$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3269/KiJnreDthkvp9oLDpe2qFRu6hmQ.mft File: KiJnreDthkvp9oLDpe2qFRu6hmQ.mft (raw, json) Hash identifier: KWogzKYM9FM3L7rHCK61Enf/NSFhVD5aIBNN5KsjaBo= Subject key identifier: 9D:B8:B3:1D:70:A0:9D:50:14:14:79:71:2B:74:C8:29:C7:59:61:89 Authority key identifier: 2A:22:67:AD:E0:ED:86:4B:E9:F6:82:C3:A5:ED:AA:15:1B:BA:86:64 Certificate issuer: /CN=2A2267ADE0ED864BE9F682C3A5EDAA151BBA8664 Certificate serial: 080C Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KiJnreDthkvp9oLDpe2qFRu6hmQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3269/KiJnreDthkvp9oLDpe2qFRu6hmQ.mft Manifest number: 080C Signing time: Sat 26 Apr 2025 13:08:57 +0000 Manifest this update: Sat 26 Apr 2025 13:08:57 +0000 Manifest next update: Sat 26 Apr 2025 19:08:57 +0000 Files and hashes: 1: KiJnreDthkvp9oLDpe2qFRu6hmQ.crl (hash: 3hUXU6NwNX24KIqbJCo9zNmov64P/eXwPzEQXP9/T/I=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3269/KiJnreDthkvp9oLDpe2qFRu6hmQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3269/KiJnreDthkvp9oLDpe2qFRu6hmQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KiJnreDthkvp9oLDpe2qFRu6hmQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 16:38:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2060 (0x80c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2267ADE0ED864BE9F682C3A5EDAA151BBA8664 Validity Not Before: Apr 26 13:08:57 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=9DB8B31D70A09D50141479712B74C829C7596189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:fe:f4:b4:fc:14:06:23:af:c2:7f:14:0d:38: 0c:fa:8f:a1:9f:f8:90:2d:50:98:3c:36:e2:7a:9e: 07:98:0c:ec:e3:4b:b0:7c:f6:62:11:04:69:1b:2b: 39:07:4d:56:32:8f:78:5c:53:35:eb:b1:24:d1:cd: 74:3f:1c:33:ec:0e:b5:1c:f2:ea:24:02:65:29:54: 9a:20:01:8e:25:a7:90:a0:1d:dc:6c:9c:b5:71:fd: af:cf:07:dd:0e:5d:13:d1:7b:cd:5d:f0:d5:aa:67: 82:8e:db:33:c0:b2:99:6a:93:53:e4:da:7e:2c:a5: 5b:05:94:38:51:fc:96:7c:2b:6f:c9:3a:9e:95:05: ef:90:9d:13:de:47:31:13:cf:dc:dd:bb:02:a1:f4: 6a:93:a8:67:3b:da:05:ba:6b:e5:b7:09:54:c8:10: 04:80:59:11:39:be:fb:d9:51:cf:d5:b4:bb:1e:3a: f4:8d:ba:02:7b:9d:a9:93:6e:8d:ed:a9:f3:dc:97: ef:ac:17:ad:e0:17:be:22:24:b8:0a:60:e7:8c:f9: e0:ab:58:cf:be:b3:fd:c8:b7:04:8b:df:3b:26:bf: 7e:79:78:e0:fd:f6:e0:fb:79:ee:88:52:dc:aa:23: 1c:53:f2:83:a0:a9:7b:ca:10:00:1a:5b:72:e9:09: 13:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B8:B3:1D:70:A0:9D:50:14:14:79:71:2B:74:C8:29:C7:59:61:89 X509v3 Authority Key Identifier: keyid:2A:22:67:AD:E0:ED:86:4B:E9:F6:82:C3:A5:ED:AA:15:1B:BA:86:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3269/KiJnreDthkvp9oLDpe2qFRu6hmQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KiJnreDthkvp9oLDpe2qFRu6hmQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3269/KiJnreDthkvp9oLDpe2qFRu6hmQ.