$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3275/kOpMYj8LihBi2qgOqaj0R49Z3oU.mft File: kOpMYj8LihBi2qgOqaj0R49Z3oU.mft (raw, json) Hash identifier: UFNlduSvZXgSxQQsQkJicALKro+Q1ICPIIe+JKWNtPQ= Subject key identifier: 14:3E:EE:FE:12:08:DB:B6:7D:A9:53:F5:54:2B:95:1C:DF:56:0F:F0 Authority key identifier: 90:EA:4C:62:3F:0B:8A:10:62:DA:A8:0E:A9:A8:F4:47:8F:59:DE:85 Certificate issuer: /CN=90EA4C623F0B8A1062DAA80EA9A8F4478F59DE85 Certificate serial: 083B Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kOpMYj8LihBi2qgOqaj0R49Z3oU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3275/kOpMYj8LihBi2qgOqaj0R49Z3oU.mft Manifest number: 083B Signing time: Tue 03 Jun 2025 21:14:38 +0000 Manifest this update: Tue 03 Jun 2025 21:14:38 +0000 Manifest next update: Wed 04 Jun 2025 03:14:38 +0000 Files and hashes: 1: kOpMYj8LihBi2qgOqaj0R49Z3oU.crl (hash: TIfyna6D3eD7eLbe4NqZAn12d0tOYEZb9yYzjNRYMLM=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3275/kOpMYj8LihBi2qgOqaj0R49Z3oU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3275/kOpMYj8LihBi2qgOqaj0R49Z3oU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kOpMYj8LihBi2qgOqaj0R49Z3oU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2107 (0x83b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90EA4C623F0B8A1062DAA80EA9A8F4478F59DE85 Validity Not Before: Jun 3 21:14:38 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=143EEEFE1208DBB67DA953F5542B951CDF560FF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:21:e8:f9:51:72:bd:f8:a3:49:d8:ab:7e:aa: a3:cc:28:a1:fb:5b:74:e3:a0:5f:7b:99:a5:f9:26: e8:12:6d:46:15:bc:ca:55:de:ff:37:96:fa:17:70: 9d:8f:52:40:b7:7c:97:d9:d6:e1:87:3e:3a:c1:fd: 21:66:93:03:c3:4e:0c:85:c6:28:8b:0d:e4:2e:71: f4:12:85:5c:63:2f:8c:28:d7:66:ad:e0:d5:48:fb: f2:c5:5c:67:42:f7:f8:30:33:74:99:56:39:80:a0: ed:66:5b:7c:88:85:fa:59:05:b1:21:67:0a:b6:1e: cc:2a:cd:79:f5:61:48:18:95:dd:61:50:ce:e6:d5: d8:87:91:08:36:9e:f3:9a:e7:a2:be:53:06:8e:45: 04:93:bb:04:07:75:58:39:7d:0a:ce:fd:52:42:c9: e6:66:19:ad:15:cb:11:ae:35:a6:de:87:44:48:82: e0:31:06:b7:98:b9:6b:e1:22:7b:07:82:22:96:41: ae:af:51:d0:51:c3:c9:02:79:e8:0d:0a:cd:98:ef: 66:fc:fd:a2:86:c0:a3:0b:35:84:4b:6b:7d:57:93: 14:bd:94:2b:a0:4b:48:0b:58:a2:1a:6e:f3:b4:e2: c0:97:59:25:20:02:bd:ed:c6:8c:b4:fa:63:53:03: 97:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:3E:EE:FE:12:08:DB:B6:7D:A9:53:F5:54:2B:95:1C:DF:56:0F:F0 X509v3 Authority Key Identifier: keyid:90:EA:4C:62:3F:0B:8A:10:62:DA:A8:0E:A9:A8:F4:47:8F:59:DE:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3275/kOpMYj8LihBi2qgOqaj0R49Z3oU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kOpMYj8LihBi2qgOqaj0R49Z3oU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3275/kOpMYj8LihBi2qgOqaj0R49Z3oU.