$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft File: TPCRRt5gTA5ELVbGj8hsxQQArSE.mft (raw, json) Hash identifier: +iZmnq8R+ffNujMfF4sm/N+ztHqFKz6WO+Ael1SkuF0= Subject key identifier: 3D:E4:46:07:C7:25:81:96:BF:B2:E4:51:4E:F5:22:AC:03:3E:12:0A Authority key identifier: 4C:F0:91:46:DE:60:4C:0E:44:2D:56:C6:8F:C8:6C:C5:04:00:AD:21 Certificate issuer: /CN=4CF09146DE604C0E442D56C68FC86CC50400AD21 Certificate serial: 03C2 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TPCRRt5gTA5ELVbGj8hsxQQArSE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft Manifest number: 03C2 Signing time: Mon 25 Nov 2024 02:23:39 +0000 Manifest this update: Mon 25 Nov 2024 02:23:39 +0000 Manifest next update: Mon 25 Nov 2024 08:23:39 +0000 Files and hashes: 1: TPCRRt5gTA5ELVbGj8hsxQQArSE.crl (hash: /ObS9dTfooTz7VPoLD96g/kAoMba8EJWm563L6yBSgQ=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TPCRRt5gTA5ELVbGj8hsxQQArSE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 08:23:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 962 (0x3c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4CF09146DE604C0E442D56C68FC86CC50400AD21 Validity Not Before: Nov 25 02:23:39 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=3DE44607C7258196BFB2E4514EF522AC033E120A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ad:57:8b:9f:48:fe:72:52:d5:33:80:7f:8a: c7:e8:8e:f7:d8:2a:b2:4f:bd:6d:ca:0f:94:85:2d: 55:99:15:1d:fc:b6:eb:26:3c:1c:fa:15:e5:3c:d2: c9:bf:b1:b2:dc:61:69:84:79:cc:d0:8b:43:f7:23: 20:f7:b8:92:c2:dc:a6:24:c4:70:f6:64:4d:a0:05: ef:64:1c:04:e5:60:85:72:53:ed:11:83:30:7b:c7: db:b9:83:a9:17:42:7a:c0:3b:5d:89:30:1c:1f:3d: 9a:c5:42:5c:8f:ec:1a:32:ca:a5:25:db:7d:43:8e: d3:6c:4e:66:4b:55:ac:c5:a9:09:bd:d9:0e:2a:1c: 9f:44:80:a8:b1:3c:30:48:46:da:79:b8:bb:12:c2: f4:b3:ff:5e:86:a7:32:db:11:b3:cc:d4:36:86:81: 85:73:50:fb:d2:4d:c8:f6:7f:08:52:89:3b:cb:87: 47:ab:f3:ac:7c:4d:73:bb:e0:16:b5:ae:92:36:5a: d6:8d:7e:7b:1c:b9:16:22:b9:50:89:c9:de:9d:bf: 37:0a:05:2b:2f:60:ec:fc:bc:d0:56:5d:7f:d5:d7: 84:60:66:31:df:0c:7c:41:05:b4:f3:9d:42:26:7d: e6:20:17:d2:d9:ac:43:6c:95:9c:a5:df:c4:5c:92: 86:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:E4:46:07:C7:25:81:96:BF:B2:E4:51:4E:F5:22:AC:03:3E:12:0A X509v3 Authority Key Identifier: keyid:4C:F0:91:46:DE:60:4C:0E:44:2D:56:C6:8F:C8:6C:C5:04:00:AD:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TPCRRt5gTA5ELVbGj8hsxQQArSE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:00:5c:d8:66:5f:0f:bc:e9:54:54:74:35:89:07:cd:dd:6a: 