$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2994/F1mdmaUx-BsV172e8tRomDHw2F0.mft File: F1mdmaUx-BsV172e8tRomDHw2F0.mft (raw, json) Hash identifier: yb/c+H0BNLUVo7Bd20js1xE5m9jvyaARy8SxwgIqkJI= Subject key identifier: EB:7D:B0:F1:34:58:D7:F6:3E:25:07:D2:EF:36:D2:BC:FE:EB:51:81 Authority key identifier: 17:59:9D:99:A5:31:F8:1B:15:D7:BD:9E:F2:D4:68:98:31:F0:D8:5D Certificate issuer: /CN=17599D99A531F81B15D7BD9EF2D4689831F0D85D Certificate serial: 06F9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/F1mdmaUx-BsV172e8tRomDHw2F0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2994/F1mdmaUx-BsV172e8tRomDHw2F0.mft Manifest number: 06F5 Signing time: Mon 08 Sep 2025 01:03:35 +0000 Manifest this update: Mon 08 Sep 2025 01:03:35 +0000 Manifest next update: Mon 08 Sep 2025 07:03:35 +0000 Files and hashes: 1: F1mdmaUx-BsV172e8tRomDHw2F0.crl (hash: TIqs8556DR0ZoQrGnoDMlN74/wQQMMxS7EUpXqQafZ4=) 2: lK4-oeFtUHF3mLUrePlLBIigGdY.roa (hash: aRbdXVoiAdr31won1vJ0j6ZH5WVSIeE8Zz3myefySLI=) 3: rnGy2SUaXF4Kw4ixb86-0SixpOI.roa (hash: mUNwqaq2nGxEL9FXUQArwT2qiRUusdcg6R4vJKJFAhA=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2994/F1mdmaUx-BsV172e8tRomDHw2F0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2994/F1mdmaUx-BsV172e8tRomDHw2F0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/F1mdmaUx-BsV172e8tRomDHw2F0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 07:03:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1785 (0x6f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17599D99A531F81B15D7BD9EF2D4689831F0D85D Validity Not Before: Sep 8 01:03:35 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=EB7DB0F13458D7F63E2507D2EF36D2BCFEEB5181 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e7:1c:d3:4f:72:2a:ba:ea:d2:cd:9f:a0:a5: 81:dc:f3:67:bc:0b:2d:48:d5:32:5f:e6:45:3c:ec: 28:e1:de:76:10:28:4d:5d:63:68:67:e5:19:34:8d: d4:90:e8:81:ef:89:3a:dc:29:d0:66:0f:bc:11:47: 84:be:04:52:bc:00:74:16:2f:99:f8:d4:8a:e1:79: bf:2e:e6:fa:84:b3:60:9c:90:bc:32:b4:9d:30:68: 07:6b:1f:4d:df:63:bf:22:f2:75:2e:bc:b6:53:1a: 0a:bf:a4:25:69:15:c3:99:ee:ef:9d:d5:58:a2:26: b9:19:55:0a:3f:78:c4:2b:6a:fa:af:18:f4:9b:bf: 15:7f:d1:63:6d:d3:40:8a:70:a8:7b:da:9c:62:c0: 03:f7:df:24:da:c4:23:0d:79:7d:18:30:73:7b:b9: b2:70:04:3d:f6:f7:22:54:3a:8c:0f:20:58:a4:81: dc:85:a9:f6:df:2c:9c:ce:5c:33:28:71:46:86:5e: 5e:f1:2b:23:5b:c9:41:5c:eb:e9:9b:96:a2:9e:a3: e4:d6:41:87:02:3a:0b:99:01:4f:80:20:c0:38:fa: 93:88:a3:26:84:ad:d6:f9:f2:11:b3:a5:ca:8a:43: f8:41:6a:82:ad:0a:a6:88:84:57:ae:77:dd:b0:c6: e6:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:7D:B0:F1:34:58:D7:F6:3E:25:07:D2:EF:36:D2:BC:FE:EB:51:81 X509v3 Authority Key Identifier: keyid:17:59:9D:99:A5:31:F8:1B:15:D7:BD:9E:F2:D4:68:98:31:F0:D8:5D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2994/F1mdmaUx-BsV172e8tRomDHw2F0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/F1mdmaUx-BsV172e8tRomDHw2F0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2994/F1mdmaUx-BsV172e8tRomDHw2F0.