$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.mft File: Z7bHlviRA1kP8cyQcd_kwN84_U0.mft (raw, json) Hash identifier: /begUqqvc7iXsFFZBUW3CA78GqpKYLPfP5kT7D1kTjw= Subject key identifier: 59:EA:CF:82:3B:3E:15:F6:9C:D6:25:5F:54:24:3B:C4:15:EB:80:6A Authority key identifier: 67:B6:C7:96:F8:91:03:59:0F:F1:CC:90:71:DF:E4:C0:DF:38:FD:4D Certificate issuer: /CN=67B6C796F89103590FF1CC9071DFE4C0DF38FD4D Certificate serial: 90 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Z7bHlviRA1kP8cyQcd_kwN84_U0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.mft Manifest number: 8F Signing time: Fri 24 Oct 2025 17:35:10 +0000 Manifest this update: Fri 24 Oct 2025 17:35:10 +0000 Manifest next update: Fri 24 Oct 2025 23:35:10 +0000 Files and hashes: 1: Z7bHlviRA1kP8cyQcd_kwN84_U0.crl (hash: b9QU5vwLVQxQK3gDSU7f/Xw4EwDgYNIQdwsFKM5/9C4=) 2: loLhskS-iZNnvxWA0PZirro_KmM.roa (hash: Pwatgv8DYXkuuWa++kua2bH5oIdl0XsHAQ6/LW4WROc=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Z7bHlviRA1kP8cyQcd_kwN84_U0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 23:35:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67B6C796F89103590FF1CC9071DFE4C0DF38FD4D Validity Not Before: Oct 24 17:35:10 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=59EACF823B3E15F69CD6255F54243BC415EB806A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c5:04:fb:58:14:da:e3:78:b4:21:e8:0f:fe: ad:d0:0a:2c:6a:40:e7:4a:59:df:e4:ba:d4:9c:06: 1d:03:cf:b8:c3:ea:c3:ab:f5:d9:77:f3:6a:8c:6f: eb:8a:80:4d:b7:a9:ee:7d:e0:14:fe:e4:3c:de:fc: 76:1e:79:c5:4b:d0:a3:92:a6:ad:b8:c0:78:84:4e: a3:b3:e6:74:ff:20:c5:e8:ed:3a:65:4d:bc:44:f9: 8f:68:ed:31:96:45:4a:2a:3d:35:4e:27:2f:fb:36: 55:8e:c5:1e:c7:09:c4:96:25:39:14:cf:3d:7e:07: 75:a9:96:24:d5:a2:af:cf:30:09:a9:48:91:d7:41: b5:6c:7a:4c:ea:31:3a:43:16:80:e0:b5:4e:ac:4a: dd:0b:a5:9f:07:bd:c2:8b:bc:e4:4e:2e:92:74:68: 05:04:1d:fc:80:ac:ea:b0:07:51:2b:4f:35:2a:95: e7:52:5d:7b:65:52:4b:60:c5:25:28:2b:38:5a:2d: 7a:38:c5:e4:4a:91:e5:1d:ce:26:1e:48:b9:00:c4: c3:d2:3d:4c:9d:45:d6:6a:c0:99:66:ab:bd:5b:fc: 86:4d:97:e6:b2:9e:90:aa:e5:cc:3c:9e:c1:1b:2f: bd:74:8d:23:65:b8:03:85:87:f1:c3:26:a0:37:4a: 05:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:EA:CF:82:3B:3E:15:F6:9C:D6:25:5F:54:24:3B:C4:15:EB:80:6A X509v3 Authority Key Identifier: