$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft File: VZPMkzM9chHxN7wfzRxXcSWoWyo.mft (raw, json) Hash identifier: QnS2OL2dGHesrrTgIuk0z+umGJDFulU39Zdr0v7ig9k= Subject key identifier: 4F:6C:2F:9A:ED:87:CF:69:8D:7A:74:22:C8:39:68:FD:E5:1B:DE:81 Authority key identifier: 55:93:CC:93:33:3D:72:11:F1:37:BC:1F:CD:1C:57:71:25:A8:5B:2A Certificate issuer: /CN=5593CC93333D7211F137BC1FCD1C577125A85B2A Certificate serial: 1253 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/VZPMkzM9chHxN7wfzRxXcSWoWyo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft Manifest number: 1253 Signing time: Wed 13 Aug 2025 16:02:40 +0000 Manifest this update: Wed 13 Aug 2025 16:02:40 +0000 Manifest next update: Wed 13 Aug 2025 22:02:40 +0000 Files and hashes: 1: VZPMkzM9chHxN7wfzRxXcSWoWyo.crl (hash: gB2aDUxGumL8Pr5dQOk/P5SUEwDBFqEMUh3uDSkTYrw=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/VZPMkzM9chHxN7wfzRxXcSWoWyo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 20:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4691 (0x1253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5593CC93333D7211F137BC1FCD1C577125A85B2A Validity Not Before: Aug 13 16:02:40 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=4F6C2F9AED87CF698D7A7422C83968FDE51BDE81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3f:a9:20:26:87:f8:1e:64:24:e6:e4:f4:bb: 8f:3b:3c:24:c4:0a:1c:06:10:9f:1b:dd:f0:99:99: cc:28:d2:3c:94:ad:05:f2:2f:16:47:12:9b:10:c5: 70:3a:7f:f0:f5:d6:c9:df:89:cd:23:fe:1a:67:4d: d1:77:8f:52:2e:86:02:39:b7:9f:73:c1:59:a4:6b: da:ab:f8:9a:5c:aa:fa:51:97:79:ae:01:83:82:95: f7:c9:99:8e:1d:f3:15:4d:9b:c5:64:95:76:93:86: 0a:e1:60:a3:04:6d:38:be:68:c8:e8:23:a8:38:dd: 9a:ba:dd:c3:45:c3:ea:c4:4f:6f:b6:b3:af:20:fe: b5:ac:ac:a9:b4:ed:fe:ad:c3:b2:8c:fc:79:64:70: 78:e6:43:71:2e:b8:31:55:a4:d6:3b:e9:70:fd:64: 3d:ea:e3:5d:b8:4f:8b:bb:b7:6f:bf:90:70:56:53: e4:6a:38:85:db:03:9b:24:6e:ce:9a:d9:61:cc:f5: 5b:53:27:50:75:ed:76:97:38:36:26:d1:3d:03:12: 93:35:9c:f9:ee:df:17:3a:ee:92:cc:10:90:91:48: d8:d4:95:0a:a4:22:2b:06:1e:4a:70:80:d6:33:7a: fc:4a:0e:b1:0b:41:a4:e5:17:85:31:d6:bd:2d:75: 41:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:6C:2F:9A:ED:87:CF:69:8D:7A:74:22:C8:39:68:FD:E5:1B:DE:81 X509v3 Authority Key Identifier: keyid:55:93:CC:93:33:3D:72:11:F1:37:BC:1F:CD:1C:57:71:25:A8:5B:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/VZPMkzM9chHxN7wfzRxXcSWoWyo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:86:b3:4b:47:a9:af:ab:bd:d7:c5:88:8a:eb:d6:f7:4e:1e: 