$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.mft File: Rc9bJipW-FE0yP6V1k3wifG3Yuc.mft (raw, json) Hash identifier: jQskKv4rTDuGTtfuRkbAfp3utH8wKf3gr6RuiEy46Lo= Subject key identifier: DB:D8:04:EC:B5:B5:B7:C6:D3:5D:78:64:95:7A:B3:0C:B3:75:69:59 Authority key identifier: 45:CF:5B:26:2A:56:F8:51:34:C8:FE:95:D6:4D:F0:89:F1:B7:62:E7 Certificate issuer: /CN=45CF5B262A56F85134C8FE95D64DF089F1B762E7 Certificate serial: 0927 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rc9bJipW-FE0yP6V1k3wifG3Yuc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.mft Manifest number: 0925 Signing time: Wed 05 Nov 2025 15:12:49 +0000 Manifest this update: Wed 05 Nov 2025 15:12:49 +0000 Manifest next update: Wed 05 Nov 2025 21:12:49 +0000 Files and hashes: 1: DIfl7bXQFvsh3gCOalGnbUgUcMk.roa (hash: +BdTskyWDVY72kL9VxG7J9DMW9izo6rXOBqj4uLMOeI=) 2: Rc9bJipW-FE0yP6V1k3wifG3Yuc.crl (hash: ctNrlh424WUtADJulsOsyYXPf+jSsoLhFLQM1JF7Y9M=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rc9bJipW-FE0yP6V1k3wifG3Yuc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 21:12:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2343 (0x927) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45CF5B262A56F85134C8FE95D64DF089F1B762E7 Validity Not Before: Nov 5 15:12:49 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=DBD804ECB5B5B7C6D35D7864957AB30CB3756959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1e:90:4d:ec:7d:11:9a:79:e8:9d:22:fa:8b: ee:d3:e5:be:21:46:76:b6:55:d3:66:c2:01:85:63: 97:ea:fc:c6:b8:d8:cf:30:9e:6a:c4:00:2d:e6:99: a0:21:9f:ab:b6:ca:03:c6:56:32:70:12:32:1a:db: 8a:8e:7c:91:8f:9e:1f:c8:e7:9b:e4:c7:8c:a7:69: 3f:9a:9a:7f:bc:69:81:2f:ad:0c:4f:94:86:70:62: d7:8b:2e:f5:88:46:f1:19:4f:0c:49:40:05:9d:47: 2e:d3:22:b6:f4:2c:b3:4c:8e:5e:d9:18:af:ad:81: 75:33:0a:9c:8a:df:16:8b:99:6c:7d:cb:19:07:80: 45:79:33:28:f5:b6:2f:10:2c:da:d9:8f:80:8e:05: cb:79:40:88:fd:d5:3a:2b:62:68:eb:bc:87:88:e3: fa:bf:a2:76:f1:38:63:2e:c0:3f:e7:b1:82:db:52: cf:68:db:56:0c:92:7a:95:a3:9a:69:f9:90:45:f9: 8c:3f:8b:88:61:7e:40:fa:55:5b:57:b5:71:7c:d6: 4a:05:bd:c1:85:42:b3:69:74:6f:d8:e6:da:14:fb: f8:41:67:3f:1d:1b:4c:b4:bc:66:2e:88:85:63:ba: 36:ae:bd:1f:a9:03:8b:8e:d2:08:cf:35:3d:80:3c: 55:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:D8:04:EC:B5:B5:B7:C6:D3:5D:78:64:95:7A:B3:0C:B3:75:69:59 X509v3 Authority Key Identifier: keyid:45:CF:5B:26:2A:56:F8:51:34:C8:FE:95:D6:4D:F0:89:F1:B7:62:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rc9bJipW-FE0yP6V1k3wifG3Yuc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:da:f4:41:36:d5:0e:a7:a5:dc:5b:0c:55:fe:5c:18:8d:19: 19:49:8e:07:e5:11:19:2a:06:a4:02:8b:fd:1e:a6:cb:58:be: f7:23:bc:ae:0f:9e:5d:d6:49:ce:42:ef:47:06:18:a8:1a:08: c0:63:8c:1c:d5:c0:58:4b:28:a0:2b:75:9d:41:7e:79:bd:a0: a2:e9:2e:0f:46:1f:f6:46:b0:3d:94:5b:6c:d8:4c:f4:3d:0a: 86:2d:48:5a:4d:cd:f4:4d:88:5a:18:4b:4e:7d:e9:1f:2d:66: ca:34:73:84:3f:0f:c2:74:65:78:1f:1e:00:ac:f4:c4:18:4d: 31:92:bb:89:78:fc:eb:59:e0:86:9c:9c:82:ef:99:45:ca:3e: 42:4a:5f:50:11:4d:52:ae:09:1f:0d:45:d2:ff:f3:d1:5f:11: c9:c6:7f:2c:a5:58:93:5d:ba:5c:0c:ad:b4:ad:6e:b5:4b:4c: 28:08:d2:71:bb:b3:3e:a3:fc:5e:21:4c:72:53:53:33:ff:95: bb:50:bf:d3:a4:1f:93:db:f8:b6:ab:6a:2c:46:72:ad:fe:5a: bf:c8:df:4e:1e:2e:60:c3:f7:bb:4b:a9:f6:d8:bf:12:61:10: ed:48:a7:cf:e9:28:51:a0:fe:5b:48:1f:67:5a:a3:d3:2d:df: 1d:83:5a:55 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCScwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDVD RjVCMjYyQTU2Rjg1MTM0QzhGRTk1RDY0REYwODlGMUI3NjJFNzAeFw0yNTExMDUx NTEyNDlaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKERCRDgwNEVDQjVCNUI3 QzZEMzVENzg2NDk1N0FCMzBDQjM3NTY5NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdHpBN7H0RmnnonSL6i+7T5b4hRna2VdNmwgGFY5fq/Ma42M8w nmrEAC3mmaAhn6u2ygPGVjJwEjIa24qOfJGPnh/I55vkx4ynaT+amn+8aYEvrQxP lIZwYteLLvWIRvEZTwxJQAWdRy7TIrb0LLNMjl7ZGK+tgXUzCpyK3xaLmWx9yxkH gEV5Myj1ti8QLNrZj4COBct5QIj91TorYmjrvIeI4/q/onbxOGMuwD/nsYLbUs9o 21YMknqVo5pp+ZBF+Yw/i4hhfkD6VVtXtXF81koFvcGFQrNpdG/Y5toU+/hBZz8d G0y0vGYuiIVjujauvR+pA4uO0gjPNT2APFVhAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU29gE7LW1t8bTXXhklXqzDLN1aVkwHwYDVR0jBBgwFoAURc9bJipW+FE0yP6V 1k3wifG3YucwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjE4 Ny9SYzliSmlwVy1GRTB5UDZWMWszd2lmRzNZdWMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1JjOWJKaXBXLUZFMHlQNlYxazN3aWZHM1l1Yy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIxODcvUmM5YkppcFctRkUw eVA2VjFrM3dpZkczWXVjLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAD3a9EE21Q6npdxbDFX+XBiNGRlJjgflERkqBqQCi/0epstYvvcjvK4Pnl3W Sc5C70cGGKgaCMBjjBzVwFhLKKArdZ1Bfnm9oKLpLg9GH/ZGsD2UW2zYTPQ9CoYt SFpNzfRNiFoYS0596R8tZso0c4Q/D8J0ZXgfHgCs9MQYTTGSu4l4/OtZ4IacnILv mUXKPkJKX1ARTVKuCR8NRdL/89FfEcnGfyylWJNdulwMrbStbrVLTCgI0nG7sz6j /F4hTHJTUzP/lbtQv9OkH5Pb+LaraixGcq3+Wr/I304eLmDD97tLqfbYvxJhEO1I p8/pKFGg/ltIH2dao9Mt3x2DWlU= -----END CERTIFICATE-----Generated at Wed Nov 5 20:09:16 2025 by rpki-client