$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft File: VZPMkzM9chHxN7wfzRxXcSWoWyo.mft (raw, json) Hash identifier: hq2d7a9kn/PFoLQGWu82NptUUxeKbvnGKJ89K246Xmg= Subject key identifier: 4F:6C:2F:9A:ED:87:CF:69:8D:7A:74:22:C8:39:68:FD:E5:1B:DE:81 Authority key identifier: 55:93:CC:93:33:3D:72:11:F1:37:BC:1F:CD:1C:57:71:25:A8:5B:2A Certificate issuer: /CN=5593CC93333D7211F137BC1FCD1C577125A85B2A Certificate serial: 13ED Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/VZPMkzM9chHxN7wfzRxXcSWoWyo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft Manifest number: 13ED Signing time: Wed 05 Nov 2025 20:12:34 +0000 Manifest this update: Wed 05 Nov 2025 20:12:34 +0000 Manifest next update: Thu 06 Nov 2025 02:12:34 +0000 Files and hashes: 1: VZPMkzM9chHxN7wfzRxXcSWoWyo.crl (hash: 7mc9FBsyyybl+zcgSjQxT61igkP9Ztlg8s8FP+/4ZCE=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/VZPMkzM9chHxN7wfzRxXcSWoWyo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 23:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5101 (0x13ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5593CC93333D7211F137BC1FCD1C577125A85B2A Validity Not Before: Nov 5 20:12:34 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=4F6C2F9AED87CF698D7A7422C83968FDE51BDE81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3f:a9:20:26:87:f8:1e:64:24:e6:e4:f4:bb: 8f:3b:3c:24:c4:0a:1c:06:10:9f:1b:dd:f0:99:99: cc:28:d2:3c:94:ad:05:f2:2f:16:47:12:9b:10:c5: 70:3a:7f:f0:f5:d6:c9:df:89:cd:23:fe:1a:67:4d: d1:77:8f:52:2e:86:02:39:b7:9f:73:c1:59:a4:6b: da:ab:f8:9a:5c:aa:fa:51:97:79:ae:01:83:82:95: f7:c9:99:8e:1d:f3:15:4d:9b:c5:64:95:76:93:86: 0a:e1:60:a3:04:6d:38:be:68:c8:e8:23:a8:38:dd: 9a:ba:dd:c3:45:c3:ea:c4:4f:6f:b6:b3:af:20:fe: b5:ac:ac:a9:b4:ed:fe:ad:c3:b2:8c:fc:79:64:70: 78:e6:43:71:2e:b8:31:55:a4:d6:3b:e9:70:fd:64: 3d:ea:e3:5d:b8:4f:8b:bb:b7:6f:bf:90:70:56:53: e4:6a:38:85:db:03:9b:24:6e:ce:9a:d9:61:cc:f5: 5b:53:27:50:75:ed:76:97:38:36:26:d1:3d:03:12: 93:35:9c:f9:ee:df:17:3a:ee:92:cc:10:90:91:48: d8:d4:95:0a:a4:22:2b:06:1e:4a:70:80:d6:33:7a: fc:4a:0e:b1:0b:41:a4:e5:17:85:31:d6:bd:2d:75: 41:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:6C:2F:9A:ED:87:CF:69:8D:7A:74:22:C8:39:68:FD:E5:1B:DE:81 X509v3 Authority Key Identifier: keyid:55:93:CC:93:33:3D:72:11:F1:37:BC:1F:CD:1C:57:71:25:A8:5B:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/VZPMkzM9chHxN7wfzRxXcSWoWyo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:2e:e4:44:2f:52:1f:8d:26:51:60:70:e8:3d:05:6d:b4:f8: 