$ rpki-client -vvf rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft File: D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft (raw, json) Hash identifier: JDtaq5/Vr1tyfComzWFaRvqx+cWG2QfhiwGiHawGaPg= Subject key identifier: B2:38:F0:AF:23:48:39:41:26:CA:C4:84:04:17:52:34:E4:99:E9:32 Authority key identifier: D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 Certificate issuer: /CN=A91E5D610000/serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Certificate serial: 0F3DD3D758D33110FE1A5418CE0C37E7874662D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject info access: rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft Manifest number: 1038 Signing time: Sat 14 Jun 2025 07:40:10 +0000 Manifest this update: Sat 14 Jun 2025 07:35:10 +0000 Manifest next update: Sun 15 Jun 2025 10:09:10 +0000 Files and hashes: 1: D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl (hash: 5IERQ3M85nqdpOo/W4Qv7zi9JjxoHImsg73qlLceF7k=) 2: A828E0147CD8DE9E7A474DCDF06AD96FB37738EE.cer (hash: 25MvCakJBfcC/UtaNlTThX2mxFbh3vcJ/j+6G/E4MX8=) Validation: OK Signature path: rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 10:09:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:3d:d3:d7:58:d3:31:10:fe:1a:54:18:ce:0c:37:e7:87:46:62:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610000, serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Validity Not Before: Jun 14 07:35:10 2025 GMT Not After : Jun 15 10:09:10 2025 GMT Subject: CN=B238F0AF2348394126CAC48404175234E499E932 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:55:e9:f3:24:c7:6f:7e:e8:85:0b:6e:53:f6: a7:98:f4:84:41:ee:e8:0a:e6:0c:6a:2c:bd:a7:e9: 3d:f9:c4:3f:54:4d:d6:59:ae:1d:1e:9e:21:6d:10: 8a:fb:7f:2b:a4:3f:8c:0e:bb:b0:f9:f0:d3:24:32: b2:dd:1b:24:df:5d:9d:4f:42:2f:22:d6:31:71:3b: d8:39:aa:1c:62:df:da:ff:c9:78:66:a2:aa:52:52: 79:ee:2f:bf:c2:b4:77:af:9f:97:40:64:1d:a6:9e: ae:16:18:7b:d7:29:66:56:85:4e:95:cf:9f:94:6b: ba:85:34:b2:d0:89:ac:fd:2f:0e:59:73:0c:10:2c: a1:02:6b:1f:62:23:0b:75:55:eb:2a:a7:be:53:e1: 11:ed:64:4c:4a:e3:80:68:76:fd:26:20:77:0e:2e: 64:47:e7:de:7b:fa:e8:63:dc:07:5c:85:c6:1e:7c: 42:74:f1:da:f7:c8:bc:38:e4:1c:c9:7c:4e:66:88: 11:a7:b5:2e:13:6c:0c:44:cb:ff:6e:89:03:e3:e3: ce:9a:cf:fa:60:d9:d5:bb:f3:1d:cd:3f:34:ab:0b: 49:b0:7b:33:07:48:a0:91:9e:74:7e:46:18:04:f9: 15:55:17:16:c5:97:4b:04:e6:30:1e:51:b4:0c:fe: cf:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:38:F0:AF:23:48:39:41:26:CA:C4:84:04:17:52:34:E4:99:E9:32 X509v3 Authority Key Identifier: keyid:D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:7d:27:25:54:04:d6:e6:01:8b:9b:c5:27:fe:1f:12:a0:83: 