$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.mft File: D0BCGu_TepwoYqhQBOR57yH1tgg.mft (raw, json) Hash identifier: UfoFwD0+6YaPlniTeLGBV2Bz5i0GMs28oT4M3PAcJEE= Subject key identifier: D2:AA:2B:81:B1:CF:2E:13:B3:38:8C:73:65:92:AD:2D:54:0B:61:33 Authority key identifier: 0F:40:42:1A:EF:D3:7A:9C:28:62:A8:50:04:E4:79:EF:21:F5:B6:08 Certificate issuer: /CN=0F40421AEFD37A9C2862A85004E479EF21F5B608 Certificate serial: 1ED4 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/D0BCGu_TepwoYqhQBOR57yH1tgg.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.mft Manifest number: 1ED4 Signing time: Sat 21 Jun 2025 15:43:25 +0000 Manifest this update: Sat 21 Jun 2025 15:43:25 +0000 Manifest next update: Sat 21 Jun 2025 21:43:25 +0000 Files and hashes: 1: D0BCGu_TepwoYqhQBOR57yH1tgg.crl (hash: cZ4r1yuG5l5MPAy+xeAz5rzbUW05vJn8tdRcSF/idyk=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/D0BCGu_TepwoYqhQBOR57yH1tgg.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:13:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7892 (0x1ed4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0F40421AEFD37A9C2862A85004E479EF21F5B608 Validity Not Before: Jun 21 15:43:25 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=D2AA2B81B1CF2E13B3388C736592AD2D540B6133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ff:49:6b:0a:0c:5a:00:44:15:cc:66:d8:93: d4:4c:39:17:54:a6:3a:37:3b:62:cd:d5:45:b1:d4: 57:2d:3b:e0:b2:b2:d4:fb:04:44:40:4b:6b:04:4c: 72:d0:14:1b:3b:79:ac:62:4b:7a:58:35:f6:46:6b: 5e:be:43:19:9b:6c:74:d5:00:86:21:f5:34:e4:34: 48:f8:bd:29:10:3f:51:10:67:71:08:fa:fb:bd:c6: 3e:dc:b5:1d:e6:6f:a0:a5:4f:35:be:d1:02:fe:17: c8:64:7e:0c:fe:59:77:ce:30:1c:eb:a9:09:25:1c: b7:ed:e9:5d:c0:10:02:a4:45:f7:b4:91:63:d4:34: 3c:53:47:39:58:3f:8e:14:bc:27:7c:8b:e5:56:12: 6a:a7:93:3d:9f:a3:bd:61:6b:ff:97:da:31:4a:5d: 25:c4:00:ec:f9:09:8f:4e:c6:e9:96:d8:51:21:59: ef:b2:45:c6:91:19:14:ab:04:32:bc:0c:6a:f5:73: 0a:69:04:61:46:b1:fb:fe:72:8c:15:50:fd:1e:67: 6b:b3:f7:ca:2b:73:6a:00:e1:cb:d6:a0:e0:cb:1a: 84:88:e1:11:11:63:2d:c0:10:56:64:d4:f3:5f:fd: 55:aa:92:2e:9b:3a:1b:df:65:58:df:81:02:8b:ad: c6:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:AA:2B:81:B1:CF:2E:13:B3:38:8C:73:65:92:AD:2D:54:0B:61:33 X509v3 Authority Key Identifier: keyid:0F:40:42:1A:EF:D3:7A:9C:28:62:A8:50:04:E4:79:EF:21:F5:B6:08 