$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft File: xlv1e9ybW-fZfg1lqkIise-qvqo.mft (raw, json) Hash identifier: Q64RDazN2hKThRtVM4iQ7HQf3peeP0eQ62LIG2x4UeA= Subject key identifier: D9:BC:64:9F:33:8A:96:C6:F2:C9:F3:40:27:4A:31:AC:7B:3F:A6:FC Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Certificate serial: 14C9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft Manifest number: 1345 Signing time: Sat 06 Sep 2025 02:02:46 +0000 Manifest this update: Sat 06 Sep 2025 02:02:46 +0000 Manifest next update: Sat 06 Sep 2025 08:02:46 +0000 Files and hashes: 1: 24xLyjMy4LfsbGRkTTHxHGsVz_w.roa (hash: tfWKWLl4aEdktmWd3AIGERKp6UsWq246tht5mEUzF4I=) 2: 2xkZrTWLkS9kgnfo_VJ8NgTJn8g.roa (hash: T2cQMW/5FDkDZX9LU0LTsOQwOlZzsLOIDuFdn2CyfZ0=) 3: 3y2qUkEoruGyVdcMe0lrpYwYbD8.roa (hash: g4jGhipNfyt9HkQs1QZ7cFl2ODIAxDgMPoAj4duHmXQ=) 4: 4Vfz06V9xJz2N3FlnTICmulrZM8.roa (hash: cyjp2rjsv85SErzYov3ecmrSUXpgEUDKtF7CnIqP3oc=) 5: 6LSr9K9MD-8PYtmuqewK7SI7fZc.roa (hash: xwq/1QV+fFAAgfhYwWcBl1u4Ld1CfHWcz+tLc9YNTnw=) 6: 6ZUrfKdHyIyjAytkp3ArgmxCXkw.roa (hash: qDlgEKXGxO3Pi9CpL3SeUU5CoiVhJ+D1iDznOwVf3wQ=) 7: 8Dv9tIjHUeEyd5PhI_x6MsX-KoM.roa (hash: 1wq/vqQ1mGi5HUZavgO0s+zg0jckGkPLPeQMtx0HxeQ=) 8: BSzA5_XL5MzQ0vmdKKZ9S82FIPA.roa (hash: u9IRQpDr9YYScvhqP56jleJPt4sSXUwfbsKWWioIK9s=) 9: D4lqQvXeV04SRvOMVQ_t58jBmhU.roa (hash: 8f0gqBdod/bLdz9StGHjQYYsMM10B4Ksg/lcn/AEr88=) 10: DdYgL6IFvv-m23a8DhvSwpmU0kA.roa (hash: /9npghtkQp6u7lDGCO4C3sHR/H2tknjaiofKbhA7Zw4=) 11: FEKi2XmJhngJQPy5x7S-ohtjI_k.roa (hash: CIATHnFPZbzyu6Wp3cexM1+osc5w+jp4hKIkyNUxLmE=) 12: Jx-sn7uf3YKss1sEK59h2pwN25k.roa (hash: iyJpJoSQKatJCacDHwmjKzUAO4nb+qvFK+Ly6RyAPb4=) 13: OuYp8XIeOpFVWkKB7XswdJgnIRM.roa (hash: VYIyv/h5aEn7YDYIjq1O4Bfc0+pkkTcqwHRPymGpjq0=) 14: PV3NoYJ4luqWeXwZgNAcmoFPRp8.roa (hash: y7qRB1JfkKhqd8IfW2PZRFTxRsXS4L5MjUYwS2x4FoM=) 15: PoiA2j02Hy-O9kRto8kOPuFf2PQ.roa (hash: YlAqRtqgz/lKJVW7b5oEyG5BKb/aoiQfFjkfEr9CjQk=) 16: RwmLZtiTutqMlKAmsfUXcLyDB6A.roa (hash: tcOToBrcdeTUDP1trnAh8GQzj7NgsZ2nCTtKtaMLBZw=) 17: SC-gmzDveFyGg_dseE93y3saJQw.roa (hash: jDsxcPqFfSPxo4MFhwa6vmrKrCQNmT4UYxR2jsxxLZc=) 18: SNPK8LzBegX4fwXiSroLDsyJwko.roa (hash: eWnkM/pBfpEwJHZlz6csiwaagMG+lr+O4TCiKxQe4Nw=) 19: UKnEpu_7TQDxqomh1t0VKL7mRP0.roa (hash: oV/7ebQhrgEkCPghcVsYEGx/USOiFZHU0fs2+qg8yG0=) 20: