$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/645/0yS7P-XBWi4EKmMuWiNZ0EjwTEI.mft File: 0yS7P-XBWi4EKmMuWiNZ0EjwTEI.mft (raw, json) Hash identifier: aUrYcCAziqiOE8p39IY69FvO/DDTsCRCzNOeEzlnKI0= Subject key identifier: EF:D8:DB:33:95:3B:C6:DC:71:7C:A6:7C:36:A6:4A:67:C3:6B:41:3B Authority key identifier: D3:24:BB:3F:E5:C1:5A:2E:04:2A:63:2E:5A:23:59:D0:48:F0:4C:42 Certificate issuer: /CN=D324BB3FE5C15A2E042A632E5A2359D048F04C42 Certificate serial: 175E Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0yS7P-XBWi4EKmMuWiNZ0EjwTEI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/645/0yS7P-XBWi4EKmMuWiNZ0EjwTEI.mft Manifest number: 175E Signing time: Sun 02 Jun 2024 05:56:36 +0000 Manifest this update: Sun 02 Jun 2024 05:56:36 +0000 Manifest next update: Sun 02 Jun 2024 11:56:36 +0000 Files and hashes: 1: 0yS7P-XBWi4EKmMuWiNZ0EjwTEI.crl (hash: nh1d5/x18r8iWvv5HBVPRO4dN/w1+7i0fsY24mHzbxQ=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/645/0yS7P-XBWi4EKmMuWiNZ0EjwTEI.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/645/0yS7P-XBWi4EKmMuWiNZ0EjwTEI.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0yS7P-XBWi4EKmMuWiNZ0EjwTEI.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 11:56:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5982 (0x175e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D324BB3FE5C15A2E042A632E5A2359D048F04C42 Validity Not Before: Jun 2 05:56:36 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=EFD8DB33953BC6DC717CA67C36A64A67C36B413B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:06:0e:21:8b:b1:ce:87:e9:a7:e0:0d:cc:26: f1:4a:9d:72:f5:5f:40:55:76:44:50:ef:18:3a:d7: e8:33:70:6e:66:d7:a2:05:08:1e:ff:cc:84:d9:6b: 39:20:82:05:c0:24:24:81:33:20:09:20:01:1b:26: b4:8e:5f:ef:34:78:cf:86:a9:9e:1b:c0:93:6a:32: 1d:77:fc:28:e3:5e:b9:d0:ed:f9:1a:9e:45:cd:08: 3b:db:ed:22:0f:00:34:5f:67:03:21:3b:82:b8:47: 7c:e7:77:03:2a:0e:ab:a1:05:d5:c6:53:1b:a3:ba: 1c:30:42:5c:89:b3:08:ad:0e:05:72:13:a8:02:f3: 04:aa:99:8a:61:1d:41:89:f1:60:98:15:92:9e:5d: 7c:6d:10:ab:82:48:33:03:a6:a6:01:a4:f5:82:2b: 47:ae:83:43:33:2e:55:c8:a5:e8:a6:84:c7:3d:0b: 29:1b:0b:28:c7:4e:e0:06:02:2b:8a:b3:57:be:b3: 3e:c3:a9:17:8e:23:a2:6e:b1:6f:5b:56:e6:75:0a: ac:8f:9d:68:33:0f:91:6c:b0:7e:27:8f:ba:2d:b7: b7:0c:58:18:19:81:b3:eb:9f:f2:74:9e:ae:d0:87: c6:4c:bb:ab:5c:ac:6e:00:aa:ea:b5:a1:3d:ac:6a: 4b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:D8:DB:33:95:3B:C6:DC:71:7C:A6:7C:36:A6:4A:67:C3:6B:41:3B X509v3 Authority Key Identifier: keyid:D3:24:BB:3F:E5:C1:5A:2E:04:2A:63:2E:5A:23:59:D0:48:F0:4C:42 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/645/0yS7P-XBWi4EKmMuWiNZ0EjwTEI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0yS7P-XBWi4EKmMuWiNZ0EjwTEI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/645/0yS7P-XBWi4EKmMuWiNZ0EjwTEI.