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/D0BCGu_TepwoYqhQBOR57yH1tgg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:ad:65:8d:a9:a2:7b:d4:88:43:36:61:62:8f:fa:e9:cb:36: 6d:f7:4d:32:30:7f:12:c9:a7:ff:01:e5:cb:4d:be:53:d0:68: 52:6d:33:b7:9f:77:77:c4:97:60:07:3c:a8:50:e6:96:d0:67: d1:56:cd:91:08:84:63:07:9c:7c:f3:7e:a1:1f:09:21:a9:ae: d4:c4:12:fe:e8:32:9d:18:a7:52:2a:fd:ba:2b:dd:8d:6f:5d: 39:53:dd:96:4d:cc:98:e4:c4:fb:23:08:2d:4a:04:05:37:00: c5:8d:27:87:37:f0:80:7a:23:d6:12:dc:7f:d6:56:0c:10:1f: 68:6a:2f:9e:7c:34:2e:a5:94:68:2e:db:aa:34:5f:2f:cf:78: ba:e0:49:cd:75:b0:28:a0:e3:67:23:91:0c:a7:03:30:4e:ee: d7:bc:43:84:ab:d6:04:b0:be:c4:cc:79:f9:d9:65:15:8b:d5: 1d:a5:fa:60:58:97:a1:79:ce:c4:1e:98:5e:d4:ca:0f:eb:cd: 29:76:7d:1c:95:8b:1f:42:d6:61:ca:fe:fa:a0:39:c4:00:77: da:46:3c:e4:ce:de:f8:87:12:6c:97:ec:03:06:ed:16:6f:6a: af:f8:a4:b5:30:b1:30:60:8a:b0:3b:54:e0:66:f9:0a:b5:79: 6b:70:6c:de -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICHtQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEY0 MDQyMUFFRkQzN0E5QzI4NjJBODUwMDRFNDc5RUYyMUY1QjYwODAeFw0yNTA2MjEx NTQzMjVaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEQyQUEyQjgxQjFDRjJF MTNCMzM4OEM3MzY1OTJBRDJENTQwQjYxMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT/0lrCgxaAEQVzGbYk9RMORdUpjo3O2LN1UWx1FctO+CystT7 BERAS2sETHLQFBs7eaxiS3pYNfZGa16+QxmbbHTVAIYh9TTkNEj4vSkQP1EQZ3EI +vu9xj7ctR3mb6ClTzW+0QL+F8hkfgz+WXfOMBzrqQklHLft6V3AEAKkRfe0kWPU NDxTRzlYP44UvCd8i+VWEmqnkz2fo71ha/+X2jFKXSXEAOz5CY9OxumW2FEhWe+y RcaRGRSrBDK8DGr1cwppBGFGsfv+cowVUP0eZ2uz98orc2oA4cvWoODLGoSI4RER Yy3AEFZk1PNf/VWqki6bOhvfZVjfgQKLrcZJAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU0qorgbHPLhOzOIxzZZKtLVQLYTMwHwYDVR0jBBgwFoAUD0BCGu/TepwoYqhQ BOR57yH1tggwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTA4 OS9EMEJDR3VfVGVwd29ZcWhRQk9SNTd5SDF0Z2cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0QwQkNHdV9UZXB3b1lxaFFCT1I1N3lIMXRnZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEwODkvRDBCQ0d1X1RlcHdv WXFoUUJPUjU3eUgxdGdnLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAJqtZY2ponvUiEM2YWKP+unLNm33TTIwfxLJp/8B5ctNvlPQaFJtM7efd3fE l2AHPKhQ5pbQZ9FWzZEIhGMHnHzzfqEfCSGprtTEEv7oMp0Yp1Iq/bor3Y1vXTlT 3ZZNzJjkxPsjCC1KBAU3AMWNJ4c38IB6I9YS3H/WVgwQH2hqL558NC6llGgu26o0 Xy/PeLrgSc11sCig42cjkQynAzBO7te8Q4Sr1gSwvsTMefnZZRWL1R2l+mBYl6F5 zsQemF7Uyg/rzSl2fRyVix9C1mHK/vqgOcQAd9pGPOTO3viHEmyX7AMG7RZvaq/4 pLUwsTBgirA7VOBm+Qq1eWtwbN4= -----END CERTIFICATE-----Generated at Sat Jun 21 18:41:52 2025 by rpki-client