$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3262/kHfnsK9YD3j-AQaZ-g24EH4Ybwc.mft File: kHfnsK9YD3j-AQaZ-g24EH4Ybwc.mft (raw, json) Hash identifier: Q7A48PIXMU2ia1jFWus2dIchBTJROozZLlLCv4UsHvo= Subject key identifier: 02:BE:71:AB:DC:17:50:55:EE:56:6B:24:25:4B:64:E8:B0:74:2F:4B Authority key identifier: 90:77:E7:B0:AF:58:0F:78:FE:01:06:99:FA:0D:B8:10:7E:18:6F:07 Certificate issuer: /CN=9077E7B0AF580F78FE010699FA0DB8107E186F07 Certificate serial: 05C5 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kHfnsK9YD3j-AQaZ-g24EH4Ybwc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/kHfnsK9YD3j-AQaZ-g24EH4Ybwc.mft Manifest number: 05C4 Signing time: Fri 22 Nov 2024 10:20:53 +0000 Manifest this update: Fri 22 Nov 2024 10:20:53 +0000 Manifest next update: Fri 22 Nov 2024 16:20:53 +0000 Files and hashes: 1: 7xBsRNPb116fVHv9upCYI7P7GIE.roa (hash: 86HhfpBrB0xPC+ofOIzKaCHZ/dRZNWI4inFRfql8+nM=) 2: kHfnsK9YD3j-AQaZ-g24EH4Ybwc.crl (hash: Jfa6tpFGfxFXdFhaRoSdSYsSE62oOUdx3oMgc5oqO3M=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/kHfnsK9YD3j-AQaZ-g24EH4Ybwc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/kHfnsK9YD3j-AQaZ-g24EH4Ybwc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kHfnsK9YD3j-AQaZ-g24EH4Ybwc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 16:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1477 (0x5c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9077E7B0AF580F78FE010699FA0DB8107E186F07 Validity Not Before: Nov 22 10:20:53 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=02BE71ABDC175055EE566B24254B64E8B0742F4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:cd:bd:b4:6b:bd:11:af:30:2c:d0:71:fd:49: 1f:03:b2:6b:b5:d8:8d:53:07:dd:d3:83:d6:09:75: 9c:d1:03:b3:14:fb:e4:07:00:76:be:03:b6:13:6d: 82:32:7e:39:ab:c4:dd:18:d1:e4:a7:a1:72:07:12: 3f:1d:da:60:0c:05:cb:3e:a7:7c:2d:eb:a1:77:3a: 6e:95:7e:6a:0f:b3:d0:cf:d9:d5:72:88:87:7b:bf: cd:45:d8:3d:b7:5a:51:9a:c5:82:33:0c:ca:f8:46: 0f:5c:ba:16:92:05:2f:cc:cd:bd:d7:dc:95:5b:40: 3e:56:bf:65:af:99:b1:23:83:5c:d3:23:46:4b:c0: 1f:db:a0:fa:f9:10:a3:35:29:c7:1b:49:c0:a0:88: 66:f7:f0:f2:b4:e4:12:d7:f2:45:10:5a:be:9a:8a: bb:68:30:a3:62:6e:df:30:e5:58:0c:e4:03:22:bd: b6:bb:b5:6c:27:fa:4c:62:02:b3:03:d9:f3:2c:4b: 93:97:3b:1c:3d:3a:d5:e6:ba:81:ad:c0:84:99:c2: b0:a0:b6:b9:cf:04:5f:c9:57:91:d7:68:a4:65:fe: 3d:d2:e0:1e:5b:94:f5:63:c0:3c:ce:bb:da:8d:ae: 8e:76:32:4c:b2:dd:4e:6c:a0:9b:2d:4b:ad:3a:c1: 50:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:BE:71:AB:DC:17:50:55:EE:56:6B:24:25:4B:64:E8:B0:74:2F:4B X509v3 Authority Key Identifier: keyid:90:77:E7:B0:AF:58:0F:78:FE:01:06:99:FA:0D:B8:10:7E:18:6F:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/kHfnsK9YD3j-AQaZ-g24EH4Ybwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kHfnsK9YD3j-AQaZ-g24EH4Ybwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/kHfnsK9YD3j-AQaZ-g24EH4Ybwc.