$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3070/yGYvK0iswHfpWADlqpLOFtJuHeo.mft File: yGYvK0iswHfpWADlqpLOFtJuHeo.mft (raw, json) Hash identifier: mkqfVimGnwlk95gXHm0bbaBhErFwAyQbD/ElNkwi8DA= Subject key identifier: 94:7C:DE:36:14:F0:27:AF:B0:FD:1C:6D:9E:D9:F8:27:17:0D:63:27 Authority key identifier: C8:66:2F:2B:48:AC:C0:77:E9:58:00:E5:AA:92:CE:16:D2:6E:1D:EA Certificate issuer: /CN=C8662F2B48ACC077E95800E5AA92CE16D26E1DEA Certificate serial: 31 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yGYvK0iswHfpWADlqpLOFtJuHeo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3070/yGYvK0iswHfpWADlqpLOFtJuHeo.mft Manifest number: 30 Signing time: Sun 20 Jul 2025 06:41:43 +0000 Manifest this update: Sun 20 Jul 2025 06:41:43 +0000 Manifest next update: Sun 20 Jul 2025 12:41:43 +0000 Files and hashes: 1: yGYvK0iswHfpWADlqpLOFtJuHeo.crl (hash: rXWMPWN36QHYEk5oW8FlglpWc9+mt6TY0ma743INnis=) 2: zZRym3sAEvXMrbGWy6aM-nia49Y.roa (hash: 8wcckbKfbYd4haPADmGgIisC8XOKMSGdbXZl/xyBpIc=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3070/yGYvK0iswHfpWADlqpLOFtJuHeo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3070/yGYvK0iswHfpWADlqpLOFtJuHeo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yGYvK0iswHfpWADlqpLOFtJuHeo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Jul 2025 12:41:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8662F2B48ACC077E95800E5AA92CE16D26E1DEA Validity Not Before: Jul 20 06:41:43 2025 GMT Not After : Jul 11 09:56:02 2026 GMT Subject: CN=947CDE3614F027AFB0FD1C6D9ED9F827170D6327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:53:3e:ae:64:8f:6b:31:45:e5:ec:51:02:5b: 5b:15:41:6a:62:0e:d2:df:92:ca:34:b3:fc:9f:d4: d3:f5:93:40:bd:8e:a4:a3:4b:84:38:04:db:3a:bf: df:bb:a9:b7:7a:0f:28:7b:12:48:54:ac:52:48:55: 1e:99:93:0c:10:b7:06:0a:80:3c:0c:98:79:20:67: 1e:2d:33:c3:fb:37:8d:30:7e:ea:17:e1:f2:27:22: c0:a9:fc:2e:a1:53:e5:ac:b5:25:de:93:45:a2:b6: 1b:4a:7b:89:81:2f:32:c2:8d:98:50:f3:23:0b:22: 88:4d:77:2f:90:8b:20:e9:dd:35:35:af:8a:bb:e5: 8f:7e:50:5d:88:98:07:06:9e:3a:e2:8a:81:a7:83: 1a:9a:6b:c0:45:1d:9c:ab:18:52:d4:6d:6d:85:35: 29:a7:08:1f:00:49:4e:97:ec:43:48:f4:5f:54:6e: 0a:1e:6a:7d:a0:5e:45:e1:df:7e:85:fe:22:be:cc: 22:b3:8b:53:86:64:b7:90:c4:60:84:6f:40:a3:0f: 61:e9:29:bd:a7:44:c4:73:64:be:ba:4e:69:e2:dc: 8c:09:40:c0:00:76:9e:81:ab:17:95:d7:53:07:0f: 1f:b2:a1:b6:f7:d2:b4:54:a0:3c:31:43:82:cc:d0: 36:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:7C:DE:36:14:F0:27:AF:B0:FD:1C:6D:9E:D9:F8:27:17:0D:63:27 X509v3 Authority Key Identifier: keyid:C8:66:2F:2B:48:AC:C0:77:E9:58:00:E5:AA:92:CE:16:D2:6E:1D:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3070/yGYvK0iswHfpWADlqpLOFtJuHeo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yGYvK0iswHfpWADlqpLOFtJuHeo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3070/yGYvK0iswHfpWADlqpLOFtJuHeo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:f6:ac:5d:a8:09:f8:4b:7b:57:37:ea:1c:05:3c:f3:0c:f2: ab:84:84:64:bd:61:c5:94:77:36:54:2b:50:e2:35:c3:68:c0: 70:ab:6b:e3:e2:03:bb:d3:ce:8c:bf:dd:65:67:fa:82:37:10: 35:58:1a:4f:c9:91:4a:70:97:94:4a:ef:8b:7f:bb:38:5e:58: 4e:61:70:69:75:c7:c9:26:d9:03:17:c8:6f:0e:26:eb:16:3d: 22:2d:cc:dd:4a:55:ef:6e:3c:7d:10:fb:f5:44:4f:1d:28:a1: 4b:b7:f9:87:a3:b1:2e:d8:2d:47:7f:dc:db:3e:36:45:9f:66: 42:4a:88:3b:a2:06:c6:29:ca:52:f9:1b:1f:cc:4c:2e:7e:40: ad:07:e9:19:f0:d2:e2:79:2e:27:08:92:86:65:de:3e:58:f2: f2:ae:06:dd:b4:99:fc:37:33:2a:fb:3d:83:f5:cc:65:4e:61: 15:58:cd:7b:de:ef:bd:2c:59:97:5b:87:29:c2:dc:9d:98:c5: 41:b0:59:17:99:ff:c7:a8:15:e1:d5:5b:ec:34:74:55:e5:f3: db:ca:f4:48:a8:85:3f:8a:6d:43:13:57:ff:20:9a:f7:1d:6a: e7:bf:b9:70:63:5a:6d:b4:17:54:da:75:00:ae:a2:19:0d:e2: ff:f3:42:22 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgIBMTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDODY2 MkYyQjQ4QUNDMDc3RTk1ODAwRTVBQTkyQ0UxNkQyNkUxREVBMB4XDTI1MDcyMDA2 NDE0M1oXDTI2MDcxMTA5NTYwMlowMzExMC8GA1UEAxMoOTQ3Q0RFMzYxNEYwMjdB RkIwRkQxQzZEOUVEOUY4MjcxNzBENjMyNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKNTPq5kj2sxReXsUQJbWxVBamIO0t+SyjSz/J/U0/WTQL2OpKNL hDgE2zq/37upt3oPKHsSSFSsUkhVHpmTDBC3BgqAPAyYeSBnHi0zw/s3jTB+6hfh 8iciwKn8LqFT5ay1Jd6TRaK2G0p7iYEvMsKNmFDzIwsiiE13L5CLIOndNTWvirvl j35QXYiYBwaeOuKKgaeDGpprwEUdnKsYUtRtbYU1KacIHwBJTpfsQ0j0X1RuCh5q faBeReHffoX+Ir7MIrOLU4Zkt5DEYIRvQKMPYekpvadExHNkvrpOaeLcjAlAwAB2 noGrF5XXUwcPH7KhtvfStFSgPDFDgszQNi0CAwEAAaOCAgwwggIIMB0GA1UdDgQW BBSUfN42FPAnr7D9HG2e2fgnFw1jJzAfBgNVHSMEGDAWgBTIZi8rSKzAd+lYAOWq ks4W0m4d6jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMDcw L3lHWXZLMGlzd0hmcFdBRGxxcExPRnRKdUhlby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveUdZdkswaXN3SGZwV0FEbHFwTE9GdEp1SGVvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA3MC95R1l2SzBpc3dIZnBX QURscXBMT0Z0SnVIZW8ubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPvasXagJ+Et7VzfqHAU88wzyq4SEZL1hxZR3NlQrUOI1w2jAcKtr4+IDu9PO jL/dZWf6gjcQNVgaT8mRSnCXlErvi3+7OF5YTmFwaXXHySbZAxfIbw4m6xY9Ii3M 3UpV7248fRD79URPHSihS7f5h6OxLtgtR3/c2z42RZ9mQkqIO6IGxinKUvkbH8xM Ln5ArQfpGfDS4nkuJwiShmXePljy8q4G3bSZ/DczKvs9g/XMZU5hFVjNe97vvSxZ l1uHKcLcnZjFQbBZF5n/x6gV4dVb7DR0VeXz28r0SKiFP4ptQxNX/yCa9x1q57+5 cGNabbQXVNp1AK6iGQ3i//NCIg== -----END CERTIFICATE-----Generated at Sun Jul 20 12:37:50 2025 by rpki-client