$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2834/gbSTrMtCmYv_AAs94Qb7V3GkjVo.mft File: gbSTrMtCmYv_AAs94Qb7V3GkjVo.mft (raw, json) Hash identifier: Ua0bqR5D1bKsoynWpf3lYXehJYrEaQveOaCqxHyTrf4= Subject key identifier: 3A:41:1A:95:B2:D8:E9:D8:4F:DC:98:E2:3B:3F:E6:59:AB:54:20:A9 Authority key identifier: 81:B4:93:AC:CB:42:99:8B:FF:00:0B:3D:E1:06:FB:57:71:A4:8D:5A Certificate issuer: /CN=81B493ACCB42998BFF000B3DE106FB5771A48D5A Certificate serial: 166E Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gbSTrMtCmYv_AAs94Qb7V3GkjVo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2834/gbSTrMtCmYv_AAs94Qb7V3GkjVo.mft Manifest number: 166C Signing time: Sat 18 May 2024 18:53:43 +0000 Manifest this update: Sat 18 May 2024 18:53:43 +0000 Manifest next update: Sun 19 May 2024 00:53:43 +0000 Files and hashes: 1: gbSTrMtCmYv_AAs94Qb7V3GkjVo.crl (hash: Q0J5fwvIYi44K4AAV14CFq2Ks8eH89LaAHpdRjIfrkY=) 2: lzoTxw0z_rmsMDvnAjNqZ187BJA.roa (hash: JzHzWnjIJUFHcwGpxHFRQ1hkHDUq5M6fkQs4v/4tBZA=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2834/gbSTrMtCmYv_AAs94Qb7V3GkjVo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2834/gbSTrMtCmYv_AAs94Qb7V3GkjVo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gbSTrMtCmYv_AAs94Qb7V3GkjVo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 00:53:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5742 (0x166e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81B493ACCB42998BFF000B3DE106FB5771A48D5A Validity Not Before: May 18 18:53:43 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=3A411A95B2D8E9D84FDC98E23B3FE659AB5420A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:20:1b:09:96:62:bc:28:37:7f:c4:ed:73:c5: a6:13:99:62:9e:69:a1:8f:57:fd:9c:30:82:62:29: 44:52:81:79:31:63:37:fd:19:55:24:13:f0:1b:d4: 60:12:2a:15:f4:88:93:13:13:ac:95:bc:43:82:8f: d3:7b:c4:a4:c0:26:99:4e:48:b7:2b:57:35:4d:73: cf:d5:c3:c7:4e:16:15:de:53:00:07:c9:b1:86:7c: d8:57:86:c5:a5:86:4e:8a:0d:25:d9:7f:4d:bb:21: 61:9c:58:82:19:a7:f3:e1:0f:1c:d6:e7:69:54:64: a6:8b:9f:09:70:2a:df:2e:db:d0:86:80:69:cf:ed: 72:9a:01:d5:5a:ac:94:dd:90:06:74:5f:0a:40:56: e0:2b:6b:08:b6:f9:45:5d:51:44:d4:b4:4e:51:ad: 0d:24:a4:40:a3:f5:05:d8:de:a2:f5:b9:e7:db:09: c0:e1:62:e1:b7:32:06:90:05:c2:b7:89:68:c1:ae: a0:11:6c:a8:68:df:31:e0:72:70:a7:04:5a:aa:ab: 36:7a:d5:6c:27:62:ee:6c:73:49:8d:a0:51:b6:5a: fc:06:d2:59:57:19:21:dd:e5:75:2e:0b:ef:c0:3c: ab:47:07:25:14:5d:50:ba:38:ca:21:fa:8f:ff:b0: e0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:41:1A:95:B2:D8:E9:D8:4F:DC:98:E2:3B:3F:E6:59:AB:54:20:A9 X509v3 Authority Key Identifier: keyid:81:B4:93:AC:CB:42:99:8B:FF:00:0B:3D:E1:06:FB:57:71:A4:8D:5A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2834/gbSTrMtCmYv_AAs94Qb7V3GkjVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gbSTrMtCmYv_AAs94Qb7V3GkjVo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2834/gbSTrMtCmYv_AAs94Qb7V3GkjVo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:d6:7f:de:7d:1c:fc:e9:03:ca:18:ca:da:6e:c3:bf:3d:ae: 2e:61:54:51:2c:60:3e:32:2e:e0:36:f5:0f:58:79:df:5a:b4: 0e:c8:ed:6d:3f:c5:ae:22:cb:7b:05:2b:52:93:16:58:ba:43: 3a:50:e3:57:be:90:66:da:87:20:39:0b:b5:22:cc:34:b5:6e: aa:0e:33:19:14:39:6a:31:58:5f:6d:0b:ee:cc:46:11:7a:08: eb:77:00:dd:40:14:a9:10:9a:26:72:10:61:ed:0d:30:30:87: b0:ee:d7:fe:53:6e:00:e0:9d:10:a8:e2:cb:db:a5:a5:ab:67: b8:8d:21:6f:a5:8f:d0:c2:74:78:7a:54:a9:3a:95:63:4f:63: 8c:29:06:21:2f:77:48:89:0a:c3:87:d7:77:3b:25:cc:40:c4: 08:c3:ca:51:f3:ff:e0:7f:20:95:fa:9a:e2:32:1e:cb:da:dc: 9c:27:df:13:e5:76:04:3e:38:9c:25:38:7a:cf:6f:bb:c0:67: 10:44:cf:15:72:7f:36:76:72:ef:26:f2:69:0c:f4:48:d4:1d: e1:7d:23:23:7a:d0:bc:dc:4f:32:16:13:b9:98:04:5c:f0:5d: 53:ae:66:02:20:7e:3f:0f:05:c1:ea:4f:91:52:b8:4c:58:1e: 13:a3:19:3c -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICFm4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODFC NDkzQUNDQjQyOTk4QkZGMDAwQjNERTEwNkZCNTc3MUE0OEQ1QTAeFw0yNDA1MTgx ODUzNDNaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDNBNDExQTk1QjJEOEU5 RDg0RkRDOThFMjNCM0ZFNjU5QUI1NDIwQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+IBsJlmK8KDd/xO1zxaYTmWKeaaGPV/2cMIJiKURSgXkxYzf9 GVUkE/Ab1GASKhX0iJMTE6yVvEOCj9N7xKTAJplOSLcrVzVNc8/Vw8dOFhXeUwAH ybGGfNhXhsWlhk6KDSXZf027IWGcWIIZp/PhDxzW52lUZKaLnwlwKt8u29CGgGnP 7XKaAdVarJTdkAZ0XwpAVuArawi2+UVdUUTUtE5RrQ0kpECj9QXY3qL1uefbCcDh YuG3MgaQBcK3iWjBrqARbKho3zHgcnCnBFqqqzZ61WwnYu5sc0mNoFG2WvwG0llX GSHd5XUuC+/APKtHByUUXVC6OMoh+o//sOD3AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUOkEalbLY6dhP3JjiOz/mWatUIKkwHwYDVR0jBBgwFoAUgbSTrMtCmYv/AAs9 4Qb7V3GkjVowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjgz NC9nYlNUck10Q21Zdl9BQXM5NFFiN1YzR2tqVm8uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2diU1RyTXRDbVl2X0FBczk0UWI3VjNHa2pWby5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI4MzQvZ2JTVHJNdENtWXZf QUFzOTRRYjdWM0dralZvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAEjWf959HPzpA8oYytpuw789ri5hVFEsYD4yLuA29Q9Yed9atA7I7W0/xa4i y3sFK1KTFli6QzpQ41e+kGbahyA5C7UizDS1bqoOMxkUOWoxWF9tC+7MRhF6COt3 AN1AFKkQmiZyEGHtDTAwh7Du1/5TbgDgnRCo4svbpaWrZ7iNIW+lj9DCdHh6VKk6 lWNPY4wpBiEvd0iJCsOH13c7JcxAxAjDylHz/+B/IJX6muIyHsva3Jwn3xPldgQ+ OJwlOHrPb7vAZxBEzxVyfzZ2cu8m8mkM9EjUHeF9IyN60LzcTzIWE7mYBFzwXVOu ZgIgfj8PBcHqT5FSuExYHhOjGTw= -----END CERTIFICATE-----Generated at Sat May 18 19:21:07 2024 by rpki-client on console-fra.rpki-client.org