$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft File: TPCRRt5gTA5ELVbGj8hsxQQArSE.mft (raw, json) Hash identifier: U/UwI4WTqysKDs39tvp18BsLIeLx47SA1lhgoMk3SYE= Subject key identifier: 3D:E4:46:07:C7:25:81:96:BF:B2:E4:51:4E:F5:22:AC:03:3E:12:0A Authority key identifier: 4C:F0:91:46:DE:60:4C:0E:44:2D:56:C6:8F:C8:6C:C5:04:00:AD:21 Certificate issuer: /CN=4CF09146DE604C0E442D56C68FC86CC50400AD21 Certificate serial: 08DC Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TPCRRt5gTA5ELVbGj8hsxQQArSE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft Manifest number: 08D2 Signing time: Mon 11 Aug 2025 09:03:52 +0000 Manifest this update: Mon 11 Aug 2025 09:03:52 +0000 Manifest next update: Mon 11 Aug 2025 15:03:52 +0000 Files and hashes: 1: CFAswhBnRmzys5EG_RnDZoJ67xU.roa (hash: 9J3EVHTS0qReXMU+XLU0kajttFwzT6Li9MKj9+Ovv00=) 2: TPCRRt5gTA5ELVbGj8hsxQQArSE.crl (hash: tMy2S9rTUj5HXGcFovYefc2nmYV4YTgBbyFJdhpLAC0=) 3: bGeGgRXJn_fKcQJGoNpT45uuMbM.roa (hash: 4rs03AqtGSIGgkcXeqLIzwXtuAsdWOh+07JYHmmqQtk=) 4: eFFBI7HyMfmSB3sdZ1kyhUhegUw.roa (hash: RbWIfTvN4OmqTp0iOV9zT07xIH4JEHgni/OSWa9BjAc=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TPCRRt5gTA5ELVbGj8hsxQQArSE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2268 (0x8dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4CF09146DE604C0E442D56C68FC86CC50400AD21 Validity Not Before: Aug 11 09:03:52 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=3DE44607C7258196BFB2E4514EF522AC033E120A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ad:57:8b:9f:48:fe:72:52:d5:33:80:7f:8a: c7:e8:8e:f7:d8:2a:b2:4f:bd:6d:ca:0f:94:85:2d: 55:99:15:1d:fc:b6:eb:26:3c:1c:fa:15:e5:3c:d2: c9:bf:b1:b2:dc:61:69:84:79:cc:d0:8b:43:f7:23: 20:f7:b8:92:c2:dc:a6:24:c4:70:f6:64:4d:a0:05: ef:64:1c:04:e5:60:85:72:53:ed:11:83:30:7b:c7: db:b9:83:a9:17:42:7a:c0:3b:5d:89:30:1c:1f:3d: 9a:c5:42:5c:8f:ec:1a:32:ca:a5:25:db:7d:43:8e: d3:6c:4e:66:4b:55:ac:c5:a9:09:bd:d9:0e:2a:1c: 9f:44:80:a8:b1:3c:30:48:46:da:79:b8:bb:12:c2: f4:b3:ff:5e:86:a7:32:db:11:b3:cc:d4:36:86:81: 85:73:50:fb:d2:4d:c8:f6:7f:08:52:89:3b:cb:87: 47:ab:f3:ac:7c:4d:73:bb:e0:16:b5:ae:92:36:5a: d6:8d:7e:7b:1c:b9:16:22:b9:50:89:c9:de:9d:bf: 37:0a:05:2b:2f:60:ec:fc:bc:d0:56:5d:7f:d5:d7: 84:60:66:31:df:0c:7c:41:05:b4:f3:9d:42:26:7d: e6:20:17:d2:d9:ac:43:6c:95:9c:a5:df:c4:5c:92: 86:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:E4:46:07:C7:25:81:96:BF:B2:E4:51:4E:F5:22:AC:03:3E:12:0A X509v3 Authority Key Identifier: