$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2833/Y9bJ2JQXRLoVSABQwE71MyDKD8M.mft File: Y9bJ2JQXRLoVSABQwE71MyDKD8M.mft (raw, json) Hash identifier: JrwTU/4neEwPT0chMZBZs4Tf+oR5CaNhzW3NDw7N5M8= Subject key identifier: C6:62:60:92:EB:E0:20:F9:A5:D5:A3:98:08:75:01:84:69:A0:3D:F4 Authority key identifier: 63:D6:C9:D8:94:17:44:BA:15:48:00:50:C0:4E:F5:33:20:CA:0F:C3 Certificate issuer: /CN=63D6C9D8941744BA15480050C04EF53320CA0FC3 Certificate serial: 0108 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Y9bJ2JQXRLoVSABQwE71MyDKD8M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2833/Y9bJ2JQXRLoVSABQwE71MyDKD8M.mft Manifest number: 0107 Signing time: Sun 19 May 2024 23:54:01 +0000 Manifest this update: Sun 19 May 2024 23:54:01 +0000 Manifest next update: Mon 20 May 2024 05:54:01 +0000 Files and hashes: 1: 17qfPQCAlWlK7-Z7bh_7z0FJwW0.roa (hash: VowlkQRs+pX2FgtqaJJBsghVPpg1iBtkRUxHVAEmpO8=) 2: Y9bJ2JQXRLoVSABQwE71MyDKD8M.crl (hash: PBVT6bCZjil9/1O0ZeuexyYpEVbC6sK3EJA+84XpU4w=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2833/Y9bJ2JQXRLoVSABQwE71MyDKD8M.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2833/Y9bJ2JQXRLoVSABQwE71MyDKD8M.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Y9bJ2JQXRLoVSABQwE71MyDKD8M.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63D6C9D8941744BA15480050C04EF53320CA0FC3 Validity Not Before: May 19 23:54:01 2024 GMT Not After : Mar 28 11:22:23 2025 GMT Subject: CN=C6626092EBE020F9A5D5A3980875018469A03DF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:3d:d6:71:d5:37:b6:18:8f:49:b2:c1:39:5a: d8:a9:eb:58:04:31:ca:00:28:cb:0a:69:18:ba:81: e1:c6:b0:1b:f6:c4:77:72:7c:b7:bc:f3:cf:1c:fd: ab:2d:a1:da:6d:fa:ea:41:e7:01:e5:de:b9:ac:71: b3:9a:d8:33:6e:3d:6a:fc:e7:58:bd:93:5f:fe:91: 7f:13:92:bd:1e:8a:1d:ea:dd:59:53:61:de:2a:c6: b5:49:7f:8c:44:a4:eb:27:44:d8:02:25:b8:b9:16: 0f:a6:72:1e:c4:fe:09:5b:65:ea:c3:f1:02:35:36: 36:73:ab:6d:2b:0c:1d:b5:b2:80:4a:9d:1d:42:67: 2a:d2:26:01:3d:c9:e9:71:91:fb:e3:98:4b:3b:18: 3a:ca:e4:46:47:53:09:30:fa:26:08:20:5a:45:34: 49:9f:f0:98:d2:0e:d2:6e:43:ea:ae:c1:4a:19:b0: 2f:92:a4:54:ab:a0:d3:fd:9e:34:8b:57:7f:32:3d: 8b:d2:c0:07:db:b5:e3:85:62:75:31:48:c6:1a:ff: 54:c9:ff:4f:f5:fe:58:08:b0:76:31:71:3d:4c:12: 2c:2c:e3:cf:cb:86:29:66:63:6e:20:50:a4:c7:71: 00:6b:af:34:d3:bf:0d:31:88:aa:ed:b0:8f:9f:d2: f6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:62:60:92:EB:E0:20:F9:A5:D5:A3:98:08:75:01:84:69:A0:3D:F4 X509v3 Authority Key Identifier: keyid:63:D6:C9:D8:94:17:44:BA:15:48:00:50:C0:4E:F5:33:20:CA:0F:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2833/Y9bJ2JQXRLoVSABQwE71MyDKD8M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Y9bJ2JQXRLoVSABQwE71MyDKD8M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2833/Y9bJ2JQXRLoVSABQwE71MyDKD8M.