$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3146/X0ePQ_Cvj-rMuB7cepx2FDGAyas.mft File: X0ePQ_Cvj-rMuB7cepx2FDGAyas.mft (raw, json) Hash identifier: U4Ne7qdppByJp1KM6gTEbaGBmAN9HobxDJMcUnl5tYA= Subject key identifier: 04:0D:F0:59:13:49:3C:9D:48:21:57:AE:80:F2:7C:54:14:38:C0:A1 Authority key identifier: 5F:47:8F:43:F0:AF:8F:EA:CC:B8:1E:DC:7A:9C:76:14:31:80:C9:AB Certificate issuer: /CN=5F478F43F0AF8FEACCB81EDC7A9C76143180C9AB Certificate serial: 2D7F Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/X0ePQ_Cvj-rMuB7cepx2FDGAyas.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/X0ePQ_Cvj-rMuB7cepx2FDGAyas.mft Manifest number: 2D74 Signing time: Fri 22 Nov 2024 15:21:33 +0000 Manifest this update: Fri 22 Nov 2024 15:21:33 +0000 Manifest next update: Fri 22 Nov 2024 21:21:33 +0000 Files and hashes: 1: X0ePQ_Cvj-rMuB7cepx2FDGAyas.crl (hash: EJtxQQHS6skSo/lwk+WlkTofCqDlzDYywnWq8ZQf9/M=) 2: mYuMh8RZwHblW9vpBBxM4YFzBmk.roa (hash: 3oTv5O8d+q1+iLsqrQ66x5XP5IxP2Xe8t6XLA/aPXOw=) 3: o-uE52XBn3MRXPQPm6BhHmXcrSo.roa (hash: PrVf1zpUWN9fpoED4q34+0UuSN/dI4vJIV/D0MyL5dQ=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/X0ePQ_Cvj-rMuB7cepx2FDGAyas.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/X0ePQ_Cvj-rMuB7cepx2FDGAyas.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/X0ePQ_Cvj-rMuB7cepx2FDGAyas.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 19:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11647 (0x2d7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5F478F43F0AF8FEACCB81EDC7A9C76143180C9AB Validity Not Before: Nov 22 15:21:33 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=040DF05913493C9D482157AE80F27C541438C0A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:af:a8:14:80:90:87:92:2f:e6:0a:dc:f8:05: a1:e3:cf:05:f7:8b:7a:2b:e0:d9:5e:02:a9:0b:ff: 06:71:bc:6e:ec:81:bf:f7:ac:92:7c:c8:88:90:2a: 37:49:b7:c6:4d:ba:f0:9a:80:e2:37:fa:31:59:c6: c6:e8:6e:22:94:49:32:14:4d:33:2c:4f:52:7b:60: 74:ac:6b:d3:1e:03:80:88:d5:21:15:b1:a4:fc:d9: 63:61:30:33:17:f0:db:18:33:df:06:87:75:14:5b: af:72:ff:9d:ab:5a:98:3a:e1:dd:e7:0c:e7:7e:01: 7c:ac:b1:f6:71:90:0e:ad:a2:22:f8:19:ce:dd:1b: 75:78:cc:5c:ea:97:07:03:c9:e4:bf:36:4d:aa:12: 7e:b5:9e:d1:33:40:b2:32:44:58:6c:89:9c:0b:df: cb:66:85:e4:bc:53:74:62:fd:36:95:c9:1c:07:92: 91:76:c1:3c:03:3d:08:d3:d9:12:ad:2f:9e:9c:69: fc:8b:43:0e:95:0e:5d:7e:ca:55:f3:17:03:21:eb: a3:c3:89:33:83:4c:55:4f:52:4b:d8:22:97:9a:2b: f4:f4:05:62:56:60:ca:b6:c7:b6:a7:c5:a4:73:2b: 6a:d4:b8:37:15:d8:d2:54:88:46:6d:75:d2:89:1a: a0:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:0D:F0:59:13:49:3C:9D:48:21:57:AE:80:F2:7C:54:14:38:C0:A1 X509v3 Authority Key Identifier: keyid:5F:47:8F:43:F0:AF:8F:EA:CC:B8:1E:DC:7A:9C:76:14:31:80:C9:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/X0ePQ_Cvj-rMuB7cepx2FDGAyas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/X0ePQ_Cvj-rMuB7cepx2FDGAyas.