$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3258/kPMOHfMn0QOQfxvgjtPqZL-3eOM.mft File: kPMOHfMn0QOQfxvgjtPqZL-3eOM.mft (raw, json) Hash identifier: wAZWA0ab7Gn6iPmQptoOiARgSLOK2Gh4ZMN4RqWjU88= Subject key identifier: F7:CE:72:31:FE:6F:7D:35:AC:67:E1:25:13:0F:01:40:32:45:BB:CE Authority key identifier: 90:F3:0E:1D:F3:27:D1:03:90:7F:1B:E0:8E:D3:EA:64:BF:B7:78:E3 Certificate issuer: /CN=90F30E1DF327D103907F1BE08ED3EA64BFB778E3 Certificate serial: 05F8 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kPMOHfMn0QOQfxvgjtPqZL-3eOM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3258/kPMOHfMn0QOQfxvgjtPqZL-3eOM.mft Manifest number: 05F6 Signing time: Fri 22 Nov 2024 05:22:57 +0000 Manifest this update: Fri 22 Nov 2024 05:22:57 +0000 Manifest next update: Fri 22 Nov 2024 11:22:57 +0000 Files and hashes: 1: kPMOHfMn0QOQfxvgjtPqZL-3eOM.crl (hash: B+POJNjsUU5UGxh5ZetmU8mAXOv39ebBPrLW/H9iux8=) 2: z6ifoglfIbV3a7GG25WG9QkRLRI.roa (hash: UItSWcv7JaCw3uv0J4HiXaRiuGKlxQXa1/jFqFMYxJI=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3258/kPMOHfMn0QOQfxvgjtPqZL-3eOM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3258/kPMOHfMn0QOQfxvgjtPqZL-3eOM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kPMOHfMn0QOQfxvgjtPqZL-3eOM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 08:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1528 (0x5f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90F30E1DF327D103907F1BE08ED3EA64BFB778E3 Validity Not Before: Nov 22 05:22:57 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=F7CE7231FE6F7D35AC67E125130F01403245BBCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:17:cd:57:be:fe:14:84:57:30:f0:64:79:4f: fe:86:52:f9:94:99:db:ee:be:6b:7c:2e:c6:ad:a7: d2:8f:b5:7b:ea:3b:38:7d:1d:b7:ec:45:19:15:95: 0a:c3:56:ba:78:7b:ea:a0:5b:fc:09:f9:8c:2f:33: 36:a8:c7:a2:89:ef:ab:26:8f:90:e4:8c:f1:90:02: 6f:3c:40:d3:e8:96:70:1a:d4:d6:c2:4e:95:c2:9a: 12:9e:ec:9f:ab:8f:64:45:bc:54:43:a2:fa:46:16: 9f:3c:32:7e:26:a3:47:f3:1a:87:0b:67:c8:c4:e3: 23:ed:62:52:b1:bc:a6:5e:e7:66:ec:e0:c6:a7:25: d2:ea:75:e5:81:9d:b0:8b:d7:ee:98:06:11:f2:35: d1:87:7c:a5:02:89:e0:65:e5:b4:05:38:fe:d9:e9: 6e:92:b0:2f:28:b2:59:0c:66:27:a0:aa:a5:01:ac: 58:eb:7e:3d:12:fb:eb:0f:a1:9b:02:cf:2f:e2:70: f5:40:fa:b3:92:25:64:a1:eb:a0:cd:57:11:b8:f4: 35:e2:92:21:db:d8:b5:86:1d:02:a2:e9:d8:31:1e: 0b:7a:da:5b:df:0c:bc:2c:c3:75:e1:89:27:97:cb: 12:7c:a2:ac:8e:ba:9a:2f:e9:21:78:35:47:61:d7: df:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:CE:72:31:FE:6F:7D:35:AC:67:E1:25:13:0F:01:40:32:45:BB:CE X509v3 Authority Key Identifier: keyid:90:F3:0E:1D:F3:27:D1:03:90:7F:1B:E0:8E:D3:EA:64:BF:B7:78:E3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3258/kPMOHfMn0QOQfxvgjtPqZL-3eOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kPMOHfMn0QOQfxvgjtPqZL-3eOM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3258/kPMOHfMn0QOQfxvgjtPqZL-3eOM.