$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.mft File: Rc9bJipW-FE0yP6V1k3wifG3Yuc.mft (raw, json) Hash identifier: 5jrPfOFqSh2TJ1LyBsiHa88g4mqX0u4bErCVpmUwXhs= Subject key identifier: DB:D8:04:EC:B5:B5:B7:C6:D3:5D:78:64:95:7A:B3:0C:B3:75:69:59 Authority key identifier: 45:CF:5B:26:2A:56:F8:51:34:C8:FE:95:D6:4D:F0:89:F1:B7:62:E7 Certificate issuer: /CN=45CF5B262A56F85134C8FE95D64DF089F1B762E7 Certificate serial: 0682 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rc9bJipW-FE0yP6V1k3wifG3Yuc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.mft Manifest number: 0681 Signing time: Fri 20 Jun 2025 15:44:25 +0000 Manifest this update: Fri 20 Jun 2025 15:44:25 +0000 Manifest next update: Fri 20 Jun 2025 21:44:25 +0000 Files and hashes: 1: Rc9bJipW-FE0yP6V1k3wifG3Yuc.crl (hash: e9ROWPSdzzqPS4AU3YkFvfNGQf+qzyl6MLN1rWrHf/8=) 2: rGX-jlWmT5UXNDCJbyr29sYL8j0.roa (hash: SC8327IqDeIkUpm5PLMYz5uE5ihFgGUKeXxDbb+NB5c=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rc9bJipW-FE0yP6V1k3wifG3Yuc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 19:43:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1666 (0x682) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45CF5B262A56F85134C8FE95D64DF089F1B762E7 Validity Not Before: Jun 20 15:44:25 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=DBD804ECB5B5B7C6D35D7864957AB30CB3756959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1e:90:4d:ec:7d:11:9a:79:e8:9d:22:fa:8b: ee:d3:e5:be:21:46:76:b6:55:d3:66:c2:01:85:63: 97:ea:fc:c6:b8:d8:cf:30:9e:6a:c4:00:2d:e6:99: a0:21:9f:ab:b6:ca:03:c6:56:32:70:12:32:1a:db: 8a:8e:7c:91:8f:9e:1f:c8:e7:9b:e4:c7:8c:a7:69: 3f:9a:9a:7f:bc:69:81:2f:ad:0c:4f:94:86:70:62: d7:8b:2e:f5:88:46:f1:19:4f:0c:49:40:05:9d:47: 2e:d3:22:b6:f4:2c:b3:4c:8e:5e:d9:18:af:ad:81: 75:33:0a:9c:8a:df:16:8b:99:6c:7d:cb:19:07:80: 45:79:33:28:f5:b6:2f:10:2c:da:d9:8f:80:8e:05: cb:79:40:88:fd:d5:3a:2b:62:68:eb:bc:87:88:e3: fa:bf:a2:76:f1:38:63:2e:c0:3f:e7:b1:82:db:52: cf:68:db:56:0c:92:7a:95:a3:9a:69:f9:90:45:f9: 8c:3f:8b:88:61:7e:40:fa:55:5b:57:b5:71:7c:d6: 4a:05:bd:c1:85:42:b3:69:74:6f:d8:e6:da:14:fb: f8:41:67:3f:1d:1b:4c:b4:bc:66:2e:88:85:63:ba: 36:ae:bd:1f:a9:03:8b:8e:d2:08:cf:35:3d:80:3c: 55:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:D8:04:EC:B5:B5:B7:C6:D3:5D:78:64:95:7A:B3:0C:B3:75:69:59 X509v3 Authority Key Identifier: