$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft File: MhLECXbovqr84IRHL8u8MS-Szow.mft (raw, json) Hash identifier: XOwA636dKtelib3vLFyALyh2qYjOBebvCdnGYJ0rkuE= Subject key identifier: 8F:4E:72:36:9C:B7:C3:91:35:92:C8:ED:1B:D1:83:39:AB:1E:9A:A1 Authority key identifier: 32:12:C4:09:76:E8:BE:AA:FC:E0:84:47:2F:CB:BC:31:2F:92:CE:8C Certificate issuer: /CN=3212C40976E8BEAAFCE084472FCBBC312F92CE8C Certificate serial: 03DB Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MhLECXbovqr84IRHL8u8MS-Szow.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft Manifest number: 03DB Signing time: Mon 08 Sep 2025 04:04:37 +0000 Manifest this update: Mon 08 Sep 2025 04:04:37 +0000 Manifest next update: Mon 08 Sep 2025 10:04:37 +0000 Files and hashes: 1: MhLECXbovqr84IRHL8u8MS-Szow.crl (hash: S+05Xi9W0k2sdBrQ7pmac2qOPYti+PHr0e2a/n00RG4=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MhLECXbovqr84IRHL8u8MS-Szow.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 07:06:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 987 (0x3db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3212C40976E8BEAAFCE084472FCBBC312F92CE8C Validity Not Before: Sep 8 04:04:37 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=8F4E72369CB7C3913592C8ED1BD18339AB1E9AA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:17:73:c0:0a:10:46:57:fc:81:4a:e0:16:96: 31:df:e3:b6:c6:55:c2:5b:37:e9:32:93:3c:d6:08: 4b:ad:c3:79:e9:c9:ca:d1:66:48:f0:81:07:20:30: 9a:21:e2:86:e4:b3:6c:94:7a:f7:66:52:19:6e:54: a5:56:6c:4a:33:eb:bf:c7:b1:b3:1a:4e:45:3f:09: 67:cf:88:10:38:9e:1b:dd:33:b6:40:d3:d5:57:e0: ab:a1:56:98:80:67:1a:8d:79:2a:f2:37:a0:58:ce: cf:6c:df:56:ac:ce:8f:66:3f:83:43:14:57:f5:3c: 49:58:7b:e1:5e:e0:96:92:3e:28:28:b1:d8:27:7a: 6c:98:45:ba:fd:d3:2d:8a:4b:25:74:83:ea:ad:7d: c9:7c:54:8a:0c:ac:9d:85:8f:26:a6:95:06:4d:0a: b7:91:7d:8e:e8:40:48:ab:f1:f4:67:25:9f:33:5f: d0:88:92:1d:d2:f7:52:f6:3b:a9:bb:d4:9d:8e:15: ef:33:78:3f:91:12:1a:19:32:ca:01:da:b1:e3:15: ec:94:f1:ce:a4:93:4b:3a:02:05:ef:34:e5:a3:9b: 82:22:32:60:50:c0:b5:46:87:fe:ee:2a:b9:14:fb: 7d:89:98:11:31:c8:4d:08:e5:32:d2:37:93:72:d2: b5:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:4E:72:36:9C:B7:C3:91:35:92:C8:ED:1B:D1:83:39:AB:1E:9A:A1 X509v3 Authority Key Identifier: keyid:32:12:C4:09:76:E8:BE:AA:FC:E0:84:47:2F:CB:BC:31:2F:92:CE:8C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MhLECXbovqr84IRHL8u8MS-Szow.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:22:a2:64:d0:b0:7d:f1:04:3a:0a:01:22:b2:f2:0e:86:b6: 0e:a4:f3:2d:91:f2:38:79:54:61:b0:83:e7:2a:47:10:9e:d5: 9e:7e:53:9a:be:4f:44:e0:1c:bd:f0:7a:8b:c1:5c:67:11:46: 83:f4:22:77:8e:1b:e5:95:6b:ee:0f:4e:00:fe:d7:be:4e:83: f7:3a:e3:bf:3a:78:2a:3f:00:66:42:98:8f:5e:e4:58:0f:2c: 82:44:d4:3e:41:db:7a:9d:aa:01:cf:f2:13:a5:16:a2:21:07: d6:39:4c:bb:ac:5f:57:0a:a0:50:78:a8:89:6b:94:82:29:2a: a8:66:a7:49:78:f5:ab:3d:04:34:8f:21:72:04:3c:73:a3:a4: 91:d5:f6:66:36:c1:78:ba:d7:a4:a1:c1:d9:e2:0b:93:e8:61: 4c:36:1c:b5:31:1a:9e:8a:21:f7:5f:c0:0b:72:bc:c8:92:3e: 21:6f:ea:36:be:97:be:3d:68:bd:94:ae:2a:5f:06:e6:f2:8b: c6:0e:f6:60:23:78:dd:85:c0:59:44:97:60:40:35:0c:6d:e6: ca:52:09:82:94:fc:6d:b8:19:00:c1:d2:a9:d5:8e:5d:ad:86: c7:20:af:8e:f2:d8:9a:0d:a1:dc:d8:c4:88:d5:a2:44:c0:e6: 2f:40:f3:12 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICA9swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzIx MkM0MDk3NkU4QkVBQUZDRTA4NDQ3MkZDQkJDMzEyRjkyQ0U4QzAeFw0yNTA5MDgw NDA0MzdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDhGNEU3MjM2OUNCN0Mz OTEzNTkyQzhFRDFCRDE4MzM5QUIxRTlBQTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrF3PAChBGV/yBSuAWljHf47bGVcJbN+kykzzWCEutw3npycrR ZkjwgQcgMJoh4obks2yUevdmUhluVKVWbEoz67/HsbMaTkU/CWfPiBA4nhvdM7ZA 09VX4KuhVpiAZxqNeSryN6BYzs9s31aszo9mP4NDFFf1PElYe+Fe4JaSPigosdgn emyYRbr90y2KSyV0g+qtfcl8VIoMrJ2FjyamlQZNCreRfY7oQEir8fRnJZ8zX9CI kh3S91L2O6m71J2OFe8zeD+REhoZMsoB2rHjFeyU8c6kk0s6AgXvNOWjm4IiMmBQ wLVGh/7uKrkU+32JmBExyE0I5TLSN5Ny0rXvAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUj05yNpy3w5E1ksjtG9GDOasemqEwHwYDVR0jBBgwFoAUMhLECXbovqr84IRH L8u8MS+SzowwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM1 My9NaExFQ1hib3Zxcjg0SVJITDh1OE1TLVN6b3cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL01oTEVDWGJvdnFyODRJUkhMOHU4TVMtU3pvdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNTMvTWhMRUNYYm92cXI4 NElSSEw4dThNUy1Tem93Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBABQiomTQsH3xBDoKASKy8g6Gtg6k8y2R8jh5VGGwg+cqRxCe1Z5+U5q+T0Tg HL3weovBXGcRRoP0IneOG+WVa+4PTgD+175Og/c64786eCo/AGZCmI9e5FgPLIJE 1D5B23qdqgHP8hOlFqIhB9Y5TLusX1cKoFB4qIlrlIIpKqhmp0l49as9BDSPIXIE PHOjpJHV9mY2wXi616ShwdniC5PoYUw2HLUxGp6KIfdfwAtyvMiSPiFv6ja+l749 aL2UripfBubyi8YO9mAjeN2FwFlEl2BANQxt5spSCYKU/G24GQDB0qnVjl2thscg r47y2JoNodzYxIjVokTA5i9A8xI= -----END CERTIFICATE-----Generated at Mon Sep 8 06:02:28 2025 by rpki-client