keyid:4C:F0:91:46:DE:60:4C:0E:44:2D:56:C6:8F:C8:6C:C5:04:00:AD:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TPCRRt5gTA5ELVbGj8hsxQQArSE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:c0:9a:19:47:ff:4e:50:4f:2c:6a:e4:26:aa:cf:28:2f:31: f1:60:b8:1e:ae:ed:bd:84:c5:fc:4e:51:34:f7:da:6b:b4:d7: ae:74:18:48:7d:a4:fc:91:4e:c6:13:64:cf:3a:30:69:c3:8a: c7:80:de:83:ff:88:e8:77:af:b0:6a:c9:88:a2:70:6e:b6:bc: 95:59:d7:3e:b1:c7:1f:4f:42:5c:26:18:b8:f5:28:b2:c4:f8: f7:80:5f:f0:e9:4a:12:f3:25:30:b9:14:fa:80:77:b3:56:39: fc:9b:06:23:51:1c:28:0d:4e:77:98:47:bd:de:5c:09:76:64: b9:1d:72:3c:9a:18:53:9e:54:80:e3:22:ff:fb:5c:82:16:46: b2:85:cc:5f:0c:80:d9:02:1f:29:f1:a8:b1:9d:18:4d:80:5b: 16:e1:bf:50:71:14:96:58:41:6f:b1:77:6e:69:79:b8:64:de: e6:30:51:dd:7f:56:94:b3:26:a4:09:88:ce:db:b2:01:a9:77: 8a:da:80:d5:cf:92:60:f5:38:14:9c:e7:8e:ab:4c:61:b2:19: ff:c1:15:f1:30:8a:59:1b:18:37:00:92:20:15:4c:a5:fb:8e: e6:44:12:c0:7b:4e:de:f6:7d:d8:5a:24:c7:8b:44:3e:aa:15: c6:d8:32:22 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCNwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNENG MDkxNDZERTYwNEMwRTQ0MkQ1NkM2OEZDODZDQzUwNDAwQUQyMTAeFw0yNTA4MTEw OTAzNTJaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDNERTQ0NjA3QzcyNTgx OTZCRkIyRTQ1MTRFRjUyMkFDMDMzRTEyMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKrVeLn0j+clLVM4B/isfojvfYKrJPvW3KD5SFLVWZFR38tusm PBz6FeU80sm/sbLcYWmEeczQi0P3IyD3uJLC3KYkxHD2ZE2gBe9kHATlYIVyU+0R gzB7x9u5g6kXQnrAO12JMBwfPZrFQlyP7BoyyqUl231DjtNsTmZLVazFqQm92Q4q HJ9EgKixPDBIRtp5uLsSwvSz/16GpzLbEbPM1DaGgYVzUPvSTcj2fwhSiTvLh0er 86x8TXO74Ba1rpI2WtaNfnscuRYiuVCJyd6dvzcKBSsvYOz8vNBWXX/V14RgZjHf DHxBBbTznUImfeYgF9LZrENslZyl38RckoZFAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUPeRGB8clgZa/suRRTvUirAM+EgowHwYDVR0jBBgwFoAUTPCRRt5gTA5ELVbG j8hsxQQArSEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI4 Mi9UUENSUnQ1Z1RBNUVMVmJHajhoc3hRUUFyU0UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1RQQ1JSdDVnVEE1RUxWYkdqOGhzeFFRQXJTRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyODIvVFBDUlJ0NWdUQTVF TFZiR2o4aHN4UVFBclNFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBACPAmhlH/05QTyxq5CaqzygvMfFguB6u7b2ExfxOUTT32mu01650GEh9pPyR TsYTZM86MGnDiseA3oP/iOh3r7BqyYiicG62vJVZ1z6xxx9PQlwmGLj1KLLE+PeA X/DpShLzJTC5FPqAd7NWOfybBiNRHCgNTneYR73eXAl2ZLkdcjyaGFOeVIDjIv/7 XIIWRrKFzF8MgNkCHynxqLGdGE2AWxbhv1BxFJZYQW+xd25pebhk3uYwUd1/VpSz JqQJiM7bsgGpd4ragNXPkmD1OBSc546rTGGyGf/BFfEwilkbGDcAkiAVTKX7juZE EsB7Tt72fdhaJMeLRD6qFcbYMiI= -----END CERTIFICATE-----Generated at Mon Aug 11 10:43:40 2025 by rpki-client