$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft File: yiG6irdU_NZK2pljjW_l5HJTtME.mft (raw, json) Hash identifier: az+Vi7Hkdjm7zY/xTME+A1sOTqUHYIVGhwt+OuH8mv0= Subject key identifier: 68:C2:4A:13:88:FC:9D:03:DD:D1:06:4E:2D:28:66:14:B9:9B:94:34 Authority key identifier: CA:21:BA:8A:B7:54:FC:D6:4A:DA:99:63:8D:6F:E5:E4:72:53:B4:C1 Certificate issuer: /CN=CA21BA8AB754FCD64ADA99638D6FE5E47253B4C1 Certificate serial: 2AD2 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yiG6irdU_NZK2pljjW_l5HJTtME.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft Manifest number: 2AD2 Signing time: Sun 20 Jul 2025 17:41:01 +0000 Manifest this update: Sun 20 Jul 2025 17:41:01 +0000 Manifest next update: Sun 20 Jul 2025 23:41:01 +0000 Files and hashes: 1: yiG6irdU_NZK2pljjW_l5HJTtME.crl (hash: MeapXYv2RdnsFnnYEi9h2XtnctkABLZFY9jWUe5+/r4=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yiG6irdU_NZK2pljjW_l5HJTtME.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Jul 2025 23:41:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10962 (0x2ad2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA21BA8AB754FCD64ADA99638D6FE5E47253B4C1 Validity Not Before: Jul 20 17:41:01 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=68C24A1388FC9D03DDD1064E2D286614B99B9434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:35:45:84:0d:f7:9c:a7:65:94:83:6d:ed:a4: ef:0e:58:34:52:71:ae:b9:fc:eb:af:f2:19:7c:fa: 68:fd:76:de:aa:43:e7:01:5f:f2:a7:a7:18:11:ec: 70:de:c2:50:21:52:73:aa:4d:79:8a:20:5b:b8:6d: 8a:6b:59:68:28:7c:ee:84:19:8d:5e:88:82:df:2e: 3e:6f:e9:bf:95:65:32:57:49:c1:74:64:c8:64:44: 38:5e:32:9c:a4:34:b0:55:6b:e3:60:9c:a4:b2:a0: e4:74:71:87:d2:f4:73:d7:31:61:cc:55:e1:06:eb: 2d:06:5d:b5:d0:7d:a7:b4:95:2b:db:63:f6:24:35: 82:6f:1a:4d:96:b3:95:c3:f5:88:8b:81:44:bf:08: 8d:b2:b9:73:8e:47:26:16:fa:e9:be:36:09:a2:fc: 2b:ad:76:9e:20:5f:89:4e:7e:06:3c:b9:70:38:55: 44:ad:5b:b1:8c:75:45:f2:ae:35:12:62:1f:98:16: 4c:96:a6:83:1d:48:2e:e2:3f:3c:df:7e:dd:44:17: 7f:eb:30:b1:a8:ae:e8:a5:40:ef:a9:ae:af:00:80: 84:a1:68:96:2f:48:08:fd:e2:fc:bc:ec:74:3c:bb: 16:27:13:a3:8b:fc:38:0e:ac:af:fe:16:67:3a:36: 2d:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C2:4A:13:88:FC:9D:03:DD:D1:06:4E:2D:28:66:14:B9:9B:94:34 X509v3 Authority Key Identifier: keyid:CA:21:BA:8A:B7:54:FC:D6:4A:DA:99:63:8D:6F:E5:E4:72:53:B4:C1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yiG6irdU_NZK2pljjW_l5HJTtME.