$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/497/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.mft File: Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.mft (raw, json) Hash identifier: m+zkg1P3Mu1R0uZ1qMMnGPa0fQvR9scuX0nnnvX/NR4= Subject key identifier: 6F:FA:CD:7C:0D:1C:23:69:3C:22:25:6D:B8:AF:B2:DE:DC:36:EB:75 Authority key identifier: 46:F8:34:3D:CD:AD:3A:AC:40:85:60:49:2C:21:B5:9D:76:2B:C4:56 Certificate issuer: /CN=46F8343DCDAD3AAC408560492C21B59D762BC456 Certificate serial: 1AD0 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.mft Manifest number: 1AC7 Signing time: Fri 22 Nov 2024 15:22:12 +0000 Manifest this update: Fri 22 Nov 2024 15:22:12 +0000 Manifest next update: Fri 22 Nov 2024 21:22:12 +0000 Files and hashes: 1: Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.crl (hash: S+F0SoLlRzlJ/ACluo0kv0y/Y2EG76a3Z3EmOTB6Ty0=) 2: WLgZSzwzcbxcVm3iBvxhD6d_TnM.roa (hash: nRNAHYVeSSJ36NTk3mf19ffMvnL4Gt+meOVBenyfm24=) 3: mPJb61oPRDRGv0Vw_YVHs56UF2Q.roa (hash: NmzCYXxDVY/ATD5/MpyQR6rrgCQwGMZYKgy/zJdwIuY=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 19:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6864 (0x1ad0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=46F8343DCDAD3AAC408560492C21B59D762BC456 Validity Not Before: Nov 22 15:22:12 2024 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=6FFACD7C0D1C23693C22256DB8AFB2DEDC36EB75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:be:c1:71:53:38:1a:90:ab:b1:98:a8:98:08: db:a8:5e:4e:ce:f6:b4:9e:e7:e3:d4:c4:63:5a:51: 33:31:3b:9d:51:08:4f:7a:42:e1:b7:52:87:ed:b8: dd:6a:72:9b:fd:7c:4b:ff:8c:36:2f:ed:c8:11:31: d4:ec:18:05:eb:ed:03:6a:96:be:af:43:f4:b8:bf: 4e:d3:2b:1d:11:9b:66:2b:f0:2a:7a:7b:c9:a6:74: d8:10:30:5a:6a:83:92:0f:9e:3b:1d:04:bf:5e:23: 51:71:2d:36:ec:a8:bf:07:bb:21:92:5e:33:e8:e6: 7e:60:e6:33:15:74:73:10:6c:98:f4:51:4f:81:74: 8d:f7:41:97:39:5c:89:fc:a8:b9:1c:41:f2:7b:99: 13:e9:b8:44:54:e9:e8:99:58:3d:8a:4f:c2:c4:e6: 0e:c9:b4:a6:17:6f:47:18:5f:ed:ba:ce:35:d4:f2: 90:18:b2:12:eb:b9:aa:57:3b:8f:48:14:c8:1e:c8: b8:7f:0c:7f:17:bd:ec:58:4b:03:6b:52:18:04:52: a1:cd:41:cb:4b:9b:3b:fa:26:3c:45:d1:45:40:83: 23:50:b7:01:fa:d5:86:79:c7:da:a7:12:a9:59:c8: d2:09:fe:75:34:4f:41:5d:3e:31:0f:48:d6:39:75: 0e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:FA:CD:7C:0D:1C:23:69:3C:22:25:6D:B8:AF:B2:DE:DC:36:EB:75 X509v3 Authority Key Identifier: keyid:46:F8:34:3D:CD:AD:3A:AC:40:85:60:49:2C:21:B5:9D:76:2B:C4:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:31:eb:7e:06:48:89:52:99:33:9b:03:c8:09:98:54:a7:d9: b6:0c:ae:2f:cd:22:e4:b7:db:ac:a6:7a:a7:30:c2:2e:13:7c: 12:2f:3a:a8:2e:08:56:8f:42:9f:f7:a0:75:fd:7c:68:6d:c5: c8:d1:cf:cf:fd:33:51:0e:7f:25:eb:40:82:de:f3:90:75:4f: c7:74:f5:f2:72:06:9e:76:fa:6e:4f:f0:84:3a:62:63:92:b7: 9d:44:6c:1b:a1:44:b9:dd:28:0b:dc:bf:27:63:0b:9b:f1:96: 5f:c2:67:87:4d:fa:da:d8:52:86:ad:63:98:60:f4:85:e9:9b: da:37:56:a5:e2:9d:20:c3:7b:4e:a8:51:70:32:61:12:d5:5f: 31:9d:ac:18:10:a3:67:59:a9:78:03:8e:ed:a4:fc:d2:3a:53: ac:82:cc:1e:b7:71:d5:55:66:a1:14:80:c5:f8:85:e8:65:29: cd:e4:3c:52:fc:93:2d:22:c5:f0:54:7b:56:d3:cd:ee:d4:fb: 07:3f:8d:a2:31:0e:b8:87:59:c6:2e:c5:6e:a3:46:03:45:a5: 49:11:11:4d:f8:ca:c8:29:17:23:cc:bf:d1:89:76:c4:ea:c7: cc:10:47:07:51:8e:d1:61:eb:84:1d:82:02:fa:0a:27:96:c1: 03:71:ff:9d -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICGtAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDZG ODM0M0RDREFEM0FBQzQwODU2MDQ5MkMyMUI1OUQ3NjJCQzQ1NjAeFw0yNDExMjIx NTIyMTJaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDZGRkFDRDdDMEQxQzIz NjkzQzIyMjU2REI4QUZCMkRFREMzNkVCNzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPvsFxUzgakKuxmKiYCNuoXk7O9rSe5+PUxGNaUTMxO51RCE96 QuG3UoftuN1qcpv9fEv/jDYv7cgRMdTsGAXr7QNqlr6vQ/S4v07TKx0Rm2Yr8Cp6 e8mmdNgQMFpqg5IPnjsdBL9eI1FxLTbsqL8HuyGSXjPo5n5g5jMVdHMQbJj0UU+B dI33QZc5XIn8qLkcQfJ7mRPpuERU6eiZWD2KT8LE5g7JtKYXb0cYX+26zjXU8pAY shLruapXO49IFMgeyLh/DH8XvexYSwNrUhgEUqHNQctLmzv6JjxF0UVAgyNQtwH6 1YZ5x9qnEqlZyNIJ/nU0T0FdPjEPSNY5dQ41AgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUb/rNfA0cI2k8IiVtuK+y3tw263UwHwYDVR0jBBgwFoAURvg0Pc2tOqxAhWBJ LCG1nXYrxFYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDk3 L1J2ZzBQYzJ0T3F4QWhXQkpMQ0cxblhZcnhGWS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvUnZnMFBjMnRPcXhBaFdCSkxDRzFuWFlyeEZZLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDk3L1J2ZzBQYzJ0T3F4QWhX QkpMQ0cxblhZcnhGWS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAnMet+BkiJUpkzmwPICZhUp9m2DK4vzSLkt9uspnqnMMIuE3wSLzqoLghWj0Kf 96B1/XxobcXI0c/P/TNRDn8l60CC3vOQdU/HdPXycgaedvpuT/CEOmJjkredRGwb oUS53SgL3L8nYwub8ZZfwmeHTfra2FKGrWOYYPSF6ZvaN1al4p0gw3tOqFFwMmES 1V8xnawYEKNnWal4A47tpPzSOlOsgswet3HVVWahFIDF+IXoZSnN5DxS/JMtIsXw VHtW083u1PsHP42iMQ64h1nGLsVuo0YDRaVJERFN+MrIKRcjzL/RiXbE6sfMEEcH UY7RYeuEHYIC+gonlsEDcf+d -----END CERTIFICATE-----Generated at Fri Nov 22 17:36:47 2024 by rpki-client on console-ams.rpki-client.org