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/X0ePQ_Cvj-rMuB7cepx2FDGAyas.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:1a:28:41:3f:cc:f4:4e:5e:c6:f5:c3:4f:0f:e6:81:6a:3d: 50:b2:ff:73:ec:fa:25:36:0c:01:58:f9:51:c5:32:bb:c0:cd: b0:67:1c:45:cf:ef:5d:e5:26:ef:5b:f3:62:e8:2d:d3:1b:63: 27:7b:2a:15:7b:81:79:0e:7c:40:c5:a3:69:76:78:c1:91:97: 1b:05:f0:ce:5b:61:ea:8f:83:f5:93:bd:71:6b:8d:ad:05:a0: 44:28:6f:ff:b0:ef:8e:b0:b5:52:b4:18:52:78:bf:08:82:22: 38:b2:e7:b0:83:3e:b0:c3:61:d6:ad:1a:d2:44:98:11:bd:96: eb:c6:21:08:df:69:98:a6:ae:38:be:86:45:d2:07:79:c9:26: ef:95:c6:41:c0:85:69:32:23:9c:b4:19:96:b1:d7:b5:e7:b0: c0:fc:c8:3b:b4:60:01:6c:6b:45:8e:2e:21:6f:27:9d:34:dd: 22:ea:1d:f0:f0:5d:8f:b7:06:55:e2:a8:98:a5:c5:c4:4a:6b: 4d:46:5f:58:f2:e3:08:b2:b4:ac:3e:00:23:0c:cd:f6:55:a7: 18:ac:89:ee:b0:92:0f:d6:00:1f:1d:bc:f7:1c:2c:14:75:f5: d4:5a:15:d9:41:0f:39:2f:ee:f5:06:6a:82:1f:38:a6:ac:69: b7:2d:87:a4 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICLX8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUY0 NzhGNDNGMEFGOEZFQUNDQjgxRURDN0E5Qzc2MTQzMTgwQzlBQjAeFw0yNDExMjIx NTIxMzNaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDA0MERGMDU5MTM0OTND OUQ0ODIxNTdBRTgwRjI3QzU0MTQzOEMwQTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrr6gUgJCHki/mCtz4BaHjzwX3i3or4NleAqkL/wZxvG7sgb/3 rJJ8yIiQKjdJt8ZNuvCagOI3+jFZxsbobiKUSTIUTTMsT1J7YHSsa9MeA4CI1SEV saT82WNhMDMX8NsYM98Gh3UUW69y/52rWpg64d3nDOd+AXyssfZxkA6toiL4Gc7d G3V4zFzqlwcDyeS/Nk2qEn61ntEzQLIyRFhsiZwL38tmheS8U3Ri/TaVyRwHkpF2 wTwDPQjT2RKtL56cafyLQw6VDl1+ylXzFwMh66PDiTODTFVPUkvYIpeaK/T0BWJW YMq2x7anxaRzK2rUuDcV2NJUiEZtddKJGqCZAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUBA3wWRNJPJ1IIVeugPJ8VBQ4wKEwHwYDVR0jBBgwFoAUX0ePQ/Cvj+rMuB7c epx2FDGAyaswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE0 Ni9YMGVQUV9Ddmotck11QjdjZXB4MkZER0F5YXMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1gwZVBRX0N2ai1yTXVCN2NlcHgyRkRHQXlhcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNDYvWDBlUFFfQ3ZqLXJN dUI3Y2VweDJGREdBeWFzLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAHQaKEE/zPROXsb1w08P5oFqPVCy/3Ps+iU2DAFY+VHFMrvAzbBnHEXP713l Ju9b82LoLdMbYyd7KhV7gXkOfEDFo2l2eMGRlxsF8M5bYeqPg/WTvXFrja0FoEQo b/+w746wtVK0GFJ4vwiCIjiy57CDPrDDYdatGtJEmBG9luvGIQjfaZimrji+hkXS B3nJJu+VxkHAhWkyI5y0GZax17XnsMD8yDu0YAFsa0WOLiFvJ5003SLqHfDwXY+3 BlXiqJilxcRKa01GX1jy4wiytKw+ACMMzfZVpxisie6wkg/WAB8dvPccLBR19dRa FdlBDzkv7vUGaoIfOKasabcth6Q= -----END CERTIFICATE-----Generated at Fri Nov 22 17:36:46 2024 by rpki-client on console-ams.rpki-client.org