$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft File: xlv1e9ybW-fZfg1lqkIise-qvqo.mft (raw, json) Hash identifier: +HhmsoDLf9A9uuFtFbPx/NvGJKWE/fxL6HONMdx7pJM= Subject key identifier: D9:BC:64:9F:33:8A:96:C6:F2:C9:F3:40:27:4A:31:AC:7B:3F:A6:FC Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Certificate serial: 0A7D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft Manifest number: 0998 Signing time: Sun 02 Jun 2024 10:26:36 +0000 Manifest this update: Sun 02 Jun 2024 10:26:36 +0000 Manifest next update: Sun 02 Jun 2024 16:26:36 +0000 Files and hashes: 1: T92khRqzwW7fDjYNk3Odmu6s-NM.roa (hash: tyw89S7raEk+o/VeWQYArvTI8liqFhUxFwo1Wpq0TNg=) 2: fw9JeSxzncmjV739yDEhsD0DhsY.roa (hash: DAnmaU3rM8lZcPgyb66y6QqLJdbS/hiBkKmd7vWsQc8=) 3: xlv1e9ybW-fZfg1lqkIise-qvqo.crl (hash: Yh35HUlLqWUpVOaG86SEXJ+M56vsM5cGjhUiegqzrvI=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 16:26:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2685 (0xa7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Validity Not Before: Jun 2 10:26:36 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=D9BC649F338A96C6F2C9F340274A31AC7B3FA6FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:be:1f:bc:28:3c:7d:e7:58:5b:f2:0d:ef:8e: 1f:4f:9c:7e:c5:10:5d:87:20:95:f3:5f:54:48:ca: 3b:00:0d:c8:a6:21:15:66:7d:4f:b7:00:9c:bc:a9: 47:4c:8b:19:4a:ad:fa:a5:93:f6:1e:e9:fa:f4:3b: c2:05:03:1d:77:62:2a:5d:47:e4:52:a3:a5:08:df: 21:a1:0c:36:23:45:01:bc:19:71:f2:7a:17:3a:7b: 2b:e4:13:64:43:a3:f0:fd:4b:5f:98:87:df:45:6b: 92:6a:5d:6a:64:ce:d7:18:5b:72:2d:a6:fb:59:02: 91:2a:c2:36:72:4f:93:d0:5e:5f:42:f3:0c:9a:0b: 39:1a:5a:16:f8:34:4e:50:b0:e6:63:31:21:b0:d1: f1:b0:6e:b0:fa:b4:26:c1:10:7f:0f:eb:54:a0:0e: da:cb:4d:c9:a8:ad:f5:cd:26:0c:af:0d:a2:00:e1: 9e:85:81:98:6d:46:f5:2a:65:6b:37:d7:78:ab:f5: 52:a5:89:8f:f6:2e:04:16:81:68:df:a8:ac:cc:b1: a2:0b:0b:f2:27:eb:b3:a9:5f:c5:ad:5e:64:f4:64: 27:99:02:0f:da:96:89:52:c7:24:01:92:4b:cf:ca: 43:06:18:b7:16:cd:ea:4d:ad:bd:da:79:b2:fa:84: d8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:BC:64:9F:33:8A:96:C6:F2:C9:F3:40:27:4A:31:AC:7B:3F:A6:FC X509v3 Authority Key Identifier: keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:75:2b:e4:3e:ac:56:fb:47:3e:53:4e:a4:c9:96:04:9a:34: 87:20:69:5d:11:c7:3a:75:f3:d5:fd:78:a0:38:e5:6b:ba:db: 5c:d0:4f:8b:bd:00:f1:1a:02:fd:fe:8a:e8:5f:35:08:53:1c: 2b:76:62:e9:ef:fd:a7:68:2c:e2:13:1b:68:68:e5:c9:a9:c7: b5:34:f0:5b:f7:b4:b4:29:08:3d:e8:fd:20:ee:7b:40:bd:30: de:68:dd:5b:c5:54:34:ec:2d:2e:77:85:77:18:f9:6e:d0:9a: 3a:33:6f:c6:fe:46:f4:1b:bb:44:1b:e2:7c:5e:96:13:67:1c: 28:27:e2:5f:d5:c1:54:57:96:8d:55:b0:f8:26:c1:3b:21:72: 53:48:06:27:f1:aa:9f:dc:c3:e9:d7:6f:ec:61:26:05:2d:2f: 51:a7:9c:20:1a:6a:99:7d:eb:fc:84:bf:6a:aa:ca:ac:f4:9f: 85:74:de:a0:7a:11:9d:a4:2a:98:27:f7:d9:b1:9a:2d:bc:c9: d7:ed:bc:b2:09:24:79:89:7b:a7:81:31:6f:44:28:6a:18:36: 42:86:16:c3:a8:15:77:60:11:62:b1:cf:e3:29:98:40:2c:68: 8d:24:3e:0b:bc:89:37:43:2d:bc:c9:31:04:73:53:63:33:47: ad:4b:e1:61 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICCn0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1 QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNDA2MDIx MDI2MzZaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEQ5QkM2NDlGMzM4QTk2 QzZGMkM5RjM0MDI3NEEzMUFDN0IzRkE2RkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjvh+8KDx951hb8g3vjh9PnH7FEF2HIJXzX1RIyjsADcimIRVm fU+3AJy8qUdMixlKrfqlk/Ye6fr0O8IFAx13YipdR+RSo6UI3yGhDDYjRQG8GXHy ehc6eyvkE2RDo/D9S1+Yh99Fa5JqXWpkztcYW3ItpvtZApEqwjZyT5PQXl9C8wya CzkaWhb4NE5QsOZjMSGw0fGwbrD6tCbBEH8P61SgDtrLTcmorfXNJgyvDaIA4Z6F gZhtRvUqZWs313ir9VKliY/2LgQWgWjfqKzMsaILC/In67OpX8WtXmT0ZCeZAg/a lolSxyQBkkvPykMGGLcWzepNrb3aebL6hNiPAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQU2bxknzOKlsbyyfNAJ0oxrHs/pvwwHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzL3hsdjFlOXliVy1mWmZn MWxxa0lpc2UtcXZxby5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQB2dSvkPqxW+0c+U06kyZYEmjSHIGldEcc6dfPV/XigOOVruttc0E+LvQDxGgL9 /oroXzUIUxwrdmLp7/2naCziExtoaOXJqce1NPBb97S0KQg96P0g7ntAvTDeaN1b xVQ07C0ud4V3GPlu0Jo6M2/G/kb0G7tEG+J8XpYTZxwoJ+Jf1cFUV5aNVbD4JsE7 IXJTSAYn8aqf3MPp12/sYSYFLS9Rp5wgGmqZfev8hL9qqsqs9J+FdN6gehGdpCqY J/fZsZotvMnX7byyCSR5iXungTFvRChqGDZChhbDqBV3YBFisc/jKZhALGiNJD4L vIk3Qy28yTEEc1NjM0etS+Fh -----END CERTIFICATE-----Generated at Sun Jun 2 11:54:54 2024 by rpki-client on console-fra.rpki-client.org