$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft File: GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft (raw, json) Hash identifier: BvyeCSoS2v6IlZYAyZjv018I9Mm8y07H3vdIUUwCqsI= Subject key identifier: 85:7A:D4:30:56:F6:EE:38:F2:F2:39:E3:64:77:97:B7:30:33:92:7C Authority key identifier: 19:35:19:DD:77:3C:40:D0:4F:64:1C:C4:45:58:D3:46:12:97:B0:03 Certificate issuer: /CN=193519DD773C40D04F641CC44558D3461297B003 Certificate serial: 1A8A Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft Manifest number: 1A85 Signing time: Fri 22 Nov 2024 10:23:02 +0000 Manifest this update: Fri 22 Nov 2024 10:23:02 +0000 Manifest next update: Fri 22 Nov 2024 16:23:02 +0000 Files and hashes: 1: 6mDN8Bj1tpsdwwCB-cbaS2rpIOg.roa (hash: nZloh0u1ObZqaKZZLL4dVuFeMBF1O8CjlXd9zr795DU=) 2: GTUZ3Xc8QNBPZBzERVjTRhKXsAM.crl (hash: 5EdiaZzCWmTJp7EkOGC37ThLsWAZBXpFEMRDJoPg0kY=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 16:23:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6794 (0x1a8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=193519DD773C40D04F641CC44558D3461297B003 Validity Not Before: Nov 22 10:23:02 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=857AD43056F6EE38F2F239E3647797B73033927C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:11:dd:56:1b:93:a0:3a:ef:10:8b:28:0a:3b: 80:72:e5:0d:2a:45:a7:77:3b:65:87:c9:2d:77:ed: 19:66:30:f1:eb:74:54:4d:1f:99:1b:08:56:fa:bd: 45:26:25:3f:ea:1e:22:30:c6:39:ef:5f:39:67:0f: 7b:f7:c5:76:98:2e:bf:f4:a0:ea:b6:8a:f1:39:ba: 1a:02:bf:57:62:fc:c2:15:54:66:9c:d6:d0:09:60: 49:68:ab:0d:24:71:44:d1:4f:86:86:c2:40:15:43: e3:95:ef:92:6b:18:82:77:e5:b8:b0:1f:4f:7e:52: f1:86:79:05:3c:90:f5:35:c7:b7:68:ca:97:18:4d: 79:51:4a:a6:76:fa:62:a1:a7:5e:87:6d:87:a2:81: 6d:c5:f3:40:f6:96:1e:98:22:d3:ba:9d:31:07:c8: 9e:fc:0f:48:05:65:cc:45:fe:76:5c:44:a5:67:45: 98:37:83:95:6b:cf:66:f6:7b:ee:43:87:a3:7e:21: b8:85:e6:0b:74:04:ba:bd:d2:e8:79:54:61:df:ee: bd:16:41:6f:aa:a8:37:a4:0e:35:2e:e0:46:f0:12: ba:76:89:8c:f8:67:89:92:22:24:11:1c:8d:d6:31: 01:18:43:1b:0f:0d:2d:93:eb:78:47:3f:5a:57:52: 82:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:7A:D4:30:56:F6:EE:38:F2:F2:39:E3:64:77:97:B7:30:33:92:7C X509v3 Authority Key Identifier: keyid:19:35:19:DD:77:3C:40:D0:4F:64:1C:C4:45:58:D3:46:12:97:B0:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:ca:2e:3d:ce:4c:54:4c:c7:6a:38:90:f1:a1:ce:5a:44:7c: 02:36:be:c1:83:ba:19:c8:05:6d:11:cb:37:0a:30:c8:7f:21: 9d:be:4d:4a:9d:da:44:da:f0:66:d3:00:80:c7:0a:f3:aa:21: 02:12:38:27:fa:98:af:d1:00:e5:3e:22:94:94:af:5f:3d:d2: e9:99:21:79:77:54:83:cf:10:76:95:a6:76:91:58:ed:eb:aa: 37:36:75:75:69:bf:59:7f:bd:79:9a:70:ea:c7:55:a2:64:68: 3d:83:58:4e:22:e1:16:18:d6:28:72:68:aa:99:f1:79:04:87: 8d:e9:c8:12:4d:1a:bb:f1:a3:95:dd:8b:40:cb:8a:ff:f9:8b: 2a:f2:32:c3:47:4e:e9:09:fe:ae:df:aa:25:29:b0:b3:f6:04: 50:0c:74:91:48:79:3b:a7:f8:2c:b6:b5:ba:43:23:4b:0c:0f: 76:e1:b5:81:e5:46:c3:ec:43:b2:2a:76:ad:48:34:b1:f4:3c: 6d:7f:07:55:b3:a5:fd:db:23:46:ba:00:08:06:a0:4f:9b:2b: 20:50:26:73:35:e7:b9:9e:8e:1d:93:90:a0:5b:a5:4f:2e:93: 05:c4:4b:f7:7e:0c:10:87:14:02:3f:33:8e:3f:1b:f5:b5:3a: 01:8f:22:81 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICGoowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTkz NTE5REQ3NzNDNDBEMDRGNjQxQ0M0NDU1OEQzNDYxMjk3QjAwMzAeFw0yNDExMjIx MDIzMDJaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDg1N0FENDMwNTZGNkVF MzhGMkYyMzlFMzY0Nzc5N0I3MzAzMzkyN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPEd1WG5OgOu8QiygKO4By5Q0qRad3O2WHyS137RlmMPHrdFRN H5kbCFb6vUUmJT/qHiIwxjnvXzlnD3v3xXaYLr/0oOq2ivE5uhoCv1di/MIVVGac 1tAJYEloqw0kcUTRT4aGwkAVQ+OV75JrGIJ35biwH09+UvGGeQU8kPU1x7doypcY TXlRSqZ2+mKhp16HbYeigW3F80D2lh6YItO6nTEHyJ78D0gFZcxF/nZcRKVnRZg3 g5Vrz2b2e+5Dh6N+IbiF5gt0BLq90uh5VGHf7r0WQW+qqDekDjUu4EbwErp2iYz4 Z4mSIiQRHI3WMQEYQxsPDS2T63hHP1pXUoLZAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUhXrUMFb27jjy8jnjZHeXtzAzknwwHwYDVR0jBBgwFoAUGTUZ3Xc8QNBPZBzE RVjTRhKXsAMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjkw My9HVFVaM1hjOFFOQlBaQnpFUlZqVFJoS1hzQU0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0dUVVozWGM4UU5CUFpCekVSVmpUUmhLWHNBTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI5MDMvR1RVWjNYYzhRTkJQ WkJ6RVJWalRSaEtYc0FNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAFHKLj3OTFRMx2o4kPGhzlpEfAI2vsGDuhnIBW0RyzcKMMh/IZ2+TUqd2kTa 8GbTAIDHCvOqIQISOCf6mK/RAOU+IpSUr1890umZIXl3VIPPEHaVpnaRWO3rqjc2 dXVpv1l/vXmacOrHVaJkaD2DWE4i4RYY1ihyaKqZ8XkEh43pyBJNGrvxo5Xdi0DL iv/5iyryMsNHTukJ/q7fqiUpsLP2BFAMdJFIeTun+Cy2tbpDI0sMD3bhtYHlRsPs Q7Iqdq1INLH0PG1/B1Wzpf3bI0a6AAgGoE+bKyBQJnM157mejh2TkKBbpU8ukwXE S/d+DBCHFAI/M44/G/W1OgGPIoE= -----END CERTIFICATE-----Generated at Fri Nov 22 16:05:38 2024 by rpki-client on console-fra.rpki-client.org