$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft File: qP3wu66meVNpOJbHY_Ep2jtBg-s.mft (raw, json) Hash identifier: w8hsFZmkShEkZ1U6ggVwbcQsoN49v+scnI9vYcO215M= Subject key identifier: 81:42:3B:A7:7A:B7:08:72:49:D6:8E:24:98:CC:5E:6A:24:72:0A:E3 Authority key identifier: A8:FD:F0:BB:AE:A6:79:53:69:38:96:C7:63:F1:29:DA:3B:41:83:EB Certificate issuer: /CN=A8FDF0BBAEA67953693896C763F129DA3B4183EB Certificate serial: 46 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qP3wu66meVNpOJbHY_Ep2jtBg-s.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft Manifest number: 3D Signing time: Sat 06 Sep 2025 14:02:31 +0000 Manifest this update: Sat 06 Sep 2025 14:02:31 +0000 Manifest next update: Sat 06 Sep 2025 20:02:31 +0000 Files and hashes: 1: 3gLZcEB9b6CcG88DthuUvQzuMng.roa (hash: sTik18vjb2qG/NYnXK3uG9tY/DL8xWE+DymUfLAIlnE=) 2: F0kSGnAIagivcV8g5cUdsyi-f3E.roa (hash: UcsToYzGinH+LaJVhXhSb5v+g/uBThplPaSlnEqw7FM=) 3: RXJSANHbZrdpPxa1bsPmTvjO39Q.roa (hash: 95CUp/VfY7PSkOcAscjkDxH3xv1Hjai/9RJJgyl0Hqs=) 4: WC1nHAg0yIPcV3WIpCTCZDMOWmM.roa (hash: aYTc6ZXigj8FqXcD/bFRpNLNct9j8zBZNjugMTj8hX8=) 5: qP3wu66meVNpOJbHY_Ep2jtBg-s.crl (hash: Uy3h7BiAFZNDNa46K8jls6ZlNxzqCj8/kE7NSJ0deRA=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qP3wu66meVNpOJbHY_Ep2jtBg-s.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 20:02:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A8FDF0BBAEA67953693896C763F129DA3B4183EB Validity Not Before: Sep 6 14:02:31 2025 GMT Not After : Aug 27 05:36:57 2026 GMT Subject: CN=81423BA77AB7087249D68E2498CC5E6A24720AE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a7:40:c5:41:bc:f5:4e:9b:62:5d:a9:4a:2d: 3f:e6:d7:ce:78:ff:60:eb:5a:fc:45:18:10:55:5e: 31:48:05:87:80:17:55:a9:d6:e3:b2:13:d4:23:9e: f0:f4:51:84:ae:af:07:95:68:71:29:21:c8:1f:ac: 40:95:69:f7:c8:cd:b5:9f:bd:cf:9d:60:1b:03:8e: 6e:12:c1:53:bd:31:df:c5:b5:e0:67:df:39:04:60: 25:5f:3c:a5:5b:d9:61:9b:01:1f:4c:7e:ee:a7:00: e3:07:dd:69:a7:83:82:e5:99:f9:57:24:6d:1d:a9: 5b:0f:ee:45:21:3f:b4:b1:d9:d5:72:c3:6e:59:19: b9:d0:b7:46:65:b9:04:eb:e6:9d:d7:c8:10:1e:66: a2:ad:3f:07:5b:2f:a8:74:79:1a:9a:7b:fd:1e:7f: f2:a4:33:61:4a:4f:ad:8b:30:d4:b5:fe:a2:77:b0: de:f2:85:76:d2:1d:33:e1:08:f4:b5:9d:53:5e:3a: ae:67:ec:cb:a2:d3:39:ad:47:b5:1c:c4:90:a5:ea: 55:4e:24:55:e5:1a:e2:e2:0f:e3:77:2c:3f:4d:e6: 50:99:a8:4b:bb:fd:81:0d:12:db:31:1e:5c:20:69: ba:16:09:96:4a:0a:3c:f3:f1:c2:8b:2f:fc:7e:b9: 1a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:42:3B:A7:7A:B7:08:72:49:D6:8E:24:98:CC:5E:6A:24:72:0A:E3 X509v3 Authority Key Identifier: keyid:A8:FD:F0:BB:AE:A6:79:53:69:38:96:C7:63:F1:29:DA:3B:41:83:EB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qP3wu66meVNpOJbHY_Ep2jtBg-s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:89:8b:42:5c:c9:c1:35:3a:a1:ce:f3:3c:a2:b8:ce:4d:29: a8:8c:16:7b:19:55:02:48:85:51:bd:b9:40:ef:e3:96:a6:03: e8:ef:d0:4b:09:2b:1f:7a:58:d9:ea:c9:c8:6a:4e:f7:39:33: 7e:01:02:3b:8e:23:88:18:2e:69:9f:7e:7a:32:1c:e9:a0:72: ea:b0:c0:9e:12:87:7d:b2:5d:83:67:11:e6:94:f6:a9:41:2b: e3:e4:4e:74:97:23:b9:5c:ba:b8:5d:af:23:59:7b:dc:b4:39: ea:66:10:d5:59:f0:86:7a:7a:e7:db:34:42:6c:c3:df:23:64: e3:ff:e4:e4:18:44:10:22:42:ad:5a:84:bd:a6:bb:f1:5c:0a: 51:18:fa:b4:05:9c:d0:cf:43:e5:74:92:8b:50:bb:b9:45:b9: 41:84:77:87:3c:eb:b7:24:42:8b:c9:d5:20:22:c7:93:76:01: 20:f6:a8:c3:d4:58:f2:e1:98:5a:b6:6c:fe:38:8c:84:90:8d: 18:19:1b:c9:95:f3:3c:3c:9e:18:84:15:85:08:dc:4d:4f:be: bc:4f:c6:d8:e1:73:ed:6e:00:d7:da:17:a2:12:c9:ef:10:7c: b5:4c:1e:3e:e0:0f:74:2e:88:a3:a3:57:38:21:a5:71:da:7d: fc:d4:be:09 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgIBRjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBOEZE RjBCQkFFQTY3OTUzNjkzODk2Qzc2M0YxMjlEQTNCNDE4M0VCMB4XDTI1MDkwNjE0 MDIzMVoXDTI2MDgyNzA1MzY1N1owMzExMC8GA1UEAxMoODE0MjNCQTc3QUI3MDg3 MjQ5RDY4RTI0OThDQzVFNkEyNDcyMEFFMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALKnQMVBvPVOm2JdqUotP+bXznj/YOta/EUYEFVeMUgFh4AXVanW 47IT1COe8PRRhK6vB5VocSkhyB+sQJVp98jNtZ+9z51gGwOObhLBU70x38W14Gff OQRgJV88pVvZYZsBH0x+7qcA4wfdaaeDguWZ+VckbR2pWw/uRSE/tLHZ1XLDblkZ udC3RmW5BOvmndfIEB5moq0/B1svqHR5Gpp7/R5/8qQzYUpPrYsw1LX+onew3vKF dtIdM+EI9LWdU146rmfsy6LTOa1HtRzEkKXqVU4kVeUa4uIP43csP03mUJmoS7v9 gQ0S2zEeXCBpuhYJlkoKPPPxwosv/H65GpkCAwEAAaOCAgowggIGMB0GA1UdDgQW BBSBQjunercIcknWjiSYzF5qJHIK4zAfBgNVHSMEGDAWgBSo/fC7rqZ5U2k4lsdj 8SnaO0GD6zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP oE2GS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC81ODUv cVAzd3U2Nm1lVk5wT0piSFlfRXAyanRCZy1zLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9xUDN3dTY2bWVWTnBPSmJIWV9FcDJqdEJnLXMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC81ODUvcVAzd3U2Nm1lVk5wT0pi SFlfRXAyanRCZy1zLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmlj LmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AAeJi0JcycE1OqHO8zyiuM5NKaiMFnsZVQJIhVG9uUDv45amA+jv0EsJKx96WNnq ychqTvc5M34BAjuOI4gYLmmffnoyHOmgcuqwwJ4Sh32yXYNnEeaU9qlBK+PkTnSX I7lcurhdryNZe9y0OepmENVZ8IZ6eufbNEJsw98jZOP/5OQYRBAiQq1ahL2mu/Fc ClEY+rQFnNDPQ+V0kotQu7lFuUGEd4c867ckQovJ1SAix5N2ASD2qMPUWPLhmFq2 bP44jISQjRgZG8mV8zw8nhiEFYUI3E1PvrxPxtjhc+1uANfaF6ISye8QfLVMHj7g D3QuiKOjVzghpXHaffzUvgk= -----END CERTIFICATE-----Generated at Sat Sep 6 15:32:15 2025 by rpki-client