$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft File: VZPMkzM9chHxN7wfzRxXcSWoWyo.mft (raw, json) Hash identifier: MQHDfKBc1pe67xtTloOu4vsZ0mVrj7hnvyoieHTRfSU= Subject key identifier: 4F:6C:2F:9A:ED:87:CF:69:8D:7A:74:22:C8:39:68:FD:E5:1B:DE:81 Authority key identifier: 55:93:CC:93:33:3D:72:11:F1:37:BC:1F:CD:1C:57:71:25:A8:5B:2A Certificate issuer: /CN=5593CC93333D7211F137BC1FCD1C577125A85B2A Certificate serial: 1150 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/VZPMkzM9chHxN7wfzRxXcSWoWyo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft Manifest number: 1150 Signing time: Sun 22 Jun 2025 06:12:17 +0000 Manifest this update: Sun 22 Jun 2025 06:12:17 +0000 Manifest next update: Sun 22 Jun 2025 12:12:17 +0000 Files and hashes: 1: VZPMkzM9chHxN7wfzRxXcSWoWyo.crl (hash: 7zjezmOUJZU40ECeKyoVCUSKfTibw0yGW0a5Rr98rnc=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/VZPMkzM9chHxN7wfzRxXcSWoWyo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 12:12:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4432 (0x1150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5593CC93333D7211F137BC1FCD1C577125A85B2A Validity Not Before: Jun 22 06:12:17 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=4F6C2F9AED87CF698D7A7422C83968FDE51BDE81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3f:a9:20:26:87:f8:1e:64:24:e6:e4:f4:bb: 8f:3b:3c:24:c4:0a:1c:06:10:9f:1b:dd:f0:99:99: cc:28:d2:3c:94:ad:05:f2:2f:16:47:12:9b:10:c5: 70:3a:7f:f0:f5:d6:c9:df:89:cd:23:fe:1a:67:4d: d1:77:8f:52:2e:86:02:39:b7:9f:73:c1:59:a4:6b: da:ab:f8:9a:5c:aa:fa:51:97:79:ae:01:83:82:95: f7:c9:99:8e:1d:f3:15:4d:9b:c5:64:95:76:93:86: 0a:e1:60:a3:04:6d:38:be:68:c8:e8:23:a8:38:dd: 9a:ba:dd:c3:45:c3:ea:c4:4f:6f:b6:b3:af:20:fe: b5:ac:ac:a9:b4:ed:fe:ad:c3:b2:8c:fc:79:64:70: 78:e6:43:71:2e:b8:31:55:a4:d6:3b:e9:70:fd:64: 3d:ea:e3:5d:b8:4f:8b:bb:b7:6f:bf:90:70:56:53: e4:6a:38:85:db:03:9b:24:6e:ce:9a:d9:61:cc:f5: 5b:53:27:50:75:ed:76:97:38:36:26:d1:3d:03:12: 93:35:9c:f9:ee:df:17:3a:ee:92:cc:10:90:91:48: d8:d4:95:0a:a4:22:2b:06:1e:4a:70:80:d6:33:7a: fc:4a:0e:b1:0b:41:a4:e5:17:85:31:d6:bd:2d:75: 41:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:6C:2F:9A:ED:87:CF:69:8D:7A:74:22:C8:39:68:FD:E5:1B:DE:81 X509v3 Authority Key Identifier: keyid:55:93:CC:93:33:3D:72:11:F1:37:BC:1F:CD:1C:57:71:25:A8:5B:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/VZPMkzM9chHxN7wfzRxXcSWoWyo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:09:45:01:d7:76:ea:98:ef:ce:b7:6c:02:f7:f4:dc:12:4d: 