$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2890/QANTiAtHjVuXKhIEzwZR3ilfjso.mft File: QANTiAtHjVuXKhIEzwZR3ilfjso.mft (raw, json) Hash identifier: 3wtau8nfnjYNCYj4dbM6gnsP1qZOCtiFSQ7gpfzy+SI= Subject key identifier: 3E:02:B0:EC:72:B4:53:6E:FB:18:99:9F:8A:FE:BD:6B:63:5D:F8:01 Authority key identifier: 40:03:53:88:0B:47:8D:5B:97:2A:12:04:CF:06:51:DE:29:5F:8E:CA Certificate issuer: /CN=400353880B478D5B972A1204CF0651DE295F8ECA Certificate serial: 0E32 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/QANTiAtHjVuXKhIEzwZR3ilfjso.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2890/QANTiAtHjVuXKhIEzwZR3ilfjso.mft Manifest number: 0E2F Signing time: Sun 02 Jun 2024 10:25:25 +0000 Manifest this update: Sun 02 Jun 2024 10:25:25 +0000 Manifest next update: Sun 02 Jun 2024 16:25:25 +0000 Files and hashes: 1: QANTiAtHjVuXKhIEzwZR3ilfjso.crl (hash: FyNI3u5eyShBvHrCfCZxfuvWVpsin9ZS3XiJObYxTL4=) 2: pYNNFjRw9ZZlnTCWK3JrZrDW1uY.roa (hash: XRE4X/2kd3xOLH6BXnEI5qMBAytYaVvuPEB5qlpE2V0=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2890/QANTiAtHjVuXKhIEzwZR3ilfjso.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2890/QANTiAtHjVuXKhIEzwZR3ilfjso.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/QANTiAtHjVuXKhIEzwZR3ilfjso.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 16:25:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3634 (0xe32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=400353880B478D5B972A1204CF0651DE295F8ECA Validity Not Before: Jun 2 10:25:25 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=3E02B0EC72B4536EFB18999F8AFEBD6B635DF801 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:32:58:a9:d9:69:b3:4b:f1:61:4b:87:6a:75: b6:dc:4a:1c:b4:5f:ba:82:db:a0:72:66:f1:81:08: 59:bd:57:ef:79:43:59:e7:38:14:5a:62:1f:35:98: 41:d2:5f:f0:df:8d:c1:62:65:50:ca:e2:5c:08:a0: d0:6d:af:98:80:82:a4:85:45:bf:5e:83:60:f2:53: 99:f3:2d:fe:d7:95:35:30:00:87:20:de:a5:5b:69: 1b:0a:1c:b3:83:65:27:64:be:d9:fa:d4:cf:99:f4: d7:e5:de:c4:9d:7f:a1:a4:37:55:3a:fd:04:50:66: 34:88:f5:cc:62:55:6b:03:3b:7b:eb:ae:8e:0c:8f: b5:3b:c8:7f:cc:ab:c1:4a:b6:6f:10:e5:80:06:dd: 6b:19:c4:d5:49:fe:f5:33:13:ad:62:ec:cf:17:5f: 1c:1b:8b:b4:7a:89:1b:87:32:d1:c7:ee:ea:c5:9d: 2c:19:b7:11:ca:ca:d4:6d:17:bf:f6:4a:2c:0f:8e: 5f:5a:63:d4:33:f4:86:05:10:71:4b:25:a4:fa:95: f1:4d:2a:24:7b:a9:55:95:ee:4e:94:86:70:36:a4: 80:c0:b0:62:2e:39:5b:48:f4:14:d7:a4:b6:9c:0f: 6d:91:f2:30:19:7e:6d:86:c6:12:7b:5a:a2:a1:e5: 0c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:02:B0:EC:72:B4:53:6E:FB:18:99:9F:8A:FE:BD:6B:63:5D:F8:01 X509v3 Authority Key Identifier: keyid:40:03:53:88:0B:47:8D:5B:97:2A:12:04:CF:06:51:DE:29:5F:8E:CA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2890/QANTiAtHjVuXKhIEzwZR3ilfjso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/QANTiAtHjVuXKhIEzwZR3ilfjso.