VcIYvsAKh56nc3QpgpV3axumUKs.roa (hash: kV17UYWONAWrMuFbeSZ2HAHbFPfM7PmFhcbjl911f5w=) 21: Y4VBtOkUxKYdPDIVLmlovL6pSS4.roa (hash: K77DGxFia4ksvI6DSpqgHvc7VxNMWsqmu1x1td6hEwg=) 22: _S9_71MGOAD55ZpRlQv56hl5vOs.roa (hash: S5/CsjzE++F5J2dLk9Px/eaNjR65TStjtlf4CXfyCA4=) 23: akYRHGGsC3UWybKhf9e_efYI16Q.roa (hash: ltAuGkVNxYUt0XRmkz21/l17mxfAjzjfLsnrXnUqqVM=) 24: d1VbAHjcKP5VVZ1AkRRIquYyZM8.roa (hash: /6UOAIJo3SFucPVLmkHlWMCazynBW/o/e0RRayZhPcs=) 25: gdaYRJTDZoV5Ly2TEDIcQAj_0ZA.roa (hash: rpw21+tvlf/wZr5WmhbElQQ1SJJ1prg8/scEBm0IMpQ=) 26: jT09XRsBHfPtmEPWrhFGFMXgClg.roa (hash: qRXP2zRb2Iiihm4Cfu3yfyZLEdCElFvnGVDJ91Rwxqg=) 27: jTP0Uoe66xbdtLdk3mXQLz1EjYc.roa (hash: UhPyhi+KofXGVx2yzzxbc774vXU6MlGKesK+eJ1WdwE=) 28: jb9ozNwrt5qh-23ROv_NlluXhaY.roa (hash: 7oVRvty5bE6QQ2ipOZC0RC4HGKH4v0k14iGkp2mlC2s=) 29: kdoYjAU8__DqkCOzvcULaMgm3-Q.roa (hash: 9wAtnpoXSTBmPcqVIgftByOjiIpYDXvqFO2hE4y8dDM=) 30: mx4cpcxSzhtU_E6kjp_d9yBOXyU.roa (hash: yuM4GDQgG09aWY9cf3RaJN5IFShe944BoFFB4C2MytY=) 31: tCk0O9Fa9uk7CmzmSraufeYWXSA.roa (hash: sh1PFfN0mAGJywuerZ93gmMQ8nDYmg1GTlAIYOOmt0Y=) 32: xlv1e9ybW-fZfg1lqkIise-qvqo.crl (hash: NzJ4GUG8U1zTh4v6lTVgX6QTfY01I/+mvRPcJGqB0eA=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5321 (0x14c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Validity Not Before: Sep 6 02:02:46 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=D9BC649F338A96C6F2C9F340274A31AC7B3FA6FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:be:1f:bc:28:3c:7d:e7:58:5b:f2:0d:ef:8e: 1f:4f:9c:7e:c5:10:5d:87:20:95:f3:5f:54:48:ca: 3b:00:0d:c8:a6:21:15:66:7d:4f:b7:00:9c:bc:a9: 47:4c:8b:19:4a:ad:fa:a5:93:f6:1e:e9:fa:f4:3b: c2:05:03:1d:77:62:2a:5d:47:e4:52:a3:a5:08:df: 21:a1:0c:36:23:45:01:bc:19:71:f2:7a:17:3a:7b: 2b:e4:13:64:43:a3:f0:fd:4b:5f:98:87:df:45:6b: 92:6a:5d:6a:64:ce:d7:18:5b:72:2d:a6:fb:59:02: 91:2a:c2:36:72:4f:93:d0:5e:5f:42:f3:0c:9a:0b: 39:1a:5a:16:f8:34:4e:50:b0:e6:63:31:21:b0:d1: f1:b0:6e:b0:fa:b4:26:c1:10:7f:0f:eb:54:a0:0e: da:cb:4d:c9:a8:ad:f5:cd:26:0c:af:0d:a2:00:e1: 9e:85:81:98:6d:46:f5:2a:65:6b:37:d7:78:ab:f5: 52:a5:89:8f:f6:2e:04:16:81:68:df:a8:ac:cc:b1: a2:0b:0b:f2:27:eb:b3:a9:5f:c5:ad:5e:64:f4:64: 27:99:02:0f:da:96:89:52:c7:24:01:92:4b:cf:ca: 43:06:18:b7:16:cd:ea:4d:ad:bd:da:79:b2:fa:84: d8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:BC:64:9F:33:8A:96:C6:F2:C9:F3:40:27:4A:31:AC:7B:3F:A6:FC X509v3 Authority Key Identifier: keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:82:ce:e7:80:28:13:04:6b:1b:71:7e:18:a4:cf:5e:63:4c: ff:bd:52:52:c6:96:fe:69:5e:fb:04:50:82:c7:d7:44:8b:31: 0d:cc:ca:d3:ee:88:77:ab:4f:45:ab:cb:d6:04:95:67:e2:d5: 52:56:ac:b8:a9:4d:0e:c8:be:d6:0b:72:02:1a:63:c6:e8:0e: 22:34:bd:5c:85:e2:9c:2c:c5:52:6a:9e:fc:5d:e8:52:d5:d1: 6b:2e:22:7d:fd:09:1b:7d:5f:ee:90:38:14:2a:30:30:95:14: b7:f6:ee:6c:8f:c0:91:57:e1:8e:c6:d7:cb:6a:8f:80:3e:92: 16:bd:5e:2b:1e:b5:75:1c:df:2a:6f:73:4d:1a:1f:fb:d6:79: e3:1a:71:75:a4:5b:b4:bb:e2:63:d3:67:83:48:d7:c1:a7:7f: 00:19:2d:9b:8b:a9:85:8f:c4:47:7e:7b:2d:8c:a2:06:8a:df: 5a:4d:5f:19:91:5a:a3:03:1b:ac:c5:3b:35:5e:2c:5d:36:8d: c1:84:0d:f9:67:d2:de:ee:73:1c:d1:57:04:c9:11:e8:31:d8: 1e:12:7b:9e:10:38:0e:3a:c7:c0:5d:61:81:cc:89:82:4f:89: be:05:9a:e3:76:8d:d1:d1:40:c0:ed:d5:f8:94:57:53:85:f5: a6:c2:0e:28 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICFMkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1 QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNTA5MDYw MjAyNDZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEQ5QkM2NDlGMzM4QTk2 QzZGMkM5RjM0MDI3NEEzMUFDN0IzRkE2RkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjvh+8KDx951hb8g3vjh9PnH7FEF2HIJXzX1RIyjsADcimIRVm fU+3AJy8qUdMixlKrfqlk/Ye6fr0O8IFAx13YipdR+RSo6UI3yGhDDYjRQG8GXHy ehc6eyvkE2RDo/D9S1+Yh99Fa5JqXWpkztcYW3ItpvtZApEqwjZyT5PQXl9C8wya CzkaWhb4NE5QsOZjMSGw0fGwbrD6tCbBEH8P61SgDtrLTcmorfXNJgyvDaIA4Z6F gZhtRvUqZWs313ir9VKliY/2LgQWgWjfqKzMsaILC/In67OpX8WtXmT0ZCeZAg/a lolSxyQBkkvPykMGGLcWzepNrb3aebL6hNiPAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQU2bxknzOKlsbyyfNAJ0oxrHs/pvwwHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzL3hsdjFlOXliVy1mWmZn MWxxa0lpc2UtcXZxby5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBIgs7ngCgTBGsbcX4YpM9eY0z/vVJSxpb+aV77BFCCx9dEizENzMrT7oh3q09F q8vWBJVn4tVSVqy4qU0OyL7WC3ICGmPG6A4iNL1cheKcLMVSap78XehS1dFrLiJ9 /QkbfV/ukDgUKjAwlRS39u5sj8CRV+GOxtfLao+APpIWvV4rHrV1HN8qb3NNGh/7 1nnjGnF1pFu0u+Jj02eDSNfBp38AGS2bi6mFj8RHfnstjKIGit9aTV8ZkVqjAxus xTs1XixdNo3BhA35Z9Le7nMc0VcEyRHoMdgeEnueEDgOOsfAXWGBzImCT4m+BZrj do3R0UDA7dX4lFdThfWmwg4o -----END CERTIFICATE-----Generated at Sat Sep 6 03:12:02 2025 by rpki-client