keyid:45:CF:5B:26:2A:56:F8:51:34:C8:FE:95:D6:4D:F0:89:F1:B7:62:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rc9bJipW-FE0yP6V1k3wifG3Yuc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:27:17:f7:4e:dd:a7:0a:0d:40:61:f3:06:79:32:ce:24:d3: 4d:31:8f:3a:83:67:e0:09:cf:bb:1b:51:fe:74:43:43:7b:a9: eb:6b:4d:7a:b2:0b:f8:81:c1:63:cd:0c:33:a9:33:bc:26:2d: 51:4e:2d:0f:06:dd:06:ea:65:52:48:e6:03:07:39:45:f6:60: 7b:33:33:0a:48:df:bf:de:a4:9a:0e:db:c6:18:eb:fc:de:1d: 32:50:e5:3e:aa:00:a5:e2:45:b1:23:5b:69:01:15:4d:4b:28: 9d:5f:dc:86:72:67:b2:d0:17:eb:02:be:9e:cf:5c:db:3b:e9: aa:7b:21:af:ea:f5:a2:db:b0:83:d6:c8:2e:0c:fb:60:55:6a: a7:9b:0e:99:e2:a1:b3:c0:f8:18:b4:22:fc:4b:1c:58:70:46: 88:cf:9a:30:1c:c6:9d:e7:09:4c:63:7c:6e:7d:80:dd:91:de: f0:ca:3a:18:cf:be:80:27:36:e6:d9:06:fc:6c:7e:8c:5c:37: 9f:a0:d8:a7:07:c0:54:c1:85:6f:9c:20:1a:4d:85:7a:f5:f2: e2:09:8f:c6:e1:d1:a1:17:35:d6:fa:01:34:c2:57:6e:01:54: c6:d7:2b:f0:44:08:39:9e:76:d1:b0:ff:e0:ff:fd:22:da:73: fc:b0:2a:9f -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBoIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDVD RjVCMjYyQTU2Rjg1MTM0QzhGRTk1RDY0REYwODlGMUI3NjJFNzAeFw0yNTA2MjAx NTQ0MjVaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKERCRDgwNEVDQjVCNUI3 QzZEMzVENzg2NDk1N0FCMzBDQjM3NTY5NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdHpBN7H0RmnnonSL6i+7T5b4hRna2VdNmwgGFY5fq/Ma42M8w nmrEAC3mmaAhn6u2ygPGVjJwEjIa24qOfJGPnh/I55vkx4ynaT+amn+8aYEvrQxP lIZwYteLLvWIRvEZTwxJQAWdRy7TIrb0LLNMjl7ZGK+tgXUzCpyK3xaLmWx9yxkH gEV5Myj1ti8QLNrZj4COBct5QIj91TorYmjrvIeI4/q/onbxOGMuwD/nsYLbUs9o 21YMknqVo5pp+ZBF+Yw/i4hhfkD6VVtXtXF81koFvcGFQrNpdG/Y5toU+/hBZz8d G0y0vGYuiIVjujauvR+pA4uO0gjPNT2APFVhAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU29gE7LW1t8bTXXhklXqzDLN1aVkwHwYDVR0jBBgwFoAURc9bJipW+FE0yP6V 1k3wifG3YucwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjE4 Ny9SYzliSmlwVy1GRTB5UDZWMWszd2lmRzNZdWMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1JjOWJKaXBXLUZFMHlQNlYxazN3aWZHM1l1Yy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIxODcvUmM5YkppcFctRkUw eVA2VjFrM3dpZkczWXVjLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAFInF/dO3acKDUBh8wZ5Ms4k000xjzqDZ+AJz7sbUf50Q0N7qetrTXqyC/iB wWPNDDOpM7wmLVFOLQ8G3QbqZVJI5gMHOUX2YHszMwpI37/epJoO28YY6/zeHTJQ 5T6qAKXiRbEjW2kBFU1LKJ1f3IZyZ7LQF+sCvp7PXNs76ap7Ia/q9aLbsIPWyC4M +2BVaqebDpniobPA+Bi0IvxLHFhwRojPmjAcxp3nCUxjfG59gN2R3vDKOhjPvoAn NubZBvxsfoxcN5+g2KcHwFTBhW+cIBpNhXr18uIJj8bh0aEXNdb6ATTCV24BVMbX K/BECDmedtGw/+D//SLac/ywKp8= -----END CERTIFICATE-----Generated at Fri Jun 20 18:08:50 2025 by rpki-client