$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.mft File: D0BCGu_TepwoYqhQBOR57yH1tgg.mft (raw, json) Hash identifier: PVBWibA16AgcEjui5ouaRp3DvQhtDfPB5KeRkBWkbFM= Subject key identifier: D2:AA:2B:81:B1:CF:2E:13:B3:38:8C:73:65:92:AD:2D:54:0B:61:33 Authority key identifier: 0F:40:42:1A:EF:D3:7A:9C:28:62:A8:50:04:E4:79:EF:21:F5:B6:08 Certificate issuer: /CN=0F40421AEFD37A9C2862A85004E479EF21F5B608 Certificate serial: 2174 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/D0BCGu_TepwoYqhQBOR57yH1tgg.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.mft Manifest number: 2174 Signing time: Wed 05 Nov 2025 19:42:03 +0000 Manifest this update: Wed 05 Nov 2025 19:42:03 +0000 Manifest next update: Thu 06 Nov 2025 01:42:03 +0000 Files and hashes: 1: D0BCGu_TepwoYqhQBOR57yH1tgg.crl (hash: /az/Cbb3+K21OluGmgId/4qk/7U0cDlRSKTpCGME3Ps=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/D0BCGu_TepwoYqhQBOR57yH1tgg.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 23:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8564 (0x2174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0F40421AEFD37A9C2862A85004E479EF21F5B608 Validity Not Before: Nov 5 19:42:03 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=D2AA2B81B1CF2E13B3388C736592AD2D540B6133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ff:49:6b:0a:0c:5a:00:44:15:cc:66:d8:93: d4:4c:39:17:54:a6:3a:37:3b:62:cd:d5:45:b1:d4: 57:2d:3b:e0:b2:b2:d4:fb:04:44:40:4b:6b:04:4c: 72:d0:14:1b:3b:79:ac:62:4b:7a:58:35:f6:46:6b: 5e:be:43:19:9b:6c:74:d5:00:86:21:f5:34:e4:34: 48:f8:bd:29:10:3f:51:10:67:71:08:fa:fb:bd:c6: 3e:dc:b5:1d:e6:6f:a0:a5:4f:35:be:d1:02:fe:17: c8:64:7e:0c:fe:59:77:ce:30:1c:eb:a9:09:25:1c: b7:ed:e9:5d:c0:10:02:a4:45:f7:b4:91:63:d4:34: 3c:53:47:39:58:3f:8e:14:bc:27:7c:8b:e5:56:12: 6a:a7:93:3d:9f:a3:bd:61:6b:ff:97:da:31:4a:5d: 25:c4:00:ec:f9:09:8f:4e:c6:e9:96:d8:51:21:59: ef:b2:45:c6:91:19:14:ab:04:32:bc:0c:6a:f5:73: 0a:69:04:61:46:b1:fb:fe:72:8c:15:50:fd:1e:67: 6b:b3:f7:ca:2b:73:6a:00:e1:cb:d6:a0:e0:cb:1a: 84:88:e1:11:11:63:2d:c0:10:56:64:d4:f3:5f:fd: 55:aa:92:2e:9b:3a:1b:df:65:58:df:81:02:8b:ad: c6:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:AA:2B:81:B1:CF:2E:13:B3:38:8C:73:65:92:AD:2D:54:0B:61:33 X509v3 Authority Key Identifier: keyid:0F:40:42:1A:EF:D3:7A:9C:28:62:A8:50:04:E4:79:EF:21:F5:B6:08 