$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3282/TKnrtNTELADG1a1ccPtrRXZYMXc.mft File: TKnrtNTELADG1a1ccPtrRXZYMXc.mft (raw, json) Hash identifier: oD3R19x4bPTeQB8/nlYjTiH5ZFPpzKUNjuPa2lvhJts= Subject key identifier: AD:D2:3B:B7:E0:3D:1C:25:2C:A7:A0:ED:D2:87:53:CB:C1:7D:86:62 Authority key identifier: 4C:A9:EB:B4:D4:C4:2C:00:C6:D5:AD:5C:70:FB:6B:45:76:58:31:77 Certificate issuer: /CN=4CA9EBB4D4C42C00C6D5AD5C70FB6B4576583177 Certificate serial: 01A5 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TKnrtNTELADG1a1ccPtrRXZYMXc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TKnrtNTELADG1a1ccPtrRXZYMXc.mft Manifest number: 01A5 Signing time: Wed 13 Aug 2025 16:03:49 +0000 Manifest this update: Wed 13 Aug 2025 16:03:49 +0000 Manifest next update: Wed 13 Aug 2025 22:03:49 +0000 Files and hashes: 1: TKnrtNTELADG1a1ccPtrRXZYMXc.crl (hash: zh7yMmo+tGJ3FISQF//WocWrTr7p8kVeiaaoY329QmI=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TKnrtNTELADG1a1ccPtrRXZYMXc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TKnrtNTELADG1a1ccPtrRXZYMXc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TKnrtNTELADG1a1ccPtrRXZYMXc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 22:03:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4CA9EBB4D4C42C00C6D5AD5C70FB6B4576583177 Validity Not Before: Aug 13 16:03:49 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=ADD23BB7E03D1C252CA7A0EDD28753CBC17D8662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3c:7c:2a:59:0b:f4:f7:2c:ae:6f:07:1c:0a: ec:1a:4f:06:d5:0b:eb:2f:f0:a3:4d:9c:9e:a9:d4: ba:04:ba:01:35:0d:73:ff:81:12:ad:6d:0e:a8:0e: 73:2e:15:25:a1:54:eb:18:25:de:b1:25:6c:de:be: b0:b3:7c:7d:b4:46:d3:04:f9:6a:b0:6e:b7:3d:87: a6:6c:e7:49:d4:59:5a:77:f5:4b:96:8a:3e:31:da: 1a:15:dc:be:14:a6:74:74:a6:a0:83:0d:f4:a3:1b: db:2f:eb:55:c5:0f:84:b6:bf:de:96:a8:4d:c4:46: ca:35:3b:18:89:b4:9f:74:3b:23:20:fa:9c:61:0f: a4:58:5b:61:57:4d:88:ba:59:5e:b2:18:ad:96:eb: 10:15:b7:2b:a5:6a:3d:21:e2:70:19:ea:58:29:db: 00:fd:a1:4e:cc:27:5a:05:a9:91:38:ec:d7:f7:41: a2:f9:df:c0:d7:b4:dc:50:1a:b5:fb:cd:9c:a3:e9: c0:a3:89:17:dc:ff:1e:cd:f3:c6:a7:9d:0f:f5:c9: 66:fc:a9:99:b5:5a:88:26:7f:2e:b0:43:a1:0e:84: 80:a4:68:c2:b5:42:07:ca:14:b8:ee:49:b3:48:22: 36:59:b9:ae:40:25:6a:1f:44:34:91:af:30:68:64: ae:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:D2:3B:B7:E0:3D:1C:25:2C:A7:A0:ED:D2:87:53:CB:C1:7D:86:62 X509v3 Authority Key Identifier: keyid:4C:A9:EB:B4:D4:C4:2C:00:C6:D5:AD:5C:70:FB:6B:45:76:58:31:77 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TKnrtNTELADG1a1ccPtrRXZYMXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TKnrtNTELADG1a1ccPtrRXZYMXc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TKnrtNTELADG1a1ccPtrRXZYMXc.