09:e5:a6:c4:ae:68:dc:4d:fa:5e:bc:cd:39:01:75:5f:91:82: f0:33:8b:32:84:7d:c2:2a:09:89:83:13:30:d0:be:66:f9:24: 8e:21:0d:3c:58:63:04:8d:92:ed:c9:aa:78:90:ac:8b:9e:2e: 5e:16:9a:08:92:a1:2b:03:58:7b:ac:09:70:7a:76:7a:f1:7b: a0:9e:0c:b7:31:24:62:94:6a:c1:c0:45:53:c9:3e:fe:92:c7: d1:8f:60:9e:d1:b6:bd:05:5a:f6:a7:5c:35:52:b9:bc:af:9b: 85:7d:11:3d:2c:76:7e:40:cf:94:09:64:0f:1b:d8:ce:80:37: fc:d8:e0:ae:b0:54:97:d1:1f:40:3e:e4:43:dd:cc:ba:7a:3d: 16:e0:c8:aa:90:3c:6d:8b:47:42:4e:af:18:88:f4:83:74:d0: be:01:c5:0c:ba:ec:f1:4b:ea:3f:51:ac:05:22:89:3d:55:9c: 31:cb:80:d2:9e:74:a7:7e:47:27:c9:95:58:31:ad:78:f9:51: cb:9c:86:24:dc:07:d5:fc:38:d0:e9:29:7b:58:69:2b:37:41: a6:d6:6f:7d:76:da:6a:5b:5f:c9:dc:3c:13:f8:c9:2d:d3:c0: 19:69:17:23 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICA8IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNENG MDkxNDZERTYwNEMwRTQ0MkQ1NkM2OEZDODZDQzUwNDAwQUQyMTAeFw0yNDExMjUw MjIzMzlaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDNERTQ0NjA3QzcyNTgx OTZCRkIyRTQ1MTRFRjUyMkFDMDMzRTEyMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKrVeLn0j+clLVM4B/isfojvfYKrJPvW3KD5SFLVWZFR38tusm PBz6FeU80sm/sbLcYWmEeczQi0P3IyD3uJLC3KYkxHD2ZE2gBe9kHATlYIVyU+0R gzB7x9u5g6kXQnrAO12JMBwfPZrFQlyP7BoyyqUl231DjtNsTmZLVazFqQm92Q4q HJ9EgKixPDBIRtp5uLsSwvSz/16GpzLbEbPM1DaGgYVzUPvSTcj2fwhSiTvLh0er 86x8TXO74Ba1rpI2WtaNfnscuRYiuVCJyd6dvzcKBSsvYOz8vNBWXX/V14RgZjHf DHxBBbTznUImfeYgF9LZrENslZyl38RckoZFAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUPeRGB8clgZa/suRRTvUirAM+EgowHwYDVR0jBBgwFoAUTPCRRt5gTA5ELVbG j8hsxQQArSEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI4 Mi9UUENSUnQ1Z1RBNUVMVmJHajhoc3hRUUFyU0UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1RQQ1JSdDVnVEE1RUxWYkdqOGhzeFFRQXJTRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyODIvVFBDUlJ0NWdUQTVF TFZiR2o4aHN4UVFBclNFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAAAAXNhmXw+86VRUdDWJB83dagnlpsSuaNxN+l68zTkBdV+RgvAzizKEfcIq CYmDEzDQvmb5JI4hDTxYYwSNku3JqniQrIueLl4WmgiSoSsDWHusCXB6dnrxe6Ce DLcxJGKUasHARVPJPv6Sx9GPYJ7Rtr0FWvanXDVSubyvm4V9ET0sdn5Az5QJZA8b 2M6AN/zY4K6wVJfRH0A+5EPdzLp6PRbgyKqQPG2LR0JOrxiI9IN00L4BxQy67PFL 6j9RrAUiiT1VnDHLgNKedKd+RyfJlVgxrXj5UcuchiTcB9X8ONDpKXtYaSs3QabW b3122mpbX8ncPBP4yS3TwBlpFyM= -----END CERTIFICATE-----Generated at Mon Nov 25 06:06:53 2024 by rpki-client on console-ams.rpki-client.org