$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3286/Um3mirHCXqVTIWuhLuNonNVrlkU.mft File: Um3mirHCXqVTIWuhLuNonNVrlkU.mft (raw, json) Hash identifier: 1rJB+lTDxeNcQmWYbwDm1AifJ20l+OubVv15KErDtA8= Subject key identifier: 7C:42:1E:2B:98:95:EB:7D:14:57:6D:3B:48:EC:0F:A2:E3:BA:01:C9 Authority key identifier: 52:6D:E6:8A:B1:C2:5E:A5:53:21:6B:A1:2E:E3:68:9C:D5:6B:96:45 Certificate issuer: /CN=526DE68AB1C25EA553216BA12EE3689CD56B9645 Certificate serial: 0909 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Um3mirHCXqVTIWuhLuNonNVrlkU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3286/Um3mirHCXqVTIWuhLuNonNVrlkU.mft Manifest number: 0909 Signing time: Mon 08 Sep 2025 04:04:10 +0000 Manifest this update: Mon 08 Sep 2025 04:04:10 +0000 Manifest next update: Mon 08 Sep 2025 10:04:10 +0000 Files and hashes: 1: Um3mirHCXqVTIWuhLuNonNVrlkU.crl (hash: dqs4aaTidHPWsPCJwPHOenpyavRHHGowCQOVDC8giiM=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3286/Um3mirHCXqVTIWuhLuNonNVrlkU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3286/Um3mirHCXqVTIWuhLuNonNVrlkU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Um3mirHCXqVTIWuhLuNonNVrlkU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 07:06:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2313 (0x909) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=526DE68AB1C25EA553216BA12EE3689CD56B9645 Validity Not Before: Sep 8 04:04:10 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=7C421E2B9895EB7D14576D3B48EC0FA2E3BA01C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:85:48:fa:6f:7f:9c:68:9e:ca:02:0a:ce:7e: 95:59:ba:0a:78:73:7e:a0:23:91:0e:2d:74:82:1b: 57:27:cc:a6:8a:8f:ac:fa:a0:f2:15:9c:5f:5b:8c: cf:cb:4e:ac:90:39:ad:b2:bd:41:9d:de:08:a6:34: bf:36:b4:1e:cc:9a:af:9e:81:a8:ae:29:e8:03:14: d8:e9:04:5b:50:a8:a7:db:b5:b2:63:80:d6:5f:f0: 95:90:2f:8b:e2:eb:ee:8b:32:1f:d0:9c:cd:d6:93: 12:04:6f:a5:82:bd:15:aa:a9:b0:a7:8f:fb:f9:50: 0b:0a:e6:74:93:a3:6e:d6:8a:a6:09:69:d1:74:5d: 79:40:a7:1b:1b:e9:32:c5:46:60:c2:29:ca:7a:8f: a2:f3:48:a9:41:78:af:91:80:ab:9e:f0:c5:e4:8f: 6d:d5:4f:55:03:27:11:d2:05:3b:78:be:31:3b:a7: 9a:ba:0b:38:f8:f9:e5:51:e8:1e:f4:1a:3d:90:17: 36:0e:2b:0c:42:e3:9e:39:d3:9c:c0:04:54:07:8e: 86:d3:d2:da:db:24:1c:6f:52:e2:34:89:3b:e7:1e: 4c:93:76:27:ed:f0:a4:20:fd:a9:24:7c:f4:71:ec: a0:31:c9:dc:af:5c:a5:fd:aa:f6:e8:0b:36:df:0d: 97:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:42:1E:2B:98:95:EB:7D:14:57:6D:3B:48:EC:0F:A2:E3:BA:01:C9 X509v3 Authority Key Identifier: keyid:52:6D:E6:8A:B1:C2:5E:A5:53:21:6B:A1:2E:E3:68:9C:D5:6B:96:45 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3286/Um3mirHCXqVTIWuhLuNonNVrlkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Um3mirHCXqVTIWuhLuNonNVrlkU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3286/Um3mirHCXqVTIWuhLuNonNVrlkU.