$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.mft File: IGM8jmnuaH1MQSPQwJea0UTlXrc.mft (raw, json) Hash identifier: tW3zpC+8LJgIFGbW2wTv7VdVD6C0OP21017rtfQZtto= Subject key identifier: 8A:73:24:BA:58:30:A5:5C:DA:6E:BE:7C:2F:41:0F:BC:89:0A:40:04 Authority key identifier: 20:63:3C:8E:69:EE:68:7D:4C:41:23:D0:C0:97:9A:D1:44:E5:5E:B7 Certificate issuer: /CN=20633C8E69EE687D4C4123D0C0979AD144E55EB7 Certificate serial: 5616 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/IGM8jmnuaH1MQSPQwJea0UTlXrc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.mft Manifest number: 5616 Signing time: Wed 05 Nov 2025 22:41:25 +0000 Manifest this update: Wed 05 Nov 2025 22:41:25 +0000 Manifest next update: Thu 06 Nov 2025 04:41:25 +0000 Files and hashes: 1: IGM8jmnuaH1MQSPQwJea0UTlXrc.crl (hash: jx7OibOSdGxUC8Wi/m17pbUJozCpdA+0ZlP8y2hodc0=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/IGM8jmnuaH1MQSPQwJea0UTlXrc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 04:41:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22038 (0x5616) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20633C8E69EE687D4C4123D0C0979AD144E55EB7 Validity Not Before: Nov 5 22:41:25 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=8A7324BA5830A55CDA6EBE7C2F410FBC890A4004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ab:60:9d:02:16:1f:62:3c:eb:5a:2b:b6:b8: f7:29:bc:cd:7e:af:3c:eb:15:1c:b0:23:41:af:c5: a1:d6:bd:a2:51:84:8e:75:24:28:c9:8b:dd:10:55: 35:51:72:b6:86:35:dc:47:8c:55:85:96:be:e2:fd: 92:d3:8f:b8:ed:f7:23:02:ec:f3:6c:d0:12:fa:26: b0:59:a5:a4:43:33:f9:1a:39:42:0b:97:62:9a:27: bf:42:79:32:2e:9e:8c:d8:09:45:03:93:4a:6e:93: 07:69:53:64:bc:61:96:2b:44:51:5b:39:ef:45:97: ec:47:cd:4c:55:99:99:1c:c0:b7:00:9f:0b:a2:80: d7:da:2d:b8:f6:05:6c:ac:40:f9:fb:13:31:27:65: 99:a6:29:19:4e:50:8e:e3:87:01:9e:ea:2f:5f:12: 58:39:0e:95:61:f3:27:52:7a:a6:27:0c:c9:16:46: 53:d9:de:02:b1:93:64:46:17:37:f6:06:10:e0:a7: 94:6a:75:78:62:a3:fa:5b:41:e7:35:8d:53:a9:5b: 14:0f:cc:44:2f:09:4b:fc:2c:ac:c5:77:33:78:10: c3:06:ed:f9:ef:e9:c0:ef:b4:9e:4f:82:f9:66:e4: 2d:37:53:91:e5:d4:0b:2c:14:74:0b:84:15:03:94: d8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:73:24:BA:58:30:A5:5C:DA:6E:BE:7C:2F:41:0F:BC:89:0A:40:04 X509v3 Authority Key Identifier: keyid:20:63:3C:8E:69:EE:68:7D:4C:41:23:D0:C0:97:9A:D1:44:E5:5E:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/IGM8jmnuaH1MQSPQwJea0UTlXrc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:dd:cb:b4:2a:df:8f:72:41:7b:36:0b:69:5f:27:a4:b2:a6: db:21:4d:00:11:f4:35:aa:04:e5:99:2e:fe:eb:63:8c:37:05: e4:c1:a2:a1:91:d3:b0:64:56:9b:ec:bc:f6:ab:cc:b5:d9:64: d3:80:93:62:f1:a6:ca:48:55:36:b9:94:d2:86:68:05:65:0b: 5e:d5:16:13:f5:d9:18:ea:a3:75:51:05:da:83:d2:59:a8:d5: 58:16:b5:ab:ba:51:54:92:3c:3c:d3:33:74:49:e9:6e:8a:44: 8e:5f:41:c7:0e:59:ab:2e:f3:7a:05:70:26:0f:e4:58:73:f3: 68:41:5e:00:31:6c:67:cc:05:81:5a:8b:5e:c0:cb:b7:87:73: de:dd:a6:4e:3e:aa:bf:64:21:fb:7d:45:97:86:d4:2b:a5:31: d8:ef:e2:8d:a3:e5:84:cd:e3:8b:2c:d5:08:41:e3:5c:67:fd: 31:cf:2a:74:de:30:7a:da:01:5f:52:2b:5a:35:d4:b9:43:18: 07:5d:03:f2:66:c1:79:0e:d6:6b:50:05:e1:c2:0d:00:bd:7c: c4:8d:61:54:b9:2e:d0:4e:9f:29:ce:cc:82:d9:22:28:a0:12: de:dc:fa:2d:16:af:1e:df:5b:cc:15:9e:9f:27:8c:e0:3a:6f: 2d:e3:69:2c -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICVhYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjA2 MzNDOEU2OUVFNjg3RDRDNDEyM0QwQzA5NzlBRDE0NEU1NUVCNzAeFw0yNTExMDUy MjQxMjVaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDhBNzMyNEJBNTgzMEE1 NUNEQTZFQkU3QzJGNDEwRkJDODkwQTQwMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPq2CdAhYfYjzrWiu2uPcpvM1+rzzrFRywI0GvxaHWvaJRhI51 JCjJi90QVTVRcraGNdxHjFWFlr7i/ZLTj7jt9yMC7PNs0BL6JrBZpaRDM/kaOUIL l2KaJ79CeTIunozYCUUDk0pukwdpU2S8YZYrRFFbOe9Fl+xHzUxVmZkcwLcAnwui gNfaLbj2BWysQPn7EzEnZZmmKRlOUI7jhwGe6i9fElg5DpVh8ydSeqYnDMkWRlPZ 3gKxk2RGFzf2BhDgp5RqdXhio/pbQec1jVOpWxQPzEQvCUv8LKzFdzN4EMMG7fnv 6cDvtJ5Pgvlm5C03U5Hl1AssFHQLhBUDlNibAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUinMkulgwpVzabr58L0EPvIkKQAQwHwYDVR0jBBgwFoAUIGM8jmnuaH1MQSPQ wJea0UTlXrcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM4 Mi9JR004am1udWFIMU1RU1BRd0plYTBVVGxYcmMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0lHTThqbW51YUgxTVFTUFF3SmVhMFVUbFhyYy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEzODIvSUdNOGptbnVhSDFN UVNQUXdKZWEwVVRsWHJjLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBABDdy7Qq349yQXs2C2lfJ6SyptshTQAR9DWqBOWZLv7rY4w3BeTBoqGR07Bk VpvsvParzLXZZNOAk2LxpspIVTa5lNKGaAVlC17VFhP12Rjqo3VRBdqD0lmo1VgW tau6UVSSPDzTM3RJ6W6KRI5fQccOWasu83oFcCYP5Fhz82hBXgAxbGfMBYFai17A y7eHc97dpk4+qr9kIft9RZeG1CulMdjv4o2j5YTN44ss1QhB41xn/THPKnTeMHra AV9SK1o11LlDGAddA/JmwXkO1mtQBeHCDQC9fMSNYVS5LtBOnynOzILZIiigEt7c +i0Wrx7fW8wVnp8njOA6by3jaSw= -----END CERTIFICATE-----Generated at Thu Nov 6 00:25:48 2025 by rpki-client