$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.mft File: 4LWzbEhxQqoAYPpbVHULJsXPW9w.mft (raw, json) Hash identifier: MIdmBaN8OMwua/wYEO/G6uLSLoYfMHHgb5IHEiShIYM= Subject key identifier: E6:0A:2E:E9:38:6F:8C:B4:CC:5F:D5:51:C6:B6:7F:AE:A7:E4:C3:1A Authority key identifier: E0:B5:B3:6C:48:71:42:AA:00:60:FA:5B:54:75:0B:26:C5:CF:5B:DC Certificate issuer: /CN=E0B5B36C487142AA0060FA5B54750B26C5CF5BDC Certificate serial: 0320 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/4LWzbEhxQqoAYPpbVHULJsXPW9w.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.mft Manifest number: 031F Signing time: Wed 05 Nov 2025 12:41:13 +0000 Manifest this update: Wed 05 Nov 2025 12:41:13 +0000 Manifest next update: Wed 05 Nov 2025 18:41:13 +0000 Files and hashes: 1: 4LWzbEhxQqoAYPpbVHULJsXPW9w.crl (hash: cyPg3SyiZuPGmQCEpeCR6mEI4gulTI8EedSHAjGpO9E=) 2: nQe8cqEREUIsJzuFPvvw2A1_6e4.roa (hash: M7HEBLqrcF9Cc43K//Uhar4sJlCkmK82tTZ8yw7MBD8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/4LWzbEhxQqoAYPpbVHULJsXPW9w.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 18:41:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 800 (0x320) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E0B5B36C487142AA0060FA5B54750B26C5CF5BDC Validity Not Before: Nov 5 12:41:13 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=E60A2EE9386F8CB4CC5FD551C6B67FAEA7E4C31A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:59:56:da:d2:cb:7f:a2:3b:9e:7f:2b:fe:7e: d2:68:1a:40:3f:d8:ee:3b:2e:46:d9:c9:8f:5a:e2: 63:fe:f3:1c:a1:6d:e2:eb:70:e6:93:e2:35:18:24: 72:e8:30:84:77:c9:53:90:39:26:13:0c:4a:5b:24: 2f:70:dd:15:22:2f:c0:92:eb:56:4c:25:bb:26:29: 67:82:6d:e2:86:ad:de:8a:79:8a:69:2c:ea:ec:50: 40:90:c8:f4:9f:33:af:d2:2a:e9:0b:40:2e:39:c9: bb:3f:75:9d:ef:7d:b8:3c:98:23:8e:21:f1:e3:a3: 2c:a7:fa:2f:b8:95:6c:d9:bd:a5:dc:85:0a:f2:c8: 58:6e:76:c9:33:d1:a1:cc:22:49:1e:3c:fe:cf:a6: 82:1d:78:7b:29:78:07:19:98:40:e0:3e:7d:8c:c5: 0c:00:4f:f3:e9:b3:42:29:7e:2e:4b:30:f1:e2:bf: 1d:39:85:78:33:e5:4f:bf:f6:db:2f:1d:64:5f:f6: de:1f:14:c7:d2:89:33:b5:d3:04:e6:74:f4:dd:03: 39:d7:8d:3d:cf:02:34:de:f0:18:66:7c:b0:a5:04: 03:58:6d:5a:88:c9:5b:09:a7:52:0d:c1:2f:e8:a0: e4:c4:c8:9b:6c:f9:f3:2f:38:5c:e9:aa:21:8b:b4: c6:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:0A:2E:E9:38:6F:8C:B4:CC:5F:D5:51:C6:B6:7F:AE:A7:E4:C3:1A X509v3 Authority Key Identifier: keyid:E0:B5:B3:6C:48:71:42:AA:00:60:FA:5B:54:75:0B:26:C5:CF:5B:DC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/4LWzbEhxQqoAYPpbVHULJsXPW9w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:ed:b8:17:9f:70:e7:be:3d:41:c4:c5:b6:46:1f:83:c2:2c: 75:cd:d0:33:a7:a6:0c:75:04:0d:35:b9:5a:5c:44:31:6a:c5: d6:f2:df:2c:b0:e3:22:a4:a9:c9:bc:c3:76:7e:7c:42:81:01: ff:ee:77:10:84:56:ff:9e:97:d0:6e:d2:55:a4:d1:1c:0d:66: 7c:81:af:49:e5:83:52:49:dc:3d:77:e1:f3:2a:bb:00:c0:13: ed:f1:89:1e:9a:10:d1:9c:e7:fb:44:92:fa:6c:7e:b1:cb:06: 7b:0c:28:b3:85:42:cb:3e:1b:87:24:1f:3a:ce:3d:8e:f5:48: ac:a3:43:bb:ca:d4:38:5d:55:82:ef:06:47:f7:a1:eb:e4:51: e2:c6:42:59:04:9e:64:61:41:1c:53:60:70:3b:80:39:38:0c: cf:64:6a:85:9c:7a:d4:ea:41:1b:ab:33:3b:d1:23:54:ab:d3: 5f:07:4e:4a:b0:3a:43:19:99:ec:07:ad:31:0d:7c:aa:33:4a: fb:6a:f9:30:3d:b3:63:6f:a2:51:15:73:cc:0c:7f:bd:c3:11: 9e:af:41:a1:3b:b9:a9:b9:ea:e4:4a:c8:cc:00:3b:71:f5:2a: 1a:a0:eb:5b:18:2b:28:f4:60:6e:1d:11:59:cb:62:81:00:72: 57:d8:d3:c5 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICAyAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTBC NUIzNkM0ODcxNDJBQTAwNjBGQTVCNTQ3NTBCMjZDNUNGNUJEQzAeFw0yNTExMDUx MjQxMTNaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEU2MEEyRUU5Mzg2RjhD QjRDQzVGRDU1MUM2QjY3RkFFQTdFNEMzMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmWVba0st/ojuefyv+ftJoGkA/2O47LkbZyY9a4mP+8xyhbeLr cOaT4jUYJHLoMIR3yVOQOSYTDEpbJC9w3RUiL8CS61ZMJbsmKWeCbeKGrd6KeYpp LOrsUECQyPSfM6/SKukLQC45ybs/dZ3vfbg8mCOOIfHjoyyn+i+4lWzZvaXchQry yFhudskz0aHMIkkePP7PpoIdeHspeAcZmEDgPn2MxQwAT/Pps0Ipfi5LMPHivx05 hXgz5U+/9tsvHWRf9t4fFMfSiTO10wTmdPTdAznXjT3PAjTe8BhmfLClBANYbVqI yVsJp1INwS/ooOTEyJts+fMvOFzpqiGLtMbvAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQU5gou6ThvjLTMX9VRxrZ/rqfkwxowHwYDVR0jBBgwFoAU4LWzbEhxQqoAYPpb VHULJsXPW9wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTA0 LzRMV3piRWh4UXFvQVlQcGJWSFVMSnNYUFc5dy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvNExXemJFaHhRcW9BWVBwYlZIVUxKc1hQVzl3LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTA0LzRMV3piRWh4UXFvQVlQ cGJWSFVMSnNYUFc5dy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAR7bgXn3Dnvj1BxMW2Rh+Dwix1zdAzp6YMdQQNNblaXEQxasXW8t8ssOMipKnJ vMN2fnxCgQH/7ncQhFb/npfQbtJVpNEcDWZ8ga9J5YNSSdw9d+HzKrsAwBPt8Yke mhDRnOf7RJL6bH6xywZ7DCizhULLPhuHJB86zj2O9Uiso0O7ytQ4XVWC7wZH96Hr 5FHixkJZBJ5kYUEcU2BwO4A5OAzPZGqFnHrU6kEbqzM70SNUq9NfB05KsDpDGZns B60xDXyqM0r7avkwPbNjb6JRFXPMDH+9wxGer0GhO7mpuerkSsjMADtx9SoaoOtb GCso9GBuHRFZy2KBAHJX2NPF -----END CERTIFICATE-----Generated at Wed Nov 5 15:41:29 2025 by rpki-client