$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3145/33lDthlXGcWMANEetBElEP3_nJM.mft File: 33lDthlXGcWMANEetBElEP3_nJM.mft (raw, json) Hash identifier: txcPTGvJTngTpwh/bd9WU3jDiUWXdeOuSwLHj8SYn0c= Subject key identifier: 14:C5:A4:3B:E8:00:35:45:6D:B1:AA:EF:F7:5F:BD:3F:19:4D:C3:D2 Authority key identifier: DF:79:43:B6:19:57:19:C5:8C:00:D1:1E:B4:11:25:10:FD:FF:9C:93 Certificate issuer: /CN=DF7943B6195719C58C00D11EB4112510FDFF9C93 Certificate serial: 0F10 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33lDthlXGcWMANEetBElEP3_nJM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3145/33lDthlXGcWMANEetBElEP3_nJM.mft Manifest number: 0F10 Signing time: Sun 02 Jun 2024 08:54:48 +0000 Manifest this update: Sun 02 Jun 2024 08:54:48 +0000 Manifest next update: Sun 02 Jun 2024 14:54:48 +0000 Files and hashes: 1: 33lDthlXGcWMANEetBElEP3_nJM.crl (hash: fm8LQzEhhcONM+2TjzkUOWvR4CbnlgM29fcv+4LJNDY=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3145/33lDthlXGcWMANEetBElEP3_nJM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3145/33lDthlXGcWMANEetBElEP3_nJM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33lDthlXGcWMANEetBElEP3_nJM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 11:57:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3856 (0xf10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF7943B6195719C58C00D11EB4112510FDFF9C93 Validity Not Before: Jun 2 08:54:48 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=14C5A43BE80035456DB1AAEFF75FBD3F194DC3D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ed:75:6c:5a:64:c2:5c:22:d7:fb:f4:44:fa: 51:1c:bd:6d:1c:35:5c:6f:94:89:51:c0:d0:8d:8d: 0c:0a:1d:a6:dd:84:77:5a:16:2a:9b:3b:d6:15:b4: 9c:a8:28:66:2f:fb:16:b9:2e:82:ab:3f:64:f0:d5: fa:d7:b4:4c:3a:60:91:eb:88:c0:c5:54:06:03:c6: 23:f3:46:ac:fa:57:86:e4:91:35:80:6e:04:3e:08: 7d:ff:34:24:61:95:87:e5:26:07:e8:29:05:38:46: 32:b7:88:bb:10:12:c3:30:c7:1b:f5:77:38:a2:6f: 87:48:44:1e:03:95:48:68:e6:5a:91:36:13:c8:1e: 56:68:2d:5f:bb:a3:27:5d:c2:b6:08:68:ba:29:c1: ca:04:26:2e:0e:11:5a:eb:e2:de:07:d9:68:c0:8f: fe:4b:8c:82:df:b2:f1:1c:d8:4c:df:bd:4d:df:6b: 9d:da:11:47:ff:03:e1:4b:d0:60:13:3e:cf:dc:fe: 57:e9:9b:be:7b:57:89:c5:97:c9:2c:87:75:80:66: 45:78:34:d1:0c:f2:19:e0:5a:10:a0:a7:63:e1:24: 95:ce:c6:8f:af:5c:dc:99:92:76:23:10:3b:bf:4c: f6:fd:13:b0:8c:8a:ab:1d:49:8c:e6:14:33:51:c1: ff:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:C5:A4:3B:E8:00:35:45:6D:B1:AA:EF:F7:5F:BD:3F:19:4D:C3:D2 X509v3 Authority Key Identifier: keyid:DF:79:43:B6:19:57:19:C5:8C:00:D1:1E:B4:11:25:10:FD:FF:9C:93 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3145/33lDthlXGcWMANEetBElEP3_nJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33lDthlXGcWMANEetBElEP3_nJM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3145/33lDthlXGcWMANEetBElEP3_nJM.