$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.mft File: cWgV4hPhAadE_JLy-1sSReSx0m8.mft (raw, json) Hash identifier: YOFzZfWOF0mZoHByPYCIJ6MbVCsUJkKbA/o93aTFBTQ= Subject key identifier: 6A:90:33:A4:80:17:51:A3:A5:82:D7:9D:A3:E3:DB:9F:BA:68:C2:14 Authority key identifier: 71:68:15:E2:13:E1:01:A7:44:FC:92:F2:FB:5B:12:45:E4:B1:D2:6F Certificate issuer: /CN=716815E213E101A744FC92F2FB5B1245E4B1D26F Certificate serial: 169A Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cWgV4hPhAadE_JLy-1sSReSx0m8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.mft Manifest number: 169A Signing time: Wed 13 Aug 2025 16:05:21 +0000 Manifest this update: Wed 13 Aug 2025 16:05:21 +0000 Manifest next update: Wed 13 Aug 2025 22:05:21 +0000 Files and hashes: 1: cWgV4hPhAadE_JLy-1sSReSx0m8.crl (hash: Pi3tnafat5ssDjY0ycsxLmsqdxaFhSVyml7KHUVVUrs=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cWgV4hPhAadE_JLy-1sSReSx0m8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 22:05:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5786 (0x169a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=716815E213E101A744FC92F2FB5B1245E4B1D26F Validity Not Before: Aug 13 16:05:21 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=6A9033A4801751A3A582D79DA3E3DB9FBA68C214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a6:c6:ff:5d:0c:7e:5f:74:a7:23:4e:af:3e: 50:55:5d:39:60:5c:ce:68:a9:c7:15:33:25:20:e3: 96:b8:ff:9c:6b:57:45:6d:f5:51:ce:d8:d5:1c:9e: 19:e1:c8:bc:5d:ba:1d:81:e3:7a:8b:13:a7:c1:79: 20:06:89:58:29:bf:a5:74:b2:a0:b7:20:0f:95:b7: 4c:51:2b:b4:7a:a9:7e:6a:46:27:57:84:b3:e2:14: 9c:e2:b4:d7:03:f3:4d:0b:56:fd:c3:0d:3a:ae:c3: 07:34:d9:12:9e:5d:b3:3b:75:c7:1f:e3:b6:c2:62: fd:29:8c:b1:dd:44:8c:e1:86:c0:41:d7:38:87:d3: 82:d7:fc:9b:77:6f:b8:ea:64:79:25:f4:08:e1:ee: 82:07:d0:23:8b:27:63:df:10:60:71:4a:8b:df:48: bb:08:5a:35:b8:02:d8:f0:d0:cd:da:c9:78:2d:92: ea:cc:c8:93:21:1c:83:5f:53:3b:79:7e:41:2a:54: d1:6b:b0:87:1b:5b:73:d3:2c:de:00:da:00:fe:46: 04:be:87:e5:14:2d:04:ba:d9:50:6d:56:1e:d7:47: d5:b7:60:de:f4:c6:03:d7:be:2e:f7:19:cf:1a:82: c3:fe:02:a1:19:01:fe:3e:c1:25:14:33:c9:2b:90: 28:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:90:33:A4:80:17:51:A3:A5:82:D7:9D:A3:E3:DB:9F:BA:68:C2:14 X509v3 Authority Key Identifier: keyid:71:68:15:E2:13:E1:01:A7:44:FC:92:F2:FB:5B:12:45:E4:B1:D2:6F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cWgV4hPhAadE_JLy-1sSReSx0m8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:38:14:0b:36:a4:26:8c:b4:ec:43:36:5f:05:be:0d:41:84: 