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:d8:f3:19:37:e0:87:23:a4:df:45:6c:ed:d4:a5:a6:6b:f7: 2a:af:75:7d:91:a9:99:4d:52:0e:0d:00:98:f6:b4:36:9f:c0: 96:98:10:84:74:c7:c6:6c:1f:6e:c2:82:3c:2c:e8:22:a6:7a: 3e:7d:44:e3:06:44:de:37:48:ed:26:8b:4d:28:96:2e:fa:b2: 51:0a:fc:ed:df:80:0b:4f:7b:d7:d6:86:0e:71:a7:48:43:b5: 33:d8:df:4b:eb:c0:ad:cc:0e:95:c7:45:aa:61:8d:67:53:bb: bb:27:13:91:70:2c:3b:91:12:df:be:74:73:15:39:d8:86:50: 0d:26:f1:63:5a:29:c0:44:a4:91:7f:fe:ab:46:07:97:d3:76: 0e:ff:aa:12:fe:21:87:f2:c1:35:48:b8:02:27:8c:59:a8:8d: 2b:df:d8:9b:97:1f:27:5b:1f:30:6b:6c:9c:6f:9e:82:52:2a: 6a:25:34:ac:92:f6:59:93:90:35:19:f6:40:d6:8b:88:c0:d6: c4:18:d5:a8:d3:4b:a2:33:1b:3e:d6:1e:19:ac:a2:6a:3c:a4: b4:b9:7b:44:b0:8c:be:22:79:67:45:8d:e4:27:d1:52:8c:56: 25:a0:82:87:76:1b:cb:5c:1e:92:af:af:4c:20:89:77:44:2d: 97:fa:22:58 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBcUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTA3 N0U3QjBBRjU4MEY3OEZFMDEwNjk5RkEwREI4MTA3RTE4NkYwNzAeFw0yNDExMjIx MDIwNTNaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDAyQkU3MUFCREMxNzUw NTVFRTU2NkIyNDI1NEI2NEU4QjA3NDJGNEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfzb20a70RrzAs0HH9SR8Dsmu12I1TB93Tg9YJdZzRA7MU++QH AHa+A7YTbYIyfjmrxN0Y0eSnoXIHEj8d2mAMBcs+p3wt66F3Om6VfmoPs9DP2dVy iId7v81F2D23WlGaxYIzDMr4Rg9cuhaSBS/Mzb3X3JVbQD5Wv2WvmbEjg1zTI0ZL wB/boPr5EKM1KccbScCgiGb38PK05BLX8kUQWr6airtoMKNibt8w5VgM5AMivba7 tWwn+kxiArMD2fMsS5OXOxw9OtXmuoGtwISZwrCgtrnPBF/JV5HXaKRl/j3S4B5b lPVjwDzOu9qNro52Mkyy3U5soJstS606wVBlAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUAr5xq9wXUFXuVmskJUtk6LB0L0swHwYDVR0jBBgwFoAUkHfnsK9YD3j+AQaZ +g24EH4YbwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI2 Mi9rSGZuc0s5WUQzai1BUWFaLWcyNEVINFlid2MuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2tIZm5zSzlZRDNqLUFRYVotZzI0RUg0WWJ3Yy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNjIva0hmbnNLOVlEM2ot QVFhWi1nMjRFSDRZYndjLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBACHY8xk34IcjpN9FbO3UpaZr9yqvdX2RqZlNUg4NAJj2tDafwJaYEIR0x8Zs H27Cgjws6CKmej59ROMGRN43SO0mi00oli76slEK/O3fgAtPe9fWhg5xp0hDtTPY 30vrwK3MDpXHRaphjWdTu7snE5FwLDuREt++dHMVOdiGUA0m8WNaKcBEpJF//qtG B5fTdg7/qhL+IYfywTVIuAInjFmojSvf2JuXHydbHzBrbJxvnoJSKmolNKyS9lmT kDUZ9kDWi4jA1sQY1ajTS6IzGz7WHhmsomo8pLS5e0SwjL4ieWdFjeQn0VKMViWg god2G8tcHpKvr0wgiXdELZf6Ilg= -----END CERTIFICATE-----Generated at Fri Nov 22 13:38:15 2024 by rpki-client on console-fra.rpki-client.org