$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft File: cROxlpJLKFBkXlV_4f_EwNArHRk.mft (raw, json) Hash identifier: nPdDnokEAjUdEoLimuq0MErZ8MBR//bqBthI1lPJDXg= Subject key identifier: C9:E8:CD:68:10:01:D5:9A:71:F9:20:C6:96:0D:52:27:0B:AF:65:06 Authority key identifier: 71:13:B1:96:92:4B:28:50:64:5E:55:7F:E1:FF:C4:C0:D0:2B:1D:19 Certificate issuer: /CN=7113B196924B2850645E557FE1FFC4C0D02B1D19 Certificate serial: 01D9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft Manifest number: 01D9 Signing time: Fri 22 Nov 2024 20:24:15 +0000 Manifest this update: Fri 22 Nov 2024 20:24:15 +0000 Manifest next update: Sat 23 Nov 2024 02:24:15 +0000 Files and hashes: 1: cROxlpJLKFBkXlV_4f_EwNArHRk.crl (hash: F1dT6wFZmGgCfgvmv+6cMVTLnbfvrg+NnT3/RVDFL6c=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7113B196924B2850645E557FE1FFC4C0D02B1D19 Validity Not Before: Nov 22 20:24:15 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=C9E8CD681001D59A71F920C6960D52270BAF6506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:82:95:a5:8a:a7:2b:c0:59:48:1b:b1:9f:2c: a8:80:c6:ce:66:0a:59:59:b9:4f:8c:9a:cf:e6:14: 5e:56:cd:46:38:3c:a9:c7:b0:ec:fb:88:06:6e:ab: 6c:de:67:92:a5:87:c3:d5:b3:8d:90:40:06:e1:32: 62:0c:14:9b:5a:8a:e9:02:fe:b0:4f:f4:ec:7c:39: cb:22:39:16:46:c3:10:e1:70:84:db:a6:55:9f:bf: e7:18:73:83:bd:06:01:d0:b9:3a:83:d1:4c:a9:f7: e0:fb:ac:65:fd:09:e1:80:39:92:91:d5:80:5e:75: b3:e0:85:4d:b4:91:ad:bc:f3:e0:31:cc:8d:19:3e: 05:4a:77:9b:b6:a0:3e:cc:72:0a:72:1e:18:68:ce: cb:69:16:29:8a:88:c1:bb:27:e5:c7:45:ab:41:7d: 78:17:cc:ab:c7:58:7f:a9:aa:24:e4:62:df:b9:f6: 40:74:86:8f:22:0d:57:f6:c4:dd:62:2a:91:f3:a5: 61:35:38:52:90:dc:49:4c:26:0b:d8:2e:82:59:8b: 5f:2c:22:d2:c1:16:30:6e:f5:74:b4:39:1a:98:9d: cf:51:59:3f:0a:9f:35:7d:d2:f5:c4:f0:28:7f:0c: 37:fa:04:91:f7:42:52:34:ce:46:ac:3e:50:01:6a: 16:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:E8:CD:68:10:01:D5:9A:71:F9:20:C6:96:0D:52:27:0B:AF:65:06 X509v3 Authority Key Identifier: keyid:71:13:B1:96:92:4B:28:50:64:5E:55:7F:E1:FF:C4:C0:D0:2B:1D:19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:48:cb:c7:e8:46:80:18:63:c9:42:e5:83:02:8a:34:68:e6: 4d:cc:ae:82:51:76:ce:ad:ee:02:0a:aa:70:5a:59:d4:83:63: 98:52:f7:01:0b:c0:30:de:cc:b2:47:a9:98:10:a9:ef:74:1d: cc:15:33:73:f3:6e:06:e2:a4:35:ea:ef:a5:1d:67:2c:84:df: 44:36:d1:ab:13:78:71:7c:64:a2:70:22:a8:10:da:b0:99:aa: 0c:ba:41:1f:af:11:6c:ea:31:49:1a:cc:8a:a5:96:4e:f7:c8: 5f:da:98:1c:7c:3e:64:8b:75:34:f2:15:4a:b6:ab:d6:0c:ec: f5:1e:65:0f:3a:9b:60:4d:e8:f1:55:f9:dd:9c:71:ef:65:2a: 79:47:ef:8d:fc:fe:0c:ea:8d:1f:c9:88:d6:ee:0e:55:dc:2d: f9:aa:ff:3e:3e:a7:3a:4e:45:9f:d1:1f:9d:be:87:ea:45:58: f7:38:55:0c:d3:e1:8f:c4:d5:b5:b1:5c:b9:27:26:42:c2:ca: 5f:c0:5f:c9:f7:81:e8:19:da:15:28:10:9d:e4:59:99:45:e6: ea:7f:1c:56:a8:e5:89:ee:f3:81:96:dd:86:d0:ec:e7:28:5b: 83:54:d4:ca:36:86:25:98:d5:81:cc:e5:b4:6b:f3:a6:fd:6e: 54:94:6f:1f -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzEx M0IxOTY5MjRCMjg1MDY0NUU1NTdGRTFGRkM0QzBEMDJCMUQxOTAeFw0yNDExMjIy MDI0MTVaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEM5RThDRDY4MTAwMUQ1 OUE3MUY5MjBDNjk2MEQ1MjI3MEJBRjY1MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDegpWliqcrwFlIG7GfLKiAxs5mCllZuU+Mms/mFF5WzUY4PKnH sOz7iAZuq2zeZ5Klh8PVs42QQAbhMmIMFJtaiukC/rBP9Ox8OcsiORZGwxDhcITb plWfv+cYc4O9BgHQuTqD0Uyp9+D7rGX9CeGAOZKR1YBedbPghU20ka288+AxzI0Z PgVKd5u2oD7McgpyHhhozstpFimKiMG7J+XHRatBfXgXzKvHWH+pqiTkYt+59kB0 ho8iDVf2xN1iKpHzpWE1OFKQ3ElMJgvYLoJZi18sItLBFjBu9XS0ORqYnc9RWT8K nzV90vXE8Ch/DDf6BJH3QlI0zkasPlABahb1AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUyejNaBAB1Zpx+SDGlg1SJwuvZQYwHwYDVR0jBBgwFoAUcROxlpJLKFBkXlV/ 4f/EwNArHRkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMw OS9jUk94bHBKTEtGQmtYbFZfNGZfRXdOQXJIUmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2NST3hscEpMS0ZCa1hsVl80Zl9Fd05BckhSay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMDkvY1JPeGxwSkxLRkJr WGxWXzRmX0V3TkFySFJrLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAEBIy8foRoAYY8lC5YMCijRo5k3MroJRds6t7gIKqnBaWdSDY5hS9wELwDDe zLJHqZgQqe90HcwVM3PzbgbipDXq76UdZyyE30Q20asTeHF8ZKJwIqgQ2rCZqgy6 QR+vEWzqMUkazIqllk73yF/amBx8PmSLdTTyFUq2q9YM7PUeZQ86m2BN6PFV+d2c ce9lKnlH7438/gzqjR/JiNbuDlXcLfmq/z4+pzpORZ/RH52+h+pFWPc4VQzT4Y/E 1bWxXLknJkLCyl/AX8n3gegZ2hUoEJ3kWZlF5up/HFao5Ynu84GW3YbQ7OcoW4NU 1Mo2hiWY1YHM5bRr86b9blSUbx8= -----END CERTIFICATE-----Generated at Fri Nov 22 21:14:12 2024 by rpki-client on console-fra.rpki-client.org