68:e9:e9:6b:9f:60:85:4d:9d:2a:41:ca:d9:dd:32:4a:c8:c2: 9f:16:ca:0b:84:4a:7d:24:e6:42:ab:38:7b:ab:1f:bb:58:36: 47:e8:7c:9f:14:29:01:f9:22:9e:52:3b:c0:84:c0:15:91:06: 69:26:9f:25:61:ab:7d:06:6a:61:c9:35:72:57:84:8d:7b:e0: dd:9e:37:eb:13:6a:80:eb:11:21:1c:c4:82:f0:da:e1:83:e8: b0:aa:dd:ca:cb:e9:4b:67:56:27:2d:46:5c:b4:c1:f2:61:e0: 2b:95:e3:6f:c9:24:07:10:14:7c:6f:5c:11:94:f5:95:e2:a0: 4e:3f:22:01:08:1b:dc:3a:3e:a3:a1:78:cf:d1:dc:0a:a4:47: 5a:f5:6b:f4:b7:dd:10:c6:df:70:26:ef:bf:74:ab:73:67:b0: e4:3b:9b:d1:27:90:48:45:e1:99:33:71:2c:33:4f:d0:0c:29: a8:ad:f2:48:7b:37:3d:15:62:9f:b2:e8:aa:47:82:06:7d:4f: 20:49:38:91:35:d3:a2:db:7d:5c:dd:f9:7b:7f:fe:47:92:72: b3:27:a7:a2:47:34:47:06:64:26:27:97:22:47:42:73:c2:3c: 69:15:25:2d -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICFpowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzE2 ODE1RTIxM0UxMDFBNzQ0RkM5MkYyRkI1QjEyNDVFNEIxRDI2RjAeFw0yNTA4MTMx NjA1MjFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDZBOTAzM0E0ODAxNzUx QTNBNTgyRDc5REEzRTNEQjlGQkE2OEMyMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCypsb/XQx+X3SnI06vPlBVXTlgXM5oqccVMyUg45a4/5xrV0Vt 9VHO2NUcnhnhyLxduh2B43qLE6fBeSAGiVgpv6V0sqC3IA+Vt0xRK7R6qX5qRidX hLPiFJzitNcD800LVv3DDTquwwc02RKeXbM7dccf47bCYv0pjLHdRIzhhsBB1ziH 04LX/Jt3b7jqZHkl9Ajh7oIH0COLJ2PfEGBxSovfSLsIWjW4Atjw0M3ayXgtkurM yJMhHINfUzt5fkEqVNFrsIcbW3PTLN4A2gD+RgS+h+UULQS62VBtVh7XR9W3YN70 xgPXvi73Gc8agsP+AqEZAf4+wSUUM8krkCgpAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUapAzpIAXUaOlgtedo+Pbn7powhQwHwYDVR0jBBgwFoAUcWgV4hPhAadE/JLy +1sSReSx0m8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjU5 MC9jV2dWNGhQaEFhZEVfSkx5LTFzU1JlU3gwbTguY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2NXZ1Y0aFBoQWFkRV9KTHktMXNTUmVTeDBtOC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI1OTAvY1dnVjRoUGhBYWRF X0pMeS0xc1NSZVN4MG04Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAK44FAs2pCaMtOxDNl8Fvg1BhGjp6WufYIVNnSpBytndMkrIwp8WyguESn0k 5kKrOHurH7tYNkfofJ8UKQH5Ip5SO8CEwBWRBmkmnyVhq30GamHJNXJXhI174N2e N+sTaoDrESEcxILw2uGD6LCq3crL6UtnVictRly0wfJh4CuV42/JJAcQFHxvXBGU 9ZXioE4/IgEIG9w6PqOheM/R3AqkR1r1a/S33RDG33Am7790q3NnsOQ7m9EnkEhF 4ZkzcSwzT9AMKait8kh7Nz0VYp+y6KpHggZ9TyBJOJE106LbfVzd+Xt//keScrMn p6JHNEcGZCYnlyJHQnPCPGkVJS0= -----END CERTIFICATE-----Generated at Wed Aug 13 20:22:52 2025 by rpki-client