$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft File: xlv1e9ybW-fZfg1lqkIise-qvqo.mft (raw, json) Hash identifier: JL+D1ms1UbmXYa1FtiCMravFesfx6CntTtxw7OPq+Ds= Subject key identifier: D9:BC:64:9F:33:8A:96:C6:F2:C9:F3:40:27:4A:31:AC:7B:3F:A6:FC Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Certificate serial: 13D7 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft Manifest number: 125A Signing time: Mon 21 Jul 2025 08:10:02 +0000 Manifest this update: Mon 21 Jul 2025 08:10:02 +0000 Manifest next update: Mon 21 Jul 2025 14:10:02 +0000 Files and hashes: 1: 24xLyjMy4LfsbGRkTTHxHGsVz_w.roa (hash: tfWKWLl4aEdktmWd3AIGERKp6UsWq246tht5mEUzF4I=) 2: 2xkZrTWLkS9kgnfo_VJ8NgTJn8g.roa (hash: T2cQMW/5FDkDZX9LU0LTsOQwOlZzsLOIDuFdn2CyfZ0=) 3: 6ZUrfKdHyIyjAytkp3ArgmxCXkw.roa (hash: qDlgEKXGxO3Pi9CpL3SeUU5CoiVhJ+D1iDznOwVf3wQ=) 4: 8Dv9tIjHUeEyd5PhI_x6MsX-KoM.roa (hash: 1wq/vqQ1mGi5HUZavgO0s+zg0jckGkPLPeQMtx0HxeQ=) 5: BSzA5_XL5MzQ0vmdKKZ9S82FIPA.roa (hash: u9IRQpDr9YYScvhqP56jleJPt4sSXUwfbsKWWioIK9s=) 6: D4lqQvXeV04SRvOMVQ_t58jBmhU.roa (hash: 8f0gqBdod/bLdz9StGHjQYYsMM10B4Ksg/lcn/AEr88=) 7: DdYgL6IFvv-m23a8DhvSwpmU0kA.roa (hash: /9npghtkQp6u7lDGCO4C3sHR/H2tknjaiofKbhA7Zw4=) 8: Jx-sn7uf3YKss1sEK59h2pwN25k.roa (hash: iyJpJoSQKatJCacDHwmjKzUAO4nb+qvFK+Ly6RyAPb4=) 9: OuYp8XIeOpFVWkKB7XswdJgnIRM.roa (hash: VYIyv/h5aEn7YDYIjq1O4Bfc0+pkkTcqwHRPymGpjq0=) 10: PoiA2j02Hy-O9kRto8kOPuFf2PQ.roa (hash: YlAqRtqgz/lKJVW7b5oEyG5BKb/aoiQfFjkfEr9CjQk=) 11: RwmLZtiTutqMlKAmsfUXcLyDB6A.roa (hash: tcOToBrcdeTUDP1trnAh8GQzj7NgsZ2nCTtKtaMLBZw=) 12: SC-gmzDveFyGg_dseE93y3saJQw.roa (hash: jDsxcPqFfSPxo4MFhwa6vmrKrCQNmT4UYxR2jsxxLZc=) 13: SNPK8LzBegX4fwXiSroLDsyJwko.roa (hash: eWnkM/pBfpEwJHZlz6csiwaagMG+lr+O4TCiKxQe4Nw=) 14: UKnEpu_7TQDxqomh1t0VKL7mRP0.roa (hash: oV/7ebQhrgEkCPghcVsYEGx/USOiFZHU0fs2+qg8yG0=) 15: VcIYvsAKh56nc3QpgpV3axumUKs.roa (hash: kV17UYWONAWrMuFbeSZ2HAHbFPfM7PmFhcbjl911f5w=) 16: Y4VBtOkUxKYdPDIVLmlovL6pSS4.roa (hash: K77DGxFia4ksvI6DSpqgHvc7VxNMWsqmu1x1td6hEwg=) 17: _S9_71MGOAD55ZpRlQv56hl5vOs.roa (hash: S5/CsjzE++F5J2dLk9Px/eaNjR65TStjtlf4CXfyCA4=) 18: akYRHGGsC3UWybKhf9e_efYI16Q.roa (hash: ltAuGkVNxYUt0XRmkz21/l17mxfAjzjfLsnrXnUqqVM=) 19: cBCoctfARJWkEMY2Tg8UbQv23ZU.roa (hash: +3GxD5db+NEZWv1EZ/Oikj/LK30omooO/pjw+l565YM=) 20: d1VbAHjcKP5VVZ1AkRRIquYyZM8.roa (hash: /6UOAIJo3SFucPVLmkHlWMCazynBW/o/e0RRayZhPcs=) 21: gdaYRJTDZoV5Ly2TEDIcQAj_0ZA.roa (hash: rpw21+tvlf/wZr5WmhbElQQ1SJJ1prg8/scEBm0IMpQ=) 22: jT09XRsBHfPtmEPWrhFGFMXgClg.roa (hash: qRXP2zRb2Iiihm4Cfu3yfyZLEdCElFvnGVDJ91Rwxqg=) 23: jTP0Uoe66xbdtLdk3mXQLz1EjYc.roa (hash: UhPyhi+KofXGVx2yzzxbc774vXU6MlGKesK+eJ1WdwE=) 24: jb9ozNwrt5qh-23ROv_NlluXhaY.roa (hash: 7oVRvty5bE6QQ2ipOZC0RC4HGKH4v0k14iGkp2mlC2s=) 25: tCk0O9Fa9uk7CmzmSraufeYWXSA.roa (hash: sh1PFfN0mAGJywuerZ93gmMQ8nDYmg1GTlAIYOOmt0Y=) 26: xlv1e9ybW-fZfg1lqkIise-qvqo.crl (hash: PiW9mLDnMNOUupriEncvPjewfMdf/f5sHmzaXTWUVS8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Jul 2025 13:41:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5079 (0x13d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Validity Not Before: Jul 21 08:10:02 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=D9BC649F338A96C6F2C9F340274A31AC7B3FA6FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:be:1f:bc:28:3c:7d:e7:58:5b:f2:0d:ef:8e: 1f:4f:9c:7e:c5:10:5d:87:20:95:f3:5f:54:48:ca: 3b:00:0d:c8:a6:21:15:66:7d:4f:b7:00:9c:bc:a9: 47:4c:8b:19:4a:ad:fa:a5:93:f6:1e:e9:fa:f4:3b: c2:05:03:1d:77:62:2a:5d:47:e4:52:a3:a5:08:df: 21:a1:0c:36:23:45:01:bc:19:71:f2:7a:17:3a:7b: 2b:e4:13:64:43:a3:f0:fd:4b:5f:98:87:df:45:6b: 92:6a:5d:6a:64:ce:d7:18:5b:72:2d:a6:fb:59:02: 91:2a:c2:36:72:4f:93:d0:5e:5f:42:f3:0c:9a:0b: 39:1a:5a:16:f8:34:4e:50:b0:e6:63:31:21:b0:d1: f1:b0:6e:b0:fa:b4:26:c1:10:7f:0f:eb:54:a0:0e: da:cb:4d:c9:a8:ad:f5:cd:26:0c:af:0d:a2:00:e1: 9e:85:81:98:6d:46:f5:2a:65:6b:37:d7:78:ab:f5: 52:a5:89:8f:f6:2e:04:16:81:68:df:a8:ac:cc:b1: a2:0b:0b:f2:27:eb:b3:a9:5f:c5:ad:5e:64:f4:64: 27:99:02:0f:da:96:89:52:c7:24:01:92:4b:cf:ca: 43:06:18:b7:16:cd:ea:4d:ad:bd:da:79:b2:fa:84: d8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:BC:64:9F:33:8A:96:C6:F2:C9:F3:40:27:4A:31:AC:7B:3F:A6:FC X509v3 Authority Key Identifier: keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:a9:35:05:59:d7:21:29:ad:33:a2:ab:e3:51:7e:28:23:0d: 