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:98:08:34:76:93:c9:bb:43:50:d1:3b:e8:35:eb:a7:66:36: 81:c5:f5:1c:85:95:d5:d0:98:1d:7c:a8:7f:e9:72:bf:de:99: c4:ee:89:0b:b2:26:68:f3:d2:79:df:55:86:6e:72:55:92:f0: ac:75:71:3f:14:39:87:1c:74:4a:a7:cc:e5:17:b8:08:f1:b2: 71:59:77:76:eb:eb:aa:01:25:14:18:92:db:c4:1d:48:fe:cc: 97:e3:ca:c8:31:c1:9f:22:84:9f:0c:ee:29:5e:ff:ae:84:f7: 5d:f9:5e:42:ce:bd:9e:a1:65:f2:cc:f2:d0:d2:0b:2c:51:b3: d2:e8:33:36:14:b7:9c:7d:ef:98:c1:63:62:78:56:05:83:74: 10:07:97:5b:a6:48:e6:83:5c:2c:69:e6:06:43:4f:0d:02:f2: b0:16:8a:3b:22:bf:26:e9:b5:01:a4:51:28:68:ad:95:9b:d3: b7:57:0e:e5:ee:43:57:a8:85:0f:cf:58:ad:29:d6:3d:05:ef: 03:27:97:8e:5a:a3:43:03:18:eb:1c:f0:35:87:f3:1f:10:61: 2c:0e:5d:6e:46:ce:bb:f0:a8:04:a3:b5:c1:4a:73:b5:60:9a: f3:be:4f:a9:aa:6a:f4:b0:64:96:4d:0b:ff:84:e0:65:37:13: e9:e0:e4:a8 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNENB OUVCQjRENEM0MkMwMEM2RDVBRDVDNzBGQjZCNDU3NjU4MzE3NzAeFw0yNTA4MTMx NjAzNDlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEFERDIzQkI3RTAzRDFD MjUyQ0E3QTBFREQyODc1M0NCQzE3RDg2NjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJPHwqWQv09yyubwccCuwaTwbVC+sv8KNNnJ6p1LoEugE1DXP/ gRKtbQ6oDnMuFSWhVOsYJd6xJWzevrCzfH20RtME+Wqwbrc9h6Zs50nUWVp39UuW ij4x2hoV3L4UpnR0pqCDDfSjG9sv61XFD4S2v96WqE3ERso1OxiJtJ90OyMg+pxh D6RYW2FXTYi6WV6yGK2W6xAVtyulaj0h4nAZ6lgp2wD9oU7MJ1oFqZE47Nf3QaL5 38DXtNxQGrX7zZyj6cCjiRfc/x7N88annQ/1yWb8qZm1Wogmfy6wQ6EOhICkaMK1 QgfKFLjuSbNIIjZZua5AJWofRDSRrzBoZK7TAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUrdI7t+A9HCUsp6Dt0odTy8F9hmIwHwYDVR0jBBgwFoAUTKnrtNTELADG1a1c cPtrRXZYMXcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI4 Mi9US25ydE5URUxBREcxYTFjY1B0clJYWllNWGMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1RLbnJ0TlRFTEFERzFhMWNjUHRyUlhaWU1YYy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyODIvVEtucnROVEVMQURH MWExY2NQdHJSWFpZTVhjLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBANGYCDR2k8m7Q1DRO+g166dmNoHF9RyFldXQmB18qH/pcr/emcTuiQuyJmjz 0nnfVYZuclWS8Kx1cT8UOYccdEqnzOUXuAjxsnFZd3br66oBJRQYktvEHUj+zJfj ysgxwZ8ihJ8M7ile/66E9135XkLOvZ6hZfLM8tDSCyxRs9LoMzYUt5x975jBY2J4 VgWDdBAHl1umSOaDXCxp5gZDTw0C8rAWijsivybptQGkUShorZWb07dXDuXuQ1eo hQ/PWK0p1j0F7wMnl45ao0MDGOsc8DWH8x8QYSwOXW5GzrvwqASjtcFKc7VgmvO+ T6mqavSwZJZNC/+E4GU3E+ng5Kg= -----END CERTIFICATE-----Generated at Wed Aug 13 20:18:48 2025 by rpki-client