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:81:1c:5f:7a:cd:1a:cc:78:5b:2b:30:d3:f7:b4:4c:0b:fe: 79:e7:30:4f:4a:c4:b0:ea:58:af:74:7d:ad:25:6a:0b:ac:94: 2e:e3:80:e0:34:e3:b6:49:83:b1:f1:71:cb:4a:7e:15:a4:e1: a1:08:c8:f1:93:f5:c3:e1:9a:76:03:2c:9e:1f:9a:0b:ae:fa: 17:fc:91:5a:0d:33:2b:1d:b5:bc:e9:44:8b:88:f1:66:9b:18: 64:3d:5e:dc:73:38:78:2b:70:b2:37:ec:8b:47:74:5e:a9:0f: 6d:1b:73:64:9c:17:9a:fc:0d:ec:1f:a1:b8:62:7a:af:d7:25: 61:14:50:b7:c2:eb:b2:5d:bd:50:60:ab:24:ea:8b:d9:cd:20: 66:a8:49:dd:9c:2c:db:d2:09:9b:74:fc:68:dc:16:d1:97:36: c4:2e:07:4f:5d:d1:b2:b7:9b:d2:b1:9f:d9:46:bb:57:ab:d7: a4:c4:16:59:fd:be:03:11:9f:62:cd:7e:7b:b9:29:70:63:6c: a2:72:a9:bd:65:f4:ab:91:2a:34:dd:c0:8c:a9:30:f0:76:e4: c1:61:53:cc:9b:05:5e:19:8e:c1:b9:89:ea:ea:5e:ce:74:e9: c0:f1:f2:7d:e0:e7:81:35:8a:d3:9f:d0:99:d0:62:7c:ec:28: e6:ed:ea:49 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICF14wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDMy NEJCM0ZFNUMxNUEyRTA0MkE2MzJFNUEyMzU5RDA0OEYwNEM0MjAeFw0yNDA2MDIw NTU2MzZaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEVGRDhEQjMzOTUzQkM2 REM3MTdDQTY3QzM2QTY0QTY3QzM2QjQxM0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBBg4hi7HOh+mn4A3MJvFKnXL1X0BVdkRQ7xg61+gzcG5m16IF CB7/zITZazkgggXAJCSBMyAJIAEbJrSOX+80eM+GqZ4bwJNqMh13/CjjXrnQ7fka nkXNCDvb7SIPADRfZwMhO4K4R3zndwMqDquhBdXGUxujuhwwQlyJswitDgVyE6gC 8wSqmYphHUGJ8WCYFZKeXXxtEKuCSDMDpqYBpPWCK0eug0MzLlXIpeimhMc9Cykb CyjHTuAGAiuKs1e+sz7DqReOI6JusW9bVuZ1CqyPnWgzD5FssH4nj7ott7cMWBgZ gbPrn/J0nq7Qh8ZMu6tcrG4Aquq1oT2sakuTAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQU79jbM5U7xtxxfKZ8NqZKZ8NrQTswHwYDVR0jBBgwFoAU0yS7P+XBWi4EKmMu WiNZ0EjwTEIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjQ1 LzB5UzdQLVhCV2k0RUttTXVXaU5aMEVqd1RFSS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvMHlTN1AtWEJXaTRFS21NdVdpTlowRWp3VEVJLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjQ1LzB5UzdQLVhCV2k0RUtt TXVXaU5aMEVqd1RFSS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAAgRxfes0azHhbKzDT97RMC/555zBPSsSw6livdH2tJWoLrJQu44DgNOO2SYOx 8XHLSn4VpOGhCMjxk/XD4Zp2AyyeH5oLrvoX/JFaDTMrHbW86USLiPFmmxhkPV7c czh4K3CyN+yLR3ReqQ9tG3NknBea/A3sH6G4Ynqv1yVhFFC3wuuyXb1QYKsk6ovZ zSBmqEndnCzb0gmbdPxo3BbRlzbELgdPXdGyt5vSsZ/ZRrtXq9ekxBZZ/b4DEZ9i zX57uSlwY2yicqm9ZfSrkSo03cCMqTDwduTBYVPMmwVeGY7BuYnq6l7OdOnA8fJ9 4OeBNYrTn9CZ0GJ87Cjm7epJ -----END CERTIFICATE-----Generated at Sun Jun 2 09:22:44 2024 by rpki-client on console-ams.rpki-client.org