$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.mft File: 5nly8uDEjmq9G__KM5YicDZJm28.mft (raw, json) Hash identifier: Qs9MUZJq5uE9WYXEDmbuBjjUFOZfbKW8qeW2JEAmaSU= Subject key identifier: E8:1B:8D:2C:D9:AA:BC:34:41:DF:C8:A1:75:68:18:54:1B:6D:89:DC Authority key identifier: E6:79:72:F2:E0:C4:8E:6A:BD:1B:FF:CA:33:96:22:70:36:49:9B:6F Certificate issuer: /CN=E67972F2E0C48E6ABD1BFFCA3396227036499B6F Certificate serial: 10BA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5nly8uDEjmq9G__KM5YicDZJm28.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.mft Manifest number: 10BA Signing time: Mon 08 Sep 2025 01:03:17 +0000 Manifest this update: Mon 08 Sep 2025 01:03:17 +0000 Manifest next update: Mon 08 Sep 2025 07:03:17 +0000 Files and hashes: 1: 5nly8uDEjmq9G__KM5YicDZJm28.crl (hash: fM738jdpOTsP9urMOjj0XXAEP58mXBQ6xWPzWd3jRs0=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5nly8uDEjmq9G__KM5YicDZJm28.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 07:03:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4282 (0x10ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E67972F2E0C48E6ABD1BFFCA3396227036499B6F Validity Not Before: Sep 8 01:03:17 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=E81B8D2CD9AABC3441DFC8A1756818541B6D89DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:11:47:e9:65:0b:f8:62:f2:4f:c0:1e:78:b5: 8a:c9:c5:07:a5:ab:c1:bd:2c:76:a6:79:a4:ac:7c: bb:50:37:04:83:e6:0d:dd:01:dc:fb:d5:3a:f6:c9: d3:1f:48:43:96:08:34:db:92:0f:54:3c:44:e1:05: 9f:95:d7:94:30:2f:be:81:7f:4b:84:83:93:9e:a9: ce:ae:8b:36:1c:63:fb:d9:49:7c:0e:89:f3:33:f1: e0:eb:56:ec:45:fb:f2:4f:fb:ae:f0:59:3b:7e:b8: 54:68:e7:44:a8:d2:bb:e5:1b:4d:42:e3:2d:ad:dd: 5c:53:b6:05:f2:3c:2d:a4:d7:a8:6c:aa:90:cf:3b: ff:71:b2:50:0f:61:65:b5:5d:bf:1a:33:61:a0:7c: 4e:f0:7b:89:61:c7:ba:1e:ff:6f:91:e6:40:2c:f6: fd:3f:25:3a:64:92:f7:78:8e:e6:b5:2b:58:48:aa: d7:da:26:71:5a:dd:f4:bb:4c:9f:b7:cb:77:2d:df: b3:cb:c8:6c:b9:1f:fe:03:7c:a7:a0:9c:65:ed:06: 97:b3:d6:a3:48:58:e0:ef:b8:7a:46:85:2a:ef:ce: a7:9a:7a:8a:70:10:b2:d1:80:d6:89:33:ba:e4:ba: d4:a5:ea:87:25:6c:0b:c4:8f:97:8f:1d:e8:96:e5: d0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:1B:8D:2C:D9:AA:BC:34:41:DF:C8:A1:75:68:18:54:1B:6D:89:DC X509v3 Authority Key Identifier: keyid:E6:79:72:F2:E0:C4:8E:6A:BD:1B:FF:CA:33:96:22:70:36:49:9B:6F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5nly8uDEjmq9G__KM5YicDZJm28.