$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft File: Fwt8oG9XNbekD5f_H1O64TNIqT4.mft (raw, json) Hash identifier: W/viZAJUWaQqm6eZIPkgyehNHnbpbv5yUeyV74Gja+Y= Subject key identifier: A0:64:3F:CB:C0:A8:EB:2A:32:5E:55:08:9D:E5:09:60:A7:B6:77:C2 Authority key identifier: 17:0B:7C:A0:6F:57:35:B7:A4:0F:97:FF:1F:53:BA:E1:33:48:A9:3E Certificate issuer: /CN=170B7CA06F5735B7A40F97FF1F53BAE13348A93E Certificate serial: 0C4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Fwt8oG9XNbekD5f_H1O64TNIqT4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft Manifest number: 0C47 Signing time: Fri 24 Oct 2025 17:35:06 +0000 Manifest this update: Fri 24 Oct 2025 17:35:06 +0000 Manifest next update: Fri 24 Oct 2025 23:35:06 +0000 Files and hashes: 1: 0oav85JUPVbcRg0L4DBh9-aWIkI.roa (hash: +bAFfnirgbQCM5lHsyL67/7prlu6d5krVtD2rNfWezU=) 2: Fwt8oG9XNbekD5f_H1O64TNIqT4.crl (hash: Th0t8h4qexlJErVHwNdSBH9Q/Ogw3PlPTy0kJv9dsyw=) 3: cBNARw-UQ42OqYvEPRDwVd1k3mo.roa (hash: j8uip8ZuybIXLH0qteYdaLHXTVy/UR9DHUgwIUC/IcM=) 4: sPF6_F9osKxakoGzmunYcGaLMzo.roa (hash: 2fVT980VhrN0iW58uFjcPcRTECkPtI7dnRNC9lI9OI0=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Fwt8oG9XNbekD5f_H1O64TNIqT4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 23:35:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3149 (0xc4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=170B7CA06F5735B7A40F97FF1F53BAE13348A93E Validity Not Before: Oct 24 17:35:06 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=A0643FCBC0A8EB2A325E55089DE50960A7B677C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:12:cb:42:29:5b:78:a1:90:13:25:44:5a:da: b9:04:bd:c8:ad:b5:e7:51:99:b4:f0:32:58:43:25: 6d:dc:d8:0e:31:39:27:b1:6d:e0:c4:03:e6:e6:57: 7b:0b:22:21:e6:6b:6a:d1:6f:2f:69:cd:2d:44:22: 5e:a1:76:c5:fd:5e:06:1a:45:3d:4f:98:84:bd:40: 2a:84:be:75:ce:00:57:cd:a9:f7:80:69:b0:e9:3b: 3b:01:87:66:a5:e4:b0:64:39:c6:1e:c9:57:37:49: 55:e0:ee:7c:86:4a:97:0b:56:5c:ca:48:10:b5:28: cd:c8:4c:91:1f:1f:26:b4:41:2d:6a:4e:b1:44:3b: 9c:23:6c:13:93:42:c1:76:e1:65:9a:67:07:30:9a: 0a:9f:ce:de:a8:c7:fd:20:49:63:6b:ab:57:0e:8c: 67:5f:48:d1:91:0f:4e:78:bf:78:42:e7:7d:d7:fd: ec:90:8b:cd:00:51:99:df:30:05:54:78:f6:11:18: dd:71:ad:c8:65:dc:30:3d:b8:95:17:70:04:51:ac: 5e:5f:7b:b9:d5:96:b9:ef:a3:c8:52:bd:c1:09:82: b6:ea:65:be:8d:b5:5e:e0:0e:58:1c:23:2f:4f:38: 0a:41:b0:d7:6a:16:8a:97:db:f5:fc:bf:77:3d:06: 2f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:64:3F:CB:C0:A8:EB:2A:32:5E:55:08:9D:E5:09:60:A7:B6:77:C2 X509v3 Authority Key Identifier: keyid:17:0B:7C:A0:6F:57:35:B7:A4:0F:97:FF:1F:53:BA:E1:33:48:A9:3E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Fwt8oG9XNbekD5f_H1O64TNIqT4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:1f:5d:64:19:e8:c7:85:65:90:3f:be:92:1a:13:f5:f8:1f: 8e:9a:6e:b3:d7:21:a4:e6:bd:ba:a3:f7:cf:c0:47:6b:b5:04: 55:9f:b4:b1:ba:d4:2d:71:ae:47:d4:d9:f1:98:3f:16:06:c2: 50:67:00:64:a7:ea:68:fc:a9:ec:03:21:b2:28:10:39:1c:67: cc:61:a6:1b:77:d5:9e:93:33:5d:49:85:ae:62:70:e6:d6:ab: c0:fa:e1:72:11:5b:32:59:00:80:f1:13:ba:9b:16:1c:b6:bc: 83:7b:eb:a4:e0:29:5b:9f:32:60:c3:3a:91:6d:ae:b4:e3:04: a0:4d:78:eb:10:c3:8c:5e:bc:f8:05:3e:90:db:e7:ad:83:cf: cf:2e:75:6b:51:cc:eb:a7:c0:6a:ab:7f:a4:5f:ca:eb:2b:73: c6:b6:ab:71:c9:39:40:36:40:0f:e8:95:77:70:7c:46:1f:84: c7:9d:10:c6:b1:d6:91:90:88:15:bf:de:e8:97:5a:c5:4e:05: 3b:9b:48:48:ab:7c:35:d7:32:7b:81:84:3d:b2:3e:2f:f9:8e: f8:b6:04:b8:85:82:d4:92:e7:2c:01:58:79:20:1f:b9:70:4b: be:b9:b8:92:c3:4f:4e:0d:f1:ee:d9:7b:90:2f:2c:a2:ec:75: bc:cc:65:51 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICDE0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTcw QjdDQTA2RjU3MzVCN0E0MEY5N0ZGMUY1M0JBRTEzMzQ4QTkzRTAeFw0yNTEwMjQx NzM1MDZaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEEwNjQzRkNCQzBBOEVC MkEzMjVFNTUwODlERTUwOTYwQTdCNjc3QzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDoEstCKVt4oZATJURa2rkEvcittedRmbTwMlhDJW3c2A4xOSex beDEA+bmV3sLIiHma2rRby9pzS1EIl6hdsX9XgYaRT1PmIS9QCqEvnXOAFfNqfeA abDpOzsBh2al5LBkOcYeyVc3SVXg7nyGSpcLVlzKSBC1KM3ITJEfHya0QS1qTrFE O5wjbBOTQsF24WWaZwcwmgqfzt6ox/0gSWNrq1cOjGdfSNGRD054v3hC533X/eyQ i80AUZnfMAVUePYRGN1xrchl3DA9uJUXcARRrF5fe7nVlrnvo8hSvcEJgrbqZb6N tV7gDlgcIy9POApBsNdqFoqX2/X8v3c9Bi+NAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUoGQ/y8Co6yoyXlUIneUJYKe2d8IwHwYDVR0jBBgwFoAUFwt8oG9XNbekD5f/ H1O64TNIqT4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI2 Mi9Gd3Q4b0c5WE5iZWtENWZfSDFPNjRUTklxVDQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0Z3dDhvRzlYTmJla0Q1Zl9IMU82NFROSXFUNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNjIvRnd0OG9HOVhOYmVr RDVmX0gxTzY0VE5JcVQ0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAAEfXWQZ6MeFZZA/vpIaE/X4H46abrPXIaTmvbqj98/AR2u1BFWftLG61C1x rkfU2fGYPxYGwlBnAGSn6mj8qewDIbIoEDkcZ8xhpht31Z6TM11Jha5icObWq8D6 4XIRWzJZAIDxE7qbFhy2vIN766TgKVufMmDDOpFtrrTjBKBNeOsQw4xevPgFPpDb 562Dz88udWtRzOunwGqrf6Rfyusrc8a2q3HJOUA2QA/olXdwfEYfhMedEMax1pGQ iBW/3uiXWsVOBTubSEirfDXXMnuBhD2yPi/5jvi2BLiFgtSS5ywBWHkgH7lwS765 uJLDT04N8e7Ze5AvLKLsdbzMZVE= -----END CERTIFICATE-----Generated at Fri Oct 24 21:12:00 2025 by rpki-client