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:77:30:41:93:f1:5c:3d:52:1e:e4:fb:e9:14:7c:4b:ea:84: 3d:9e:67:74:e8:1d:e4:e6:45:a7:13:99:f2:e7:dd:cd:14:a1: 75:5e:dc:6a:ea:a1:9d:bc:33:1e:fc:64:f6:af:97:bc:75:20: 98:93:65:09:ef:ad:d4:77:d3:cc:0a:ad:5b:c8:8e:a9:5b:6d: 95:70:60:b5:7f:d3:f4:a5:32:6c:f4:f8:1b:5c:68:b6:36:ed: 6f:f0:14:76:93:2c:f0:ee:38:04:72:31:1a:6f:68:bd:96:94: 22:10:eb:24:96:22:8c:3e:49:e8:c2:7e:53:71:98:37:c7:61: 6c:c6:52:9c:fa:70:c4:ed:3c:f0:90:2b:c8:03:b2:dd:18:43: ba:6f:9b:f0:7a:50:d5:f8:93:80:9a:3d:14:49:cb:51:47:34: 50:82:84:53:89:e9:97:46:96:cb:f2:1b:ae:c9:fa:74:e0:40: 62:77:51:fd:83:9b:22:b5:be:8c:a5:6f:f3:01:92:3b:21:bb: 07:dd:32:df:ea:16:44:08:bc:75:85:a3:0b:24:0a:b5:d6:33: 7d:29:e0:f3:f1:99:50:6b:4f:89:70:6d:93:17:63:ad:14:e2: f6:c9:b0:cc:db:11:06:36:4f:4b:d2:06:17:2e:df:80:51:9a: 43:59:61:de -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCQkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI2 REU2OEFCMUMyNUVBNTUzMjE2QkExMkVFMzY4OUNENTZCOTY0NTAeFw0yNTA5MDgw NDA0MTBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDdDNDIxRTJCOTg5NUVC N0QxNDU3NkQzQjQ4RUMwRkEyRTNCQTAxQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHhUj6b3+caJ7KAgrOfpVZugp4c36gI5EOLXSCG1cnzKaKj6z6 oPIVnF9bjM/LTqyQOa2yvUGd3gimNL82tB7Mmq+egaiuKegDFNjpBFtQqKfbtbJj gNZf8JWQL4vi6+6LMh/QnM3WkxIEb6WCvRWqqbCnj/v5UAsK5nSTo27WiqYJadF0 XXlApxsb6TLFRmDCKcp6j6LzSKlBeK+RgKue8MXkj23VT1UDJxHSBTt4vjE7p5q6 Czj4+eVR6B70Gj2QFzYOKwxC454505zABFQHjobT0trbJBxvUuI0iTvnHkyTdift 8KQg/akkfPRx7KAxydyvXKX9qvboCzbfDZejAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUfEIeK5iV630UV207SOwPouO6AckwHwYDVR0jBBgwFoAUUm3mirHCXqVTIWuh LuNonNVrlkUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI4 Ni9VbTNtaXJIQ1hxVlRJV3VoTHVOb25OVnJsa1UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1VtM21pckhDWHFWVElXdWhMdU5vbk5WcmxrVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyODYvVW0zbWlySENYcVZU SVd1aEx1Tm9uTlZybGtVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBACF3MEGT8Vw9Uh7k++kUfEvqhD2eZ3ToHeTmRacTmfLn3c0UoXVe3GrqoZ28 Mx78ZPavl7x1IJiTZQnvrdR308wKrVvIjqlbbZVwYLV/0/SlMmz0+BtcaLY27W/w FHaTLPDuOARyMRpvaL2WlCIQ6ySWIow+SejCflNxmDfHYWzGUpz6cMTtPPCQK8gD st0YQ7pvm/B6UNX4k4CaPRRJy1FHNFCChFOJ6ZdGlsvyG67J+nTgQGJ3Uf2DmyK1 voylb/MBkjshuwfdMt/qFkQIvHWFowskCrXWM30p4PPxmVBrT4lwbZMXY60U4vbJ sMzbEQY2T0vSBhcu34BRmkNZYd4= -----END CERTIFICATE-----Generated at Mon Sep 8 06:03:11 2025 by rpki-client