$ rpki-client -vvf rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft File: D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft (raw, json) Hash identifier: YfODpIujh3C1UZuB2/PJF//hxu/iwH0/QE62BSQXbEM= Subject key identifier: 1B:3D:54:C1:07:EA:4D:ED:EF:92:5F:87:79:40:44:73:23:E0:BE:CC Authority key identifier: D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 Certificate issuer: /CN=A91E5D610000/serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Certificate serial: 70C52BD832216727EAEAFFDCDACCDD01D02A7AAC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject info access: rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft Manifest number: 108D Signing time: Thu 07 Aug 2025 02:09:43 +0000 Manifest this update: Thu 07 Aug 2025 02:04:43 +0000 Manifest next update: Fri 08 Aug 2025 03:55:43 +0000 Files and hashes: 1: 49776F25BA047DAE0837698DFC0C1C9689EE4FAA.cer (hash: SfgNng1eQqESKDp6G91JZBmwAJymbp2wYyyQ9zQ4hBA=) 2: D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl (hash: Nn4QPJpUod28n/dO2sprde3hHyYU4AvbCzsvQRW/4KM=) 3: 3130332e3136352e3131302e302f32332d3237203d3e2034353338.roa (hash: 6MjfCdO/U3fL4/c/dCU0znKWIfM8vw+R1ZWDGwd991o=) Validation: OK Signature path: rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 03:55:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:c5:2b:d8:32:21:67:27:ea:ea:ff:dc:da:cc:dd:01:d0:2a:7a:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610000, serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Validity Not Before: Aug 7 02:04:43 2025 GMT Not After : Aug 8 03:55:43 2025 GMT Subject: CN=1B3D54C107EA4DEDEF925F877940447323E0BECC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:90:d5:cf:68:56:bc:c0:cb:92:41:5c:53:e4: 87:20:ad:f1:f2:2f:52:84:65:ee:ec:e6:30:55:53: c7:69:75:51:2e:59:47:3d:42:c6:0f:2a:9f:01:e5: 79:42:0b:bb:ed:ed:cb:5b:78:e2:a8:39:78:39:55: 85:94:55:4b:0a:04:e7:69:c2:3f:96:39:b9:7c:7d: e5:ad:14:f6:29:92:28:2c:f5:f6:75:5a:54:d1:e9: c0:47:ab:7a:c1:e3:45:2a:10:d1:ef:9b:f6:8e:f8: c1:73:5b:11:54:61:b9:ed:74:86:64:59:47:ab:02: 8c:86:9a:84:a5:d7:8b:1d:50:79:2d:f1:d9:8a:d8: 92:f6:e1:a0:5c:25:06:e6:29:c0:7f:5f:ea:e8:ba: f7:fe:e1:f7:03:02:f6:6a:60:69:8d:ee:3a:f6:fb: f5:74:59:6e:38:c4:8d:06:43:e9:48:7f:ae:23:9b: 60:17:0a:af:05:fb:ad:84:6b:eb:4a:9f:1a:bb:9b: 69:bf:28:5c:e1:e4:6c:9c:d6:1b:0a:0e:cd:8f:0e: ac:65:ec:24:8e:da:93:a4:8c:bc:ec:6a:ee:d5:6d: f0:c8:95:a9:47:02:c3:61:ed:2f:14:c4:01:b0:e3: c3:dc:27:96:1b:3c:4a:be:aa:58:78:14:cd:ae:e0: b5:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:3D:54:C1:07:EA:4D:ED:EF:92:5F:87:79:40:44:73:23:E0:BE:CC X509v3 Authority Key Identifier: keyid:D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:3c:2d:13:5a:a5:e1:a4:af:1c:1e:ca:81:f1:c1:e6:98:9d: b7:4f:a8:29:d3:bd:a3:26:0b:35:df:6e:b2:2b:c5:61:92:84: 5b:e2:c3:39:04:75:2b:43:35:26:11:1a:2a:f7:b1:e6:4d:74: 7b:b9:71:45:67:43:d5:50:fc:60:bb:68:68:74:d4:54:30:95: 28:49:13:1f:41:b1:4d:73:a0:66:e8:be:b1:f9:8e:27:1d:fd: b9:4a:a5:9f:60:83:6e:4d:de:1a:89:5a:83:e8:1d:e5:f7:ed: a6:d4:2b:a2:a5:55:ea:97:7c:1b:8e:4e:76:c3:26:a3:ef:58: ee:8e:11:73:57:78:17:9f:77:67:42:01:9a:36:3f:4b:a1:24: 98:20:19:d7:da:67:97:86:c5:78:7e:8f:b3:ea:3d:5d:a5:9d: 4f:bf:1a:e5:b9:d2:be:e3:82:2d:e4:78:14:e8:16:d8:94:07: 82:36:b3:88:63:d6:35:fa:b0:26:39:03:9e:6a:e7:ac:9d:ee: b3:c4:cd:60:a9:03:d1:3a:99:1d:bc:e2:a7:71:92:7c:27:f2: ee:a9:17:7b:1d:c6:aa:52:18:3a:8d:4d:e8:f4:25:d8:52:db: 1d:8e:45:35:a3:c5:07:40:b7:7b:ae:6c:0b:43:bb:b8:84:01: 5b:5d:2d:fe -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUcMUr2DIhZyfq6v/c2szdAdAqeqwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAwMTEwLwYDVQQFEyhEMTI0ODYwN0Iw REREMEEyMTZFOEQ3RkFDNUUyQzJFNzc3MEExMTM5MB4XDTI1MDgwNzAyMDQ0M1oX DTI1MDgwODAzNTU0M1owMzExMC8GA1UEAxMoMUIzRDU0QzEwN0VBNERFREVGOTI1 Rjg3Nzk0MDQ0NzMyM0UwQkVDQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALuQ1c9oVrzAy5JBXFPkhyCt8fIvUoRl7uzmMFVTx2l1US5ZRz1Cxg8qnwHl eUILu+3ty1t44qg5eDlVhZRVSwoE52nCP5Y5uXx95a0U9imSKCz19nVaVNHpwEer esHjRSoQ0e+b9o74wXNbEVRhue10hmRZR6sCjIaahKXXix1QeS3x2YrYkvbhoFwl BuYpwH9f6ui69/7h9wMC9mpgaY3uOvb79XRZbjjEjQZD6Uh/riObYBcKrwX7rYRr 60qfGrubab8oXOHkbJzWGwoOzY8OrGXsJI7ak6SMvOxq7tVt8MiVqUcCw2HtLxTE AbDjw9wnlhs8Sr6qWHgUza7gtY0CAwEAAaOCAgMwggH/MB0GA1UdDgQWBBQbPVTB B+pN7e+SX4d5QERzI+C+zDAfBgNVHSMEGDAWgBTRJIYHsN3Qohbo1/rF4sLndwoR OTAOBgNVHQ8BAf8EBAMCB4AwZgYDVR0fBF8wXTBboFmgV4ZVcnN5bmM6Ly9ycGtp LmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS9EMTI0ODYwN0IwREREMEEyMTZF OEQ3RkFDNUUyQzJFNzc3MEExMTM5LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1 ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8wU1NHQjdEZDBLSVc2TmY2eGVMQzUz Y0tFVGsuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9y cGtpLmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS9EMTI0ODYwN0IwREREMEEy MTZFOEQ3RkFDNUUyQzJFNzc3MEExMTM5Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAjwtE1ql4aSvHB7K gfHB5pidt0+oKdO9oyYLNd9usivFYZKEW+LDOQR1K0M1JhEaKvex5k10e7lxRWdD 1VD8YLtoaHTUVDCVKEkTH0GxTXOgZui+sfmOJx39uUqln2CDbk3eGolag+gd5fft ptQroqVV6pd8G45OdsMmo+9Y7o4Rc1d4F593Z0IBmjY/S6EkmCAZ19pnl4bFeH6P s+o9XaWdT78a5bnSvuOCLeR4FOgW2JQHgjaziGPWNfqwJjkDnmrnrJ3us8TNYKkD 0TqZHbzip3GSfCfy7qkXex3GqlIYOo1N6PQl2FLbHY5FNaPFB0C3e65sC0O7uIQB W10t/g== -----END CERTIFICATE-----Generated at Thu Aug 7 11:07:21 2025 by rpki-client