keyid:67:B6:C7:96:F8:91:03:59:0F:F1:CC:90:71:DF:E4:C0:DF:38:FD:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Z7bHlviRA1kP8cyQcd_kwN84_U0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:8d:ba:c5:63:e7:43:bd:7c:c7:2f:81:75:35:e1:55:2c:76: 26:69:ee:60:02:0a:64:c9:b8:91:50:3a:28:b2:77:6b:a6:49: 70:76:74:0d:55:ba:91:8f:c5:65:88:16:1c:b7:b6:8d:17:54: fa:bd:8d:e0:e5:17:45:50:83:44:33:aa:6c:a7:eb:1a:93:9b: 23:62:98:68:53:35:7f:40:f4:2c:39:1a:aa:2d:11:bf:82:56: 10:ad:03:81:c9:4c:97:3c:24:0d:e9:08:bf:fc:b8:58:fa:64: c6:5a:79:54:d0:dd:45:7c:17:55:fd:8c:84:20:fd:eb:e5:cf: e6:71:25:2b:e8:bd:28:f1:5c:35:19:fd:6b:b7:09:5b:d3:7f: c7:40:28:67:2e:9a:00:a7:8a:8f:9b:d8:56:bf:1c:c2:44:ef: b4:43:08:c2:7d:dd:df:75:0d:e8:f5:b9:28:6e:9d:ee:b2:1f: 67:a1:80:e2:6d:d4:6a:4c:47:dc:b3:9f:e3:4c:47:9a:bc:4e: b7:42:0f:72:13:fa:2e:ab:7a:bd:2c:37:7e:9b:03:98:73:f4: c1:a9:81:fc:db:bb:c5:95:34:78:c9:34:d6:96:f6:e9:46:82: 7e:28:5f:6e:af:23:3b:1c:37:fe:9b:cb:ad:a9:51:51:96:9c: ae:a1:12:b3 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjdC NkM3OTZGODkxMDM1OTBGRjFDQzkwNzFERkU0QzBERjM4RkQ0RDAeFw0yNTEwMjQx NzM1MTBaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDU5RUFDRjgyM0IzRTE1 RjY5Q0Q2MjU1RjU0MjQzQkM0MTVFQjgwNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtxQT7WBTa43i0IegP/q3QCixqQOdKWd/kutScBh0Dz7jD6sOr 9dl382qMb+uKgE23qe594BT+5Dze/HYeecVL0KOSpq24wHiETqOz5nT/IMXo7Tpl TbxE+Y9o7TGWRUoqPTVOJy/7NlWOxR7HCcSWJTkUzz1+B3WpliTVoq/PMAmpSJHX QbVsekzqMTpDFoDgtU6sSt0LpZ8HvcKLvOROLpJ0aAUEHfyArOqwB1ErTzUqledS XXtlUktgxSUoKzhaLXo4xeRKkeUdziYeSLkAxMPSPUydRdZqwJlmq71b/IZNl+ay npCq5cw8nsEbL710jSNluAOFh/HDJqA3SgWPAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUWerPgjs+Ffac1iVfVCQ7xBXrgGowHwYDVR0jBBgwFoAUZ7bHlviRA1kP8cyQ cd/kwN84/U0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM5 Ni9aN2JIbHZpUkExa1A4Y3lRY2Rfa3dOODRfVTAuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1o3YkhsdmlSQTFrUDhjeVFjZF9rd044NF9VMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzOTYvWjdiSGx2aVJBMWtQ OGN5UWNkX2t3Tjg0X1UwLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBABaNusVj50O9fMcvgXU14VUsdiZp7mACCmTJuJFQOiiyd2umSXB2dA1VupGP xWWIFhy3to0XVPq9jeDlF0VQg0Qzqmyn6xqTmyNimGhTNX9A9Cw5GqotEb+CVhCt A4HJTJc8JA3pCL/8uFj6ZMZaeVTQ3UV8F1X9jIQg/evlz+ZxJSvovSjxXDUZ/Wu3 CVvTf8dAKGcumgCnio+b2Fa/HMJE77RDCMJ93d91Dej1uShune6yH2ehgOJt1GpM R9yzn+NMR5q8TrdCD3IT+i6rer0sN36bA5hz9MGpgfzbu8WVNHjJNNaW9ulGgn4o X26vIzscN/6by62pUVGWnK6hErM= -----END CERTIFICATE-----Generated at Fri Oct 24 21:06:24 2025 by rpki-client