$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.mft File: htsNiHRv_AgU5YmhOSQPL3QtDFY.mft (raw, json) Hash identifier: H5h9Hj/ytLq9CYes6yuH7n+kY6FLlSp6yFIEvN1lHtE= Subject key identifier: 06:60:7C:8B:56:6F:30:CF:A2:44:0A:44:80:67:B9:D8:80:4B:AF:58 Authority key identifier: 86:DB:0D:88:74:6F:FC:08:14:E5:89:A1:39:24:0F:2F:74:2D:0C:56 Certificate issuer: /CN=86DB0D88746FFC0814E589A139240F2F742D0C56 Certificate serial: 16AF Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/htsNiHRv_AgU5YmhOSQPL3QtDFY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.mft Manifest number: 16A3 Signing time: Wed 13 Aug 2025 01:05:10 +0000 Manifest this update: Wed 13 Aug 2025 01:05:10 +0000 Manifest next update: Wed 13 Aug 2025 07:05:10 +0000 Files and hashes: 1: 5dOXEPArMIwz1R8c6IVW4FRS000.roa (hash: V8OEePPh0EzbmmeRwGhFD4Ubnu8IpFSDrSbicBN0AWE=) 2: IJstGxYeXmD9TLf7m9peIJPOZ0M.roa (hash: EwzaajPcvPV1aJvbfovVMb0BoCuRVrdDj6XCyXd6Lx8=) 3: htsNiHRv_AgU5YmhOSQPL3QtDFY.crl (hash: 1FZKDF3x6uMMpcjXU+/Gy9IP4Ra/fLcImIJVSZJk0V0=) 4: lVatHXgJYHeEv1kpYqyFWkiQNvc.roa (hash: Ig2uqLibdpo5bXeKVMPoQj35Ki9XftJlKWfFY3dWSaM=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/htsNiHRv_AgU5YmhOSQPL3QtDFY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 07:05:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5807 (0x16af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86DB0D88746FFC0814E589A139240F2F742D0C56 Validity Not Before: Aug 13 01:05:10 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=06607C8B566F30CFA2440A448067B9D8804BAF58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3c:ee:3b:31:ea:ea:cb:92:3d:c3:54:aa:27: da:d0:7d:54:8f:63:4f:19:44:7a:f7:bf:03:bf:60: 74:ac:5c:4f:6a:7b:fa:48:f7:30:46:57:97:17:f3: 3e:45:2a:b6:45:02:43:02:19:83:90:7f:dd:ef:84: dd:5c:71:ad:9a:a2:c4:f6:2a:51:b2:2b:a1:12:9c: 1a:da:49:05:12:ff:35:75:5b:ff:d5:a5:06:8a:46: 40:b4:ce:ac:4d:bc:a5:41:f9:23:71:78:af:cb:df: d5:59:c9:18:d7:93:c7:e0:e5:50:d9:67:0a:54:3c: 4c:cf:ff:97:df:0e:86:59:f6:96:39:64:f3:79:19: 97:ec:a3:3d:91:8f:05:5e:03:dc:2a:56:0d:b4:24: f3:3c:c0:2c:39:1c:95:32:91:20:f9:fa:57:46:80: 7c:ed:a3:0b:e2:24:0f:f8:88:62:a8:0f:ee:b3:3e: 44:a2:3b:01:2c:f1:af:e0:06:a4:0b:59:b3:9b:ef: 82:aa:0e:02:83:86:36:06:e5:df:44:9a:68:b0:6e: f5:57:a9:81:11:c4:05:c5:d7:10:a5:88:07:a2:97: 2b:32:4d:06:b1:2c:33:9d:2b:a9:57:4c:49:7f:df: bb:44:6c:6c:80:7f:77:db:1a:b0:02:56:c6:5f:90: 59:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:60:7C:8B:56:6F:30:CF:A2:44:0A:44:80:67:B9:D8:80:4B:AF:58 X509v3 Authority Key Identifier: keyid:86:DB:0D:88:74:6F:FC:08:14:E5:89:A1:39:24:0F:2F:74:2D:0C:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/htsNiHRv_AgU5YmhOSQPL3QtDFY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:88:ad:ef:8d:d2:df:1b:c6:cb:2b:1e:d9:9c:c5:c0:b1:02: 81:0c:67:20:26:33:66:93:6e:47:9f:71:65:4d:f4:47:a3:2c: fd:72:ad:fe:34:30:a0:3d:89:a1:65:b9:13:2d:74:8d:c5:2d: 86:c5:56:94:0f:2c:b8:8d:2d:65:b6:89:e4:4d:90:2b:df:4e: 89:7f:5e:d7:8b:fb:08:4c:fd:c3:24:e7:df:a9:30:8a:03:7b: f9:44:f5:98:dd:39:9e:dc:0a:e1:0a:3f:d4:25:a4:62:4f:9e: e4:b8:86:cd:86:58:6c:1a:7e:c8:fd:96:b5:fd:1c:7d:7d:55: 87:e4:12:42:09:3e:46:ab:57:6a:71:28:f7:00:4e:b5:fb:93: f0:c2:1c:ec:89:0b:02:8e:b8:2b:0d:9b:0e:3d:57:b3:0f:37: d0:54:55:7e:9f:ef:16:fe:f0:0e:9d:0e:44:07:4d:f7:9b:20: 66:06:66:44:f7:28:d0:37:48:4f:24:d7:a6:e2:77:4b:8e:be: 74:1b:95:70:42:74:b4:d3:72:09:8b:8d:57:50:9e:12:95:05: f0:6e:0c:b8:89:36:b2:69:ff:b5:18:c1:b7:89:0e:85:4e:b5: 80:76:dc:3c:8f:b5:49:88:6a:f0:4b:a9:a4:c1:66:83:08:82: bf:6c:d0:33 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICFq8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODZE QjBEODg3NDZGRkMwODE0RTU4OUExMzkyNDBGMkY3NDJEMEM1NjAeFw0yNTA4MTMw MTA1MTBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDA2NjA3QzhCNTY2RjMw Q0ZBMjQ0MEE0NDgwNjdCOUQ4ODA0QkFGNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrPO47Merqy5I9w1SqJ9rQfVSPY08ZRHr3vwO/YHSsXE9qe/pI 9zBGV5cX8z5FKrZFAkMCGYOQf93vhN1cca2aosT2KlGyK6ESnBraSQUS/zV1W//V pQaKRkC0zqxNvKVB+SNxeK/L39VZyRjXk8fg5VDZZwpUPEzP/5ffDoZZ9pY5ZPN5 GZfsoz2RjwVeA9wqVg20JPM8wCw5HJUykSD5+ldGgHztowviJA/4iGKoD+6zPkSi OwEs8a/gBqQLWbOb74KqDgKDhjYG5d9EmmiwbvVXqYERxAXF1xCliAeilysyTQax LDOdK6lXTEl/37tEbGyAf3fbGrACVsZfkFlrAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUBmB8i1ZvMM+iRApEgGe52IBLr1gwHwYDVR0jBBgwFoAUhtsNiHRv/AgU5Ymh OSQPL3QtDFYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc3 Ni9odHNOaUhSdl9BZ1U1WW1oT1NRUEwzUXRERlkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2h0c05pSFJ2X0FnVTVZbWhPU1FQTDNRdERGWS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3NzYvaHRzTmlIUnZfQWdV NVltaE9TUVBMM1F0REZZLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAE6Ire+N0t8bxssrHtmcxcCxAoEMZyAmM2aTbkefcWVN9EejLP1yrf40MKA9 iaFluRMtdI3FLYbFVpQPLLiNLWW2ieRNkCvfTol/XteL+whM/cMk59+pMIoDe/lE 9ZjdOZ7cCuEKP9QlpGJPnuS4hs2GWGwafsj9lrX9HH19VYfkEkIJPkarV2pxKPcA TrX7k/DCHOyJCwKOuCsNmw49V7MPN9BUVX6f7xb+8A6dDkQHTfebIGYGZkT3KNA3 SE8k16bid0uOvnQblXBCdLTTcgmLjVdQnhKVBfBuDLiJNrJp/7UYwbeJDoVOtYB2 3DyPtUmIavBLqaTBZoMIgr9s0DM= -----END CERTIFICATE-----Generated at Wed Aug 13 05:53:39 2025 by rpki-client