$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.mft File: cWgV4hPhAadE_JLy-1sSReSx0m8.mft (raw, json) Hash identifier: vo5I+uxIk7SvRyCeqZ/iechDjum2AEipGKl3BUWNUG8= Subject key identifier: 6A:90:33:A4:80:17:51:A3:A5:82:D7:9D:A3:E3:DB:9F:BA:68:C2:14 Authority key identifier: 71:68:15:E2:13:E1:01:A7:44:FC:92:F2:FB:5B:12:45:E4:B1:D2:6F Certificate issuer: /CN=716815E213E101A744FC92F2FB5B1245E4B1D26F Certificate serial: 1833 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cWgV4hPhAadE_JLy-1sSReSx0m8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.mft Manifest number: 1833 Signing time: Wed 05 Nov 2025 15:14:51 +0000 Manifest this update: Wed 05 Nov 2025 15:14:51 +0000 Manifest next update: Wed 05 Nov 2025 21:14:51 +0000 Files and hashes: 1: cWgV4hPhAadE_JLy-1sSReSx0m8.crl (hash: qCIFDTJG2kR+fgv3uhiJy3thdywDozIddNx+DerGicg=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cWgV4hPhAadE_JLy-1sSReSx0m8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 18:43:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6195 (0x1833) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=716815E213E101A744FC92F2FB5B1245E4B1D26F Validity Not Before: Nov 5 15:14:51 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=6A9033A4801751A3A582D79DA3E3DB9FBA68C214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a6:c6:ff:5d:0c:7e:5f:74:a7:23:4e:af:3e: 50:55:5d:39:60:5c:ce:68:a9:c7:15:33:25:20:e3: 96:b8:ff:9c:6b:57:45:6d:f5:51:ce:d8:d5:1c:9e: 19:e1:c8:bc:5d:ba:1d:81:e3:7a:8b:13:a7:c1:79: 20:06:89:58:29:bf:a5:74:b2:a0:b7:20:0f:95:b7: 4c:51:2b:b4:7a:a9:7e:6a:46:27:57:84:b3:e2:14: 9c:e2:b4:d7:03:f3:4d:0b:56:fd:c3:0d:3a:ae:c3: 07:34:d9:12:9e:5d:b3:3b:75:c7:1f:e3:b6:c2:62: fd:29:8c:b1:dd:44:8c:e1:86:c0:41:d7:38:87:d3: 82:d7:fc:9b:77:6f:b8:ea:64:79:25:f4:08:e1:ee: 82:07:d0:23:8b:27:63:df:10:60:71:4a:8b:df:48: bb:08:5a:35:b8:02:d8:f0:d0:cd:da:c9:78:2d:92: ea:cc:c8:93:21:1c:83:5f:53:3b:79:7e:41:2a:54: d1:6b:b0:87:1b:5b:73:d3:2c:de:00:da:00:fe:46: 04:be:87:e5:14:2d:04:ba:d9:50:6d:56:1e:d7:47: d5:b7:60:de:f4:c6:03:d7:be:2e:f7:19:cf:1a:82: c3:fe:02:a1:19:01:fe:3e:c1:25:14:33:c9:2b:90: 28:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:90:33:A4:80:17:51:A3:A5:82:D7:9D:A3:E3:DB:9F:BA:68:C2:14 X509v3 Authority Key Identifier: keyid:71:68:15:E2:13:E1:01:A7:44:FC:92:F2:FB:5B:12:45:E4:B1:D2:6F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cWgV4hPhAadE_JLy-1sSReSx0m8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:b3:db:0a:60:d8:01:fb:ca:c4:26:1e:a2:85:30:52:4e:91: b6:48:87:3c:2c:ca:44:ad:74:e9:a1:6c:87:b2:41:99:bf:9c: a0:17:da:ff:fa:69:75:48:86:6c:e4:a6:83:d5:a9:90:84:9a: 63:2a:2c:53:1a:69:0d:6d:be:ca:f0:fe:41:8e:39:6e:e1:81: 00:c0:d2:c0:4f:9e:04:2d:b3:23:f0:5d:d4:7e:aa:83:ef:8d: c7:48:96:a8:61:0f:60:ac:b2:41:4f:3f:ec:40:7b:eb:3f:cd: 67:e4:a5:24:d3:57:be:7b:46:d3:d4:bc:8c:05:99:19:6d:0f: d7:b6:a8:59:43:61:41:d0:fb:ab:75:64:5a:9c:f1:08:88:f3: ed:b9:dc:34:22:72:2f:49:7d:1f:fd:2d:9f:14:ca:93:a3:f4: e0:05:0d:4a:45:39:c9:92:f0:57:98:58:87:09:c1:90:ac:71: 8d:f6:2b:9b:c3:7b:d7:fc:a4:41:1e:57:52:4e:64:ae:c6:b3: e0:c1:57:b0:bf:2a:77:41:20:7b:c6:94:4f:73:25:7c:e4:d0: 6c:f8:66:19:06:c5:19:d7:b0:ad:09:65:e1:fe:2a:bb:b7:e5: 71:60:a6:96:62:40:8b:28:b5:89:70:5d:5a:ec:51:3b:d5:cd: f4:05:16:26 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICGDMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzE2 ODE1RTIxM0UxMDFBNzQ0RkM5MkYyRkI1QjEyNDVFNEIxRDI2RjAeFw0yNTExMDUx NTE0NTFaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDZBOTAzM0E0ODAxNzUx QTNBNTgyRDc5REEzRTNEQjlGQkE2OEMyMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCypsb/XQx+X3SnI06vPlBVXTlgXM5oqccVMyUg45a4/5xrV0Vt 9VHO2NUcnhnhyLxduh2B43qLE6fBeSAGiVgpv6V0sqC3IA+Vt0xRK7R6qX5qRidX hLPiFJzitNcD800LVv3DDTquwwc02RKeXbM7dccf47bCYv0pjLHdRIzhhsBB1ziH 04LX/Jt3b7jqZHkl9Ajh7oIH0COLJ2PfEGBxSovfSLsIWjW4Atjw0M3ayXgtkurM yJMhHINfUzt5fkEqVNFrsIcbW3PTLN4A2gD+RgS+h+UULQS62VBtVh7XR9W3YN70 xgPXvi73Gc8agsP+AqEZAf4+wSUUM8krkCgpAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUapAzpIAXUaOlgtedo+Pbn7powhQwHwYDVR0jBBgwFoAUcWgV4hPhAadE/JLy +1sSReSx0m8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjU5 MC9jV2dWNGhQaEFhZEVfSkx5LTFzU1JlU3gwbTguY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2NXZ1Y0aFBoQWFkRV9KTHktMXNTUmVTeDBtOC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI1OTAvY1dnVjRoUGhBYWRF X0pMeS0xc1NSZVN4MG04Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAHqz2wpg2AH7ysQmHqKFMFJOkbZIhzwsykStdOmhbIeyQZm/nKAX2v/6aXVI hmzkpoPVqZCEmmMqLFMaaQ1tvsrw/kGOOW7hgQDA0sBPngQtsyPwXdR+qoPvjcdI lqhhD2CsskFPP+xAe+s/zWfkpSTTV757RtPUvIwFmRltD9e2qFlDYUHQ+6t1ZFqc 8QiI8+253DQici9JfR/9LZ8UypOj9OAFDUpFOcmS8FeYWIcJwZCscY32K5vDe9f8 pEEeV1JOZK7Gs+DBV7C/KndBIHvGlE9zJXzk0Gz4ZhkGxRnXsK0JZeH+Kru35XFg ppZiQIsotYlwXVrsUTvVzfQFFiY= -----END CERTIFICATE-----Generated at Wed Nov 5 17:16:37 2025 by rpki-client