34:0e:d0:4e:0a:15:3f:ae:2c:db:fa:f8:ce:e8:30:1c:38:dd: de:bf:25:c1:64:ec:78:1e:b5:27:b8:04:4a:f3:95:e3:5a:6a: 0a:ff:90:f1:11:aa:9c:55:34:3c:86:03:8a:cf:de:f8:84:96: 75:16:71:1c:2d:f3:fd:54:f4:12:b6:8a:6d:d7:2e:e9:15:15: 57:b1:a6:37:24:96:1d:22:1f:31:65:5f:16:13:ca:da:0b:30: 0f:ed:24:b4:f8:a9:39:82:9c:38:1b:93:05:ee:be:c4:4d:c8: 93:c2:67:bf:63:a8:3a:0c:88:43:9d:de:49:13:8f:2a:c9:81: b9:e2:2c:f8:e5:ce:1e:43:35:91:e3:5d:c7:38:60:d2:a2:b1: 68:38:e4:13:dc:f3:34:0a:4d:d0:b2:90:b6:0d:f5:54:2c:48: a3:aa:ed:2a:39:e1:d6:e1:b1:b9:7a:b0:4a:93:33:fe:4b:fd: 54:fe:0c:3a:53:a1:70:8c:1e:f3:61:7e:8b:d2:1b:ea:bc:c0: 06:97:33:66:75:53:f9:6d:c9:3c:e5:0e:08:24:ac:34:54:af: 2b:31:12:aa:79:10:4e:af:b5:5c:9e:c6:2d:ef:e4:f4:0e:2f: 69:0f:fe:76 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUDz3T11jTMRD+GlQYzgw354dGYtEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAwMTEwLwYDVQQFEyhEMTI0ODYwN0Iw REREMEEyMTZFOEQ3RkFDNUUyQzJFNzc3MEExMTM5MB4XDTI1MDYxNDA3MzUxMFoX DTI1MDYxNTEwMDkxMFowMzExMC8GA1UEAxMoQjIzOEYwQUYyMzQ4Mzk0MTI2Q0FD NDg0MDQxNzUyMzRFNDk5RTkzMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANpV6fMkx29+6IULblP2p5j0hEHu6ArmDGosvafpPfnEP1RN1lmuHR6eIW0Q ivt/K6Q/jA67sPnw0yQyst0bJN9dnU9CLyLWMXE72DmqHGLf2v/JeGaiqlJSee4v v8K0d6+fl0BkHaaerhYYe9cpZlaFTpXPn5RruoU0stCJrP0vDllzDBAsoQJrH2Ij C3VV6yqnvlPhEe1kTErjgGh2/SYgdw4uZEfn3nv66GPcB1yFxh58QnTx2vfIvDjk HMl8TmaIEae1LhNsDETL/26JA+PjzprP+mDZ1bvzHc0/NKsLSbB7MwdIoJGedH5G GAT5FVUXFsWXSwTmMB5RtAz+z7cCAwEAAaOCAgMwggH/MB0GA1UdDgQWBBSyOPCv I0g5QSbKxIQEF1I05JnpMjAfBgNVHSMEGDAWgBTRJIYHsN3Qohbo1/rF4sLndwoR OTAOBgNVHQ8BAf8EBAMCB4AwZgYDVR0fBF8wXTBboFmgV4ZVcnN5bmM6Ly9ycGtp LmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS9EMTI0ODYwN0IwREREMEEyMTZF OEQ3RkFDNUUyQzJFNzc3MEExMTM5LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1 ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8wU1NHQjdEZDBLSVc2TmY2eGVMQzUz Y0tFVGsuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9y cGtpLmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS9EMTI0ODYwN0IwREREMEEy MTZFOEQ3RkFDNUUyQzJFNzc3MEExMTM5Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK30nJVQE1uYBi5vF J/4fEqCDNA7QTgoVP64s2/r4zugwHDjd3r8lwWTseB61J7gESvOV41pqCv+Q8RGq nFU0PIYDis/e+ISWdRZxHC3z/VT0EraKbdcu6RUVV7GmNySWHSIfMWVfFhPK2gsw D+0ktPipOYKcOBuTBe6+xE3Ik8Jnv2OoOgyIQ53eSROPKsmBueIs+OXOHkM1keNd xzhg0qKxaDjkE9zzNApN0LKQtg31VCxIo6rtKjnh1uGxuXqwSpMz/kv9VP4MOlOh cIwe82F+i9Ib6rzABpczZnVT+W3JPOUOCCSsNFSvKzESqnkQTq+1XJ7GLe/k9A4v aQ/+dg== -----END CERTIFICATE-----Generated at Sat Jun 14 18:35:53 2025 by rpki-client