$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3145/33lDthlXGcWMANEetBElEP3_nJM.mft File: 33lDthlXGcWMANEetBElEP3_nJM.mft (raw, json) Hash identifier: 2T6zMmxIcILinxNnu11cLWAcvUqR45FdAgBkuKNjoq4= Subject key identifier: 14:C5:A4:3B:E8:00:35:45:6D:B1:AA:EF:F7:5F:BD:3F:19:4D:C3:D2 Authority key identifier: DF:79:43:B6:19:57:19:C5:8C:00:D1:1E:B4:11:25:10:FD:FF:9C:93 Certificate issuer: /CN=DF7943B6195719C58C00D11EB4112510FDFF9C93 Certificate serial: 1269 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33lDthlXGcWMANEetBElEP3_nJM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3145/33lDthlXGcWMANEetBElEP3_nJM.mft Manifest number: 1269 Signing time: Fri 22 Nov 2024 10:21:07 +0000 Manifest this update: Fri 22 Nov 2024 10:21:07 +0000 Manifest next update: Fri 22 Nov 2024 16:21:07 +0000 Files and hashes: 1: 33lDthlXGcWMANEetBElEP3_nJM.crl (hash: oxXIq/so0/WGrR414ot6COjS70WpQVG/h1fCZ0LHqXg=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3145/33lDthlXGcWMANEetBElEP3_nJM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3145/33lDthlXGcWMANEetBElEP3_nJM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33lDthlXGcWMANEetBElEP3_nJM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 16:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4713 (0x1269) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF7943B6195719C58C00D11EB4112510FDFF9C93 Validity Not Before: Nov 22 10:21:07 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=14C5A43BE80035456DB1AAEFF75FBD3F194DC3D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ed:75:6c:5a:64:c2:5c:22:d7:fb:f4:44:fa: 51:1c:bd:6d:1c:35:5c:6f:94:89:51:c0:d0:8d:8d: 0c:0a:1d:a6:dd:84:77:5a:16:2a:9b:3b:d6:15:b4: 9c:a8:28:66:2f:fb:16:b9:2e:82:ab:3f:64:f0:d5: fa:d7:b4:4c:3a:60:91:eb:88:c0:c5:54:06:03:c6: 23:f3:46:ac:fa:57:86:e4:91:35:80:6e:04:3e:08: 7d:ff:34:24:61:95:87:e5:26:07:e8:29:05:38:46: 32:b7:88:bb:10:12:c3:30:c7:1b:f5:77:38:a2:6f: 87:48:44:1e:03:95:48:68:e6:5a:91:36:13:c8:1e: 56:68:2d:5f:bb:a3:27:5d:c2:b6:08:68:ba:29:c1: ca:04:26:2e:0e:11:5a:eb:e2:de:07:d9:68:c0:8f: fe:4b:8c:82:df:b2:f1:1c:d8:4c:df:bd:4d:df:6b: 9d:da:11:47:ff:03:e1:4b:d0:60:13:3e:cf:dc:fe: 57:e9:9b:be:7b:57:89:c5:97:c9:2c:87:75:80:66: 45:78:34:d1:0c:f2:19:e0:5a:10:a0:a7:63:e1:24: 95:ce:c6:8f:af:5c:dc:99:92:76:23:10:3b:bf:4c: f6:fd:13:b0:8c:8a:ab:1d:49:8c:e6:14:33:51:c1: ff:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:C5:A4:3B:E8:00:35:45:6D:B1:AA:EF:F7:5F:BD:3F:19:4D:C3:D2 X509v3 Authority Key Identifier: keyid:DF:79:43:B6:19:57:19:C5:8C:00:D1:1E:B4:11:25:10:FD:FF:9C:93 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3145/33lDthlXGcWMANEetBElEP3_nJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33lDthlXGcWMANEetBElEP3_nJM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3145/33lDthlXGcWMANEetBElEP3_nJM.