9c:0f:19:a4:1f:3f:0e:6f:7d:94:2b:32:54:33:fc:79:42:68: ea:47:1f:44:ca:ee:08:ea:8f:99:b9:5f:f7:3e:40:b9:6c:6b: 40:30:62:09:e8:9c:57:cd:44:64:44:aa:ca:eb:b4:98:ad:87: ac:d4:da:04:7b:8e:c7:ba:7c:46:f4:b6:22:28:8b:d8:50:5b: 00:f5:fd:8c:bd:0f:45:84:5f:eb:ec:eb:f6:41:d7:0d:68:f4: f0:06:d5:9d:49:ef:c1:ab:c9:7c:ec:81:ee:77:6c:d1:b8:b6: fa:3e:50:82:54:fa:96:b1:f0:8a:61:7f:cb:cf:a6:ed:89:33: 01:7f:c0:85:29:a5:a6:6e:ea:bf:da:36:18:e6:db:df:64:13: 78:89:06:b2:71:d9:5f:a4:40:70:f2:16:5e:6d:12:b4:b8:a0: 2c:14:b5:72:3d:11:e7:ee:2c:39:67:78:9e:b5:8b:5f:2b:f9: d4:e8:8c:28:4f:23:ab:18:50:91:75:ff:cf:9c:79:a4:aa:c0: b4:d8:e9:63:10:c0:6b:dd:1f:e7:8f:10:68:c6:ec:99:95:76: 31:82:3c:ed:d0:69:d6:59:38:d9:cd:0f:af:5d:5b:cf:81:67: cc:42:9f:f6 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICEVAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTU5 M0NDOTMzMzNENzIxMUYxMzdCQzFGQ0QxQzU3NzEyNUE4NUIyQTAeFw0yNTA2MjIw NjEyMTdaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDRGNkMyRjlBRUQ4N0NG Njk4RDdBNzQyMkM4Mzk2OEZERTUxQkRFODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqP6kgJof4HmQk5uT0u487PCTEChwGEJ8b3fCZmcwo0jyUrQXy LxZHEpsQxXA6f/D11snfic0j/hpnTdF3j1IuhgI5t59zwVmka9qr+JpcqvpRl3mu AYOClffJmY4d8xVNm8VklXaThgrhYKMEbTi+aMjoI6g43Zq63cNFw+rET2+2s68g /rWsrKm07f6tw7KM/HlkcHjmQ3EuuDFVpNY76XD9ZD3q4124T4u7t2+/kHBWU+Rq OIXbA5skbs6a2WHM9VtTJ1B17XaXODYm0T0DEpM1nPnu3xc67pLMEJCRSNjUlQqk IisGHkpwgNYzevxKDrELQaTlF4Ux1r0tdUHlAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUT2wvmu2Hz2mNenQiyDlo/eUb3oEwHwYDVR0jBBgwFoAUVZPMkzM9chHxN7wf zRxXcSWoWyowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE3 Ny9WWlBNa3pNOWNoSHhON3dmelJ4WGNTV29XeW8uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1ZaUE1rek05Y2hIeE43d2Z6UnhYY1NXb1d5by5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNzcvVlpQTWt6TTljaEh4 Tjd3ZnpSeFhjU1dvV3lvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBALAJRQHXduqY7863bAL39NwSTZwPGaQfPw5vfZQrMlQz/HlCaOpHH0TK7gjq j5m5X/c+QLlsa0AwYgnonFfNRGREqsrrtJith6zU2gR7jse6fEb0tiIoi9hQWwD1 /Yy9D0WEX+vs6/ZB1w1o9PAG1Z1J78GryXzsge53bNG4tvo+UIJU+pax8Iphf8vP pu2JMwF/wIUppaZu6r/aNhjm299kE3iJBrJx2V+kQHDyFl5tErS4oCwUtXI9Eefu LDlneJ61i18r+dTojChPI6sYUJF1/8+ceaSqwLTY6WMQwGvdH+ePEGjG7JmVdjGC PO3QadZZONnND69dW8+BZ8xCn/Y= -----END CERTIFICATE-----Generated at Sun Jun 22 10:51:51 2025 by rpki-client