$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3283/43TDfhgAlB4aNVhdEMhLffz80nA.mft File: 43TDfhgAlB4aNVhdEMhLffz80nA.mft (raw, json) Hash identifier: PU70dm75vGUOpKTiBZULXs5IfmKGlLiZVW8sY/IWyDE= Subject key identifier: 11:52:0E:60:37:D0:A6:11:A8:27:11:98:00:48:10:55:01:88:24:E6 Authority key identifier: E3:74:C3:7E:18:00:94:1E:1A:35:58:5D:10:C8:4B:7D:FC:FC:D2:70 Certificate issuer: /CN=E374C37E1800941E1A35585D10C84B7DFCFCD270 Certificate serial: 07B7 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/43TDfhgAlB4aNVhdEMhLffz80nA.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3283/43TDfhgAlB4aNVhdEMhLffz80nA.mft Manifest number: 07B7 Signing time: Thu 19 Jun 2025 20:21:36 +0000 Manifest this update: Thu 19 Jun 2025 20:21:36 +0000 Manifest next update: Fri 20 Jun 2025 02:21:36 +0000 Files and hashes: 1: 43TDfhgAlB4aNVhdEMhLffz80nA.crl (hash: kDXAKi24kXYT1M4YNWqVYE+U7vTW32bHrr0KWh6Fj0Y=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3283/43TDfhgAlB4aNVhdEMhLffz80nA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3283/43TDfhgAlB4aNVhdEMhLffz80nA.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/43TDfhgAlB4aNVhdEMhLffz80nA.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1975 (0x7b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E374C37E1800941E1A35585D10C84B7DFCFCD270 Validity Not Before: Jun 19 20:21:36 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=11520E6037D0A611A827119800481055018824E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b0:3c:14:d4:b4:c9:b8:5b:fc:8f:0f:f1:7e: b7:3a:11:64:67:35:74:a7:b6:fa:2b:74:ad:96:63: 76:be:a2:ec:3a:10:f5:d4:d3:45:3d:6a:96:76:5d: 61:c6:3e:91:97:c9:5f:83:fa:ab:c0:ce:04:b6:f4: 4a:53:2a:72:12:28:13:c0:58:49:7e:82:7c:80:20: 22:6b:04:4e:ac:f6:31:cc:1b:e9:eb:0c:8a:65:b0: 60:1e:dd:f5:0f:a0:61:e0:9e:98:c8:1f:11:9b:2c: 62:18:5e:e4:4e:47:cc:53:a9:21:5e:b5:22:5d:a2: 84:29:fe:76:ae:f9:e2:de:a1:0f:5d:c5:09:0b:7f: 54:18:3b:c5:34:77:58:20:70:2f:61:43:0c:cd:e2: bd:fb:c1:dc:9b:15:d4:06:15:af:bc:43:03:80:60: 87:e8:4b:aa:9c:c2:b9:e6:fb:26:0b:57:5e:c5:82: 03:bf:88:6f:dc:a9:77:f0:46:98:d3:ec:ed:d6:f2: 3c:38:4e:02:52:28:7e:23:71:79:f9:09:60:e9:70: 8f:c8:a4:96:81:9d:22:c3:5d:37:a1:b5:6c:42:53: 71:c8:0b:14:ba:1e:34:cf:60:8d:33:5e:38:77:ea: e3:06:a5:a8:1f:36:19:61:89:e3:b1:de:3b:ec:54: e2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:52:0E:60:37:D0:A6:11:A8:27:11:98:00:48:10:55:01:88:24:E6 X509v3 Authority Key Identifier: keyid:E3:74:C3:7E:18:00:94:1E:1A:35:58:5D:10:C8:4B:7D:FC:FC:D2:70 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3283/43TDfhgAlB4aNVhdEMhLffz80nA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/43TDfhgAlB4aNVhdEMhLffz80nA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3283/43TDfhgAlB4aNVhdEMhLffz80nA.