$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft File: Fwt8oG9XNbekD5f_H1O64TNIqT4.mft (raw, json) Hash identifier: lLFZpRmOi5+nSLfGPN5YEcsGU5mgL7laNnwkOy15aw8= Subject key identifier: A0:64:3F:CB:C0:A8:EB:2A:32:5E:55:08:9D:E5:09:60:A7:B6:77:C2 Authority key identifier: 17:0B:7C:A0:6F:57:35:B7:A4:0F:97:FF:1F:53:BA:E1:33:48:A9:3E Certificate issuer: /CN=170B7CA06F5735B7A40F97FF1F53BAE13348A93E Certificate serial: 0A76 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Fwt8oG9XNbekD5f_H1O64TNIqT4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft Manifest number: 0A73 Signing time: Mon 21 Jul 2025 16:40:05 +0000 Manifest this update: Mon 21 Jul 2025 16:40:05 +0000 Manifest next update: Mon 21 Jul 2025 22:40:05 +0000 Files and hashes: 1: DTJOEl42rlpiAANO4FGlm-jwgW4.roa (hash: tZhR6vDrnzGj28cQqezVKGdCmEoL4wYz8p4dkA3OU5Q=) 2: Fwt8oG9XNbekD5f_H1O64TNIqT4.crl (hash: UTTquVbdn46lJej8ojQJo0l+MuzwlpvJlLy+/iuJJAE=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Fwt8oG9XNbekD5f_H1O64TNIqT4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Jul 2025 18:43:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2678 (0xa76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=170B7CA06F5735B7A40F97FF1F53BAE13348A93E Validity Not Before: Jul 21 16:40:05 2025 GMT Not After : Apr 9 06:27:19 2026 GMT Subject: CN=A0643FCBC0A8EB2A325E55089DE50960A7B677C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:12:cb:42:29:5b:78:a1:90:13:25:44:5a:da: b9:04:bd:c8:ad:b5:e7:51:99:b4:f0:32:58:43:25: 6d:dc:d8:0e:31:39:27:b1:6d:e0:c4:03:e6:e6:57: 7b:0b:22:21:e6:6b:6a:d1:6f:2f:69:cd:2d:44:22: 5e:a1:76:c5:fd:5e:06:1a:45:3d:4f:98:84:bd:40: 2a:84:be:75:ce:00:57:cd:a9:f7:80:69:b0:e9:3b: 3b:01:87:66:a5:e4:b0:64:39:c6:1e:c9:57:37:49: 55:e0:ee:7c:86:4a:97:0b:56:5c:ca:48:10:b5:28: cd:c8:4c:91:1f:1f:26:b4:41:2d:6a:4e:b1:44:3b: 9c:23:6c:13:93:42:c1:76:e1:65:9a:67:07:30:9a: 0a:9f:ce:de:a8:c7:fd:20:49:63:6b:ab:57:0e:8c: 67:5f:48:d1:91:0f:4e:78:bf:78:42:e7:7d:d7:fd: ec:90:8b:cd:00:51:99:df:30:05:54:78:f6:11:18: dd:71:ad:c8:65:dc:30:3d:b8:95:17:70:04:51:ac: 5e:5f:7b:b9:d5:96:b9:ef:a3:c8:52:bd:c1:09:82: b6:ea:65:be:8d:b5:5e:e0:0e:58:1c:23:2f:4f:38: 0a:41:b0:d7:6a:16:8a:97:db:f5:fc:bf:77:3d:06: 2f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:64:3F:CB:C0:A8:EB:2A:32:5E:55:08:9D:E5:09:60:A7:B6:77:C2 X509v3 Authority Key Identifier: keyid:17:0B:7C:A0:6F:57:35:B7:A4:0F:97:FF:1F:53:BA:E1:33:48:A9:3E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Fwt8oG9XNbekD5f_H1O64TNIqT4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:b1:6d:ec:ed:31:73:96:85:e4:24:50:47:48:7b:d2:39:56: 29:b3:01:d2:5f:c3:d1:56:b4:c4:8f:ac:48:55:5d:6e:4e:86: b0:f4:9d:b2:84:f6:bc:db:77:3a:71:92:1c:ae:44:ec:ce:64: b5:0c:84:c6:53:91:93:10:77:94:4c:6b:bc:ad:31:eb:28:32: d6:e2:77:e0:19:2d:74:c3:2b:7f:23:aa:8e:f3:8d:f9:e3:1e: fe:36:18:ab:db:63:5d:59:50:88:53:69:b0:0c:15:68:2e:7e: bf:6e:db:65:6e:0b:4e:d8:07:ef:b7:84:07:c2:e7:c1:e4:b3: 52:ec:25:57:34:d5:4f:84:80:9d:79:70:71:79:f2:35:01:7a: c3:16:2e:46:c6:61:83:0b:e0:91:d1:0e:66:0a:f6:31:6b:0d: e2:1c:ab:de:61:82:c7:1b:91:3f:70:00:dd:f9:3c:10:8e:bd: d9:a1:36:0e:fd:7d:72:20:2d:38:59:60:fc:08:ca:fc:12:25: e7:67:ec:1a:db:9d:6f:7f:b1:28:26:71:6c:b8:6c:8f:f6:25: 57:3a:3d:27:11:ce:ad:55:d0:68:2e:1c:7f:81:8a:d1:99:34: 67:6a:bc:5b:c6:b4:74:5e:98:54:6b:b2:2f:82:37:2d:fe:d4: e0:8e:7c:8e -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCnYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTcw QjdDQTA2RjU3MzVCN0E0MEY5N0ZGMUY1M0JBRTEzMzQ4QTkzRTAeFw0yNTA3MjEx NjQwMDVaFw0yNjA0MDkwNjI3MTlaMDMxMTAvBgNVBAMTKEEwNjQzRkNCQzBBOEVC MkEzMjVFNTUwODlERTUwOTYwQTdCNjc3QzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDoEstCKVt4oZATJURa2rkEvcittedRmbTwMlhDJW3c2A4xOSex beDEA+bmV3sLIiHma2rRby9pzS1EIl6hdsX9XgYaRT1PmIS9QCqEvnXOAFfNqfeA abDpOzsBh2al5LBkOcYeyVc3SVXg7nyGSpcLVlzKSBC1KM3ITJEfHya0QS1qTrFE O5wjbBOTQsF24WWaZwcwmgqfzt6ox/0gSWNrq1cOjGdfSNGRD054v3hC533X/eyQ i80AUZnfMAVUePYRGN1xrchl3DA9uJUXcARRrF5fe7nVlrnvo8hSvcEJgrbqZb6N tV7gDlgcIy9POApBsNdqFoqX2/X8v3c9Bi+NAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUoGQ/y8Co6yoyXlUIneUJYKe2d8IwHwYDVR0jBBgwFoAUFwt8oG9XNbekD5f/ H1O64TNIqT4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI2 Mi9Gd3Q4b0c5WE5iZWtENWZfSDFPNjRUTklxVDQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0Z3dDhvRzlYTmJla0Q1Zl9IMU82NFROSXFUNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNjIvRnd0OG9HOVhOYmVr RDVmX0gxTzY0VE5JcVQ0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBALWxbeztMXOWheQkUEdIe9I5VimzAdJfw9FWtMSPrEhVXW5OhrD0nbKE9rzb dzpxkhyuROzOZLUMhMZTkZMQd5RMa7ytMesoMtbid+AZLXTDK38jqo7zjfnjHv42 GKvbY11ZUIhTabAMFWgufr9u22VuC07YB++3hAfC58Hks1LsJVc01U+EgJ15cHF5 8jUBesMWLkbGYYML4JHRDmYK9jFrDeIcq95hgscbkT9wAN35PBCOvdmhNg79fXIg LThZYPwIyvwSJedn7BrbnW9/sSgmcWy4bI/2JVc6PScRzq1V0GguHH+BitGZNGdq vFvGtHRemFRrsi+CNy3+1OCOfI4= -----END CERTIFICATE-----Generated at Mon Jul 21 18:30:15 2025 by rpki-client