16:1d:d7:e3:63:3a:9f:ec:7a:8c:9c:db:6e:e4:a0:f1:ad:20: 73:8b:75:46:14:61:b1:1b:41:a2:24:4d:c6:65:cb:e0:c3:22: 52:53:44:74:37:ac:c0:52:ab:c1:f4:8b:6f:30:e1:8e:62:ca: a1:c8:3c:30:66:76:d7:d1:06:86:0c:97:5e:65:db:5a:7b:54: 3b:27:cf:97:32:20:6e:ac:99:7d:d4:39:a4:d2:27:b3:44:87: b1:51:be:eb:43:26:9c:e9:6f:8c:70:15:30:cc:d2:20:f6:51: df:42:ad:2a:71:a0:5e:13:48:20:b7:1d:8e:13:f3:dd:4e:0d: 20:b1:6f:b4:d4:0f:ad:a6:a8:e1:2e:90:93:69:3d:57:16:f7: ea:5a:ec:ca:91:da:ea:e1:83:f8:3c:50:7e:14:04:85:27:9a: ef:4a:38:43:09:46:25:db:35:49:99:b4:7b:43:6e:bd:28:79: 08:a8:a3:ea:d3:01:e9:6b:07:1b:80:2c:3a:d3:dc:d6:2d:57: 33:08:a1:0c:b8:fe:4e:f6:a6:36:51:ea:71:c5:dc:02:cb:06: f8:aa:4f:42:3a:48:7a:5a:12:f4:c8:d4:b7:65:12:af:3b:5a: 16:12:0d:98 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICE9cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1 QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNTA3MjEw ODEwMDJaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEQ5QkM2NDlGMzM4QTk2 QzZGMkM5RjM0MDI3NEEzMUFDN0IzRkE2RkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjvh+8KDx951hb8g3vjh9PnH7FEF2HIJXzX1RIyjsADcimIRVm fU+3AJy8qUdMixlKrfqlk/Ye6fr0O8IFAx13YipdR+RSo6UI3yGhDDYjRQG8GXHy ehc6eyvkE2RDo/D9S1+Yh99Fa5JqXWpkztcYW3ItpvtZApEqwjZyT5PQXl9C8wya CzkaWhb4NE5QsOZjMSGw0fGwbrD6tCbBEH8P61SgDtrLTcmorfXNJgyvDaIA4Z6F gZhtRvUqZWs313ir9VKliY/2LgQWgWjfqKzMsaILC/In67OpX8WtXmT0ZCeZAg/a lolSxyQBkkvPykMGGLcWzepNrb3aebL6hNiPAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQU2bxknzOKlsbyyfNAJ0oxrHs/pvwwHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzL3hsdjFlOXliVy1mWmZn MWxxa0lpc2UtcXZxby5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQDGqTUFWdchKa0zoqvjUX4oIw0WHdfjYzqf7HqMnNtu5KDxrSBzi3VGFGGxG0Gi JE3GZcvgwyJSU0R0N6zAUqvB9ItvMOGOYsqhyDwwZnbX0QaGDJdeZdtae1Q7J8+X MiBurJl91Dmk0iezRIexUb7rQyac6W+McBUwzNIg9lHfQq0qcaBeE0ggtx2OE/Pd Tg0gsW+01A+tpqjhLpCTaT1XFvfqWuzKkdrq4YP4PFB+FASFJ5rvSjhDCUYl2zVJ mbR7Q269KHkIqKPq0wHpawcbgCw609zWLVczCKEMuP5O9qY2UepxxdwCywb4qk9C Okh6WhL0yNS3ZRKvO1oWEg2Y -----END CERTIFICATE-----Generated at Mon Jul 21 13:29:39 2025 by rpki-client