$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.mft File: OLYZ9BoGgZD-7QQul78QRCJYnkE.mft (raw, json) Hash identifier: 0x2nAqwFG0QJACpwPE/3wfCyIEQjBO7+Zgm/HTDAjvo= Subject key identifier: 79:5B:12:F4:8C:5A:66:12:2D:A2:1C:C6:79:9E:22:6B:D9:9D:7B:6F Authority key identifier: 38:B6:19:F4:1A:06:81:90:FE:ED:04:2E:97:BF:10:44:22:58:9E:41 Certificate issuer: /CN=38B619F41A068190FEED042E97BF104422589E41 Certificate serial: 0883 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OLYZ9BoGgZD-7QQul78QRCJYnkE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.mft Manifest number: 0883 Signing time: Sun 20 Jul 2025 07:39:30 +0000 Manifest this update: Sun 20 Jul 2025 07:39:30 +0000 Manifest next update: Sun 20 Jul 2025 13:39:30 +0000 Files and hashes: 1: OLYZ9BoGgZD-7QQul78QRCJYnkE.crl (hash: G89CroW888VIY/vofls4N+NrDadPedfTlyVbxuHtOQQ=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OLYZ9BoGgZD-7QQul78QRCJYnkE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Jul 2025 13:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2179 (0x883) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38B619F41A068190FEED042E97BF104422589E41 Validity Not Before: Jul 20 07:39:30 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=795B12F48C5A66122DA21CC6799E226BD99D7B6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:31:a1:70:f2:c2:e8:60:d9:f8:60:61:8c:fd: 09:ca:51:3a:d4:1d:00:9b:34:cc:42:ae:a0:59:dd: 40:63:ea:9f:e8:62:43:e8:68:88:5e:59:10:59:8c: a1:70:97:ef:1e:59:b7:0e:53:b6:61:f3:d2:c5:a2: 37:26:ec:43:c3:a2:c6:ce:10:50:49:f1:fd:a0:72: 1b:b7:3c:d8:12:97:fc:de:82:28:93:d7:1d:21:cb: f1:ad:44:d0:04:65:89:c1:84:17:28:76:fd:14:13: c9:aa:03:56:ad:8b:85:e8:19:5a:c4:e4:0c:3b:2c: 07:c5:20:78:0b:7d:58:fe:72:4a:37:56:80:37:63: c3:d1:9c:eb:9b:e9:49:84:bf:9a:65:fb:3c:6a:37: 93:f5:68:62:03:50:8b:f1:0d:83:6f:24:35:2e:4f: 0c:25:8b:a7:9d:4e:52:28:60:b1:d9:9d:f6:11:55: b5:97:69:15:cc:1c:4f:86:6e:06:c5:1f:43:59:95: 15:16:d3:f2:65:8b:9a:f0:ee:c9:25:84:61:43:34: e3:0b:6e:43:a0:82:0f:e2:92:5e:e5:fd:a9:28:4a: da:e0:af:4d:ff:70:5e:8c:39:53:6f:37:65:60:ad: 24:c3:04:74:55:1f:9e:34:1c:ad:3a:7f:96:6b:a3: 5f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:5B:12:F4:8C:5A:66:12:2D:A2:1C:C6:79:9E:22:6B:D9:9D:7B:6F X509v3 Authority Key Identifier: keyid:38:B6:19:F4:1A:06:81:90:FE:ED:04:2E:97:BF:10:44:22:58:9E:41 