof2aTE85pkPEXQBsXmEiuE.mft Manifest number: 174A Signing time: Sat 01 Jun 2024 10:27:52 +0000 Manifest this update: Sat 01 Jun 2024 10:27:52 +0000 Manifest next update: Sat 01 Jun 2024 16:27:52 +0000 Files and hashes: 1: 3uCPUof2aTE85pkPEXQBsXmEiuE.crl (hash: WPI6wHauYQ9QSdJgEe/sI+2bYEORDNeGi4WKdikw5sA=) 2: QRHfC8dI7L9JwZ9w4DCWFioPgGw.roa (hash: 2bWymcBgJVX9rqoYdT9IwQyo30HBkJA6vp+Bcr0FCm8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2785/3uCPUof2aTE85pkPEXQBsXmEiuE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2785/3uCPUof2aTE85pkPEXQBsXmEiuE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3uCPUof2aTE85pkPEXQBsXmEiuE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 16:27:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5966 (0x174e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEE08F5287F669313CE6990F117401B179848AE1 Validity Not Before: Jun 1 10:27:52 2024 GMT Not After : Oct 8 00:16:33 2024 GMT Subject: CN=73760A4248924B44022CEFE667D69A6943DAA4EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ed:fe:97:b2:a2:7a:a1:62:92:45:75:1a:ed: 5c:02:01:0f:3b:ca:31:45:89:26:35:14:ff:50:e9: f0:b0:2d:43:37:2c:11:61:ac:7d:82:b8:8f:62:a6: f5:f0:b0:a2:bb:25:64:69:8a:68:85:a7:73:eb:a5: aa:1e:2c:e7:1b:63:27:d8:c9:ce:75:9e:de:7e:4b: 2b:9e:cd:d7:37:8d:cf:bd:e7:1c:79:05:8a:eb:a2: ac:b5:1c:67:67:88:7f:be:83:e5:29:00:9e:3f:db: 11:ba:25:56:29:68:34:a6:74:af:cd:f2:42:33:da: 76:7b:3d:22:e3:55:62:3f:a6:89:e7:1d:de:62:81: 3d:8c:e7:f8:2e:53:1d:68:88:a3:f3:2a:f0:6e:f1: 96:df:ba:22:bf:24:c7:c4:eb:59:e3:57:5f:e4:ab: 0f:01:13:69:7c:c9:aa:4c:e8:cc:18:f0:3e:4d:f7: de:b5:a5:8f:df:61:e6:aa:7a:dc:4f:48:43:a0:4f: 51:f5:3e:de:74:ea:fd:1f:c5:d8:b1:e9:7d:32:0c: 9b:51:7a:0d:1f:7c:17:64:3b:63:22:51:b3:95:ba: ea:0b:07:4b:c4:6b:b3:6f:b1:83:bb:4d:e9:10:82: a6:5c:1f:18:c9:78:80:8d:c4:38:ef:20:9e:ad:f1: ac:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:76:0A:42:48:92:4B:44:02:2C:EF:E6:67:D6:9A:69:43:DA:A4:EA X509v3 Authority Key Identifier: keyid:DE:E0:8F:52:87:F6:69:31:3C:E6:99:0F:11:74:01:B1:79:84:8A:E1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2785/3uCPUof2aTE85pkPEXQBsXmEiuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3uCPUof2aTE85pkPEXQBsXmEiuE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2785/3uCPUof2aTE85pkPEXQBsXmEiuE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:6b:a0:65:b8:d2:2d:88:f5:01:99:7e:d5:9e:f2:99:a2:b1: 