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:20:96:6a:ce:e4:1b:7c:c5:cd:8c:75:4a:b9:31:1f:7b:89: 91:5a:20:fb:48:32:be:71:3d:59:3f:a9:89:14:19:ca:fa:c8: a6:c7:c1:ae:8d:0d:69:4b:c9:ad:ef:50:23:33:08:c3:0d:d3: e4:bf:06:86:82:d6:c3:05:0e:37:38:8c:ff:52:fa:c1:f2:23: d6:66:30:be:f3:b9:93:e5:03:6e:af:c8:d7:a3:90:e3:78:14: 27:19:46:22:d7:d2:ac:62:3c:31:ab:42:73:04:c4:30:73:44: 68:69:d9:6f:a1:cf:18:06:08:07:5b:bd:e6:27:e2:dc:f3:dc: fa:70:b9:04:61:27:70:57:e1:14:b6:e6:f0:59:94:62:4f:5d: b6:9c:dd:8f:68:01:26:1d:a3:a0:bf:19:8a:09:13:ee:5d:8f: 02:23:03:d6:7a:8c:5c:b6:70:be:ef:46:a2:01:55:4a:66:50: 88:9c:dc:be:8c:4c:bf:31:c2:82:8f:38:e7:d3:28:5d:77:de: 72:38:96:b1:e4:d3:71:1e:ed:0c:57:e0:62:62:76:71:39:89: 65:34:eb:db:88:03:12:f4:3b:39:f5:c3:09:02:d6:33:c2:53: 20:c3:7c:de:7a:87:84:45:9c:8c:01:04:e9:9f:a1:6a:78:3b: 44:56:10:d6 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICDxAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREY3 OTQzQjYxOTU3MTlDNThDMDBEMTFFQjQxMTI1MTBGREZGOUM5MzAeFw0yNDA2MDIw ODU0NDhaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDE0QzVBNDNCRTgwMDM1 NDU2REIxQUFFRkY3NUZCRDNGMTk0REMzRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDB7XVsWmTCXCLX+/RE+lEcvW0cNVxvlIlRwNCNjQwKHabdhHda FiqbO9YVtJyoKGYv+xa5LoKrP2Tw1frXtEw6YJHriMDFVAYDxiPzRqz6V4bkkTWA bgQ+CH3/NCRhlYflJgfoKQU4RjK3iLsQEsMwxxv1dziib4dIRB4DlUho5lqRNhPI HlZoLV+7oyddwrYIaLopwcoEJi4OEVrr4t4H2WjAj/5LjILfsvEc2EzfvU3fa53a EUf/A+FL0GATPs/c/lfpm757V4nFl8ksh3WAZkV4NNEM8hngWhCgp2PhJJXOxo+v XNyZknYjEDu/TPb9E7CMiqsdSYzmFDNRwf93AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUFMWkO+gANUVtsarv91+9PxlNw9IwHwYDVR0jBBgwFoAU33lDthlXGcWMANEe tBElEP3/nJMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE0 NS8zM2xEdGhsWEdjV01BTkVldEJFbEVQM19uSk0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzMzbER0aGxYR2NXTUFORWV0QkVsRVAzX25KTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNDUvMzNsRHRobFhHY1dN QU5FZXRCRWxFUDNfbkpNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBADoglmrO5Bt8xc2MdUq5MR97iZFaIPtIMr5xPVk/qYkUGcr6yKbHwa6NDWlL ya3vUCMzCMMN0+S/BoaC1sMFDjc4jP9S+sHyI9ZmML7zuZPlA26vyNejkON4FCcZ RiLX0qxiPDGrQnMExDBzRGhp2W+hzxgGCAdbveYn4tzz3PpwuQRhJ3BX4RS25vBZ lGJPXbac3Y9oASYdo6C/GYoJE+5djwIjA9Z6jFy2cL7vRqIBVUpmUIic3L6MTL8x woKPOOfTKF133nI4lrHk03Ee7QxX4GJidnE5iWU069uIAxL0Ozn1wwkC1jPCUyDD fN56h4RFnIwBBOmfoWp4O0RWENY= -----END CERTIFICATE-----Generated at Sun Jun 2 11:22:05 2024 by rpki-client on console-ams.rpki-client.org