$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3304/NYyXKg0525XbRFMiZtreBGCHlEo.mft File: NYyXKg0525XbRFMiZtreBGCHlEo.mft (raw, json) Hash identifier: TP7z+udDfzm06/2LdFh5czXj7ckTfJf9awQbdLna/E8= Subject key identifier: F4:A7:32:D7:4A:F3:C4:25:61:51:DA:AD:CE:FF:1F:E5:67:7C:D0:44 Authority key identifier: 35:8C:97:2A:0D:39:DB:95:DB:44:53:22:66:DA:DE:04:60:87:94:4A Certificate issuer: /CN=358C972A0D39DB95DB44532266DADE046087944A Certificate serial: 0298 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/NYyXKg0525XbRFMiZtreBGCHlEo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3304/NYyXKg0525XbRFMiZtreBGCHlEo.mft Manifest number: 0298 Signing time: Fri 22 Nov 2024 15:23:44 +0000 Manifest this update: Fri 22 Nov 2024 15:23:44 +0000 Manifest next update: Fri 22 Nov 2024 21:23:44 +0000 Files and hashes: 1: NYyXKg0525XbRFMiZtreBGCHlEo.crl (hash: /BrWNSrNAAfEfO2EPUpDtHRLVZHyf9RoPKIjgYLX8IA=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3304/NYyXKg0525XbRFMiZtreBGCHlEo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3304/NYyXKg0525XbRFMiZtreBGCHlEo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/NYyXKg0525XbRFMiZtreBGCHlEo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 19:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 664 (0x298) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=358C972A0D39DB95DB44532266DADE046087944A Validity Not Before: Nov 22 15:23:44 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=F4A732D74AF3C4256151DAADCEFF1FE5677CD044 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:80:e1:9a:e6:f3:63:a4:9e:12:1a:e5:cc:b6: 35:ed:87:85:47:9d:13:b4:c6:d8:9c:e9:b9:6c:d8: 80:2e:84:c1:3e:a5:e2:2a:48:e9:77:50:d8:4c:bd: 4c:41:8b:21:49:c4:88:1f:ba:ae:8a:e1:a1:4c:24: 0c:f5:ac:75:ce:04:46:63:83:eb:f8:72:50:8f:ad: 21:65:02:01:44:2b:c3:00:b7:e8:20:76:ba:28:4a: fd:46:ee:19:b8:b1:44:a8:81:9f:aa:f8:d9:67:fb: 2f:e4:17:dc:ae:7a:95:9c:22:36:e0:d9:da:74:09: c2:20:ed:db:22:20:fa:3c:e5:a7:93:70:a2:01:e2: 0d:4e:50:35:aa:85:86:73:39:7c:14:49:ed:2f:94: 1f:2c:a6:20:89:ea:cf:b8:54:35:19:18:3f:ef:8c: 73:58:f7:15:a5:19:ef:4b:38:6b:35:d2:96:35:58: 8a:c5:4d:2f:8e:d9:1d:71:1f:10:5a:d0:5f:3e:bb: fb:65:14:85:84:a6:7d:99:c0:6e:ea:f5:46:be:be: b1:94:17:09:ea:29:16:59:e4:8b:f8:2a:2e:2c:69: 2b:d7:4c:6a:fd:c2:0b:5e:96:24:2e:f4:cd:0d:03: 0e:78:67:86:94:64:de:fa:94:71:e2:04:a8:39:62: d2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A7:32:D7:4A:F3:C4:25:61:51:DA:AD:CE:FF:1F:E5:67:7C:D0:44 X509v3 Authority Key Identifier: