$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3224/D1ffNJk0GeUIMAyS3GhFGYmw9VM.mft File: D1ffNJk0GeUIMAyS3GhFGYmw9VM.mft (raw, json) Hash identifier: JEBvWg5YEc9w0rYavWqCRw9pd1fckP9OMnll2rG03CU= Subject key identifier: E3:49:85:A2:81:67:74:E0:0A:8C:B7:B4:FB:AE:68:94:13:5F:11:88 Authority key identifier: 0F:57:DF:34:99:34:19:E5:08:30:0C:92:DC:68:45:19:89:B0:F5:53 Certificate issuer: /CN=0F57DF34993419E508300C92DC68451989B0F553 Certificate serial: 0700 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/D1ffNJk0GeUIMAyS3GhFGYmw9VM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3224/D1ffNJk0GeUIMAyS3GhFGYmw9VM.mft Manifest number: 0700 Signing time: Mon 17 Jun 2024 21:56:21 +0000 Manifest this update: Mon 17 Jun 2024 21:56:21 +0000 Manifest next update: Tue 18 Jun 2024 03:56:21 +0000 Files and hashes: 1: D1ffNJk0GeUIMAyS3GhFGYmw9VM.crl (hash: iy1q6Acc7QDaiovow7LZe//40vpmndmy0nTJrECDa38=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3224/D1ffNJk0GeUIMAyS3GhFGYmw9VM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3224/D1ffNJk0GeUIMAyS3GhFGYmw9VM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/D1ffNJk0GeUIMAyS3GhFGYmw9VM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Jun 2024 03:56:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1792 (0x700) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0F57DF34993419E508300C92DC68451989B0F553 Validity Not Before: Jun 17 21:56:21 2024 GMT Not After : Oct 8 00:16:33 2024 GMT Subject: CN=E34985A2816774E00A8CB7B4FBAE6894135F1188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:76:7c:06:07:a7:f3:b5:c4:8a:2d:fc:6d:1b: 40:32:6d:a8:3e:1d:fb:0b:e2:ac:e2:74:e8:8b:fc: 35:76:d2:9a:e5:79:4f:a5:1d:98:83:df:8b:4d:91: 9c:3e:58:52:83:ea:84:79:89:25:03:a6:b1:14:25: 41:72:b5:d3:4d:7f:1e:f0:f5:f2:6c:51:c3:e1:17: 5c:4f:50:f1:48:e7:d7:e7:4a:1c:43:3b:af:c8:58: 40:c7:12:36:14:12:0b:ca:75:22:7b:78:cc:b0:29: 0b:af:03:a9:2e:66:97:03:6a:38:3f:42:44:3e:c3: 49:6d:d2:88:5e:62:4f:f7:aa:aa:d7:e5:39:ff:29: 34:b1:64:ec:07:32:4c:a3:6e:6a:06:29:60:ec:71: d1:cd:f1:89:28:a7:e7:94:9c:5d:23:17:2c:29:ea: 8d:76:dd:7c:b8:8e:f9:c3:13:e9:1e:9e:a6:13:d1: ed:97:99:f0:cb:40:6d:fe:1f:90:e0:ca:37:1e:ce: 50:0a:95:aa:3d:5d:a9:a5:f1:0d:4d:f2:5e:7e:06: 54:a4:b3:5c:60:15:a5:e0:f6:39:25:79:b2:c6:30: 44:b9:92:e9:85:8f:85:89:c5:c1:86:c9:ae:97:39: 59:38:ab:fd:3b:da:75:07:dd:ee:63:3a:60:17:c9: 8b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:49:85:A2:81:67:74:E0:0A:8C:B7:B4:FB:AE:68:94:13:5F:11:88 X509v3 Authority Key Identifier: keyid:0F:57:DF:34:99:34:19:E5:08:30:0C:92:DC:68:45:19:89:B0:F5:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3224/D1ffNJk0GeUIMAyS3GhFGYmw9VM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/D1ffNJk0GeUIMAyS3GhFGYmw9VM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3224/D1ffNJk0GeUIMAyS3GhFGYmw9VM.