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:50:39:31:f5:16:08:ec:0f:85:5c:c5:52:5c:8d:e6:fd:66: 99:43:5d:a8:30:72:61:fd:94:e1:d3:22:6d:ae:9c:70:d3:ab: cc:f9:06:90:95:9f:2d:6a:cb:dd:14:fa:ad:ab:fb:29:cb:85: a4:c5:e3:d3:e6:b0:fa:38:48:e4:af:1f:84:68:d6:d2:ba:1b: f7:1d:e8:24:45:41:6c:95:f6:1d:b5:ac:cb:5a:bb:0d:51:7b: 7e:3b:7f:5f:d9:e3:a3:dd:3d:0f:90:4f:53:58:58:ff:f8:e3: f0:11:29:ea:68:75:86:43:34:e9:38:db:8f:3e:4b:5e:0b:4d: 6d:f5:dc:d5:af:18:02:a2:be:63:51:97:42:d3:83:19:a5:eb: d1:e8:b1:63:d6:3b:85:d1:94:51:3e:ec:c0:ad:fa:c1:de:b4: 6e:07:62:0b:fc:e3:75:39:13:57:94:b1:f1:dc:59:a4:c9:57: 70:55:84:c8:05:49:dd:9a:47:c1:28:f9:3f:24:41:d3:f3:36: b7:93:1d:0e:2b:89:07:d6:cd:b9:d3:47:aa:f3:be:70:6b:99: c9:30:d4:91:06:47:b8:c3:57:57:9e:0a:2e:20:d2:c3:08:eb: 8b:9d:38:df:08:8a:07:da:c4:be:89:e2:cf:1c:81:1c:79:f4: e3:98:1c:70 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBfgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTBG MzBFMURGMzI3RDEwMzkwN0YxQkUwOEVEM0VBNjRCRkI3NzhFMzAeFw0yNDExMjIw NTIyNTdaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEY3Q0U3MjMxRkU2RjdE MzVBQzY3RTEyNTEzMEYwMTQwMzI0NUJCQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCVF81Xvv4UhFcw8GR5T/6GUvmUmdvuvmt8Lsatp9KPtXvqOzh9 HbfsRRkVlQrDVrp4e+qgW/wJ+YwvMzaox6KJ76smj5DkjPGQAm88QNPolnAa1NbC TpXCmhKe7J+rj2RFvFRDovpGFp88Mn4mo0fzGocLZ8jE4yPtYlKxvKZe52bs4Man JdLqdeWBnbCL1+6YBhHyNdGHfKUCieBl5bQFOP7Z6W6SsC8oslkMZiegqqUBrFjr fj0S++sPoZsCzy/icPVA+rOSJWSh66DNVxG49DXikiHb2LWGHQKi6dgxHgt62lvf DLwsw3XhiSeXyxJ8oqyOupov6SF4NUdh19+vAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU985yMf5vfTWsZ+ElEw8BQDJFu84wHwYDVR0jBBgwFoAUkPMOHfMn0QOQfxvg jtPqZL+3eOMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI1 OC9rUE1PSGZNbjBRT1FmeHZnanRQcVpMLTNlT00uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2tQTU9IZk1uMFFPUWZ4dmdqdFBxWkwtM2VPTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNTgva1BNT0hmTW4wUU9R Znh2Z2p0UHFaTC0zZU9NLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAHFQOTH1FgjsD4VcxVJcjeb9ZplDXagwcmH9lOHTIm2unHDTq8z5BpCVny1q y90U+q2r+ynLhaTF49PmsPo4SOSvH4Ro1tK6G/cd6CRFQWyV9h21rMtauw1Re347 f1/Z46PdPQ+QT1NYWP/44/ARKepodYZDNOk4248+S14LTW313NWvGAKivmNRl0LT gxml69HosWPWO4XRlFE+7MCt+sHetG4HYgv843U5E1eUsfHcWaTJV3BVhMgFSd2a R8Eo+T8kQdPzNreTHQ4riQfWzbnTR6rzvnBrmckw1JEGR7jDV1eeCi4g0sMI64ud ON8IigfaxL6J4s8cgRx59OOYHHA= -----END CERTIFICATE-----Generated at Fri Nov 22 06:38:11 2024 by rpki-client on console-ams.rpki-client.org