$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1377/vCE9aodm-DafWThfda8AgjreZgQ.mft File: vCE9aodm-DafWThfda8AgjreZgQ.mft (raw, json) Hash identifier: VpVWVyJ9U6GDqEMmwZmkzb3Ug7HopDH5iRAKp+H0TdQ= Subject key identifier: E5:37:31:37:0F:30:FD:B2:60:24:BF:A4:9C:E6:31:57:A0:6E:E4:97 Authority key identifier: BC:21:3D:6A:87:66:F8:36:9F:59:38:5F:75:AF:00:82:3A:DE:66:04 Certificate issuer: /CN=BC213D6A8766F8369F59385F75AF00823ADE6604 Certificate serial: 1886 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vCE9aodm-DafWThfda8AgjreZgQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1377/vCE9aodm-DafWThfda8AgjreZgQ.mft Manifest number: 1886 Signing time: Wed 13 Aug 2025 16:01:59 +0000 Manifest this update: Wed 13 Aug 2025 16:01:59 +0000 Manifest next update: Wed 13 Aug 2025 22:01:59 +0000 Files and hashes: 1: vCE9aodm-DafWThfda8AgjreZgQ.crl (hash: HQ1vREoRip/MIeXFDP+47in+WHgTc9+j1W+7JrXdcn8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1377/vCE9aodm-DafWThfda8AgjreZgQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1377/vCE9aodm-DafWThfda8AgjreZgQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vCE9aodm-DafWThfda8AgjreZgQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 20:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6278 (0x1886) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BC213D6A8766F8369F59385F75AF00823ADE6604 Validity Not Before: Aug 13 16:01:59 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=E53731370F30FDB26024BFA49CE63157A06EE497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:0b:fe:3b:37:bc:61:45:56:d7:30:80:48:3b: 74:d7:66:f5:fa:3d:5b:1f:ec:fd:85:de:58:b3:5a: 8b:ba:06:8b:d7:8d:c0:39:27:70:29:a3:8f:d5:a4: a5:ae:2b:ea:27:e1:0b:11:75:8d:6e:0d:bb:38:b9: 5b:af:bf:3e:90:db:2c:9d:22:b9:c5:1a:fc:66:27: 9f:2c:6d:65:05:df:9a:98:38:88:b3:67:60:c4:0f: 0d:17:00:86:f8:fe:9d:9f:e0:c6:af:b6:b8:12:60: 4d:67:e3:a6:cf:b1:81:24:eb:4d:88:81:10:90:b2: 85:5b:6b:f3:f5:7d:da:bc:ed:bd:41:fb:88:34:7a: 4e:65:18:0d:e0:25:e2:b4:c0:77:b7:d7:4f:3a:0a: af:1c:c1:2f:be:89:7d:59:5b:b2:91:5b:dc:9a:79: 78:be:27:1c:1c:e9:ea:cc:62:e0:2d:aa:0e:ab:e8: c0:92:a2:cd:07:db:86:7e:59:51:60:05:6f:a1:59: 3e:20:05:a4:16:c4:85:11:68:a3:61:cf:e4:ba:5f: c7:e0:f6:a1:0f:5c:76:30:d7:fa:56:b7:b8:6a:ab: e7:17:11:51:75:86:27:1e:f7:a6:4a:c2:10:2d:a1: fb:4d:71:da:9f:09:8e:b1:4b:3f:9b:a8:c6:c9:44: 22:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:37:31:37:0F:30:FD:B2:60:24:BF:A4:9C:E6:31:57:A0:6E:E4:97 X509v3 Authority Key Identifier: keyid:BC:21:3D:6A:87:66:F8:36:9F:59:38:5F:75:AF:00:82:3A:DE:66:04 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1377/vCE9aodm-DafWThfda8AgjreZgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vCE9aodm-DafWThfda8AgjreZgQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1377/vCE9aodm-DafWThfda8AgjreZgQ.