$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3283/43TDfhgAlB4aNVhdEMhLffz80nA.mft File: 43TDfhgAlB4aNVhdEMhLffz80nA.mft (raw, json) Hash identifier: 4NIf3n00GiWJAjVx3H9Bg3EW/0Y2SKJAz8VvwBu0IcY= Subject key identifier: 11:52:0E:60:37:D0:A6:11:A8:27:11:98:00:48:10:55:01:88:24:E6 Authority key identifier: E3:74:C3:7E:18:00:94:1E:1A:35:58:5D:10:C8:4B:7D:FC:FC:D2:70 Certificate issuer: /CN=E374C37E1800941E1A35585D10C84B7DFCFCD270 Certificate serial: 08BA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/43TDfhgAlB4aNVhdEMhLffz80nA.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3283/43TDfhgAlB4aNVhdEMhLffz80nA.mft Manifest number: 08BA Signing time: Mon 11 Aug 2025 09:04:27 +0000 Manifest this update: Mon 11 Aug 2025 09:04:27 +0000 Manifest next update: Mon 11 Aug 2025 15:04:27 +0000 Files and hashes: 1: 43TDfhgAlB4aNVhdEMhLffz80nA.crl (hash: fBSrhHymVkCAaYNdmFU3ne4JQ0rWf7bfzvOwzhEl7hM=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3283/43TDfhgAlB4aNVhdEMhLffz80nA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3283/43TDfhgAlB4aNVhdEMhLffz80nA.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/43TDfhgAlB4aNVhdEMhLffz80nA.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2234 (0x8ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E374C37E1800941E1A35585D10C84B7DFCFCD270 Validity Not Before: Aug 11 09:04:27 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=11520E6037D0A611A827119800481055018824E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b0:3c:14:d4:b4:c9:b8:5b:fc:8f:0f:f1:7e: b7:3a:11:64:67:35:74:a7:b6:fa:2b:74:ad:96:63: 76:be:a2:ec:3a:10:f5:d4:d3:45:3d:6a:96:76:5d: 61:c6:3e:91:97:c9:5f:83:fa:ab:c0:ce:04:b6:f4: 4a:53:2a:72:12:28:13:c0:58:49:7e:82:7c:80:20: 22:6b:04:4e:ac:f6:31:cc:1b:e9:eb:0c:8a:65:b0: 60:1e:dd:f5:0f:a0:61:e0:9e:98:c8:1f:11:9b:2c: 62:18:5e:e4:4e:47:cc:53:a9:21:5e:b5:22:5d:a2: 84:29:fe:76:ae:f9:e2:de:a1:0f:5d:c5:09:0b:7f: 54:18:3b:c5:34:77:58:20:70:2f:61:43:0c:cd:e2: bd:fb:c1:dc:9b:15:d4:06:15:af:bc:43:03:80:60: 87:e8:4b:aa:9c:c2:b9:e6:fb:26:0b:57:5e:c5:82: 03:bf:88:6f:dc:a9:77:f0:46:98:d3:ec:ed:d6:f2: 3c:38:4e:02:52:28:7e:23:71:79:f9:09:60:e9:70: 8f:c8:a4:96:81:9d:22:c3:5d:37:a1:b5:6c:42:53: 71:c8:0b:14:ba:1e:34:cf:60:8d:33:5e:38:77:ea: e3:06:a5:a8:1f:36:19:61:89:e3:b1:de:3b:ec:54: e2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:52:0E:60:37:D0:A6:11:A8:27:11:98:00:48:10:55:01:88:24:E6 X509v3 Authority Key Identifier: keyid:E3:74:C3:7E:18:00:94:1E:1A:35:58:5D:10:C8:4B:7D:FC:FC:D2:70 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3283/43TDfhgAlB4aNVhdEMhLffz80nA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/43TDfhgAlB4aNVhdEMhLffz80nA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3283/43TDfhgAlB4aNVhdEMhLffz80nA.