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:20:aa:40:60:48:c9:3a:10:be:d8:4e:98:a9:de:da:84:64: 54:cb:35:51:c3:17:e4:41:89:49:1b:ec:da:e6:3c:8b:4e:cb: 5a:5f:8d:8a:ba:9a:82:7c:6a:e2:c2:bf:b2:06:4f:eb:f6:f5: fa:ed:82:5a:0a:84:d8:70:68:14:ce:d0:e4:6f:75:94:83:8f: cf:54:83:9a:06:17:80:7c:cf:4a:74:5d:b2:30:09:f4:95:23: d6:34:3f:a9:55:c7:e1:5b:97:1c:26:a9:c4:82:a0:5b:ac:e6: 2f:99:a2:ed:5e:a6:ed:bf:1e:ca:eb:a3:bb:1d:63:d3:93:e2: 77:dc:14:07:89:7e:86:a7:dd:1d:90:04:a1:9a:e5:ba:ea:d0: 5d:3d:28:50:67:6b:5f:e2:05:1c:04:63:68:3a:fc:a4:8d:46: 33:ac:f0:6b:53:08:c1:5e:51:e3:fc:a4:2f:64:26:43:0f:67: 0e:c0:40:50:1d:50:6a:d3:d3:e7:e6:7a:64:e8:a7:77:11:b6: 68:d3:d7:c3:dd:35:46:76:cc:a8:d8:20:65:79:0c:53:d2:86: b2:a0:ee:7a:66:b8:e4:a9:e9:e6:61:d1:8b:8f:da:4c:fa:24: 7a:fc:33:72:b1:01:b5:d7:04:4e:94:f5:64:fc:e8:32:db:6a: e8:2e:04:d6 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCDswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTBF QTRDNjIzRjBCOEExMDYyREFBODBFQTlBOEY0NDc4RjU5REU4NTAeFw0yNTA2MDMy MTE0MzhaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDE0M0VFRUZFMTIwOERC QjY3REE5NTNGNTU0MkI5NTFDREY1NjBGRjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDIej5UXK9+KNJ2Kt+qqPMKKH7W3TjoF97maX5JugSbUYVvMpV 3v83lvoXcJ2PUkC3fJfZ1uGHPjrB/SFmkwPDTgyFxiiLDeQucfQShVxjL4wo12at 4NVI+/LFXGdC9/gwM3SZVjmAoO1mW3yIhfpZBbEhZwq2HswqzXn1YUgYld1hUM7m 1diHkQg2nvOa56K+UwaORQSTuwQHdVg5fQrO/VJCyeZmGa0VyxGuNabeh0RIguAx BreYuWvhInsHgiKWQa6vUdBRw8kCeegNCs2Y72b8/aKGwKMLNYRLa31XkxS9lCug S0gLWKIabvO04sCXWSUgAr3txoy0+mNTA5djAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUFD7u/hII27Z9qVP1VCuVHN9WD/AwHwYDVR0jBBgwFoAUkOpMYj8LihBi2qgO qaj0R49Z3oUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI3 NS9rT3BNWWo4TGloQmkycWdPcWFqMFI0OVozb1UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2tPcE1ZajhMaWhCaTJxZ09xYWowUjQ5WjNvVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNzUva09wTVlqOExpaEJp MnFnT3FhajBSNDlaM29VLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAEwgqkBgSMk6EL7YTpip3tqEZFTLNVHDF+RBiUkb7NrmPItOy1pfjYq6moJ8 auLCv7IGT+v29frtgloKhNhwaBTO0ORvdZSDj89Ug5oGF4B8z0p0XbIwCfSVI9Y0 P6lVx+FblxwmqcSCoFus5i+Zou1epu2/Hsrro7sdY9OT4nfcFAeJfoan3R2QBKGa 5brq0F09KFBna1/iBRwEY2g6/KSNRjOs8GtTCMFeUeP8pC9kJkMPZw7AQFAdUGrT 0+fmemTop3cRtmjT18PdNUZ2zKjYIGV5DFPShrKg7npmuOSp6eZh0YuP2kz6JHr8 M3KxAbXXBE6U9WT86DLbauguBNY= -----END CERTIFICATE-----Generated at Wed Jun 4 01:20:58 2025 by rpki-client