45:35:49:af:e6:63:69:40:7a:b2:5a:3a:77:a9:3c:94:19:20: 9a:ed:c7:cc:53:fe:ed:17:08:53:f8:a6:ef:b6:04:8e:d4:d5: 58:bb:2e:2d:63:4d:58:1f:df:1a:e1:49:15:c0:cd:be:08:d4: 6d:e9:81:87:7b:42:ac:d6:c8:8d:21:4f:81:bf:43:e2:8b:7f: ae:1e:17:1c:8a:a6:9a:a6:97:92:df:e1:71:4c:4f:20:21:51: 09:e7:52:35:b9:51:08:df:c2:23:3b:b8:0f:d7:74:34:1e:a5: bf:4b:02:68:66:85:a1:d6:31:41:bf:ce:5f:b9:e2:ff:6a:fe: 60:23:92:24:7f:0f:8c:35:08:0a:7d:96:05:86:23:ff:43:f0: 44:7d:66:7a:4a:4d:1e:3a:c5:a9:c4:91:4a:5d:d6:23:4d:73: 09:85:1c:ee:96:b8:c5:dd:59:b2:5c:e5:81:09:7b:93:3c:75: 3f:be:5c:08:89:60:32:6e:6e:e1:ee:0e:0f:fc:c4:95:99:6f: 10:c9:4a:5f:79:43:31:2f:24:d2:80:72:2d:61:ed:e0:86:ad: 18:1d:bf:18:3c:a5:74:78:7b:e4:20:2f:62:1a:42:b1:8a:db: 21:c3:64:da -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICF04wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREVF MDhGNTI4N0Y2NjkzMTNDRTY5OTBGMTE3NDAxQjE3OTg0OEFFMTAeFw0yNDA2MDEx MDI3NTJaFw0yNDEwMDgwMDE2MzNaMDMxMTAvBgNVBAMTKDczNzYwQTQyNDg5MjRC NDQwMjJDRUZFNjY3RDY5QTY5NDNEQUE0RUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCb7f6XsqJ6oWKSRXUa7VwCAQ87yjFFiSY1FP9Q6fCwLUM3LBFh rH2CuI9ipvXwsKK7JWRpimiFp3PrpaoeLOcbYyfYyc51nt5+Syuezdc3jc+95xx5 BYrroqy1HGdniH++g+UpAJ4/2xG6JVYpaDSmdK/N8kIz2nZ7PSLjVWI/ponnHd5i gT2M5/guUx1oiKPzKvBu8ZbfuiK/JMfE61njV1/kqw8BE2l8yapM6MwY8D5N9961 pY/fYeaqetxPSEOgT1H1Pt506v0fxdix6X0yDJtReg0ffBdkO2MiUbOVuuoLB0vE a7NvsYO7TekQgqZcHxjJeICNxDjvIJ6t8axxAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUc3YKQkiSS0QCLO/mZ9aaaUPapOowHwYDVR0jBBgwFoAU3uCPUof2aTE85pkP EXQBsXmEiuEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc4 NS8zdUNQVW9mMmFURTg1cGtQRVhRQnNYbUVpdUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzN1Q1BVb2YyYVRFODVwa1BFWFFCc1htRWl1RS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3ODUvM3VDUFVvZjJhVEU4 NXBrUEVYUUJzWG1FaXVFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAKJroGW40i2I9QGZftWe8pmisUU1Sa/mY2lAerJaOnepPJQZIJrtx8xT/u0X CFP4pu+2BI7U1Vi7Li1jTVgf3xrhSRXAzb4I1G3pgYd7QqzWyI0hT4G/Q+KLf64e FxyKppqml5Lf4XFMTyAhUQnnUjW5UQjfwiM7uA/XdDQepb9LAmhmhaHWMUG/zl+5 4v9q/mAjkiR/D4w1CAp9lgWGI/9D8ER9ZnpKTR46xanEkUpd1iNNcwmFHO6WuMXd WbJc5YEJe5M8dT++XAiJYDJubuHuDg/8xJWZbxDJSl95QzEvJNKAci1h7eCGrRgd vxg8pXR4e+QgL2IaQrGK2yHDZNo= -----END CERTIFICATE-----Generated at Sat Jun 1 12:23:48 2024 by rpki-client on console-ams.rpki-client.org