$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.mft File: 4LWzbEhxQqoAYPpbVHULJsXPW9w.mft (raw, json) Hash identifier: NQr+0StwegdhyNiaTRrTozd0Xjd3qeQ8nC4j62uwdb8= Subject key identifier: E6:0A:2E:E9:38:6F:8C:B4:CC:5F:D5:51:C6:B6:7F:AE:A7:E4:C3:1A Authority key identifier: E0:B5:B3:6C:48:71:42:AA:00:60:FA:5B:54:75:0B:26:C5:CF:5B:DC Certificate issuer: /CN=E0B5B36C487142AA0060FA5B54750B26C5CF5BDC Certificate serial: 0184 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/4LWzbEhxQqoAYPpbVHULJsXPW9w.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.mft Manifest number: 0183 Signing time: Wed 13 Aug 2025 16:02:04 +0000 Manifest this update: Wed 13 Aug 2025 16:02:04 +0000 Manifest next update: Wed 13 Aug 2025 22:02:04 +0000 Files and hashes: 1: 4LWzbEhxQqoAYPpbVHULJsXPW9w.crl (hash: aAnb+jtp5Rz5TTD3Ldq0RoPInSjOR6fy+2mOt85ZTc0=) 2: nQe8cqEREUIsJzuFPvvw2A1_6e4.roa (hash: M7HEBLqrcF9Cc43K//Uhar4sJlCkmK82tTZ8yw7MBD8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/4LWzbEhxQqoAYPpbVHULJsXPW9w.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 22:02:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E0B5B36C487142AA0060FA5B54750B26C5CF5BDC Validity Not Before: Aug 13 16:02:04 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=E60A2EE9386F8CB4CC5FD551C6B67FAEA7E4C31A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:59:56:da:d2:cb:7f:a2:3b:9e:7f:2b:fe:7e: d2:68:1a:40:3f:d8:ee:3b:2e:46:d9:c9:8f:5a:e2: 63:fe:f3:1c:a1:6d:e2:eb:70:e6:93:e2:35:18:24: 72:e8:30:84:77:c9:53:90:39:26:13:0c:4a:5b:24: 2f:70:dd:15:22:2f:c0:92:eb:56:4c:25:bb:26:29: 67:82:6d:e2:86:ad:de:8a:79:8a:69:2c:ea:ec:50: 40:90:c8:f4:9f:33:af:d2:2a:e9:0b:40:2e:39:c9: bb:3f:75:9d:ef:7d:b8:3c:98:23:8e:21:f1:e3:a3: 2c:a7:fa:2f:b8:95:6c:d9:bd:a5:dc:85:0a:f2:c8: 58:6e:76:c9:33:d1:a1:cc:22:49:1e:3c:fe:cf:a6: 82:1d:78:7b:29:78:07:19:98:40:e0:3e:7d:8c:c5: 0c:00:4f:f3:e9:b3:42:29:7e:2e:4b:30:f1:e2:bf: 1d:39:85:78:33:e5:4f:bf:f6:db:2f:1d:64:5f:f6: de:1f:14:c7:d2:89:33:b5:d3:04:e6:74:f4:dd:03: 39:d7:8d:3d:cf:02:34:de:f0:18:66:7c:b0:a5:04: 03:58:6d:5a:88:c9:5b:09:a7:52:0d:c1:2f:e8:a0: e4:c4:c8:9b:6c:f9:f3:2f:38:5c:e9:aa:21:8b:b4: c6:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:0A:2E:E9:38:6F:8C:B4:CC:5F:D5:51:C6:B6:7F:AE:A7:E4:C3:1A X509v3 Authority Key Identifier: keyid:E0:B5:B3:6C:48:71:42:AA:00:60:FA:5B:54:75:0B:26:C5:CF:5B:DC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/4LWzbEhxQqoAYPpbVHULJsXPW9w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:9e:6d:53:00:ac:65:a7:04:f0:0d:6b:fc:30:3d:ea:2a:ab: 29:20:0b:f2:b6:4e:f2:66:d2:e8:ad:76:3e:39:c0:84:36:6b: c8:c5:4c:4d:1e:53:7c:a8:eb:76:a1:94:8e:b3:9a:03:1f:ee: 38:71:00:5c:b6:a5:5b:ff:32:a7:da:82:82:49:5a:11:3e:4e: 1f:01:8d:2e:a4:12:0a:f4:d2:4d:b7:5b:9d:c6:89:56:97:e1: b1:90:30:b4:a3:f5:8f:db:35:bc:ea:85:b2:68:80:ff:5d:3a: f9:fb:fa:f8:83:be:2a:38:a5:16:18:b0:85:0d:85:e2:f0:10: 96:09:0f:bb:e4:ce:24:f1:a6:d0:0e:78:14:89:c4:95:80:e8: 6e:66:c0:1e:36:0d:bf:6c:e1:ef:9d:29:b5:5d:23:c5:ae:99: 84:5a:f0:f0:00:20:a5:38:57:fd:33:5d:f3:11:b5:9e:b6:cf: 58:78:cb:4e:3e:34:c1:4a:8c:22:de:b4:f2:18:8e:6b:b3:4a: 64:23:14:f0:09:46:a3:86:71:d6:4e:9d:30:0e:37:73:24:64: b8:dd:a0:89:bb:a6:a5:17:eb:77:c9:58:fe:39:1e:a5:c0:26: fc:95:9b:7e:76:3d:42:07:67:04:4f:cc:dc:f3:11:e0:5b:d9: 3d:0f:3d:8c -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTBC NUIzNkM0ODcxNDJBQTAwNjBGQTVCNTQ3NTBCMjZDNUNGNUJEQzAeFw0yNTA4MTMx NjAyMDRaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEU2MEEyRUU5Mzg2RjhD QjRDQzVGRDU1MUM2QjY3RkFFQTdFNEMzMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmWVba0st/ojuefyv+ftJoGkA/2O47LkbZyY9a4mP+8xyhbeLr cOaT4jUYJHLoMIR3yVOQOSYTDEpbJC9w3RUiL8CS61ZMJbsmKWeCbeKGrd6KeYpp LOrsUECQyPSfM6/SKukLQC45ybs/dZ3vfbg8mCOOIfHjoyyn+i+4lWzZvaXchQry yFhudskz0aHMIkkePP7PpoIdeHspeAcZmEDgPn2MxQwAT/Pps0Ipfi5LMPHivx05 hXgz5U+/9tsvHWRf9t4fFMfSiTO10wTmdPTdAznXjT3PAjTe8BhmfLClBANYbVqI yVsJp1INwS/ooOTEyJts+fMvOFzpqiGLtMbvAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQU5gou6ThvjLTMX9VRxrZ/rqfkwxowHwYDVR0jBBgwFoAU4LWzbEhxQqoAYPpb VHULJsXPW9wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTA0 LzRMV3piRWh4UXFvQVlQcGJWSFVMSnNYUFc5dy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvNExXemJFaHhRcW9BWVBwYlZIVUxKc1hQVzl3LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTA0LzRMV3piRWh4UXFvQVlQ cGJWSFVMSnNYUFc5dy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQB3nm1TAKxlpwTwDWv8MD3qKqspIAvytk7yZtLorXY+OcCENmvIxUxNHlN8qOt2 oZSOs5oDH+44cQBctqVb/zKn2oKCSVoRPk4fAY0upBIK9NJNt1udxolWl+GxkDC0 o/WP2zW86oWyaID/XTr5+/r4g74qOKUWGLCFDYXi8BCWCQ+75M4k8abQDngUicSV gOhuZsAeNg2/bOHvnSm1XSPFrpmEWvDwACClOFf9M13zEbWets9YeMtOPjTBSowi 3rTyGI5rs0pkIxTwCUajhnHWTp0wDjdzJGS43aCJu6alF+t3yVj+OR6lwCb8lZt+ dj1CB2cET8zc8xHgW9k9Dz2M -----END CERTIFICATE-----Generated at Wed Aug 13 20:22:56 2025 by rpki-client