$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft File: xlv1e9ybW-fZfg1lqkIise-qvqo.mft (raw, json) Hash identifier: TttM1a8Uek4emL4X3D1JisNlWZa4umROabilE/3Hmrk= Subject key identifier: D9:BC:64:9F:33:8A:96:C6:F2:C9:F3:40:27:4A:31:AC:7B:3F:A6:FC Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Certificate serial: 116D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft Manifest number: 100D Signing time: Fri 04 Apr 2025 14:07:59 +0000 Manifest this update: Fri 04 Apr 2025 14:07:59 +0000 Manifest next update: Fri 04 Apr 2025 20:07:59 +0000 Files and hashes: 1: 0IdOovEogeMQjcOP3UX0-L056E8.roa (hash: 6Bf61QUfCLrss2/t/oBjp5BGfqMVKWnsGisJv/cXugY=) 2: 18u4j_78BDLmZ9J9Ns-9WlUsPes.roa (hash: vXZGy+cb1dLnGdz0+2TBJmTIkyhbwLf1b+XtLWs9Urs=) 3: 24xLyjMy4LfsbGRkTTHxHGsVz_w.roa (hash: tfWKWLl4aEdktmWd3AIGERKp6UsWq246tht5mEUzF4I=) 4: 2gr9iEpjymBLWuHiBLuFqrY5drE.roa (hash: uBsxH3SgFEJ6u8lAjuj1mME0i6EM+ZnAoh+x4ca3R7Y=) 5: 2xkZrTWLkS9kgnfo_VJ8NgTJn8g.roa (hash: T2cQMW/5FDkDZX9LU0LTsOQwOlZzsLOIDuFdn2CyfZ0=) 6: 4K_xJOO7dF_4FuiOc6Nyu_H_U80.roa (hash: HS/Do41BJlGIfQZsl/gRTCoFj/vMrBG7YZWykUzGlN4=) 7: 83uDL26oFjmE6-QOHsF2uwbvsnk.roa (hash: D/UVreFAse6odxhNyJXZ4P2uPftMq1UNbNQVxZgVbWM=) 8: 8Dv9tIjHUeEyd5PhI_x6MsX-KoM.roa (hash: 1wq/vqQ1mGi5HUZavgO0s+zg0jckGkPLPeQMtx0HxeQ=) 9: GzvC7AN9lqTfx6RMIb0aW2l4GS4.roa (hash: 6UuZKyLFo1oNGs1Y+5u8by5Ra0l9b73tgVepOozGiWc=) 10: HAtV-8vL13A_t6eNir8c3iTiAGw.roa (hash: y9d155LeUh3/93vhuHLjkh6Jeu/hyi+Ean55dzVx8xI=) 11: IrsUUiQt9BWs5DeltVuzJmR9upM.roa (hash: fL5NFGYP90bsW6aM5bMvTlPVEwBUl13uqO6RTZJeeNA=) 12: LxTN4j5b2xVxzy0kGFgfrE_XYI4.roa (hash: qHtPKuhCfUrwhihLEN8cTlo61tTwaj9nsX8QbNU+6i0=) 13: P5JGvGJ5JGo9xHbh5PVjhcXYcHE.roa (hash: MgXvpmbZi0f0A4/L85jVaJgcfPoqxSadGXWmlCoplhM=) 14: R3Vu3XinmXwSescKzqv8RYF1rJQ.roa (hash: vFRvZlBYVhhj/pgfljWNRAwZN8ox28pyp8rqq+EfJSc=) 15: SXte1RwRs6KIWK2tHctwjhp7f-s.roa (hash: zO23Vf9RjCtZeQdQ1N8oZXkwpT1rM8xTw0qtYJAvxM4=) 16: Tg1mYnFaz8os8C8jkG1gWH9lqlw.roa (hash: /UvCMsEIe4t/kIPhmiIDE9Qdg0bfzi5KNwBIYjZCFBg=) 17: XlJgZiNGftll6jrZPqY7nuBsRPA.roa (hash: DwSJgdoKHY0DmpD4ix8cIHSjlqHPIpJrmj/MViUHUc8=) 18: Y4VBtOkUxKYdPDIVLmlovL6pSS4.roa (hash: K77DGxFia4ksvI6DSpqgHvc7VxNMWsqmu1x1td6hEwg=) 19: YNbnQkz4qeW6XAwxhtT8Rnk3-jo.roa (hash: cN8MLrybvrMJwHSR/75InSPSjLz1tpXg94xJfHocZtw=) 20: _S9_71MGOAD55ZpRlQv56hl5vOs.roa (hash: S5/CsjzE++F5J2dLk9Px/eaNjR65TStjtlf4CXfyCA4=) 21: _yleEwlK-Xhahx1f8YNZAahSnAs.roa (hash: 9XWSTCEV9O5rcMNuppee8FTJx5aKF2u26ocJhb3YJ8U=) 22: eeFl-6fErvCI48pt3UqIXwW-v3o.roa (hash: T7yXyLiPll1C6ommCMy1RmKFIetPU8wjb8I/w9EXlWQ=) 23: jb9ozNwrt5qh-23ROv_NlluXhaY.roa (hash: 7oVRvty5bE6QQ2ipOZC0RC4HGKH4v0k14iGkp2mlC2s=) 24: jjLZxMsvc8L8Aget0jeSQZVF2-I.roa (hash: NMkD6LGhXycPERlesb111FZBG2NmnUMWYAEjkxpZdtk=) 25: q-rvnbL1WKSM_nVnVRknygSMSiQ.roa (hash: UWEXP5Sn4Z/wm1B6yMeJW0wEMyr2vbKNqioK2UZumYI=) 26: qsFrc-QDKVEV48996C7WHIoQOzU.roa (hash: 4g9YLRrFPau5MwCvVcl3cKPxCy4T0JWu+CcKzbOW09Y=) 27: vp207DwZALz4CAztV57KUXEKE9E.roa (hash: HjtHJEj/l2+u4pKHA61w+aJrigKGxIuFyLiBrg1HedY=) 28: wR6tlSBxFP9cRO_VHSitfSXHC6k.roa (hash: e0dkXSzZdyc77GUIwP/4egKaoYHAZ1HD4fo9smYe8g0=) 29: xELsDwOEjMpbJ2v6QXudwkTBEXM.roa (hash: 8IHGdfpyspT3bvcHLJiP4yF48+QU9ekIHg07KdVWB7Y=) 30: xlv1e9ybW-fZfg1lqkIise-qvqo.crl (hash: XRJjHGPfvXtO3k7NVGD+77d2aoc1+jZdxKLTj9I/z0w=) 31: y8lNW3xUkTBeT2X7lQAac2-7aH8.roa (hash: 2UWjO85z8oLLWcu+U77gzQ/FeQg6Ra6mfCDytlCGC4s=) 32: yk3GyHwtB7PVjMLc9VdfNU_VF-A.roa (hash: rqIckEn+o7RYP0kD8h+heC+QXExHnUVNmjz9nzrsV8k=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 20:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4461 (0x116d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Validity Not Before: Apr 4 14:07:59 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=D9BC649F338A96C6F2C9F340274A31AC7B3FA6FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:be:1f:bc:28:3c:7d:e7:58:5b:f2:0d:ef:8e: 1f:4f:9c:7e:c5:10:5d:87:20:95:f3:5f:54:48:ca: 3b:00:0d:c8:a6:21:15:66:7d:4f:b7:00:9c:bc:a9: 47:4c:8b:19:4a:ad:fa:a5:93:f6:1e:e9:fa:f4:3b: c2:05:03:1d:77:62:2a:5d:47:e4:52:a3:a5:08:df: 21:a1:0c:36:23:45:01:bc:19:71:f2:7a:17:3a:7b: 2b:e4:13:64:43:a3:f0:fd:4b:5f:98:87:df:45:6b: 92:6a:5d:6a:64:ce:d7:18:5b:72:2d:a6:fb:59:02: 91:2a:c2:36:72:4f:93:d0:5e:5f:42:f3:0c:9a:0b: 39:1a:5a:16:f8:34:4e:50:b0:e6:63:31:21:b0:d1: f1:b0:6e:b0:fa:b4:26:c1:10:7f:0f:eb:54:a0:0e: da:cb:4d:c9:a8:ad:f5:cd:26:0c:af:0d:a2:00:e1: 9e:85:81:98:6d:46:f5:2a:65:6b:37:d7:78:ab:f5: 52:a5:89:8f:f6:2e:04:16:81:68:df:a8:ac:cc:b1: a2:0b:0b:f2:27:eb:b3:a9:5f:c5:ad:5e:64:f4:64: 27:99:02:0f:da:96:89:52:c7:24:01:92:4b:cf:ca: 43:06:18:b7:16:cd:ea:4d:ad:bd:da:79:b2:fa:84: d8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:BC:64:9F:33:8A:96:C6:F2:C9:F3:40:27:4A:31:AC:7B:3F:A6:FC X509v3 Authority Key Identifier: keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:67:dd:fe:e6:f4:70:15:ea:4a:b4:85:93:14:ca:bd:65:49: 2d:f3:15:a4:8c:5b:a0:7e:6c:91:f1:bc:4d:42:23:81:bf:cd: 84:4c:1d:85:ad:f6:6e:2d:53:e9:50:94:4e:1f:18:fb:9a:9f: 45:e1:3b:c9:3a:e2:3b:46:d0:71:a3:e2:97:cd:2f:c9:15:9c: c1:9d:a3:ec:b6:b0:a5:55:e3:84:d4:56:b5:c7:a5:5f:f3:dd: 69:dc:18:dd:75:5f:aa:80:34:e2:4b:aa:80:c1:43:45:d9:72: 7c:f5:fe:81:72:c7:d1:4a:d7:f1:a1:28:90:d2:86:45:5b:0a: b6:b8:e8:7d:7a:81:59:e0:e1:24:00:8e:11:64:f5:2c:82:30: 3e:f0:4b:29:e4:4c:e2:de:ba:60:97:d4:27:16:58:ec:44:9c: 3c:63:f1:69:54:94:48:a9:19:99:92:ef:03:ec:bf:f5:09:d3: 68:73:83:f0:a0:4b:38:58:03:1f:5c:9b:09:28:af:24:b5:68: ca:31:88:c5:fb:69:c0:85:8f:80:0d:38:7a:79:83:1a:67:ca: dc:26:74:e4:af:b2:d6:e9:d6:1c:96:68:07:88:08:64:7a:47: b5:1d:9c:58:05:85:04:fd:b7:93:d7:54:23:fc:8e:4a:5b:1e: a4:38:4a:80 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICEW0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1 QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNTA0MDQx NDA3NTlaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEQ5QkM2NDlGMzM4QTk2 QzZGMkM5RjM0MDI3NEEzMUFDN0IzRkE2RkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjvh+8KDx951hb8g3vjh9PnH7FEF2HIJXzX1RIyjsADcimIRVm fU+3AJy8qUdMixlKrfqlk/Ye6fr0O8IFAx13YipdR+RSo6UI3yGhDDYjRQG8GXHy ehc6eyvkE2RDo/D9S1+Yh99Fa5JqXWpkztcYW3ItpvtZApEqwjZyT5PQXl9C8wya CzkaWhb4NE5QsOZjMSGw0fGwbrD6tCbBEH8P61SgDtrLTcmorfXNJgyvDaIA4Z6F gZhtRvUqZWs313ir9VKliY/2LgQWgWjfqKzMsaILC/In67OpX8WtXmT0ZCeZAg/a lolSxyQBkkvPykMGGLcWzepNrb3aebL6hNiPAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQU2bxknzOKlsbyyfNAJ0oxrHs/pvwwHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzL3hsdjFlOXliVy1mWmZn MWxxa0lpc2UtcXZxby5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAVZ93+5vRwFepKtIWTFMq9ZUkt8xWkjFugfmyR8bxNQiOBv82ETB2FrfZuLVPp UJROHxj7mp9F4TvJOuI7RtBxo+KXzS/JFZzBnaPstrClVeOE1Fa1x6Vf891p3Bjd dV+qgDTiS6qAwUNF2XJ89f6BcsfRStfxoSiQ0oZFWwq2uOh9eoFZ4OEkAI4RZPUs gjA+8Esp5Ezi3rpgl9QnFljsRJw8Y/FpVJRIqRmZku8D7L/1CdNoc4PwoEs4WAMf XJsJKK8ktWjKMYjF+2nAhY+ADTh6eYMaZ8rcJnTkr7LW6dYclmgHiAhkeke1HZxY BYUE/beT11Qj/I5KWx6kOEqA -----END CERTIFICATE-----Generated at Fri Apr 4 18:43:20 2025 by rpki-client