$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft File: MhLECXbovqr84IRHL8u8MS-Szow.mft (raw, json) Hash identifier: qfrhF27cJLRQoswoY7DMzvomRrOlHeij3OJSqDTmO3k= Subject key identifier: 8F:4E:72:36:9C:B7:C3:91:35:92:C8:ED:1B:D1:83:39:AB:1E:9A:A1 Authority key identifier: 32:12:C4:09:76:E8:BE:AA:FC:E0:84:47:2F:CB:BC:31:2F:92:CE:8C Certificate issuer: /CN=3212C40976E8BEAAFCE084472FCBBC312F92CE8C Certificate serial: 02EB Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MhLECXbovqr84IRHL8u8MS-Szow.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft Manifest number: 02EB Signing time: Sun 20 Jul 2025 21:11:15 +0000 Manifest this update: Sun 20 Jul 2025 21:11:15 +0000 Manifest next update: Mon 21 Jul 2025 03:11:15 +0000 Files and hashes: 1: MhLECXbovqr84IRHL8u8MS-Szow.crl (hash: cnDih9fjInY0K/x9BBL8H5lRm4l9zrtuUh9Gf9LiSa0=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MhLECXbovqr84IRHL8u8MS-Szow.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Jul 2025 03:11:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 747 (0x2eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3212C40976E8BEAAFCE084472FCBBC312F92CE8C Validity Not Before: Jul 20 21:11:15 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=8F4E72369CB7C3913592C8ED1BD18339AB1E9AA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:17:73:c0:0a:10:46:57:fc:81:4a:e0:16:96: 31:df:e3:b6:c6:55:c2:5b:37:e9:32:93:3c:d6:08: 4b:ad:c3:79:e9:c9:ca:d1:66:48:f0:81:07:20:30: 9a:21:e2:86:e4:b3:6c:94:7a:f7:66:52:19:6e:54: a5:56:6c:4a:33:eb:bf:c7:b1:b3:1a:4e:45:3f:09: 67:cf:88:10:38:9e:1b:dd:33:b6:40:d3:d5:57:e0: ab:a1:56:98:80:67:1a:8d:79:2a:f2:37:a0:58:ce: cf:6c:df:56:ac:ce:8f:66:3f:83:43:14:57:f5:3c: 49:58:7b:e1:5e:e0:96:92:3e:28:28:b1:d8:27:7a: 6c:98:45:ba:fd:d3:2d:8a:4b:25:74:83:ea:ad:7d: c9:7c:54:8a:0c:ac:9d:85:8f:26:a6:95:06:4d:0a: b7:91:7d:8e:e8:40:48:ab:f1:f4:67:25:9f:33:5f: d0:88:92:1d:d2:f7:52:f6:3b:a9:bb:d4:9d:8e:15: ef:33:78:3f:91:12:1a:19:32:ca:01:da:b1:e3:15: ec:94:f1:ce:a4:93:4b:3a:02:05:ef:34:e5:a3:9b: 82:22:32:60:50:c0:b5:46:87:fe:ee:2a:b9:14:fb: 7d:89:98:11:31:c8:4d:08:e5:32:d2:37:93:72:d2: b5:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:4E:72:36:9C:B7:C3:91:35:92:C8:ED:1B:D1:83:39:AB:1E:9A:A1 X509v3 Authority Key Identifier: keyid:32:12:C4:09:76:E8:BE:AA:FC:E0:84:47:2F:CB:BC:31:2F:92:CE:8C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MhLECXbovqr84IRHL8u8MS-Szow.