$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft File: VZPMkzM9chHxN7wfzRxXcSWoWyo.mft (raw, json) Hash identifier: UoR0yk18bTUVbgglYZufLwHfJedPmwRMs4pId+5sTh0= Subject key identifier: 4F:6C:2F:9A:ED:87:CF:69:8D:7A:74:22:C8:39:68:FD:E5:1B:DE:81 Authority key identifier: 55:93:CC:93:33:3D:72:11:F1:37:BC:1F:CD:1C:57:71:25:A8:5B:2A Certificate issuer: /CN=5593CC93333D7211F137BC1FCD1C577125A85B2A Certificate serial: 1037 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/VZPMkzM9chHxN7wfzRxXcSWoWyo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft Manifest number: 1037 Signing time: Sat 26 Apr 2025 11:07:13 +0000 Manifest this update: Sat 26 Apr 2025 11:07:13 +0000 Manifest next update: Sat 26 Apr 2025 17:07:13 +0000 Files and hashes: 1: VZPMkzM9chHxN7wfzRxXcSWoWyo.crl (hash: 392hNCY9bw8YzixEwzWHrShF16QgkaeCd3Mx8s43FSs=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/VZPMkzM9chHxN7wfzRxXcSWoWyo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 16:38:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4151 (0x1037) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5593CC93333D7211F137BC1FCD1C577125A85B2A Validity Not Before: Apr 26 11:07:13 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=4F6C2F9AED87CF698D7A7422C83968FDE51BDE81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3f:a9:20:26:87:f8:1e:64:24:e6:e4:f4:bb: 8f:3b:3c:24:c4:0a:1c:06:10:9f:1b:dd:f0:99:99: cc:28:d2:3c:94:ad:05:f2:2f:16:47:12:9b:10:c5: 70:3a:7f:f0:f5:d6:c9:df:89:cd:23:fe:1a:67:4d: d1:77:8f:52:2e:86:02:39:b7:9f:73:c1:59:a4:6b: da:ab:f8:9a:5c:aa:fa:51:97:79:ae:01:83:82:95: f7:c9:99:8e:1d:f3:15:4d:9b:c5:64:95:76:93:86: 0a:e1:60:a3:04:6d:38:be:68:c8:e8:23:a8:38:dd: 9a:ba:dd:c3:45:c3:ea:c4:4f:6f:b6:b3:af:20:fe: b5:ac:ac:a9:b4:ed:fe:ad:c3:b2:8c:fc:79:64:70: 78:e6:43:71:2e:b8:31:55:a4:d6:3b:e9:70:fd:64: 3d:ea:e3:5d:b8:4f:8b:bb:b7:6f:bf:90:70:56:53: e4:6a:38:85:db:03:9b:24:6e:ce:9a:d9:61:cc:f5: 5b:53:27:50:75:ed:76:97:38:36:26:d1:3d:03:12: 93:35:9c:f9:ee:df:17:3a:ee:92:cc:10:90:91:48: d8:d4:95:0a:a4:22:2b:06:1e:4a:70:80:d6:33:7a: fc:4a:0e:b1:0b:41:a4:e5:17:85:31:d6:bd:2d:75: 41:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:6C:2F:9A:ED:87:CF:69:8D:7A:74:22:C8:39:68:FD:E5:1B:DE:81 X509v3 Authority Key Identifier: keyid:55:93:CC:93:33:3D:72:11:F1:37:BC:1F:CD:1C:57:71:25:A8:5B:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/VZPMkzM9chHxN7wfzRxXcSWoWyo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:73:cf:03:2b:b5:fb:95:92:e3:b1:e8:5b:c2:c4:cf:70:22: 