$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.mft File: D0BCGu_TepwoYqhQBOR57yH1tgg.mft (raw, json) Hash identifier: 9iorRr3KzIqr6rVkImnj1nzi169CJvwTX7kImdF9aNQ= Subject key identifier: D2:AA:2B:81:B1:CF:2E:13:B3:38:8C:73:65:92:AD:2D:54:0B:61:33 Authority key identifier: 0F:40:42:1A:EF:D3:7A:9C:28:62:A8:50:04:E4:79:EF:21:F5:B6:08 Certificate issuer: /CN=0F40421AEFD37A9C2862A85004E479EF21F5B608 Certificate serial: 1FDA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/D0BCGu_TepwoYqhQBOR57yH1tgg.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.mft Manifest number: 1FDA Signing time: Wed 13 Aug 2025 16:03:22 +0000 Manifest this update: Wed 13 Aug 2025 16:03:22 +0000 Manifest next update: Wed 13 Aug 2025 22:03:22 +0000 Files and hashes: 1: D0BCGu_TepwoYqhQBOR57yH1tgg.crl (hash: Z3XvK0Uutc2Cx69zD1Z+hMpaRs9weJacBCbQ68d9vI0=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/D0BCGu_TepwoYqhQBOR57yH1tgg.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 22:03:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8154 (0x1fda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0F40421AEFD37A9C2862A85004E479EF21F5B608 Validity Not Before: Aug 13 16:03:22 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=D2AA2B81B1CF2E13B3388C736592AD2D540B6133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ff:49:6b:0a:0c:5a:00:44:15:cc:66:d8:93: d4:4c:39:17:54:a6:3a:37:3b:62:cd:d5:45:b1:d4: 57:2d:3b:e0:b2:b2:d4:fb:04:44:40:4b:6b:04:4c: 72:d0:14:1b:3b:79:ac:62:4b:7a:58:35:f6:46:6b: 5e:be:43:19:9b:6c:74:d5:00:86:21:f5:34:e4:34: 48:f8:bd:29:10:3f:51:10:67:71:08:fa:fb:bd:c6: 3e:dc:b5:1d:e6:6f:a0:a5:4f:35:be:d1:02:fe:17: c8:64:7e:0c:fe:59:77:ce:30:1c:eb:a9:09:25:1c: b7:ed:e9:5d:c0:10:02:a4:45:f7:b4:91:63:d4:34: 3c:53:47:39:58:3f:8e:14:bc:27:7c:8b:e5:56:12: 6a:a7:93:3d:9f:a3:bd:61:6b:ff:97:da:31:4a:5d: 25:c4:00:ec:f9:09:8f:4e:c6:e9:96:d8:51:21:59: ef:b2:45:c6:91:19:14:ab:04:32:bc:0c:6a:f5:73: 0a:69:04:61:46:b1:fb:fe:72:8c:15:50:fd:1e:67: 6b:b3:f7:ca:2b:73:6a:00:e1:cb:d6:a0:e0:cb:1a: 84:88:e1:11:11:63:2d:c0:10:56:64:d4:f3:5f:fd: 55:aa:92:2e:9b:3a:1b:df:65:58:df:81:02:8b:ad: c6:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:AA:2B:81:B1:CF:2E:13:B3:38:8C:73:65:92:AD:2D:54:0B:61:33 X509v3 Authority Key Identifier: keyid:0F:40:42:1A:EF:D3:7A:9C:28:62:A8:50:04:E4:79:EF:21:F5:B6:08 