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:64:7b:b7:a6:d5:04:f0:11:f7:5c:3a:e5:e0:68:12:e7:a9: df:15:39:a6:1d:ad:db:0b:ea:79:09:f0:bb:09:d5:d7:a4:7f: 3c:9e:cf:28:c7:80:1a:ed:42:12:41:50:e3:a1:6a:a1:f2:b7: 35:00:15:54:7e:f5:94:01:f5:97:c0:31:44:c5:2e:12:29:de: be:49:ef:b9:54:6a:b9:ae:53:fc:98:08:bd:3e:8c:55:14:a7: 81:69:16:d6:b8:89:09:2e:88:bb:be:af:46:30:3b:53:2c:f4: 82:be:22:85:12:63:da:da:62:94:49:d7:3d:59:b4:13:9c:f4: 18:f9:9c:3d:d5:15:24:db:8a:0f:af:9a:7c:03:9e:2e:d4:57: 9c:d4:46:0f:e5:82:56:10:a3:bf:3c:ab:68:b2:a0:59:9a:9d: c6:2c:06:8d:fb:7b:69:74:17:f7:81:af:a3:dd:da:68:61:cd: 66:bd:cc:14:64:8c:38:fb:32:54:3e:b3:89:0e:1d:0c:51:39: 6c:23:71:07:28:3c:6c:82:e8:3d:4a:21:ca:64:88:dd:d5:23: 6f:7c:3b:9e:cc:97:17:6f:8d:02:58:78:5f:c3:70:41:b3:d5: 60:9c:62:c1:67:a1:18:68:9c:b2:21:68:69:0d:06:75:fb:5b: a4:99:67:17 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICAuswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzIx MkM0MDk3NkU4QkVBQUZDRTA4NDQ3MkZDQkJDMzEyRjkyQ0U4QzAeFw0yNTA3MjAy MTExMTVaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDhGNEU3MjM2OUNCN0Mz OTEzNTkyQzhFRDFCRDE4MzM5QUIxRTlBQTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrF3PAChBGV/yBSuAWljHf47bGVcJbN+kykzzWCEutw3npycrR ZkjwgQcgMJoh4obks2yUevdmUhluVKVWbEoz67/HsbMaTkU/CWfPiBA4nhvdM7ZA 09VX4KuhVpiAZxqNeSryN6BYzs9s31aszo9mP4NDFFf1PElYe+Fe4JaSPigosdgn emyYRbr90y2KSyV0g+qtfcl8VIoMrJ2FjyamlQZNCreRfY7oQEir8fRnJZ8zX9CI kh3S91L2O6m71J2OFe8zeD+REhoZMsoB2rHjFeyU8c6kk0s6AgXvNOWjm4IiMmBQ wLVGh/7uKrkU+32JmBExyE0I5TLSN5Ny0rXvAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUj05yNpy3w5E1ksjtG9GDOasemqEwHwYDVR0jBBgwFoAUMhLECXbovqr84IRH L8u8MS+SzowwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM1 My9NaExFQ1hib3Zxcjg0SVJITDh1OE1TLVN6b3cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL01oTEVDWGJvdnFyODRJUkhMOHU4TVMtU3pvdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNTMvTWhMRUNYYm92cXI4 NElSSEw4dThNUy1Tem93Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAANke7em1QTwEfdcOuXgaBLnqd8VOaYdrdsL6nkJ8LsJ1dekfzyezyjHgBrt QhJBUOOhaqHytzUAFVR+9ZQB9ZfAMUTFLhIp3r5J77lUarmuU/yYCL0+jFUUp4Fp Fta4iQkuiLu+r0YwO1Ms9IK+IoUSY9raYpRJ1z1ZtBOc9Bj5nD3VFSTbig+vmnwD ni7UV5zURg/lglYQo788q2iyoFmancYsBo37e2l0F/eBr6Pd2mhhzWa9zBRkjDj7 MlQ+s4kOHQxROWwjcQcoPGyC6D1KIcpkiN3VI298O57MlxdvjQJYeF/DcEGz1WCc YsFnoRhonLIhaGkNBnX7W6SZZxc= -----END CERTIFICATE-----Generated at Sun Jul 20 23:54:01 2025 by rpki-client