$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.mft File: htsNiHRv_AgU5YmhOSQPL3QtDFY.mft (raw, json) Hash identifier: Yp47ML38xafmngmgmDmr7jcHgU0ZzbyNt/dwZLfb5f8= Subject key identifier: 06:60:7C:8B:56:6F:30:CF:A2:44:0A:44:80:67:B9:D8:80:4B:AF:58 Authority key identifier: 86:DB:0D:88:74:6F:FC:08:14:E5:89:A1:39:24:0F:2F:74:2D:0C:56 Certificate issuer: /CN=86DB0D88746FFC0814E589A139240F2F742D0C56 Certificate serial: 1497 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/htsNiHRv_AgU5YmhOSQPL3QtDFY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.mft Manifest number: 148B Signing time: Sat 26 Apr 2025 08:39:57 +0000 Manifest this update: Sat 26 Apr 2025 08:39:57 +0000 Manifest next update: Sat 26 Apr 2025 14:39:57 +0000 Files and hashes: 1: 5dOXEPArMIwz1R8c6IVW4FRS000.roa (hash: V8OEePPh0EzbmmeRwGhFD4Ubnu8IpFSDrSbicBN0AWE=) 2: IJstGxYeXmD9TLf7m9peIJPOZ0M.roa (hash: EwzaajPcvPV1aJvbfovVMb0BoCuRVrdDj6XCyXd6Lx8=) 3: htsNiHRv_AgU5YmhOSQPL3QtDFY.crl (hash: 4ek5x6uXMc2L3C8oJ+BkXq1xWN/Z5lJ6t21xOd2JhDQ=) 4: lVatHXgJYHeEv1kpYqyFWkiQNvc.roa (hash: Ig2uqLibdpo5bXeKVMPoQj35Ki9XftJlKWfFY3dWSaM=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/htsNiHRv_AgU5YmhOSQPL3QtDFY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 14:39:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5271 (0x1497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86DB0D88746FFC0814E589A139240F2F742D0C56 Validity Not Before: Apr 26 08:39:57 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=06607C8B566F30CFA2440A448067B9D8804BAF58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3c:ee:3b:31:ea:ea:cb:92:3d:c3:54:aa:27: da:d0:7d:54:8f:63:4f:19:44:7a:f7:bf:03:bf:60: 74:ac:5c:4f:6a:7b:fa:48:f7:30:46:57:97:17:f3: 3e:45:2a:b6:45:02:43:02:19:83:90:7f:dd:ef:84: dd:5c:71:ad:9a:a2:c4:f6:2a:51:b2:2b:a1:12:9c: 1a:da:49:05:12:ff:35:75:5b:ff:d5:a5:06:8a:46: 40:b4:ce:ac:4d:bc:a5:41:f9:23:71:78:af:cb:df: d5:59:c9:18:d7:93:c7:e0:e5:50:d9:67:0a:54:3c: 4c:cf:ff:97:df:0e:86:59:f6:96:39:64:f3:79:19: 97:ec:a3:3d:91:8f:05:5e:03:dc:2a:56:0d:b4:24: f3:3c:c0:2c:39:1c:95:32:91:20:f9:fa:57:46:80: 7c:ed:a3:0b:e2:24:0f:f8:88:62:a8:0f:ee:b3:3e: 44:a2:3b:01:2c:f1:af:e0:06:a4:0b:59:b3:9b:ef: 82:aa:0e:02:83:86:36:06:e5:df:44:9a:68:b0:6e: f5:57:a9:81:11:c4:05:c5:d7:10:a5:88:07:a2:97: 2b:32:4d:06:b1:2c:33:9d:2b:a9:57:4c:49:7f:df: bb:44:6c:6c:80:7f:77:db:1a:b0:02:56:c6:5f:90: 59:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:60:7C:8B:56:6F:30:CF:A2:44:0A:44:80:67:B9:D8:80:4B:AF:58 X509v3 Authority Key Identifier: keyid:86:DB:0D:88:74:6F:FC:08:14:E5:89:A1:39:24:0F:2F:74:2D:0C:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/htsNiHRv_AgU5YmhOSQPL3QtDFY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:77:fb:c0:d3:d5:b3:b2:9f:61:88:0c:88:85:c1:19:2e:54: 96:e1:67:25:c0:81:0a:ba:75:5c:35:93:74:86:72:1d:78:d8: 69:38:47:38:cb:33:52:43:9e:6f:2e:87:ec:ee:8d:e6:7c:03: bd:39:1d:1e:f1:23:09:93:f0:12:98:2f:26:f9:f9:1f:ef:03: f8:80:36:3e:12:87:83:f1:f5:e3:2a:fa:9d:66:4d:21:e4:4d: b3:cf:39:a4:2f:8e:cc:ec:5e:01:33:0c:a0:b4:e7:32:9f:ca: 46:02:36:13:64:d3:51:b4:9c:11:9f:ac:03:8b:a8:68:67:21: 89:a8:00:19:0b:17:7b:6e:d7:f0:64:38:34:87:d9:a5:4e:aa: c4:ff:53:44:a9:a6:0f:86:07:69:9c:6f:e2:c7:97:af:25:49: e9:37:da:36:15:81:0a:65:44:71:3d:6c:fd:a3:15:14:b1:f8: 94:9a:0d:5e:82:3b:8f:a5:29:8c:49:1e:06:4e:d5:cb:73:61: 59:4d:e1:b5:91:f5:68:13:db:9f:7a:93:56:6c:68:dd:4a:58: 01:a3:ca:1c:59:30:1d:1e:ba:ca:d4:42:67:5e:18:12:26:84: 67:f1:68:79:51:6a:e2:12:58:8b:b6:f9:57:b2:53:86:63:f8: 20:98:80:7e -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICFJcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODZE QjBEODg3NDZGRkMwODE0RTU4OUExMzkyNDBGMkY3NDJEMEM1NjAeFw0yNTA0MjYw ODM5NTdaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDA2NjA3QzhCNTY2RjMw Q0ZBMjQ0MEE0NDgwNjdCOUQ4ODA0QkFGNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrPO47Merqy5I9w1SqJ9rQfVSPY08ZRHr3vwO/YHSsXE9qe/pI 9zBGV5cX8z5FKrZFAkMCGYOQf93vhN1cca2aosT2KlGyK6ESnBraSQUS/zV1W//V pQaKRkC0zqxNvKVB+SNxeK/L39VZyRjXk8fg5VDZZwpUPEzP/5ffDoZZ9pY5ZPN5 GZfsoz2RjwVeA9wqVg20JPM8wCw5HJUykSD5+ldGgHztowviJA/4iGKoD+6zPkSi OwEs8a/gBqQLWbOb74KqDgKDhjYG5d9EmmiwbvVXqYERxAXF1xCliAeilysyTQax LDOdK6lXTEl/37tEbGyAf3fbGrACVsZfkFlrAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUBmB8i1ZvMM+iRApEgGe52IBLr1gwHwYDVR0jBBgwFoAUhtsNiHRv/AgU5Ymh OSQPL3QtDFYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc3 Ni9odHNOaUhSdl9BZ1U1WW1oT1NRUEwzUXRERlkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2h0c05pSFJ2X0FnVTVZbWhPU1FQTDNRdERGWS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3NzYvaHRzTmlIUnZfQWdV NVltaE9TUVBMM1F0REZZLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAHp3+8DT1bOyn2GIDIiFwRkuVJbhZyXAgQq6dVw1k3SGch142Gk4RzjLM1JD nm8uh+zujeZ8A705HR7xIwmT8BKYLyb5+R/vA/iANj4Sh4Px9eMq+p1mTSHkTbPP OaQvjszsXgEzDKC05zKfykYCNhNk01G0nBGfrAOLqGhnIYmoABkLF3tu1/BkODSH 2aVOqsT/U0Sppg+GB2mcb+LHl68lSek32jYVgQplRHE9bP2jFRSx+JSaDV6CO4+l KYxJHgZO1ctzYVlN4bWR9WgT2596k1ZsaN1KWAGjyhxZMB0eusrUQmdeGBImhGfx aHlRauISWIu2+VeyU4Zj+CCYgH4= -----END CERTIFICATE-----Generated at Sat Apr 26 12:32:51 2025 by rpki-client