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/D0BCGu_TepwoYqhQBOR57yH1tgg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:23:32:95:97:dc:ac:5b:83:99:8c:20:26:27:16:00:ab:44: 4a:b7:71:be:90:72:ca:09:59:6c:0a:17:a4:3b:f5:99:a7:15: 8d:d9:9f:6f:3d:ad:ca:0f:66:78:66:f6:e7:db:c0:43:28:09: 75:17:e2:ff:20:ef:e0:00:4b:d0:20:1d:cb:4d:16:b8:17:4c: 71:0c:0d:12:2d:8b:54:53:81:7b:3f:82:30:39:91:54:11:37: 6f:a6:b2:a0:3e:db:44:86:2b:8a:3a:e7:96:65:b2:ff:48:3a: de:1e:62:d8:24:04:10:af:60:d2:91:c8:09:7d:cc:7e:96:31: 1d:f7:f8:7b:60:a4:9f:f9:01:59:24:0d:13:c2:0f:9f:32:a1: 41:50:69:7f:18:85:6d:f5:93:52:1c:b3:0f:74:06:32:e5:7e: 7f:f6:66:6d:15:7e:18:52:fc:f4:40:f9:82:3a:1a:e4:d8:e0: 85:af:00:a0:f5:ca:2f:2d:9a:bb:8e:a3:d2:68:99:98:83:6b: c4:8f:1e:17:35:66:99:91:e5:34:6e:c6:a4:f4:08:a7:27:b0: 36:39:d2:ec:a2:49:d5:24:da:ff:4f:cf:d4:e8:d7:72:57:d3: 58:c6:d5:5b:84:ab:23:b9:fc:84:e0:97:2a:b3:92:93:86:33: c6:15:43:58 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICH9owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEY0 MDQyMUFFRkQzN0E5QzI4NjJBODUwMDRFNDc5RUYyMUY1QjYwODAeFw0yNTA4MTMx NjAzMjJaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEQyQUEyQjgxQjFDRjJF MTNCMzM4OEM3MzY1OTJBRDJENTQwQjYxMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT/0lrCgxaAEQVzGbYk9RMORdUpjo3O2LN1UWx1FctO+CystT7 BERAS2sETHLQFBs7eaxiS3pYNfZGa16+QxmbbHTVAIYh9TTkNEj4vSkQP1EQZ3EI +vu9xj7ctR3mb6ClTzW+0QL+F8hkfgz+WXfOMBzrqQklHLft6V3AEAKkRfe0kWPU NDxTRzlYP44UvCd8i+VWEmqnkz2fo71ha/+X2jFKXSXEAOz5CY9OxumW2FEhWe+y RcaRGRSrBDK8DGr1cwppBGFGsfv+cowVUP0eZ2uz98orc2oA4cvWoODLGoSI4RER Yy3AEFZk1PNf/VWqki6bOhvfZVjfgQKLrcZJAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU0qorgbHPLhOzOIxzZZKtLVQLYTMwHwYDVR0jBBgwFoAUD0BCGu/TepwoYqhQ BOR57yH1tggwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTA4 OS9EMEJDR3VfVGVwd29ZcWhRQk9SNTd5SDF0Z2cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0QwQkNHdV9UZXB3b1lxaFFCT1I1N3lIMXRnZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEwODkvRDBCQ0d1X1RlcHdv WXFoUUJPUjU3eUgxdGdnLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAJ0jMpWX3Kxbg5mMICYnFgCrREq3cb6QcsoJWWwKF6Q79ZmnFY3Zn289rcoP Znhm9ufbwEMoCXUX4v8g7+AAS9AgHctNFrgXTHEMDRIti1RTgXs/gjA5kVQRN2+m sqA+20SGK4o655Zlsv9IOt4eYtgkBBCvYNKRyAl9zH6WMR33+HtgpJ/5AVkkDRPC D58yoUFQaX8YhW31k1Icsw90BjLlfn/2Zm0VfhhS/PRA+YI6GuTY4IWvAKD1yi8t mruOo9JomZiDa8SPHhc1ZpmR5TRuxqT0CKcnsDY50uyiSdUk2v9Pz9To13JX01jG 1VuEqyO5/ITglyqzkpOGM8YVQ1g= -----END CERTIFICATE-----Generated at Wed Aug 13 20:24:41 2025 by rpki-client