$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.mft File: 5nly8uDEjmq9G__KM5YicDZJm28.mft (raw, json) Hash identifier: TwacR2ri9ZMPwt35vb+jedJK+P8sP8E1w7YPXWPJAyU= Subject key identifier: E8:1B:8D:2C:D9:AA:BC:34:41:DF:C8:A1:75:68:18:54:1B:6D:89:DC Authority key identifier: E6:79:72:F2:E0:C4:8E:6A:BD:1B:FF:CA:33:96:22:70:36:49:9B:6F Certificate issuer: /CN=E67972F2E0C48E6ABD1BFFCA3396227036499B6F Certificate serial: 0DE8 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5nly8uDEjmq9G__KM5YicDZJm28.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.mft Manifest number: 0DE8 Signing time: Mon 14 Apr 2025 12:36:04 +0000 Manifest this update: Mon 14 Apr 2025 12:36:04 +0000 Manifest next update: Mon 14 Apr 2025 18:36:04 +0000 Files and hashes: 1: 5nly8uDEjmq9G__KM5YicDZJm28.crl (hash: 1nIgIfhkayQCAP7C/+snYVUD38/Xnmex3S+t82DsHrE=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5nly8uDEjmq9G__KM5YicDZJm28.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 18:36:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3560 (0xde8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E67972F2E0C48E6ABD1BFFCA3396227036499B6F Validity Not Before: Apr 14 12:36:04 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=E81B8D2CD9AABC3441DFC8A1756818541B6D89DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:11:47:e9:65:0b:f8:62:f2:4f:c0:1e:78:b5: 8a:c9:c5:07:a5:ab:c1:bd:2c:76:a6:79:a4:ac:7c: bb:50:37:04:83:e6:0d:dd:01:dc:fb:d5:3a:f6:c9: d3:1f:48:43:96:08:34:db:92:0f:54:3c:44:e1:05: 9f:95:d7:94:30:2f:be:81:7f:4b:84:83:93:9e:a9: ce:ae:8b:36:1c:63:fb:d9:49:7c:0e:89:f3:33:f1: e0:eb:56:ec:45:fb:f2:4f:fb:ae:f0:59:3b:7e:b8: 54:68:e7:44:a8:d2:bb:e5:1b:4d:42:e3:2d:ad:dd: 5c:53:b6:05:f2:3c:2d:a4:d7:a8:6c:aa:90:cf:3b: ff:71:b2:50:0f:61:65:b5:5d:bf:1a:33:61:a0:7c: 4e:f0:7b:89:61:c7:ba:1e:ff:6f:91:e6:40:2c:f6: fd:3f:25:3a:64:92:f7:78:8e:e6:b5:2b:58:48:aa: d7:da:26:71:5a:dd:f4:bb:4c:9f:b7:cb:77:2d:df: b3:cb:c8:6c:b9:1f:fe:03:7c:a7:a0:9c:65:ed:06: 97:b3:d6:a3:48:58:e0:ef:b8:7a:46:85:2a:ef:ce: a7:9a:7a:8a:70:10:b2:d1:80:d6:89:33:ba:e4:ba: d4:a5:ea:87:25:6c:0b:c4:8f:97:8f:1d:e8:96:e5: d0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:1B:8D:2C:D9:AA:BC:34:41:DF:C8:A1:75:68:18:54:1B:6D:89:DC X509v3 Authority Key Identifier: keyid:E6:79:72:F2:E0:C4:8E:6A:BD:1B:FF:CA:33:96:22:70:36:49:9B:6F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5nly8uDEjmq9G__KM5YicDZJm28.