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/D0BCGu_TepwoYqhQBOR57yH1tgg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:46:a2:12:82:f3:92:44:38:ae:3e:ae:a2:32:08:48:f1:83: ef:6e:75:c2:dc:d7:a8:47:0b:93:37:f0:55:04:c1:7f:8f:7a: 24:40:32:14:2e:ed:5e:7c:7a:31:05:01:56:0e:97:f9:a8:6e: fe:a8:32:2e:da:0e:52:76:b9:c4:0b:5d:d0:6f:46:2b:a5:b1: e6:fb:39:af:a0:3e:66:c5:2b:25:f4:ba:0f:87:ae:11:43:1f: d1:5e:38:d2:4f:34:91:0b:3d:f5:af:dc:d4:3a:66:3b:e4:cf: bd:fe:ba:ed:a8:1a:ad:82:3e:30:18:79:d2:0e:6b:8f:4e:fd: 29:98:89:70:d2:1c:da:81:95:b9:1c:4e:0b:63:cb:bd:07:0e: f7:0a:e7:41:b8:80:71:c1:93:61:b6:61:11:54:ae:95:62:cd: 30:d3:55:d3:b2:eb:de:ba:8f:72:d2:84:dc:e2:97:4d:8e:47: d4:e5:e7:87:15:22:cb:9d:f9:91:a4:c9:a6:a2:49:38:36:39: 6b:80:b9:cf:64:2c:9b:ba:a6:07:91:08:7e:7c:00:9d:48:e3: cb:54:29:2f:c9:9c:48:9b:05:13:60:fe:c9:87:48:89:81:76: e9:ed:ce:76:7c:b3:54:50:d8:f7:6a:e1:a6:00:7f:e3:9c:1c: 3b:d6:0f:50 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICIXQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEY0 MDQyMUFFRkQzN0E5QzI4NjJBODUwMDRFNDc5RUYyMUY1QjYwODAeFw0yNTExMDUx OTQyMDNaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEQyQUEyQjgxQjFDRjJF MTNCMzM4OEM3MzY1OTJBRDJENTQwQjYxMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT/0lrCgxaAEQVzGbYk9RMORdUpjo3O2LN1UWx1FctO+CystT7 BERAS2sETHLQFBs7eaxiS3pYNfZGa16+QxmbbHTVAIYh9TTkNEj4vSkQP1EQZ3EI +vu9xj7ctR3mb6ClTzW+0QL+F8hkfgz+WXfOMBzrqQklHLft6V3AEAKkRfe0kWPU NDxTRzlYP44UvCd8i+VWEmqnkz2fo71ha/+X2jFKXSXEAOz5CY9OxumW2FEhWe+y RcaRGRSrBDK8DGr1cwppBGFGsfv+cowVUP0eZ2uz98orc2oA4cvWoODLGoSI4RER Yy3AEFZk1PNf/VWqki6bOhvfZVjfgQKLrcZJAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU0qorgbHPLhOzOIxzZZKtLVQLYTMwHwYDVR0jBBgwFoAUD0BCGu/TepwoYqhQ BOR57yH1tggwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTA4 OS9EMEJDR3VfVGVwd29ZcWhRQk9SNTd5SDF0Z2cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0QwQkNHdV9UZXB3b1lxaFFCT1I1N3lIMXRnZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEwODkvRDBCQ0d1X1RlcHdv WXFoUUJPUjU3eUgxdGdnLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBALFGohKC85JEOK4+rqIyCEjxg+9udcLc16hHC5M38FUEwX+PeiRAMhQu7V58 ejEFAVYOl/mobv6oMi7aDlJ2ucQLXdBvRiulseb7Oa+gPmbFKyX0ug+HrhFDH9Fe ONJPNJELPfWv3NQ6Zjvkz73+uu2oGq2CPjAYedIOa49O/SmYiXDSHNqBlbkcTgtj y70HDvcK50G4gHHBk2G2YRFUrpVizTDTVdOy6966j3LShNzil02OR9Tl54cVIsud +ZGkyaaiSTg2OWuAuc9kLJu6pgeRCH58AJ1I48tUKS/JnEibBRNg/smHSImBdunt znZ8s1RQ2Pdq4aYAf+OcHDvWD1A= -----END CERTIFICATE-----Generated at Wed Nov 5 22:19:53 2025 by rpki-client