$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft File: Fwt8oG9XNbekD5f_H1O64TNIqT4.mft (raw, json) Hash identifier: ZkHmhdCIOw1MGEBt8bSs1nNsnj4MK7URob9sgJB+H5M= Subject key identifier: A0:64:3F:CB:C0:A8:EB:2A:32:5E:55:08:9D:E5:09:60:A7:B6:77:C2 Authority key identifier: 17:0B:7C:A0:6F:57:35:B7:A4:0F:97:FF:1F:53:BA:E1:33:48:A9:3E Certificate issuer: /CN=170B7CA06F5735B7A40F97FF1F53BAE13348A93E Certificate serial: 0B65 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Fwt8oG9XNbekD5f_H1O64TNIqT4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft Manifest number: 0B5F Signing time: Sun 07 Sep 2025 15:02:53 +0000 Manifest this update: Sun 07 Sep 2025 15:02:53 +0000 Manifest next update: Sun 07 Sep 2025 21:02:53 +0000 Files and hashes: 1: 0oav85JUPVbcRg0L4DBh9-aWIkI.roa (hash: +bAFfnirgbQCM5lHsyL67/7prlu6d5krVtD2rNfWezU=) 2: Fwt8oG9XNbekD5f_H1O64TNIqT4.crl (hash: gV6fLe3KsDVOh6aAX291PTH7wUfgKDFe6t/S9suLR+E=) 3: cBNARw-UQ42OqYvEPRDwVd1k3mo.roa (hash: j8uip8ZuybIXLH0qteYdaLHXTVy/UR9DHUgwIUC/IcM=) 4: sPF6_F9osKxakoGzmunYcGaLMzo.roa (hash: 2fVT980VhrN0iW58uFjcPcRTECkPtI7dnRNC9lI9OI0=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Fwt8oG9XNbekD5f_H1O64TNIqT4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 21:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2917 (0xb65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=170B7CA06F5735B7A40F97FF1F53BAE13348A93E Validity Not Before: Sep 7 15:02:53 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=A0643FCBC0A8EB2A325E55089DE50960A7B677C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:12:cb:42:29:5b:78:a1:90:13:25:44:5a:da: b9:04:bd:c8:ad:b5:e7:51:99:b4:f0:32:58:43:25: 6d:dc:d8:0e:31:39:27:b1:6d:e0:c4:03:e6:e6:57: 7b:0b:22:21:e6:6b:6a:d1:6f:2f:69:cd:2d:44:22: 5e:a1:76:c5:fd:5e:06:1a:45:3d:4f:98:84:bd:40: 2a:84:be:75:ce:00:57:cd:a9:f7:80:69:b0:e9:3b: 3b:01:87:66:a5:e4:b0:64:39:c6:1e:c9:57:37:49: 55:e0:ee:7c:86:4a:97:0b:56:5c:ca:48:10:b5:28: cd:c8:4c:91:1f:1f:26:b4:41:2d:6a:4e:b1:44:3b: 9c:23:6c:13:93:42:c1:76:e1:65:9a:67:07:30:9a: 0a:9f:ce:de:a8:c7:fd:20:49:63:6b:ab:57:0e:8c: 67:5f:48:d1:91:0f:4e:78:bf:78:42:e7:7d:d7:fd: ec:90:8b:cd:00:51:99:df:30:05:54:78:f6:11:18: dd:71:ad:c8:65:dc:30:3d:b8:95:17:70:04:51:ac: 5e:5f:7b:b9:d5:96:b9:ef:a3:c8:52:bd:c1:09:82: b6:ea:65:be:8d:b5:5e:e0:0e:58:1c:23:2f:4f:38: 0a:41:b0:d7:6a:16:8a:97:db:f5:fc:bf:77:3d:06: 2f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:64:3F:CB:C0:A8:EB:2A:32:5E:55:08:9D:E5:09:60:A7:B6:77:C2 X509v3 Authority Key Identifier: keyid:17:0B:7C:A0:6F:57:35:B7:A4:0F:97:FF:1F:53:BA:E1:33:48:A9:3E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Fwt8oG9XNbekD5f_H1O64TNIqT4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:f8:62:f7:d5:6a:48:14:02:81:d9:97:f5:36:f8:fd:b4:00: e3:bd:9f:d8:af:67:0e:5f:05:a3:46:aa:6f:e7:0d:95:33:ae: 14:11:4e:0c:57:0b:c4:c3:3d:18:0c:e4:64:88:b4:7d:75:fd: 4b:f5:3c:e8:ee:8e:7a:d6:cd:80:66:c0:68:c9:10:73:b6:ea: d8:b4:1a:9b:47:6d:ed:6a:07:41:4c:da:8c:86:12:40:3e:e4: 99:04:6c:58:3b:92:ff:c7:e6:bb:39:9a:15:86:a9:e0:c5:0b: 34:7a:b7:17:b5:53:14:b1:20:bf:52:bf:49:8d:ff:4c:77:d5: 54:f9:63:1e:0e:f0:a6:06:55:ed:9c:25:8e:cb:14:5f:b5:54: fb:6a:07:ce:39:e2:53:9b:41:1d:da:d0:6f:e0:86:f4:81:23: 0b:23:e7:54:19:d7:8d:dd:96:60:47:76:60:b1:00:a2:4a:7b: dd:13:dd:9b:86:95:9f:aa:74:74:03:1c:c3:41:ea:70:f1:b3: 95:56:31:5c:a6:54:64:f8:82:ad:29:e3:c8:0b:4e:8e:34:4d: cf:e1:df:88:3a:a9:ea:c2:49:16:bf:52:b9:ea:98:a4:c0:2d: 2e:d3:7b:85:6a:ac:9a:9b:be:de:ad:96:cb:d6:ca:74:5d:7d: 6d:e2:56:e6 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICC2UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTcw QjdDQTA2RjU3MzVCN0E0MEY5N0ZGMUY1M0JBRTEzMzQ4QTkzRTAeFw0yNTA5MDcx NTAyNTNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEEwNjQzRkNCQzBBOEVC MkEzMjVFNTUwODlERTUwOTYwQTdCNjc3QzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDoEstCKVt4oZATJURa2rkEvcittedRmbTwMlhDJW3c2A4xOSex beDEA+bmV3sLIiHma2rRby9pzS1EIl6hdsX9XgYaRT1PmIS9QCqEvnXOAFfNqfeA abDpOzsBh2al5LBkOcYeyVc3SVXg7nyGSpcLVlzKSBC1KM3ITJEfHya0QS1qTrFE O5wjbBOTQsF24WWaZwcwmgqfzt6ox/0gSWNrq1cOjGdfSNGRD054v3hC533X/eyQ i80AUZnfMAVUePYRGN1xrchl3DA9uJUXcARRrF5fe7nVlrnvo8hSvcEJgrbqZb6N tV7gDlgcIy9POApBsNdqFoqX2/X8v3c9Bi+NAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUoGQ/y8Co6yoyXlUIneUJYKe2d8IwHwYDVR0jBBgwFoAUFwt8oG9XNbekD5f/ H1O64TNIqT4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI2 Mi9Gd3Q4b0c5WE5iZWtENWZfSDFPNjRUTklxVDQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0Z3dDhvRzlYTmJla0Q1Zl9IMU82NFROSXFUNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNjIvRnd0OG9HOVhOYmVr RDVmX0gxTzY0VE5JcVQ0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAJX4YvfVakgUAoHZl/U2+P20AOO9n9ivZw5fBaNGqm/nDZUzrhQRTgxXC8TD PRgM5GSItH11/Uv1POjujnrWzYBmwGjJEHO26ti0GptHbe1qB0FM2oyGEkA+5JkE bFg7kv/H5rs5mhWGqeDFCzR6txe1UxSxIL9Sv0mN/0x31VT5Yx4O8KYGVe2cJY7L FF+1VPtqB8454lObQR3a0G/ghvSBIwsj51QZ143dlmBHdmCxAKJKe90T3ZuGlZ+q dHQDHMNB6nDxs5VWMVymVGT4gq0p48gLTo40Tc/h34g6qerCSRa/UrnqmKTALS7T e4VqrJqbvt6tlsvWynRdfW3iVuY= -----END CERTIFICATE-----Generated at Sun Sep 7 20:15:11 2025 by rpki-client