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:ce:c3:15:89:51:97:ed:89:3a:7d:66:df:92:90:07:cd:16: 2d:f9:df:5c:bb:c6:aa:a1:ff:68:17:fe:2d:88:bf:f0:55:64: 96:df:85:f9:9e:bc:0e:2f:7a:33:0c:57:91:ee:e5:25:b7:77: d7:ef:c9:0c:93:7e:ad:12:f0:7a:3c:ff:f9:5e:84:f9:36:bd: ed:13:7f:34:8b:f3:c3:35:c3:17:90:db:1f:5e:dd:38:dd:3a: 78:30:a5:33:ed:66:61:16:a6:9b:25:8a:54:52:74:b8:39:df: bd:0b:cc:b0:01:3d:4d:c9:1f:39:d1:d5:43:a8:5b:65:76:b9: 25:8b:8b:64:a7:51:e0:2c:2a:73:20:5e:a4:00:22:6e:4c:53: 98:39:ad:71:c4:73:f1:ca:0a:59:a2:6e:ef:e6:09:24:bf:d0: 5c:fd:ce:bb:0c:fb:9b:5f:44:57:ef:53:80:66:ad:ea:c5:37: 2b:1a:de:79:3a:1e:3d:82:1d:9c:c5:30:75:09:db:b8:64:85: 74:d2:20:4e:75:20:69:3e:47:00:10:09:a4:9c:e5:00:86:1d: 06:29:81:e4:eb:79:cc:45:9d:97:11:4b:b7:3b:83:cd:2b:ba: b1:3b:3d:17:af:d5:fc:03:94:26:22:d3:ff:5c:70:98:7f:8d: 67:96:f5:96 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICELowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTY3 OTcyRjJFMEM0OEU2QUJEMUJGRkNBMzM5NjIyNzAzNjQ5OUI2RjAeFw0yNTA5MDgw MTAzMTdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEU4MUI4RDJDRDlBQUJD MzQ0MURGQzhBMTc1NjgxODU0MUI2RDg5REMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD8EUfpZQv4YvJPwB54tYrJxQelq8G9LHameaSsfLtQNwSD5g3d Adz71Tr2ydMfSEOWCDTbkg9UPEThBZ+V15QwL76Bf0uEg5Oeqc6uizYcY/vZSXwO ifMz8eDrVuxF+/JP+67wWTt+uFRo50So0rvlG01C4y2t3VxTtgXyPC2k16hsqpDP O/9xslAPYWW1Xb8aM2GgfE7we4lhx7oe/2+R5kAs9v0/JTpkkvd4jua1K1hIqtfa JnFa3fS7TJ+3y3ct37PLyGy5H/4DfKegnGXtBpez1qNIWODvuHpGhSrvzqeaeopw ELLRgNaJM7rkutSl6oclbAvEj5ePHeiW5dA/AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU6BuNLNmqvDRB38ihdWgYVBttidwwHwYDVR0jBBgwFoAU5nly8uDEjmq9G//K M5YicDZJm28wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzIx NS81bmx5OHVERWptcTlHX19LTTVZaWNEWkptMjguY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzVubHk4dURFam1xOUdfX0tNNVlpY0RaSm0yOC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyMTUvNW5seTh1REVqbXE5 R19fS001WWljRFpKbTI4Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBACDOwxWJUZftiTp9Zt+SkAfNFi3531y7xqqh/2gX/i2Iv/BVZJbfhfmevA4v ejMMV5Hu5SW3d9fvyQyTfq0S8Ho8//lehPk2ve0TfzSL88M1wxeQ2x9e3TjdOngw pTPtZmEWppslilRSdLg5370LzLABPU3JHznR1UOoW2V2uSWLi2SnUeAsKnMgXqQA Im5MU5g5rXHEc/HKClmibu/mCSS/0Fz9zrsM+5tfRFfvU4BmrerFNysa3nk6Hj2C HZzFMHUJ27hkhXTSIE51IGk+RwAQCaSc5QCGHQYpgeTrecxFnZcRS7c7g80rurE7 PRev1fwDlCYi0/9ccJh/jWeW9ZY= -----END CERTIFICATE-----Generated at Mon Sep 8 05:59:31 2025 by rpki-client