keyid:35:8C:97:2A:0D:39:DB:95:DB:44:53:22:66:DA:DE:04:60:87:94:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3304/NYyXKg0525XbRFMiZtreBGCHlEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/NYyXKg0525XbRFMiZtreBGCHlEo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3304/NYyXKg0525XbRFMiZtreBGCHlEo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:04:2d:8d:c4:f1:5c:07:d9:cb:60:3a:12:0b:65:1b:be:6d: 03:49:5e:8c:b3:cf:d9:04:23:56:be:62:b5:3b:49:9a:2f:38: 8e:2f:a5:9d:be:d4:38:8c:c7:0a:00:df:2c:13:4a:9e:1b:91: ec:8c:ea:e7:48:08:34:48:2a:b3:61:66:66:25:e1:ce:28:61: f3:2c:60:52:96:0d:0a:2f:53:20:68:a8:1b:be:75:ed:ef:b4: 9b:14:bd:33:5d:45:df:b4:7e:89:ef:ae:cc:3c:58:b1:3f:10: cf:27:86:3c:6d:08:e1:e1:87:66:4b:4d:7a:cc:f0:a6:cd:8d: 8c:70:74:4d:4b:8f:fd:8b:b5:98:9e:95:58:76:9a:95:7b:71: 8d:40:ea:16:63:93:4c:d1:d6:03:69:17:b5:eb:b4:fa:63:5b: 25:07:65:1d:0b:95:82:12:2f:5e:21:17:09:5f:e8:0f:06:6e: 4a:86:4a:3c:36:c1:01:dc:ec:52:a2:a8:c8:39:53:bd:37:66: 67:9b:22:c6:a3:78:48:f2:04:34:49:a5:da:ff:d5:d8:43:a8: 5e:be:e2:2b:27:85:9d:dd:1c:a0:46:07:78:49:c9:b2:f5:62: 0c:fd:1c:95:33:f7:1a:4b:75:29:eb:37:dd:97:1c:9d:41:26: d6:3c:8d:46 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICApgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzU4 Qzk3MkEwRDM5REI5NURCNDQ1MzIyNjZEQURFMDQ2MDg3OTQ0QTAeFw0yNDExMjIx NTIzNDRaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEY0QTczMkQ3NEFGM0M0 MjU2MTUxREFBRENFRkYxRkU1Njc3Q0QwNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkgOGa5vNjpJ4SGuXMtjXth4VHnRO0xtic6bls2IAuhME+peIq SOl3UNhMvUxBiyFJxIgfuq6K4aFMJAz1rHXOBEZjg+v4clCPrSFlAgFEK8MAt+gg drooSv1G7hm4sUSogZ+q+Nln+y/kF9yuepWcIjbg2dp0CcIg7dsiIPo85aeTcKIB 4g1OUDWqhYZzOXwUSe0vlB8spiCJ6s+4VDUZGD/vjHNY9xWlGe9LOGs10pY1WIrF TS+O2R1xHxBa0F8+u/tlFIWEpn2ZwG7q9Ua+vrGUFwnqKRZZ5Iv4Ki4saSvXTGr9 wgteliQu9M0NAw54Z4aUZN76lHHiBKg5YtJPAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU9Kcy10rzxCVhUdqtzv8f5Wd80EQwHwYDVR0jBBgwFoAUNYyXKg0525XbRFMi ZtreBGCHlEowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMw NC9OWXlYS2cwNTI1WGJSRk1pWnRyZUJHQ0hsRW8uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL05ZeVhLZzA1MjVYYlJGTWladHJlQkdDSGxFby5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMDQvTll5WEtnMDUyNVhi UkZNaVp0cmVCR0NIbEVvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAJ8ELY3E8VwH2ctgOhILZRu+bQNJXoyzz9kEI1a+YrU7SZovOI4vpZ2+1DiM xwoA3ywTSp4bkeyM6udICDRIKrNhZmYl4c4oYfMsYFKWDQovUyBoqBu+de3vtJsU vTNdRd+0fonvrsw8WLE/EM8nhjxtCOHhh2ZLTXrM8KbNjYxwdE1Lj/2LtZielVh2 mpV7cY1A6hZjk0zR1gNpF7XrtPpjWyUHZR0LlYISL14hFwlf6A8GbkqGSjw2wQHc 7FKiqMg5U703ZmebIsajeEjyBDRJpdr/1dhDqF6+4isnhZ3dHKBGB3hJybL1Ygz9 HJUz9xpLdSnrN92XHJ1BJtY8jUY= -----END CERTIFICATE-----Generated at Fri Nov 22 18:01:41 2024 by rpki-client on console-fra.rpki-client.org