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:a6:3b:f4:24:6c:c8:c7:26:4a:c1:3f:9f:11:54:84:e6:fb: 9b:2f:f3:65:ff:18:62:8b:36:ef:5f:94:60:b2:8f:51:05:27: f6:9e:2a:30:e9:b9:d4:80:76:71:d8:07:73:d6:0c:30:8d:30: af:c3:66:4e:3b:32:6f:6a:08:41:45:19:43:cc:d8:ec:af:1f: 1e:53:cd:fe:7d:0d:e3:e7:1a:61:db:a5:3b:28:0b:9a:d2:31: d4:33:28:65:df:d6:8a:47:bb:fe:e3:82:1c:00:fd:27:51:8f: 85:e2:71:be:3b:09:30:69:3d:2f:05:3e:c8:43:60:37:a5:76: d5:d6:45:da:a9:5d:e3:c2:7c:9d:0a:43:cd:97:22:76:bb:c7: 70:98:70:29:9e:b4:d8:c3:04:7e:4f:1a:02:75:4b:c0:58:36: 8a:a4:20:fe:f9:19:db:9d:1d:2d:78:2a:16:9b:79:ed:eb:e2: 7e:01:a0:48:09:51:33:ab:27:24:1c:cd:68:d6:81:3e:bf:99: 23:97:b3:93:89:e1:21:23:1e:c1:b2:ba:bc:16:a3:09:35:d0: 74:d0:12:32:b1:b2:e6:6c:35:c7:b6:e8:53:7e:43:09:f3:fd: 06:f3:cd:d2:1d:fd:ce:8e:35:9a:00:cb:20:0f:24:61:90:82: 0d:21:04:7f -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICDegwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTY3 OTcyRjJFMEM0OEU2QUJEMUJGRkNBMzM5NjIyNzAzNjQ5OUI2RjAeFw0yNTA0MTQx MjM2MDRaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEU4MUI4RDJDRDlBQUJD MzQ0MURGQzhBMTc1NjgxODU0MUI2RDg5REMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD8EUfpZQv4YvJPwB54tYrJxQelq8G9LHameaSsfLtQNwSD5g3d Adz71Tr2ydMfSEOWCDTbkg9UPEThBZ+V15QwL76Bf0uEg5Oeqc6uizYcY/vZSXwO ifMz8eDrVuxF+/JP+67wWTt+uFRo50So0rvlG01C4y2t3VxTtgXyPC2k16hsqpDP O/9xslAPYWW1Xb8aM2GgfE7we4lhx7oe/2+R5kAs9v0/JTpkkvd4jua1K1hIqtfa JnFa3fS7TJ+3y3ct37PLyGy5H/4DfKegnGXtBpez1qNIWODvuHpGhSrvzqeaeopw ELLRgNaJM7rkutSl6oclbAvEj5ePHeiW5dA/AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU6BuNLNmqvDRB38ihdWgYVBttidwwHwYDVR0jBBgwFoAU5nly8uDEjmq9G//K M5YicDZJm28wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzIx NS81bmx5OHVERWptcTlHX19LTTVZaWNEWkptMjguY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzVubHk4dURFam1xOUdfX0tNNVlpY0RaSm0yOC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyMTUvNW5seTh1REVqbXE5 R19fS001WWljRFpKbTI4Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAJOmO/QkbMjHJkrBP58RVITm+5sv82X/GGKLNu9flGCyj1EFJ/aeKjDpudSA dnHYB3PWDDCNMK/DZk47Mm9qCEFFGUPM2OyvHx5Tzf59DePnGmHbpTsoC5rSMdQz KGXf1opHu/7jghwA/SdRj4Xicb47CTBpPS8FPshDYDeldtXWRdqpXePCfJ0KQ82X Ina7x3CYcCmetNjDBH5PGgJ1S8BYNoqkIP75GdudHS14Khabee3r4n4BoEgJUTOr JyQczWjWgT6/mSOXs5OJ4SEjHsGyurwWowk10HTQEjKxsuZsNce26FN+Qwnz/Qbz zdId/c6ONZoAyyAPJGGQgg0hBH8= -----END CERTIFICATE-----Generated at Mon Apr 14 17:24:00 2025 by rpki-client