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:25:d1:11:d3:e8:39:d3:59:4d:c1:a4:44:cb:7a:f6:61:92: 01:8c:08:cc:2d:ca:da:19:9b:1c:ef:d8:39:26:d0:39:b1:82: ff:d3:bd:3c:d4:01:84:bf:77:05:ee:0a:b5:f9:ab:bd:c5:ba: 69:f8:c8:61:ad:d5:ad:8b:23:6f:0f:5b:2b:44:f0:27:99:cf: de:c5:2c:3b:24:5c:68:57:bb:95:18:e2:6d:3a:74:4d:ae:4c: 75:43:4d:64:86:b0:87:6f:21:f2:a0:98:46:62:fb:82:40:e8: f2:57:c5:9b:77:2c:96:82:81:db:95:ae:65:df:a5:58:47:a0: d7:ee:af:30:18:d2:18:b7:a7:21:f6:a8:aa:8f:2f:6c:a2:41: 6a:cf:6c:49:12:e1:98:80:ec:ef:d7:5b:98:58:92:98:10:83: b2:bc:66:59:f4:c6:73:b4:87:9e:40:e0:40:d9:7e:fb:f5:13: b0:f8:80:71:71:29:ef:5a:85:37:39:a6:c4:d7:58:17:04:53: db:98:d6:6b:22:5f:98:6a:ca:bb:92:11:15:92:f2:6b:ab:48: 26:73:52:24:b4:b6:80:4e:6b:79:bc:9b:28:fd:21:64:07:48: 43:0f:48:43:19:eb:0a:68:05:c1:90:15:e3:8c:79:1b:f6:ed: 69:ba:00:7b -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjNE NkM5RDg5NDE3NDRCQTE1NDgwMDUwQzA0RUY1MzMyMENBMEZDMzAeFw0yNDA1MTky MzU0MDFaFw0yNTAzMjgxMTIyMjNaMDMxMTAvBgNVBAMTKEM2NjI2MDkyRUJFMDIw RjlBNUQ1QTM5ODA4NzUwMTg0NjlBMDNERjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjPdZx1Te2GI9JssE5Wtip61gEMcoAKMsKaRi6geHGsBv2xHdy fLe8888c/astodpt+upB5wHl3rmscbOa2DNuPWr851i9k1/+kX8Tkr0eih3q3VlT Yd4qxrVJf4xEpOsnRNgCJbi5Fg+mch7E/glbZerD8QI1NjZzq20rDB21soBKnR1C ZyrSJgE9yelxkfvjmEs7GDrK5EZHUwkw+iYIIFpFNEmf8JjSDtJuQ+quwUoZsC+S pFSroNP9njSLV38yPYvSwAfbteOFYnUxSMYa/1TJ/0/1/lgIsHYxcT1MEiws48/L hilmY24gUKTHcQBrrzTTvw0xiKrtsI+f0vZ7AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUxmJgkuvgIPml1aOYCHUBhGmgPfQwHwYDVR0jBBgwFoAUY9bJ2JQXRLoVSABQ wE71MyDKD8MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjgz My9ZOWJKMkpRWFJMb1ZTQUJRd0U3MU15REtEOE0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1k5YkoySlFYUkxvVlNBQlF3RTcxTXlES0Q4TS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI4MzMvWTliSjJKUVhSTG9W U0FCUXdFNzFNeURLRDhNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAEQl0RHT6DnTWU3BpETLevZhkgGMCMwtytoZmxzv2Dkm0Dmxgv/TvTzUAYS/ dwXuCrX5q73Fumn4yGGt1a2LI28PWytE8CeZz97FLDskXGhXu5UY4m06dE2uTHVD TWSGsIdvIfKgmEZi+4JA6PJXxZt3LJaCgduVrmXfpVhHoNfurzAY0hi3pyH2qKqP L2yiQWrPbEkS4ZiA7O/XW5hYkpgQg7K8Zln0xnO0h55A4EDZfvv1E7D4gHFxKe9a hTc5psTXWBcEU9uY1msiX5hqyruSERWS8murSCZzUiS0toBOa3m8myj9IWQHSEMP SEMZ6wpoBcGQFeOMeRv27Wm6AHs= -----END CERTIFICATE-----Generated at Mon May 20 00:17:32 2024 by rpki-client on console-fra.rpki-client.org