$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2833/Y9bJ2JQXRLoVSABQwE71MyDKD8M.mft File: Y9bJ2JQXRLoVSABQwE71MyDKD8M.mft (raw, json) Hash identifier: zJgVweKyo2lIQG5MvuXwY9R2e1E0dyNy9ANCnppxREQ= Subject key identifier: C6:62:60:92:EB:E0:20:F9:A5:D5:A3:98:08:75:01:84:69:A0:3D:F4 Authority key identifier: 63:D6:C9:D8:94:17:44:BA:15:48:00:50:C0:4E:F5:33:20:CA:0F:C3 Certificate issuer: /CN=63D6C9D8941744BA15480050C04EF53320CA0FC3 Certificate serial: 04AD Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Y9bJ2JQXRLoVSABQwE71MyDKD8M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2833/Y9bJ2JQXRLoVSABQwE71MyDKD8M.mft Manifest number: 04A9 Signing time: Fri 22 Nov 2024 08:50:52 +0000 Manifest this update: Fri 22 Nov 2024 08:50:52 +0000 Manifest next update: Fri 22 Nov 2024 14:50:52 +0000 Files and hashes: 1: Y9bJ2JQXRLoVSABQwE71MyDKD8M.crl (hash: 6HshRlOsdbr6C6uCBRQYto+aaiEjyHdozNsIefGrqM8=) 2: jhEl146Xh18nVcFHzrgpQEmSx_o.roa (hash: /SsBB3irtj2eTzoAwSinOxBMNYgfwekptzt5QE81VUY=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2833/Y9bJ2JQXRLoVSABQwE71MyDKD8M.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2833/Y9bJ2JQXRLoVSABQwE71MyDKD8M.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Y9bJ2JQXRLoVSABQwE71MyDKD8M.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:50:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1197 (0x4ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63D6C9D8941744BA15480050C04EF53320CA0FC3 Validity Not Before: Nov 22 08:50:52 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=C6626092EBE020F9A5D5A3980875018469A03DF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:3d:d6:71:d5:37:b6:18:8f:49:b2:c1:39:5a: d8:a9:eb:58:04:31:ca:00:28:cb:0a:69:18:ba:81: e1:c6:b0:1b:f6:c4:77:72:7c:b7:bc:f3:cf:1c:fd: ab:2d:a1:da:6d:fa:ea:41:e7:01:e5:de:b9:ac:71: b3:9a:d8:33:6e:3d:6a:fc:e7:58:bd:93:5f:fe:91: 7f:13:92:bd:1e:8a:1d:ea:dd:59:53:61:de:2a:c6: b5:49:7f:8c:44:a4:eb:27:44:d8:02:25:b8:b9:16: 0f:a6:72:1e:c4:fe:09:5b:65:ea:c3:f1:02:35:36: 36:73:ab:6d:2b:0c:1d:b5:b2:80:4a:9d:1d:42:67: 2a:d2:26:01:3d:c9:e9:71:91:fb:e3:98:4b:3b:18: 3a:ca:e4:46:47:53:09:30:fa:26:08:20:5a:45:34: 49:9f:f0:98:d2:0e:d2:6e:43:ea:ae:c1:4a:19:b0: 2f:92:a4:54:ab:a0:d3:fd:9e:34:8b:57:7f:32:3d: 8b:d2:c0:07:db:b5:e3:85:62:75:31:48:c6:1a:ff: 54:c9:ff:4f:f5:fe:58:08:b0:76:31:71:3d:4c:12: 2c:2c:e3:cf:cb:86:29:66:63:6e:20:50:a4:c7:71: 00:6b:af:34:d3:bf:0d:31:88:aa:ed:b0:8f:9f:d2: f6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:62:60:92:EB:E0:20:F9:A5:D5:A3:98:08:75:01:84:69:A0:3D:F4 X509v3 Authority Key Identifier: keyid:63:D6:C9:D8:94:17:44:BA:15:48:00:50:C0:4E:F5:33:20:CA:0F:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2833/Y9bJ2JQXRLoVSABQwE71MyDKD8M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Y9bJ2JQXRLoVSABQwE71MyDKD8M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2833/Y9bJ2JQXRLoVSABQwE71MyDKD8M.