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:15:2c:08:b7:08:4f:83:b6:d8:f2:f3:2d:32:d0:64:47:f1: 0d:5e:56:20:30:84:ba:87:09:78:c5:2b:c7:9f:d4:e8:99:c2: 9b:7a:0d:70:bb:c5:7c:5b:c2:03:e1:f2:6d:56:cc:0b:07:1d: 51:fc:5d:d7:01:94:3c:27:6a:bf:37:60:66:56:e9:88:dc:8f: f5:cc:ff:08:3b:e8:94:f5:aa:08:72:49:37:3a:88:6d:ec:8c: 97:18:df:ff:fa:91:95:dd:d7:18:75:73:fc:a7:b9:d7:ea:b3: b9:94:63:45:d0:ab:fd:d9:53:7e:fb:40:90:cb:b3:5b:4d:58: ae:84:56:b2:45:10:1e:cd:31:5c:01:ec:ab:5a:8d:25:bc:37: ad:f0:88:f8:b0:ec:e8:50:04:88:77:3c:b0:bd:36:f2:83:48: a5:46:cc:8f:c1:ee:4e:ee:9f:e9:2b:8a:8f:d4:b8:63:a5:bd: f3:7f:1f:27:32:47:24:7c:0e:74:f6:7a:df:99:a7:74:bc:04: 1e:85:e0:7f:d4:46:f7:e5:61:b8:dc:d3:fe:59:ac:72:d8:79: c8:fc:15:51:62:f1:79:67:c9:57:bb:ee:01:93:3f:76:98:cb: 43:6c:7f:ae:61:7c:0f:f9:05:86:99:4e:da:7f:2c:5a:25:1b: 80:09:c6:10 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICEmkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREY3 OTQzQjYxOTU3MTlDNThDMDBEMTFFQjQxMTI1MTBGREZGOUM5MzAeFw0yNDExMjIx MDIxMDdaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDE0QzVBNDNCRTgwMDM1 NDU2REIxQUFFRkY3NUZCRDNGMTk0REMzRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDB7XVsWmTCXCLX+/RE+lEcvW0cNVxvlIlRwNCNjQwKHabdhHda FiqbO9YVtJyoKGYv+xa5LoKrP2Tw1frXtEw6YJHriMDFVAYDxiPzRqz6V4bkkTWA bgQ+CH3/NCRhlYflJgfoKQU4RjK3iLsQEsMwxxv1dziib4dIRB4DlUho5lqRNhPI HlZoLV+7oyddwrYIaLopwcoEJi4OEVrr4t4H2WjAj/5LjILfsvEc2EzfvU3fa53a EUf/A+FL0GATPs/c/lfpm757V4nFl8ksh3WAZkV4NNEM8hngWhCgp2PhJJXOxo+v XNyZknYjEDu/TPb9E7CMiqsdSYzmFDNRwf93AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUFMWkO+gANUVtsarv91+9PxlNw9IwHwYDVR0jBBgwFoAU33lDthlXGcWMANEe tBElEP3/nJMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE0 NS8zM2xEdGhsWEdjV01BTkVldEJFbEVQM19uSk0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzMzbER0aGxYR2NXTUFORWV0QkVsRVAzX25KTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNDUvMzNsRHRobFhHY1dN QU5FZXRCRWxFUDNfbkpNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAHgVLAi3CE+Dttjy8y0y0GRH8Q1eViAwhLqHCXjFK8ef1OiZwpt6DXC7xXxb wgPh8m1WzAsHHVH8XdcBlDwnar83YGZW6Yjcj/XM/wg76JT1qghySTc6iG3sjJcY 3//6kZXd1xh1c/ynudfqs7mUY0XQq/3ZU377QJDLs1tNWK6EVrJFEB7NMVwB7Kta jSW8N63wiPiw7OhQBIh3PLC9NvKDSKVGzI/B7k7un+krio/UuGOlvfN/HycyRyR8 DnT2et+Zp3S8BB6F4H/URvflYbjc0/5ZrHLYecj8FVFi8XlnyVe77gGTP3aYy0Ns f65hfA/5BYaZTtp/LFolG4AJxhA= -----END CERTIFICATE-----Generated at Fri Nov 22 16:05:38 2024 by rpki-client on console-fra.rpki-client.org