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:09:47:c8:30:ef:b0:67:6e:5f:32:1a:fb:aa:6e:37:09:03: e6:4f:c8:9a:03:ee:fa:e6:29:54:f0:d8:e0:e5:90:e0:ad:d1: a8:ef:e2:74:0c:b1:74:c3:e9:2a:8d:ab:e5:d9:6e:86:69:da: d0:13:be:76:73:68:73:6b:bc:9a:f7:a4:ae:8a:8c:b5:ad:8e: 17:d3:dd:ae:fa:62:b0:08:c6:32:5a:6e:a2:db:8b:c9:e8:7c: db:dd:b7:e4:7a:82:a3:1d:03:ff:6b:c1:b6:65:3b:14:44:fd: 01:16:76:32:98:5b:e5:39:e4:4f:9e:63:d1:85:7c:f9:d4:05: 65:12:c7:ef:5b:b8:a1:ec:64:c3:38:c6:9f:31:d8:d0:3d:38: 44:c3:79:fb:59:27:c6:22:39:8f:51:0e:ab:c2:ce:71:f3:84: 25:e1:00:86:9d:70:0b:be:3a:9a:15:fb:11:63:21:dd:66:7c: d1:4c:0f:da:4e:d4:d2:6d:c5:61:93:4e:80:ed:41:5c:84:f7: aa:2a:ae:0e:a3:44:1b:1c:20:b9:c7:19:1a:33:c6:2b:7c:b0: f8:08:44:5e:68:8a:4f:78:ab:23:18:f4:6f:ad:87:e3:9b:57: 80:8d:cf:e3:27:7c:d0:69:9e:1e:77:8f:c0:c4:18:9f:0a:02: 61:b2:f9:d8 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICB7cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTM3 NEMzN0UxODAwOTQxRTFBMzU1ODVEMTBDODRCN0RGQ0ZDRDI3MDAeFw0yNTA2MTky MDIxMzZaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDExNTIwRTYwMzdEMEE2 MTFBODI3MTE5ODAwNDgxMDU1MDE4ODI0RTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCesDwU1LTJuFv8jw/xfrc6EWRnNXSntvordK2WY3a+ouw6EPXU 00U9apZ2XWHGPpGXyV+D+qvAzgS29EpTKnISKBPAWEl+gnyAICJrBE6s9jHMG+nr DIplsGAe3fUPoGHgnpjIHxGbLGIYXuROR8xTqSFetSJdooQp/nau+eLeoQ9dxQkL f1QYO8U0d1ggcC9hQwzN4r37wdybFdQGFa+8QwOAYIfoS6qcwrnm+yYLV17FggO/ iG/cqXfwRpjT7O3W8jw4TgJSKH4jcXn5CWDpcI/IpJaBnSLDXTehtWxCU3HICxS6 HjTPYI0zXjh36uMGpagfNhlhieOx3jvsVOLzAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUEVIOYDfQphGoJxGYAEgQVQGIJOYwHwYDVR0jBBgwFoAU43TDfhgAlB4aNVhd EMhLffz80nAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI4 My80M1REZmhnQWxCNGFOVmhkRU1oTGZmejgwbkEuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzQzVERmaGdBbEI0YU5WaGRFTWhMZmZ6ODBuQS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyODMvNDNURGZoZ0FsQjRh TlZoZEVNaExmZno4MG5BLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAC8JR8gw77Bnbl8yGvuqbjcJA+ZPyJoD7vrmKVTw2ODlkOCt0ajv4nQMsXTD 6SqNq+XZboZp2tATvnZzaHNrvJr3pK6KjLWtjhfT3a76YrAIxjJabqLbi8nofNvd t+R6gqMdA/9rwbZlOxRE/QEWdjKYW+U55E+eY9GFfPnUBWUSx+9buKHsZMM4xp8x 2NA9OETDeftZJ8YiOY9RDqvCznHzhCXhAIadcAu+OpoV+xFjId1mfNFMD9pO1NJt xWGTToDtQVyE96oqrg6jRBscILnHGRozxit8sPgIRF5oik94qyMY9G+th+ObV4CN z+MnfNBpnh53j8DEGJ8KAmGy+dg= -----END CERTIFICATE-----Generated at Fri Jun 20 01:40:07 2025 by rpki-client