88:77:ab:ac:83:41:43:86:26:88:a2:73:01:7d:71:38:12:6d: a3:58:4a:54:8e:31:e0:e7:d2:72:7e:0c:7b:ea:ad:19:1c:14: cd:5c:d4:c5:7e:89:d9:84:c4:aa:21:89:d8:ef:12:ec:46:2f: 78:2e:7c:3a:41:b6:e5:49:45:a1:bc:e7:e7:4f:54:73:8f:64: 23:b4:32:00:7e:f6:13:e9:09:20:1e:9c:6a:0d:af:5c:4e:7d: 64:4f:40:04:8d:a0:49:0a:ef:8a:dd:8d:3e:2f:9a:e7:d7:c3: c9:69:65:53:1a:80:d7:38:12:2c:9e:0a:f8:c6:d6:c1:4a:6f: c4:b0:69:ee:75:73:43:35:1f:9d:e4:ac:39:52:06:77:d3:38: a8:2c:a3:65:aa:c4:7d:ab:3b:75:22:30:95:74:17:6a:07:50: 4d:3b:b6:e4:c9:ee:90:7f:3b:38:47:d2:b0:c9:92:13:a4:50: 8a:c3:98:74:19:e4:f4:f1:3f:82:da:ac:aa:ea:29:0c:52:19: 55:95:ac:9b:80:05:bd:2e:24:c4:d8:07:7b:79:ec:23:03:60: 77:a4:78:01:a1:db:91:f1:59:05:ad:e8:7f:92:39:27:08:ec: 7f:38:b7:fd -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICElMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTU5 M0NDOTMzMzNENzIxMUYxMzdCQzFGQ0QxQzU3NzEyNUE4NUIyQTAeFw0yNTA4MTMx NjAyNDBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDRGNkMyRjlBRUQ4N0NG Njk4RDdBNzQyMkM4Mzk2OEZERTUxQkRFODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqP6kgJof4HmQk5uT0u487PCTEChwGEJ8b3fCZmcwo0jyUrQXy LxZHEpsQxXA6f/D11snfic0j/hpnTdF3j1IuhgI5t59zwVmka9qr+JpcqvpRl3mu AYOClffJmY4d8xVNm8VklXaThgrhYKMEbTi+aMjoI6g43Zq63cNFw+rET2+2s68g /rWsrKm07f6tw7KM/HlkcHjmQ3EuuDFVpNY76XD9ZD3q4124T4u7t2+/kHBWU+Rq OIXbA5skbs6a2WHM9VtTJ1B17XaXODYm0T0DEpM1nPnu3xc67pLMEJCRSNjUlQqk IisGHkpwgNYzevxKDrELQaTlF4Ux1r0tdUHlAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUT2wvmu2Hz2mNenQiyDlo/eUb3oEwHwYDVR0jBBgwFoAUVZPMkzM9chHxN7wf zRxXcSWoWyowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE3 Ny9WWlBNa3pNOWNoSHhON3dmelJ4WGNTV29XeW8uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1ZaUE1rek05Y2hIeE43d2Z6UnhYY1NXb1d5by5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNzcvVlpQTWt6TTljaEh4 Tjd3ZnpSeFhjU1dvV3lvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAE+Gs0tHqa+rvdfFiIrr1vdOHoh3q6yDQUOGJoiicwF9cTgSbaNYSlSOMeDn 0nJ+DHvqrRkcFM1c1MV+idmExKohidjvEuxGL3gufDpBtuVJRaG85+dPVHOPZCO0 MgB+9hPpCSAenGoNr1xOfWRPQASNoEkK74rdjT4vmufXw8lpZVMagNc4EiyeCvjG 1sFKb8Swae51c0M1H53krDlSBnfTOKgso2WqxH2rO3UiMJV0F2oHUE07tuTJ7pB/ OzhH0rDJkhOkUIrDmHQZ5PTxP4LarKrqKQxSGVWVrJuABb0uJMTYB3t57CMDYHek eAGh25HxWQWt6H+SOScI7H84t/0= -----END CERTIFICATE-----Generated at Wed Aug 13 19:17:42 2025 by rpki-client