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2890/QANTiAtHjVuXKhIEzwZR3ilfjso.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:1a:b0:4c:c0:06:07:ab:1c:3a:64:5c:3a:9b:a7:39:91:b6: af:47:3d:58:16:35:ab:37:d3:0e:f0:b4:f1:5c:ac:cb:d6:d2: 1c:d3:64:9f:cf:f3:5b:a0:7c:df:f6:2c:70:11:24:c9:de:bb: 63:8c:02:cb:a5:1a:2a:4f:2c:c7:eb:f7:06:dc:6c:fe:ba:29: 1f:b0:52:ec:88:4f:34:10:63:cc:2e:45:72:8c:f0:c1:cd:f4: 15:c3:7e:79:ac:96:ff:f8:b5:8c:e4:04:a4:0c:21:5f:88:82: 4e:ab:f8:3f:a6:51:1f:47:50:1e:1b:02:a9:67:34:ab:05:49: 70:17:f6:6a:a6:25:d7:fb:1b:4b:c5:73:44:a6:c9:b9:a5:bf: bf:b2:f8:02:bc:58:48:78:a3:bb:5a:31:d4:e0:e3:77:bf:69: 74:b8:89:c2:9b:4c:d3:3e:fd:b7:1e:95:20:71:b1:7e:c3:51: 91:f2:a9:a0:fa:63:eb:d0:91:fa:e2:e5:ce:d0:5d:48:39:ae: 51:54:80:16:c8:df:2b:c3:36:b8:ee:03:10:58:76:9c:63:e8: cb:0e:22:ec:c3:e2:91:46:d0:8e:12:f8:ea:cd:08:c8:21:c8: cc:60:b5:87:65:e1:cc:a9:1a:f7:cc:e5:50:7f:37:23:41:9c: b4:e6:12:56 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICDjIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDAw MzUzODgwQjQ3OEQ1Qjk3MkExMjA0Q0YwNjUxREUyOTVGOEVDQTAeFw0yNDA2MDIx MDI1MjVaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDNFMDJCMEVDNzJCNDUz NkVGQjE4OTk5RjhBRkVCRDZCNjM1REY4MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOMlip2WmzS/FhS4dqdbbcShy0X7qC26ByZvGBCFm9V+95Q1nn OBRaYh81mEHSX/DfjcFiZVDK4lwIoNBtr5iAgqSFRb9eg2DyU5nzLf7XlTUwAIcg 3qVbaRsKHLODZSdkvtn61M+Z9Nfl3sSdf6GkN1U6/QRQZjSI9cxiVWsDO3vrro4M j7U7yH/Mq8FKtm8Q5YAG3WsZxNVJ/vUzE61i7M8XXxwbi7R6iRuHMtHH7urFnSwZ txHKytRtF7/2SiwPjl9aY9Qz9IYFEHFLJaT6lfFNKiR7qVWV7k6UhnA2pIDAsGIu OVtI9BTXpLacD22R8jAZfm2GxhJ7WqKh5Qz1AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUPgKw7HK0U277GJmfiv69a2Nd+AEwHwYDVR0jBBgwFoAUQANTiAtHjVuXKhIE zwZR3ilfjsowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjg5 MC9RQU5UaUF0SGpWdVhLaElFendaUjNpbGZqc28uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1FBTlRpQXRIalZ1WEtoSUV6d1pSM2lsZmpzby5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI4OTAvUUFOVGlBdEhqVnVY S2hJRXp3WlIzaWxmanNvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAHkasEzABgerHDpkXDqbpzmRtq9HPVgWNas30w7wtPFcrMvW0hzTZJ/P81ug fN/2LHARJMneu2OMAsulGipPLMfr9wbcbP66KR+wUuyITzQQY8wuRXKM8MHN9BXD fnmslv/4tYzkBKQMIV+Igk6r+D+mUR9HUB4bAqlnNKsFSXAX9mqmJdf7G0vFc0Sm ybmlv7+y+AK8WEh4o7taMdTg43e/aXS4icKbTNM+/bcelSBxsX7DUZHyqaD6Y+vQ kfri5c7QXUg5rlFUgBbI3yvDNrjuAxBYdpxj6MsOIuzD4pFG0I4S+OrNCMghyMxg tYdl4cypGvfM5VB/NyNBnLTmElY= -----END CERTIFICATE-----Generated at Sun Jun 2 12:47:02 2024 by rpki-client on console-ams.rpki-client.org