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:26:48:41:c6:c4:c9:26:61:6b:d6:78:0b:80:ad:c2:1e:a1: 08:bf:3f:4d:b4:36:45:97:c8:d7:85:cc:cf:ef:c7:ac:be:9f: 6b:28:4a:db:98:67:5d:8a:8c:34:c2:7e:cb:73:8c:b8:2f:83: 6c:c4:b7:ad:78:49:83:36:0f:e0:3c:3c:7d:43:ce:a3:5f:f8: a9:e2:b1:a2:76:89:42:6c:f7:b0:15:48:c9:11:8b:60:a8:f1: c3:02:fd:35:d2:c1:42:41:15:e5:29:05:54:b2:4f:0e:e1:f3: 3c:f6:51:8e:3e:85:1d:9b:c3:ff:63:08:0f:e2:f2:16:71:da: 7e:e6:4d:63:24:d6:40:15:b2:76:57:7b:f9:0f:00:2a:cf:ed: 34:f2:96:08:c4:6e:3a:35:c8:a1:2d:27:2b:6b:23:47:09:e0: d2:63:b2:e8:5c:cd:63:16:89:4a:fe:06:4f:e3:39:ba:35:68: 8f:af:fb:58:62:93:e3:e9:de:bd:27:01:1a:61:e6:2f:6d:c8: a4:99:6a:29:83:08:84:c3:15:c1:77:71:1f:a6:15:32:8b:37: 1a:8f:4a:7f:fb:21:15:07:7c:98:ed:34:f2:95:65:12:ba:ae: 37:71:0f:db:ef:fa:4f:74:96:90:ed:d4:d0:16:41:ff:ab:02: f0:77:1a:d3 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBK0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjNE NkM5RDg5NDE3NDRCQTE1NDgwMDUwQzA0RUY1MzMyMENBMEZDMzAeFw0yNDExMjIw ODUwNTJaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEM2NjI2MDkyRUJFMDIw RjlBNUQ1QTM5ODA4NzUwMTg0NjlBMDNERjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjPdZx1Te2GI9JssE5Wtip61gEMcoAKMsKaRi6geHGsBv2xHdy fLe8888c/astodpt+upB5wHl3rmscbOa2DNuPWr851i9k1/+kX8Tkr0eih3q3VlT Yd4qxrVJf4xEpOsnRNgCJbi5Fg+mch7E/glbZerD8QI1NjZzq20rDB21soBKnR1C ZyrSJgE9yelxkfvjmEs7GDrK5EZHUwkw+iYIIFpFNEmf8JjSDtJuQ+quwUoZsC+S pFSroNP9njSLV38yPYvSwAfbteOFYnUxSMYa/1TJ/0/1/lgIsHYxcT1MEiws48/L hilmY24gUKTHcQBrrzTTvw0xiKrtsI+f0vZ7AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUxmJgkuvgIPml1aOYCHUBhGmgPfQwHwYDVR0jBBgwFoAUY9bJ2JQXRLoVSABQ wE71MyDKD8MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjgz My9ZOWJKMkpRWFJMb1ZTQUJRd0U3MU15REtEOE0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1k5YkoySlFYUkxvVlNBQlF3RTcxTXlES0Q4TS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI4MzMvWTliSjJKUVhSTG9W U0FCUXdFNzFNeURLRDhNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAAomSEHGxMkmYWvWeAuArcIeoQi/P020NkWXyNeFzM/vx6y+n2soStuYZ12K jDTCfstzjLgvg2zEt614SYM2D+A8PH1DzqNf+KnisaJ2iUJs97AVSMkRi2Co8cMC /TXSwUJBFeUpBVSyTw7h8zz2UY4+hR2bw/9jCA/i8hZx2n7mTWMk1kAVsnZXe/kP ACrP7TTylgjEbjo1yKEtJytrI0cJ4NJjsuhczWMWiUr+Bk/jObo1aI+v+1hik+Pp 3r0nARph5i9tyKSZaimDCITDFcF3cR+mFTKLNxqPSn/7IRUHfJjtNPKVZRK6rjdx D9vv+k90lpDt1NAWQf+rAvB3GtM= -----END CERTIFICATE-----Generated at Fri Nov 22 14:30:52 2024 by rpki-client on console-ams.rpki-client.org