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:7d:d4:5d:8f:07:fd:ed:b8:e0:47:a9:d8:10:86:bd:4c:f1: a4:4e:b3:10:34:fa:c5:1c:72:8a:b6:6b:ee:81:b2:7c:da:19: 4d:fa:62:ed:7f:df:ee:b9:eb:f4:ed:5d:0c:69:03:d7:7f:f3: 6a:cf:d1:fb:c3:d7:23:fc:1d:2b:c1:d5:c2:bb:cf:da:e8:6b: 73:6b:d1:88:c4:31:7e:98:53:ae:b1:85:cf:47:4b:71:5a:a1: d2:8c:1b:70:ac:aa:db:9b:22:2d:a0:b6:0a:e9:53:56:f5:3a: 4e:1c:27:74:a6:69:88:0b:0d:5b:67:7d:7c:f1:2a:07:74:02: 01:26:63:6a:3b:12:9f:f5:fe:d5:93:96:2f:9d:9a:f7:92:7c: 5c:89:fa:64:a1:59:fa:02:d7:9f:f3:7d:43:a9:c3:de:94:e0: 3c:8f:cf:19:75:0e:be:80:86:1b:a3:71:bc:ff:ff:68:33:df: 89:a6:e9:d7:7c:69:05:1f:5b:f7:00:cd:a6:66:b7:3d:d4:03: e0:9b:f6:e9:4a:b8:ae:f8:0c:2c:c6:85:2b:58:b7:a7:88:1e: 10:4c:16:83:ef:a3:2c:77:a8:07:bf:d6:60:13:2a:1b:b9:04: 67:f4:a4:63:4e:0e:fc:f9:d4:53:30:e0:31:af:d9:1c:41:1c: bf:d5:61:72 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBwAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEY1 N0RGMzQ5OTM0MTlFNTA4MzAwQzkyREM2ODQ1MTk4OUIwRjU1MzAeFw0yNDA2MTcy MTU2MjFaFw0yNDEwMDgwMDE2MzNaMDMxMTAvBgNVBAMTKEUzNDk4NUEyODE2Nzc0 RTAwQThDQjdCNEZCQUU2ODk0MTM1RjExODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1dnwGB6fztcSKLfxtG0Aybag+HfsL4qzidOiL/DV20prleU+l HZiD34tNkZw+WFKD6oR5iSUDprEUJUFytdNNfx7w9fJsUcPhF1xPUPFI59fnShxD O6/IWEDHEjYUEgvKdSJ7eMywKQuvA6kuZpcDajg/QkQ+w0lt0oheYk/3qqrX5Tn/ KTSxZOwHMkyjbmoGKWDscdHN8Ykop+eUnF0jFywp6o123Xy4jvnDE+kenqYT0e2X mfDLQG3+H5DgyjcezlAKlao9Xaml8Q1N8l5+BlSks1xgFaXg9jklebLGMES5kumF j4WJxcGGya6XOVk4q/072nUH3e5jOmAXyYufAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU40mFooFndOAKjLe0+65olBNfEYgwHwYDVR0jBBgwFoAUD1ffNJk0GeUIMAyS 3GhFGYmw9VMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzIy NC9EMWZmTkprMEdlVUlNQXlTM0doRkdZbXc5Vk0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0QxZmZOSmswR2VVSU1BeVMzR2hGR1ltdzlWTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyMjQvRDFmZk5KazBHZVVJ TUF5UzNHaEZHWW13OVZNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBACV91F2PB/3tuOBHqdgQhr1M8aROsxA0+sUccoq2a+6BsnzaGU36Yu1/3+65 6/TtXQxpA9d/82rP0fvD1yP8HSvB1cK7z9roa3Nr0YjEMX6YU66xhc9HS3FaodKM G3CsqtubIi2gtgrpU1b1Ok4cJ3SmaYgLDVtnfXzxKgd0AgEmY2o7Ep/1/tWTli+d mveSfFyJ+mShWfoC15/zfUOpw96U4DyPzxl1Dr6Ahhujcbz//2gz34mm6dd8aQUf W/cAzaZmtz3UA+Cb9ulKuK74DCzGhStYt6eIHhBMFoPvoyx3qAe/1mATKhu5BGf0 pGNODvz51FMw4DGv2RxBHL/VYXI= -----END CERTIFICATE-----Generated at Tue Jun 18 00:32:38 2024 by rpki-client on console-ams.rpki-client.org