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:6f:68:43:24:24:7c:fd:37:3d:98:5a:c3:07:37:da:e1:61: 4f:60:64:ae:3a:9d:06:0d:dd:c6:12:d9:2e:cf:3d:10:e0:e1: e3:b4:26:66:e7:68:cf:18:3d:29:dd:cb:22:41:33:4b:9b:d2: 40:dd:04:36:56:08:f0:a6:66:5c:3b:5c:a5:dd:6e:0d:d8:c7: 1b:5f:b9:38:32:f0:3e:c0:e0:23:ba:ee:e9:f9:c7:75:2b:12: ce:aa:98:da:7a:43:bc:90:d2:3b:98:a6:43:9c:c2:e8:92:f9: b5:eb:1a:63:3c:c2:a0:53:20:0a:d4:03:30:6e:f6:5a:bd:22: b3:09:5f:fe:03:b3:49:07:7e:fa:29:47:40:65:1f:2d:3b:27: eb:c9:91:c2:76:23:c4:78:29:14:95:85:4f:92:ff:97:a6:61: 9a:2d:36:fd:c2:0e:05:79:b2:79:87:8c:ef:9f:5d:c1:be:23: fb:d9:5e:a5:df:21:07:59:59:72:27:37:95:3c:28:93:79:63: a6:1a:ef:9a:9e:5a:12:e1:ff:f9:82:8c:a6:71:5c:90:ff:cc: 7e:ee:2b:d3:5c:e0:2b:06:e6:5e:f2:2b:59:b8:b3:15:e2:9c: 06:22:db:b1:a1:bb:22:f3:b7:b1:f0:1f:57:c4:55:42:36:26: 62:86:4c:3d -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCLowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTM3 NEMzN0UxODAwOTQxRTFBMzU1ODVEMTBDODRCN0RGQ0ZDRDI3MDAeFw0yNTA4MTEw OTA0MjdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDExNTIwRTYwMzdEMEE2 MTFBODI3MTE5ODAwNDgxMDU1MDE4ODI0RTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCesDwU1LTJuFv8jw/xfrc6EWRnNXSntvordK2WY3a+ouw6EPXU 00U9apZ2XWHGPpGXyV+D+qvAzgS29EpTKnISKBPAWEl+gnyAICJrBE6s9jHMG+nr DIplsGAe3fUPoGHgnpjIHxGbLGIYXuROR8xTqSFetSJdooQp/nau+eLeoQ9dxQkL f1QYO8U0d1ggcC9hQwzN4r37wdybFdQGFa+8QwOAYIfoS6qcwrnm+yYLV17FggO/ iG/cqXfwRpjT7O3W8jw4TgJSKH4jcXn5CWDpcI/IpJaBnSLDXTehtWxCU3HICxS6 HjTPYI0zXjh36uMGpagfNhlhieOx3jvsVOLzAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUEVIOYDfQphGoJxGYAEgQVQGIJOYwHwYDVR0jBBgwFoAU43TDfhgAlB4aNVhd EMhLffz80nAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI4 My80M1REZmhnQWxCNGFOVmhkRU1oTGZmejgwbkEuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzQzVERmaGdBbEI0YU5WaGRFTWhMZmZ6ODBuQS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyODMvNDNURGZoZ0FsQjRh TlZoZEVNaExmZno4MG5BLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAEFvaEMkJHz9Nz2YWsMHN9rhYU9gZK46nQYN3cYS2S7PPRDg4eO0JmbnaM8Y PSndyyJBM0ub0kDdBDZWCPCmZlw7XKXdbg3YxxtfuTgy8D7A4CO67un5x3UrEs6q mNp6Q7yQ0juYpkOcwuiS+bXrGmM8wqBTIArUAzBu9lq9IrMJX/4Ds0kHfvopR0Bl Hy07J+vJkcJ2I8R4KRSVhU+S/5emYZotNv3CDgV5snmHjO+fXcG+I/vZXqXfIQdZ WXInN5U8KJN5Y6Ya75qeWhLh//mCjKZxXJD/zH7uK9Nc4CsG5l7yK1m4sxXinAYi 27GhuyLzt7HwH1fEVUI2JmKGTD0= -----END CERTIFICATE-----Generated at Mon Aug 11 10:42:48 2025 by rpki-client