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:4b:b7:44:d3:d7:3d:32:de:4b:2c:49:93:09:75:14:ff:37: c6:d7:b6:83:ee:40:f9:1a:c7:92:87:0e:21:f1:f5:bc:6c:54: 93:b4:2a:36:d7:35:3c:25:d5:d4:56:6b:31:ea:6e:d7:4d:ad: 15:c3:6b:b3:96:c4:75:e2:71:11:24:e8:c6:50:eb:37:66:84: 46:11:4a:51:2b:49:69:be:f7:42:76:cb:3a:46:9b:81:1f:cb: 44:16:64:fa:53:7a:e7:d0:5f:60:a2:42:49:99:71:23:df:ae: 1f:0c:cb:c1:ce:a6:a7:89:72:e9:de:ee:f5:e7:6d:c0:e8:41: c4:5a:09:e7:8c:ee:3a:31:2f:d3:fd:88:29:6f:69:95:9b:24: ec:7f:4a:01:d4:38:54:78:a3:13:7c:c3:bd:52:be:d6:5d:66: 8f:cc:9e:c9:91:ae:c7:51:f9:97:b1:81:16:a3:4f:5a:8c:f3: 6f:50:7b:bd:ba:8d:dd:a7:1f:fc:75:ee:1e:24:14:f2:47:3c: 32:10:9e:56:54:bf:d7:ea:32:ff:aa:2e:e2:e4:8a:13:1d:47: e2:f2:bf:31:9f:20:0a:3a:ce:59:9d:a2:d3:68:df:38:8c:ee: 03:38:06:a2:38:75:e7:67:b0:28:9c:0a:5f:df:7c:75:ce:97: 2a:58:df:fa -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgICKtIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Ey MUJBOEFCNzU0RkNENjRBREE5OTYzOEQ2RkU1RTQ3MjUzQjRDMTAeFw0yNTA3MjAx NzQxMDFaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDY4QzI0QTEzODhGQzlE MDNEREQxMDY0RTJEMjg2NjE0Qjk5Qjk0MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpNUWEDfecp2WUg23tpO8OWDRSca65/Ouv8hl8+mj9dt6qQ+cB X/KnpxgR7HDewlAhUnOqTXmKIFu4bYprWWgofO6EGY1eiILfLj5v6b+VZTJXScF0 ZMhkRDheMpykNLBVa+NgnKSyoOR0cYfS9HPXMWHMVeEG6y0GXbXQfae0lSvbY/Yk NYJvGk2Ws5XD9YiLgUS/CI2yuXOORyYW+um+Ngmi/Cutdp4gX4lOfgY8uXA4VUSt W7GMdUXyrjUSYh+YFkyWpoMdSC7iPzzfft1EF3/rMLGoruilQO+prq8AgIShaJYv SAj94vy87HQ8uxYnE6OL/DgOrK/+Fmc6Ni3hAgMBAAGjggIIMIICBDAdBgNVHQ4E FgQUaMJKE4j8nQPd0QZOLShmFLmblDQwHwYDVR0jBBgwFoAUyiG6irdU/NZK2plj jW/l5HJTtMEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvOTgv eWlHNmlyZFVfTlpLMnBsampXX2w1SEpUdE1FLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC95aUc2aXJkVV9OWksycGxqaldfbDVISlR0TUUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC85OC95aUc2aXJkVV9OWksycGxq aldfbDVISlR0TUUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYB BQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEA Xku3RNPXPTLeSyxJkwl1FP83xte2g+5A+RrHkocOIfH1vGxUk7QqNtc1PCXV1FZr Mepu102tFcNrs5bEdeJxESToxlDrN2aERhFKUStJab73QnbLOkabgR/LRBZk+lN6 59BfYKJCSZlxI9+uHwzLwc6mp4ly6d7u9edtwOhBxFoJ54zuOjEv0/2IKW9plZsk 7H9KAdQ4VHijE3zDvVK+1l1mj8yeyZGux1H5l7GBFqNPWozzb1B7vbqN3acf/HXu HiQU8kc8MhCeVlS/1+oy/6ou4uSKEx1H4vK/MZ8gCjrOWZ2i02jfOIzuAzgGojh1 52ewKJwKX998dc6XKljf+g== -----END CERTIFICATE-----Generated at Sun Jul 20 21:20:58 2025 by rpki-client