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:fe:01:d4:16:b8:e3:aa:37:d7:bb:8a:ec:71:c7:85:1d:9d: 41:57:a8:28:11:1f:6f:b8:a5:6a:3a:6d:71:a6:db:ed:16:64: 12:4b:19:66:e0:21:f2:12:b4:31:c3:44:ff:7a:bd:b5:ba:c4: 1d:9a:af:0d:de:c2:c5:bb:18:d5:8c:cd:51:70:06:87:58:29: 57:24:63:04:8a:b0:85:e6:a6:6e:7f:2d:fc:67:9e:4f:93:2a: 04:07:16:2f:cd:53:b5:8f:c6:af:02:aa:84:5d:0b:19:4d:9e: 07:91:9b:22:82:8a:f3:55:11:d8:6b:f0:08:6f:f0:cb:8b:df: 64:28:dc:29:3c:1a:a0:3d:cd:3b:e4:5b:ea:6c:dd:85:36:53: d6:1a:3d:6f:a1:27:22:41:b9:0a:58:f2:bc:9e:37:3f:6c:fe: ab:32:8f:08:05:e7:19:c1:d4:77:75:bd:42:91:d1:3c:5f:8a: 92:b8:c5:de:49:54:d0:df:94:17:8e:0c:ca:57:9b:72:67:bf: 0e:b6:8d:9e:e0:66:cb:f5:c8:72:d8:3a:a4:69:d1:bf:bf:13: 6f:83:b0:06:59:a1:09:ad:45:b0:9a:dd:a8:04:6f:6f:4e:6f: 42:44:78:11:e2:3c:db:16:32:4f:b9:d2:dc:ee:f2:6d:18:1c: 49:b5:da:a0 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBvkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTc1 OTlEOTlBNTMxRjgxQjE1RDdCRDlFRjJENDY4OTgzMUYwRDg1RDAeFw0yNTA5MDgw MTAzMzVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEVCN0RCMEYxMzQ1OEQ3 RjYzRTI1MDdEMkVGMzZEMkJDRkVFQjUxODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC35xzTT3IquurSzZ+gpYHc82e8Cy1I1TJf5kU87Cjh3nYQKE1d Y2hn5Rk0jdSQ6IHviTrcKdBmD7wRR4S+BFK8AHQWL5n41Irheb8u5vqEs2CckLwy tJ0waAdrH03fY78i8nUuvLZTGgq/pCVpFcOZ7u+d1ViiJrkZVQo/eMQravqvGPSb vxV/0WNt00CKcKh72pxiwAP33yTaxCMNeX0YMHN7ubJwBD329yJUOowPIFikgdyF qfbfLJzOXDMocUaGXl7xKyNbyUFc6+mblqKeo+TWQYcCOguZAU+AIMA4+pOIoyaE rdb58hGzpcqKQ/hBaoKtCqaIhFeud92wxuZFAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU632w8TRY1/Y+JQfS7zbSvP7rUYEwHwYDVR0jBBgwFoAUF1mdmaUx+BsV172e 8tRomDHw2F0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjk5 NC9GMW1kbWFVeC1Cc1YxNzJlOHRSb21ESHcyRjAuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0YxbWRtYVV4LUJzVjE3MmU4dFJvbURIdzJGMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI5OTQvRjFtZG1hVXgtQnNW MTcyZTh0Um9tREh3MkYwLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBABH+AdQWuOOqN9e7iuxxx4UdnUFXqCgRH2+4pWo6bXGm2+0WZBJLGWbgIfIS tDHDRP96vbW6xB2arw3ewsW7GNWMzVFwBodYKVckYwSKsIXmpm5/Lfxnnk+TKgQH Fi/NU7WPxq8CqoRdCxlNngeRmyKCivNVEdhr8Ahv8MuL32Qo3Ck8GqA9zTvkW+ps 3YU2U9YaPW+hJyJBuQpY8ryeNz9s/qsyjwgF5xnB1Hd1vUKR0TxfipK4xd5JVNDf lBeODMpXm3Jnvw62jZ7gZsv1yHLYOqRp0b+/E2+DsAZZoQmtRbCa3agEb29Ob0JE eBHiPNsWMk+50tzu8m0YHEm12qA= -----END CERTIFICATE-----Generated at Mon Sep 8 06:17:20 2025 by rpki-client