21:8b:9c:5d:2f:46:3e:d6:d5:80:12:a2:20:05:63:36:ba:06: f2:45:84:0a:78:71:0b:5f:80:e5:21:2c:1c:e1:d9:bc:11:d1: f6:cc:be:62:4a:1f:9a:c4:03:12:41:45:50:86:8a:03:bf:25: 38:fb:79:d6:21:49:2d:c4:ff:9e:74:d8:1c:fb:02:f4:ca:89: 76:8f:c3:a6:86:df:57:e2:c1:8e:33:dd:7b:0d:84:79:2e:c6: fe:48:02:c3:7e:d1:a5:aa:4f:af:45:00:5a:91:85:23:01:ba: d8:c0:81:79:e2:5c:d4:03:45:3d:81:8b:05:46:d0:79:f4:23: 6f:66:dd:31:ad:71:26:ff:14:24:3f:be:e8:ab:94:74:a8:b0: 34:29:e6:a9:bd:42:e4:d0:0d:fb:8b:28:a7:f8:a6:5d:e9:9e: f7:fb:1e:48:d7:e5:c3:d7:1a:41:d3:2c:e6:82:d1:b6:3d:1c: b1:8b:93:c5:cd:d2:c1:78:a0:67:1e:2d:1c:8c:a7:95:9b:40: 07:29:98:02:5f:b3:51:da:d7:d8:ae:a3:8b:0b:8b:d1:e0:59: b7:8e:43:04:f8:9c:47:d7:16:d7:31:7d:b7:83:e2:2e:f1:90: e6:86:c0:d6 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICEDcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTU5 M0NDOTMzMzNENzIxMUYxMzdCQzFGQ0QxQzU3NzEyNUE4NUIyQTAeFw0yNTA0MjYx MTA3MTNaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDRGNkMyRjlBRUQ4N0NG Njk4RDdBNzQyMkM4Mzk2OEZERTUxQkRFODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqP6kgJof4HmQk5uT0u487PCTEChwGEJ8b3fCZmcwo0jyUrQXy LxZHEpsQxXA6f/D11snfic0j/hpnTdF3j1IuhgI5t59zwVmka9qr+JpcqvpRl3mu AYOClffJmY4d8xVNm8VklXaThgrhYKMEbTi+aMjoI6g43Zq63cNFw+rET2+2s68g /rWsrKm07f6tw7KM/HlkcHjmQ3EuuDFVpNY76XD9ZD3q4124T4u7t2+/kHBWU+Rq OIXbA5skbs6a2WHM9VtTJ1B17XaXODYm0T0DEpM1nPnu3xc67pLMEJCRSNjUlQqk IisGHkpwgNYzevxKDrELQaTlF4Ux1r0tdUHlAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUT2wvmu2Hz2mNenQiyDlo/eUb3oEwHwYDVR0jBBgwFoAUVZPMkzM9chHxN7wf zRxXcSWoWyowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE3 Ny9WWlBNa3pNOWNoSHhON3dmelJ4WGNTV29XeW8uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1ZaUE1rek05Y2hIeE43d2Z6UnhYY1NXb1d5by5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNzcvVlpQTWt6TTljaEh4 Tjd3ZnpSeFhjU1dvV3lvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAGdzzwMrtfuVkuOx6FvCxM9wIiGLnF0vRj7W1YASoiAFYza6BvJFhAp4cQtf gOUhLBzh2bwR0fbMvmJKH5rEAxJBRVCGigO/JTj7edYhSS3E/5502Bz7AvTKiXaP w6aG31fiwY4z3XsNhHkuxv5IAsN+0aWqT69FAFqRhSMButjAgXniXNQDRT2BiwVG 0Hn0I29m3TGtcSb/FCQ/vuirlHSosDQp5qm9QuTQDfuLKKf4pl3pnvf7HkjX5cPX GkHTLOaC0bY9HLGLk8XN0sF4oGceLRyMp5WbQAcpmAJfs1Ha19iuo4sLi9HgWbeO QwT4nEfXFtcxfbeD4i7xkOaGwNY= -----END CERTIFICATE-----Generated at Sat Apr 26 15:27:19 2025 by rpki-client