4b:73:d3:a7:5b:9f:77:60:e6:d0:7b:4c:0b:b8:9d:36:34:28: 0e:c6:47:46:5f:97:fd:e2:85:dc:04:3d:86:17:3e:95:65:4a: 7a:ba:5d:57:40:86:fc:13:c3:3a:35:48:3b:bc:86:04:27:90: 0b:a0:b2:84:b3:5b:76:f3:63:f1:5b:10:14:5d:0f:11:6c:54: 44:64:ec:6c:60:96:5a:c9:a0:8b:20:7e:49:5e:7b:fc:6a:3f: e3:e2:a2:eb:74:cf:b4:d5:0b:27:1b:2e:55:c6:0f:fa:18:e0: d2:61:4e:b5:b2:39:63:72:80:fa:66:e2:40:23:0f:f8:4f:a8: 00:79:65:f6:c1:c5:16:88:10:1a:10:97:00:79:b3:c3:6f:62: ee:24:d6:00:90:db:d3:58:3c:0c:7b:e9:a7:77:b2:79:5d:f6: 9f:bd:0b:54:b4:74:f6:aa:47:ce:e6:a5:86:6a:61:a2:03:d9: ec:b0:30:31:0a:c8:eb:e5:6f:bd:04:c0:d7:58:fe:9b:3d:4d: 2f:db:2c:0b:78:4a:19:e4:45:5b:4f:8f:26:40:42:b5:77:39: bf:11:f3:96:d8:fd:b8:93:19:f1:cd:16:f3:fe:b7:d6:fc:bf: 27:08:0f:3b -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICE+0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTU5 M0NDOTMzMzNENzIxMUYxMzdCQzFGQ0QxQzU3NzEyNUE4NUIyQTAeFw0yNTExMDUy MDEyMzRaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDRGNkMyRjlBRUQ4N0NG Njk4RDdBNzQyMkM4Mzk2OEZERTUxQkRFODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqP6kgJof4HmQk5uT0u487PCTEChwGEJ8b3fCZmcwo0jyUrQXy LxZHEpsQxXA6f/D11snfic0j/hpnTdF3j1IuhgI5t59zwVmka9qr+JpcqvpRl3mu AYOClffJmY4d8xVNm8VklXaThgrhYKMEbTi+aMjoI6g43Zq63cNFw+rET2+2s68g /rWsrKm07f6tw7KM/HlkcHjmQ3EuuDFVpNY76XD9ZD3q4124T4u7t2+/kHBWU+Rq OIXbA5skbs6a2WHM9VtTJ1B17XaXODYm0T0DEpM1nPnu3xc67pLMEJCRSNjUlQqk IisGHkpwgNYzevxKDrELQaTlF4Ux1r0tdUHlAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUT2wvmu2Hz2mNenQiyDlo/eUb3oEwHwYDVR0jBBgwFoAUVZPMkzM9chHxN7wf zRxXcSWoWyowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE3 Ny9WWlBNa3pNOWNoSHhON3dmelJ4WGNTV29XeW8uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1ZaUE1rek05Y2hIeE43d2Z6UnhYY1NXb1d5by5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNzcvVlpQTWt6TTljaEh4 Tjd3ZnpSeFhjU1dvV3lvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAHsu5EQvUh+NJlFgcOg9BW20+Etz06dbn3dg5tB7TAu4nTY0KA7GR0Zfl/3i hdwEPYYXPpVlSnq6XVdAhvwTwzo1SDu8hgQnkAugsoSzW3bzY/FbEBRdDxFsVERk 7GxgllrJoIsgfklee/xqP+Piout0z7TVCycbLlXGD/oY4NJhTrWyOWNygPpm4kAj D/hPqAB5ZfbBxRaIEBoQlwB5s8NvYu4k1gCQ29NYPAx76ad3snld9p+9C1S0dPaq R87mpYZqYaID2eywMDEKyOvlb70EwNdY/ps9TS/bLAt4ShnkRVtPjyZAQrV3Ob8R 85bY/biTGfHNFvP+t9b8vycIDzs= -----END CERTIFICATE-----Generated at Wed Nov 5 21:44:30 2025 by rpki-client