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OLYZ9BoGgZD-7QQul78QRCJYnkE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:06:d6:56:9e:d4:18:26:11:14:10:b2:bc:17:0b:d2:6f:32: 65:ef:71:c7:ed:e6:00:71:ac:f5:e4:4e:0f:8c:24:c2:57:10: 37:37:41:1f:45:49:38:aa:03:49:4e:6f:b4:2b:b0:66:8f:e3: 4f:c1:a9:db:71:7c:ba:7d:e2:23:c6:ff:81:e6:5d:b4:5b:7f: 86:2d:13:01:9e:3f:4c:2b:df:27:99:41:11:e9:e0:17:8a:21: e5:1c:b8:e7:95:10:4f:3e:2d:2e:e4:f0:5e:df:8f:10:6b:ee: 0c:42:a1:91:3f:a3:a2:97:ac:df:e0:e6:5a:91:7f:a9:86:b9: 2d:f9:7a:31:80:0b:02:27:31:4d:2b:a4:37:2b:29:05:dc:0a: 37:90:04:4d:f5:fc:ee:98:1e:62:ab:82:32:a1:94:f6:df:5b: 35:7c:28:8b:a9:91:ae:f9:bc:19:a1:1a:c9:7f:bf:01:87:d2: 0d:56:e0:2b:db:3f:9a:d2:e9:96:6e:00:46:03:13:a6:4a:94: b8:08:3d:e0:7e:a6:79:9c:22:3b:97:e0:bc:31:19:e3:79:c5: 02:8a:6e:a7:98:26:fc:6e:5e:e7:7a:c3:5b:a4:dd:14:22:4b: 5e:c4:3a:72:0e:ae:22:97:f7:55:d2:7f:76:76:08:13:06:cc: 04:49:c2:10 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCIMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzhC NjE5RjQxQTA2ODE5MEZFRUQwNDJFOTdCRjEwNDQyMjU4OUU0MTAeFw0yNTA3MjAw NzM5MzBaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDc5NUIxMkY0OEM1QTY2 MTIyREEyMUNDNjc5OUUyMjZCRDk5RDdCNkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8MaFw8sLoYNn4YGGM/QnKUTrUHQCbNMxCrqBZ3UBj6p/oYkPo aIheWRBZjKFwl+8eWbcOU7Zh89LFojcm7EPDosbOEFBJ8f2gchu3PNgSl/zegiiT 1x0hy/GtRNAEZYnBhBcodv0UE8mqA1ati4XoGVrE5Aw7LAfFIHgLfVj+cko3VoA3 Y8PRnOub6UmEv5pl+zxqN5P1aGIDUIvxDYNvJDUuTwwli6edTlIoYLHZnfYRVbWX aRXMHE+GbgbFH0NZlRUW0/Jli5rw7sklhGFDNOMLbkOggg/ikl7l/akoStrgr03/ cF6MOVNvN2VgrSTDBHRVH540HK06f5Zro187AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUeVsS9IxaZhItohzGeZ4ia9mde28wHwYDVR0jBBgwFoAUOLYZ9BoGgZD+7QQu l78QRCJYnkEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI2 NS9PTFlaOUJvR2daRC03UVF1bDc4UVJDSllua0UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09MWVo5Qm9HZ1pELTdRUXVsNzhRUkNKWW5rRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNjUvT0xZWjlCb0dnWkQt N1FRdWw3OFFSQ0pZbmtFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAGMG1lae1BgmERQQsrwXC9JvMmXvccft5gBxrPXkTg+MJMJXEDc3QR9FSTiq A0lOb7QrsGaP40/BqdtxfLp94iPG/4HmXbRbf4YtEwGeP0wr3yeZQRHp4BeKIeUc uOeVEE8+LS7k8F7fjxBr7gxCoZE/o6KXrN/g5lqRf6mGuS35ejGACwInMU0rpDcr KQXcCjeQBE31/O6YHmKrgjKhlPbfWzV8KIupka75vBmhGsl/vwGH0g1W4CvbP5rS 6ZZuAEYDE6ZKlLgIPeB+pnmcIjuX4LwxGeN5xQKKbqeYJvxuXud6w1uk3RQiS17E OnIOriKX91XSf3Z2CBMGzARJwhA= -----END CERTIFICATE-----Generated at Sun Jul 20 12:52:13 2025 by rpki-client