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:18:af:5e:fd:b4:57:9b:78:87:b6:71:fe:0f:6b:c1:d1:74: d5:41:d8:84:56:c3:3f:29:26:83:d7:e8:ec:94:35:f2:20:61: 61:a5:7f:db:49:06:7f:5c:e2:e3:af:3b:53:24:f8:e9:cc:0c: 6b:20:a4:3c:5e:da:a0:5e:68:3b:c0:e6:ef:28:52:f1:bc:40: c2:bd:fa:1c:14:fc:0b:db:d5:0f:c2:5f:26:48:b5:9e:36:a3: d6:1f:41:9f:d8:ab:91:61:05:cb:a8:9b:01:ca:73:f8:38:d9: 7c:72:30:d3:18:1e:3e:b8:53:99:5a:4f:ff:87:b1:19:ba:12: a6:0a:8b:a7:28:f6:55:1d:23:00:72:2b:83:7e:8e:38:90:d6: 96:1d:94:31:16:8a:02:b2:c3:9b:84:48:63:7a:3f:18:29:89: eb:13:c9:85:f7:e5:e9:ca:1f:10:0d:11:62:e2:12:41:be:48: c3:4e:cb:cd:39:fc:f1:05:cf:5e:4c:53:07:67:91:70:e8:45: 20:dc:80:b3:a8:8a:54:28:2a:db:c9:3f:25:23:70:d9:ef:c1: bd:0d:19:23:cb:74:3e:88:dd:fe:f0:ee:89:9c:8b:b4:41:0e: 3a:67:5d:52:1d:da:31:18:4a:cf:ff:5e:06:05:fd:87:ac:27: 83:6c:7b:a5 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICGIYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkMy MTNENkE4NzY2RjgzNjlGNTkzODVGNzVBRjAwODIzQURFNjYwNDAeFw0yNTA4MTMx NjAxNTlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEU1MzczMTM3MEYzMEZE QjI2MDI0QkZBNDlDRTYzMTU3QTA2RUU0OTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnC/47N7xhRVbXMIBIO3TXZvX6PVsf7P2F3lizWou6BovXjcA5 J3Apo4/VpKWuK+on4QsRdY1uDbs4uVuvvz6Q2yydIrnFGvxmJ58sbWUF35qYOIiz Z2DEDw0XAIb4/p2f4MavtrgSYE1n46bPsYEk602IgRCQsoVba/P1fdq87b1B+4g0 ek5lGA3gJeK0wHe31086Cq8cwS++iX1ZW7KRW9yaeXi+Jxwc6erMYuAtqg6r6MCS os0H24Z+WVFgBW+hWT4gBaQWxIURaKNhz+S6X8fg9qEPXHYw1/pWt7hqq+cXEVF1 hice96ZKwhAtoftNcdqfCY6xSz+bqMbJRCJrAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU5TcxNw8w/bJgJL+knOYxV6Bu5JcwHwYDVR0jBBgwFoAUvCE9aodm+DafWThf da8AgjreZgQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 Ny92Q0U5YW9kbS1EYWZXVGhmZGE4QWdqcmVaZ1EuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3ZDRTlhb2RtLURhZldUaGZkYThBZ2pyZVpnUS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEzNzcvdkNFOWFvZG0tRGFm V1RoZmRhOEFnanJlWmdRLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAIkYr179tFebeIe2cf4Pa8HRdNVB2IRWwz8pJoPX6OyUNfIgYWGlf9tJBn9c 4uOvO1Mk+OnMDGsgpDxe2qBeaDvA5u8oUvG8QMK9+hwU/Avb1Q/CXyZItZ42o9Yf QZ/Yq5FhBcuomwHKc/g42XxyMNMYHj64U5laT/+HsRm6EqYKi6co9lUdIwByK4N+ jjiQ1pYdlDEWigKyw5uESGN6PxgpiesTyYX35enKHxANEWLiEkG+SMNOy805/PEF z15MUwdnkXDoRSDcgLOoilQoKtvJPyUjcNnvwb0NGSPLdD6I3f7w7omci7RBDjpn XVId2jEYSs//XgYF/YesJ4Nse6U= -----END CERTIFICATE-----Generated at Wed Aug 13 19:12:11 2025 by rpki-client