$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft File: cROxlpJLKFBkXlV_4f_EwNArHRk.mft (raw, json) Hash identifier: tvuIiUkXtePygKeRicd1qH5Ya0FV0PuSlOKgf0dy+hg= Subject key identifier: C9:E8:CD:68:10:01:D5:9A:71:F9:20:C6:96:0D:52:27:0B:AF:65:06 Authority key identifier: 71:13:B1:96:92:4B:28:50:64:5E:55:7F:E1:FF:C4:C0:D0:2B:1D:19 Certificate issuer: /CN=7113B196924B2850645E557FE1FFC4C0D02B1D19 Certificate serial: 085B Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft Manifest number: 0858 Signing time: Fri 24 Oct 2025 17:35:07 +0000 Manifest this update: Fri 24 Oct 2025 17:35:07 +0000 Manifest next update: Fri 24 Oct 2025 23:35:07 +0000 Files and hashes: 1: 4zYhwzKtPO24VmBKnBMbLcfUubQ.roa (hash: ASMG37KNKcRiT+NFG3aHqq5FWzRUS2/RQrcmkNlZmJY=) 2: HjRiR4jL6G7qQnLmQvdv6kP3WqQ.roa (hash: 05icq/DbDs/2I8drlSuRNyAgvX8y1QfbbGL8a5DXtxM=) 3: cROxlpJLKFBkXlV_4f_EwNArHRk.crl (hash: VAeQ1UImjH9sstNTX4SKfshF4ETzmV+6cG7ituWs82o=) 4: opPXc4txplr0wt_5kJDOZ84M9EY.roa (hash: GwP5I7j08elwBP9g/jlNI0QLid9QzN8J3x6Riv56pkU=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 23:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2139 (0x85b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7113B196924B2850645E557FE1FFC4C0D02B1D19 Validity Not Before: Oct 24 17:35:07 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=C9E8CD681001D59A71F920C6960D52270BAF6506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:82:95:a5:8a:a7:2b:c0:59:48:1b:b1:9f:2c: a8:80:c6:ce:66:0a:59:59:b9:4f:8c:9a:cf:e6:14: 5e:56:cd:46:38:3c:a9:c7:b0:ec:fb:88:06:6e:ab: 6c:de:67:92:a5:87:c3:d5:b3:8d:90:40:06:e1:32: 62:0c:14:9b:5a:8a:e9:02:fe:b0:4f:f4:ec:7c:39: cb:22:39:16:46:c3:10:e1:70:84:db:a6:55:9f:bf: e7:18:73:83:bd:06:01:d0:b9:3a:83:d1:4c:a9:f7: e0:fb:ac:65:fd:09:e1:80:39:92:91:d5:80:5e:75: b3:e0:85:4d:b4:91:ad:bc:f3:e0:31:cc:8d:19:3e: 05:4a:77:9b:b6:a0:3e:cc:72:0a:72:1e:18:68:ce: cb:69:16:29:8a:88:c1:bb:27:e5:c7:45:ab:41:7d: 78:17:cc:ab:c7:58:7f:a9:aa:24:e4:62:df:b9:f6: 40:74:86:8f:22:0d:57:f6:c4:dd:62:2a:91:f3:a5: 61:35:38:52:90:dc:49:4c:26:0b:d8:2e:82:59:8b: 5f:2c:22:d2:c1:16:30:6e:f5:74:b4:39:1a:98:9d: cf:51:59:3f:0a:9f:35:7d:d2:f5:c4:f0:28:7f:0c: 37:fa:04:91:f7:42:52:34:ce:46:ac:3e:50:01:6a: 16:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:E8:CD:68:10:01:D5:9A:71:F9:20:C6:96:0D:52:27:0B:AF:65:06 X509v3 Authority Key Identifier: keyid:71:13:B1:96:92:4B:28:50:64:5E:55:7F:E1:FF:C4:C0:D0:2B:1D:19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:b7:1a:cf:63:0d:3c:96:42:59:41:95:12:31:30:94:74:41: db:6b:a0:38:e3:a5:be:2b:d5:2a:97:9d:0a:f9:7b:01:03:cf: 41:1c:73:53:60:d1:f6:0e:44:7d:61:ad:ea:a3:d9:31:10:d8: 9d:91:40:17:51:27:bd:86:76:df:af:b7:5e:c8:89:09:6c:92: f9:29:d1:bc:e5:16:36:6e:a2:58:2b:fa:c3:de:11:c2:73:d4: b2:2b:a8:37:50:33:f2:c1:9e:15:42:06:7d:6a:e9:34:f6:2c: d5:fb:15:e8:93:8b:5b:99:4a:22:b9:e1:8f:5b:1c:c3:0d:77: b8:38:b7:50:de:9c:02:11:78:c0:df:c6:c0:a1:b4:d8:a6:bf: df:ce:d7:b5:e2:44:31:91:be:e4:01:93:91:78:6c:92:58:74: f9:ba:18:a4:6e:b1:5a:52:5e:19:95:d4:fb:75:4d:7d:b5:7d: 76:8f:86:17:b2:b5:85:41:3c:7d:59:4e:a9:4a:8d:92:9d:d6: 40:4a:1c:5e:da:cd:5c:26:e1:59:df:92:b4:da:ee:4f:4e:6a: 1d:8c:a6:d2:dc:6d:8a:3b:b8:0c:f1:10:3b:48:f6:2c:f8:21: 88:9e:f3:00:5c:29:ba:7e:2b:cd:f5:c3:aa:01:2f:a0:99:10: 58:7a:b2:20 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCFswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzEx M0IxOTY5MjRCMjg1MDY0NUU1NTdGRTFGRkM0QzBEMDJCMUQxOTAeFw0yNTEwMjQx NzM1MDdaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEM5RThDRDY4MTAwMUQ1 OUE3MUY5MjBDNjk2MEQ1MjI3MEJBRjY1MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDegpWliqcrwFlIG7GfLKiAxs5mCllZuU+Mms/mFF5WzUY4PKnH sOz7iAZuq2zeZ5Klh8PVs42QQAbhMmIMFJtaiukC/rBP9Ox8OcsiORZGwxDhcITb plWfv+cYc4O9BgHQuTqD0Uyp9+D7rGX9CeGAOZKR1YBedbPghU20ka288+AxzI0Z PgVKd5u2oD7McgpyHhhozstpFimKiMG7J+XHRatBfXgXzKvHWH+pqiTkYt+59kB0 ho8iDVf2xN1iKpHzpWE1OFKQ3ElMJgvYLoJZi18sItLBFjBu9XS0ORqYnc9RWT8K nzV90vXE8Ch/DDf6BJH3QlI0zkasPlABahb1AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUyejNaBAB1Zpx+SDGlg1SJwuvZQYwHwYDVR0jBBgwFoAUcROxlpJLKFBkXlV/ 4f/EwNArHRkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMw OS9jUk94bHBKTEtGQmtYbFZfNGZfRXdOQXJIUmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2NST3hscEpMS0ZCa1hsVl80Zl9Fd05BckhSay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMDkvY1JPeGxwSkxLRkJr WGxWXzRmX0V3TkFySFJrLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAJW3Gs9jDTyWQllBlRIxMJR0QdtroDjjpb4r1SqXnQr5ewEDz0Ecc1Ng0fYO RH1hreqj2TEQ2J2RQBdRJ72Gdt+vt17IiQlskvkp0bzlFjZuolgr+sPeEcJz1LIr qDdQM/LBnhVCBn1q6TT2LNX7FeiTi1uZSiK54Y9bHMMNd7g4t1DenAIReMDfxsCh tNimv9/O17XiRDGRvuQBk5F4bJJYdPm6GKRusVpSXhmV1Pt1TX21fXaPhheytYVB PH1ZTqlKjZKd1kBKHF7azVwm4VnfkrTa7k9Oah2MptLcbYo7uAzxEDtI9iz4IYie 8wBcKbp+K831w6oBL6CZEFh6siA= -----END CERTIFICATE-----Generated at Fri Oct 24 21:24:51 2025 by rpki-client