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:41:01:ba:d1:89:7d:19:10:74:bf:a2:5b:cb:92:ba:a2:bf: 70:f3:19:a7:6d:e9:ab:96:d4:77:7f:64:8d:34:fb:b2:c0:d0: b2:e7:47:57:2f:74:93:58:22:7b:44:8d:68:45:14:33:83:13: 7c:c0:11:07:ed:d8:99:b3:28:f8:5d:f8:ee:68:0d:35:4b:62: 3f:11:9d:f0:0a:3d:e3:cc:3a:92:80:4b:07:87:18:db:32:ee: 4c:f8:4f:79:22:59:1e:b4:c2:71:f6:bb:eb:7f:dc:cd:3c:ac: 85:b2:cf:ba:d8:24:04:e4:d8:51:54:4a:46:7d:87:22:bc:6e: 49:13:3a:be:2d:be:fd:99:c3:68:8f:4f:b5:6a:18:97:7c:b3: 0f:b1:90:a8:83:69:fd:50:6f:a0:d4:cd:36:50:5d:4b:eb:aa: 7e:ad:b9:be:15:ac:8c:24:b6:d2:bf:f2:d9:1b:3f:88:aa:ca: 68:27:dd:94:3c:22:6e:9b:0a:27:f9:3b:54:8f:5f:0d:db:5c: 88:30:25:98:8c:3b:aa:b4:87:88:7a:c5:89:47:2e:00:08:17: 6e:90:a2:db:a7:6b:2b:f2:58:53:c6:35:71:d9:7d:c1:a4:46: a6:b9:f1:41:da:18:96:0f:c2:62:1f:a1:03:ee:7b:ce:0a:5e: f3:94:80:3f -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCAwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkEy MjY3QURFMEVEODY0QkU5RjY4MkMzQTVFREFBMTUxQkJBODY2NDAeFw0yNTA0MjYx MzA4NTdaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDlEQjhCMzFENzBBMDlE NTAxNDE0Nzk3MTJCNzRDODI5Qzc1OTYxODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDr/vS0/BQGI6/CfxQNOAz6j6Gf+JAtUJg8NuJ6ngeYDOzjS7B8 9mIRBGkbKzkHTVYyj3hcUzXrsSTRzXQ/HDPsDrUc8uokAmUpVJogAY4lp5CgHdxs nLVx/a/PB90OXRPRe81d8NWqZ4KO2zPAsplqk1Pk2n4spVsFlDhR/JZ8K2/JOp6V Be+QnRPeRzETz9zduwKh9GqTqGc72gW6a+W3CVTIEASAWRE5vvvZUc/VtLseOvSN ugJ7namTbo3tqfPcl++sF63gF74iJLgKYOeM+eCrWM++s/3ItwSL3zsmv355eOD9 9uD7ee6IUtyqIxxT8oOgqXvKEAAaW3LpCRMVAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUnbizHXCgnVAUFHlxK3TIKcdZYYkwHwYDVR0jBBgwFoAUKiJnreDthkvp9oLD pe2qFRu6hmQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI2 OS9LaUpucmVEdGhrdnA5b0xEcGUycUZSdTZobVEuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0tpSm5yZUR0aGt2cDlvTERwZTJxRlJ1NmhtUS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNjkvS2lKbnJlRHRoa3Zw OW9MRHBlMnFGUnU2aG1RLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBACNBAbrRiX0ZEHS/olvLkrqiv3DzGadt6auW1Hd/ZI00+7LA0LLnR1cvdJNY IntEjWhFFDODE3zAEQft2JmzKPhd+O5oDTVLYj8RnfAKPePMOpKASweHGNsy7kz4 T3kiWR60wnH2u+t/3M08rIWyz7rYJATk2FFUSkZ9hyK8bkkTOr4tvv2Zw2iPT7Vq GJd8sw+xkKiDaf1Qb6DUzTZQXUvrqn6tub4VrIwkttK/8tkbP4iqymgn3ZQ8Im6b Cif5O1SPXw3bXIgwJZiMO6q0h4h6xYlHLgAIF26QotunayvyWFPGNXHZfcGkRqa5 8UHaGJYPwmIfoQPue84KXvOUgD8= -----END CERTIFICATE-----Generated at Sat Apr 26 15:26:48 2025 by rpki-client