$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft File: GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft (raw, json) Hash identifier: 5duryk+A6Wz4SrP40SgIMnlmUtlx//n/mfStjYtGuco= Subject key identifier: 85:7A:D4:30:56:F6:EE:38:F2:F2:39:E3:64:77:97:B7:30:33:92:7C Authority key identifier: 19:35:19:DD:77:3C:40:D0:4F:64:1C:C4:45:58:D3:46:12:97:B0:03 Certificate issuer: /CN=193519DD773C40D04F641CC44558D3461297B003 Certificate serial: 197D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft Manifest number: 1978 Signing time: Sat 28 Sep 2024 17:50:19 +0000 Manifest this update: Sat 28 Sep 2024 17:50:19 +0000 Manifest next update: Sat 28 Sep 2024 23:50:19 +0000 Files and hashes: 1: 6mDN8Bj1tpsdwwCB-cbaS2rpIOg.roa (hash: nZloh0u1ObZqaKZZLL4dVuFeMBF1O8CjlXd9zr795DU=) 2: GTUZ3Xc8QNBPZBzERVjTRhKXsAM.crl (hash: m3qNPDThz2S7VptXMGt3jv08F+lUtZ9nydzKfXzVdpc=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 23:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6525 (0x197d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=193519DD773C40D04F641CC44558D3461297B003 Validity Not Before: Sep 28 17:50:19 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=857AD43056F6EE38F2F239E3647797B73033927C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:11:dd:56:1b:93:a0:3a:ef:10:8b:28:0a:3b: 80:72:e5:0d:2a:45:a7:77:3b:65:87:c9:2d:77:ed: 19:66:30:f1:eb:74:54:4d:1f:99:1b:08:56:fa:bd: 45:26:25:3f:ea:1e:22:30:c6:39:ef:5f:39:67:0f: 7b:f7:c5:76:98:2e:bf:f4:a0:ea:b6:8a:f1:39:ba: 1a:02:bf:57:62:fc:c2:15:54:66:9c:d6:d0:09:60: 49:68:ab:0d:24:71:44:d1:4f:86:86:c2:40:15:43: e3:95:ef:92:6b:18:82:77:e5:b8:b0:1f:4f:7e:52: f1:86:79:05:3c:90:f5:35:c7:b7:68:ca:97:18:4d: 79:51:4a:a6:76:fa:62:a1:a7:5e:87:6d:87:a2:81: 6d:c5:f3:40:f6:96:1e:98:22:d3:ba:9d:31:07:c8: 9e:fc:0f:48:05:65:cc:45:fe:76:5c:44:a5:67:45: 98:37:83:95:6b:cf:66:f6:7b:ee:43:87:a3:7e:21: b8:85:e6:0b:74:04:ba:bd:d2:e8:79:54:61:df:ee: bd:16:41:6f:aa:a8:37:a4:0e:35:2e:e0:46:f0:12: ba:76:89:8c:f8:67:89:92:22:24:11:1c:8d:d6:31: 01:18:43:1b:0f:0d:2d:93:eb:78:47:3f:5a:57:52: 82:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:7A:D4:30:56:F6:EE:38:F2:F2:39:E3:64:77:97:B7:30:33:92:7C X509v3 Authority Key Identifier: keyid:19:35:19:DD:77:3C:40:D0:4F:64:1C:C4:45:58:D3:46:12:97:B0:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:02:77:61:28:15:6f:4e:80:4c:64:04:41:1d:9c:cf:6f:a3: fa:78:7d:38:07:a9:f1:13:15:00:33:e4:0e:4d:b9:45:5e:ea: ac:da:da:e3:0d:d8:c4:1c:15:eb:73:29:69:29:cc:15:77:45: 96:4b:55:d1:74:56:4b:46:a1:a1:fb:2a:67:98:f8:b5:ee:e5: a8:8f:2e:1e:b2:e7:46:6b:03:1e:32:84:6a:e3:d1:36:66:7e: a5:d2:13:f2:24:a7:6d:38:73:e5:eb:5f:8a:e5:d3:01:56:99: ab:07:cf:4c:96:23:f5:4e:0a:74:9f:5f:1c:ac:61:8e:38:b6: 16:9d:44:62:5d:f8:2d:7a:17:fd:1a:0a:1b:fb:c7:62:ce:f6: a3:25:57:9d:87:96:4c:f6:b8:01:7a:dd:c3:22:cd:20:17:ad: cc:f6:1d:c0:52:7e:72:30:df:ab:5e:98:cf:3a:e5:d6:ee:23: 62:2d:e2:86:d5:24:a1:86:44:8e:5d:93:9b:1d:e7:89:a0:5a: ca:2d:ff:4a:18:62:6f:46:e1:91:b8:53:0f:14:4d:3f:ba:0e: a3:82:83:74:17:57:14:c9:b4:c6:e9:10:a3:4c:c1:50:f4:48: 1c:fc:f9:09:8a:38:24:6b:73:77:02:9d:de:37:00:9e:66:22: 34:4a:83:8d -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICGX0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTkz NTE5REQ3NzNDNDBEMDRGNjQxQ0M0NDU1OEQzNDYxMjk3QjAwMzAeFw0yNDA5Mjgx NzUwMTlaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDg1N0FENDMwNTZGNkVF MzhGMkYyMzlFMzY0Nzc5N0I3MzAzMzkyN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPEd1WG5OgOu8QiygKO4By5Q0qRad3O2WHyS137RlmMPHrdFRN H5kbCFb6vUUmJT/qHiIwxjnvXzlnD3v3xXaYLr/0oOq2ivE5uhoCv1di/MIVVGac 1tAJYEloqw0kcUTRT4aGwkAVQ+OV75JrGIJ35biwH09+UvGGeQU8kPU1x7doypcY TXlRSqZ2+mKhp16HbYeigW3F80D2lh6YItO6nTEHyJ78D0gFZcxF/nZcRKVnRZg3 g5Vrz2b2e+5Dh6N+IbiF5gt0BLq90uh5VGHf7r0WQW+qqDekDjUu4EbwErp2iYz4 Z4mSIiQRHI3WMQEYQxsPDS2T63hHP1pXUoLZAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUhXrUMFb27jjy8jnjZHeXtzAzknwwHwYDVR0jBBgwFoAUGTUZ3Xc8QNBPZBzE RVjTRhKXsAMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjkw My9HVFVaM1hjOFFOQlBaQnpFUlZqVFJoS1hzQU0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0dUVVozWGM4UU5CUFpCekVSVmpUUmhLWHNBTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI5MDMvR1RVWjNYYzhRTkJQ WkJ6RVJWalRSaEtYc0FNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAG0Cd2EoFW9OgExkBEEdnM9vo/p4fTgHqfETFQAz5A5NuUVe6qza2uMN2MQc FetzKWkpzBV3RZZLVdF0VktGoaH7KmeY+LXu5aiPLh6y50ZrAx4yhGrj0TZmfqXS E/Ikp204c+XrX4rl0wFWmasHz0yWI/VOCnSfXxysYY44thadRGJd+C16F/0aChv7 x2LO9qMlV52Hlkz2uAF63cMizSAXrcz2HcBSfnIw36temM865dbuI2It4obVJKGG RI5dk5sd54mgWsot/0oYYm9G4ZG4Uw8UTT+6DqOCg3QXVxTJtMbpEKNMwVD0SBz8 +QmKOCRrc3cCnd43AJ5mIjRKg40= -----END CERTIFICATE-----Generated at Sat Sep 28 20:52:58 2024 by rpki-client on console-fra.rpki-client.org