$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3284/kXok3C9fwHVc6sn-HMXExV183fo.mft File: kXok3C9fwHVc6sn-HMXExV183fo.mft (raw, json) Hash identifier: JMdNmmI9q1dwfe6fdwRLDsCJLdrfKOOfUx7NA5AIJ9o= Subject key identifier: 35:6B:69:02:74:63:F8:A7:68:3B:39:60:AD:61:9D:11:CA:B7:44:44 Authority key identifier: 91:7A:24:DC:2F:5F:C0:75:5C:EA:C9:FE:1C:C5:C4:C5:5D:7C:DD:FA Certificate issuer: /CN=917A24DC2F5FC0755CEAC9FE1CC5C4C55D7CDDFA Certificate serial: 06AD Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kXok3C9fwHVc6sn-HMXExV183fo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3284/kXok3C9fwHVc6sn-HMXExV183fo.mft Manifest number: 06AD Signing time: Sat 26 Apr 2025 08:39:48 +0000 Manifest this update: Sat 26 Apr 2025 08:39:48 +0000 Manifest next update: Sat 26 Apr 2025 14:39:48 +0000 Files and hashes: 1: kXok3C9fwHVc6sn-HMXExV183fo.crl (hash: haG2gZpTn/SinzQFv6r9ac1J1CI52dtak7xbM8Za15Y=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3284/kXok3C9fwHVc6sn-HMXExV183fo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3284/kXok3C9fwHVc6sn-HMXExV183fo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kXok3C9fwHVc6sn-HMXExV183fo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 14:39:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1709 (0x6ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=917A24DC2F5FC0755CEAC9FE1CC5C4C55D7CDDFA Validity Not Before: Apr 26 08:39:48 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=356B69027463F8A7683B3960AD619D11CAB74444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:4e:45:4c:b3:46:df:85:b4:aa:ff:bd:44:49: ae:dc:9f:f2:13:71:46:0e:08:9b:42:64:81:38:a0: 3c:6c:13:19:02:51:5c:45:34:75:ca:8a:74:b0:f5: ec:f9:8b:a6:7f:dd:78:c5:93:3d:5b:31:2c:d1:98: 22:f0:6e:7d:e6:42:15:97:11:7e:b3:da:11:e4:20: c1:6e:64:fb:7a:05:49:2e:6a:20:56:05:a5:60:fd: bd:ab:0d:d4:e2:9b:97:e7:f9:25:ea:f0:d5:18:3c: 5e:2e:e7:ed:f3:f8:ac:f2:0d:90:40:dc:31:12:a2: e6:de:a0:e7:3b:55:1e:92:4d:17:37:df:53:18:21: 13:15:87:ab:bd:8d:c7:24:0a:f0:23:ee:c4:ea:03: 55:8a:6d:16:c3:13:86:61:e1:43:08:2f:8b:70:ff: 72:63:c7:a8:68:f4:a4:6f:09:7c:91:b6:9a:0a:b3: b7:68:29:45:96:5d:17:8f:84:9f:19:05:78:d4:76: 0a:d8:9f:50:c9:5e:88:fc:e4:89:95:c1:33:b8:ec: 41:bf:55:53:b3:93:ce:b4:7b:b1:19:af:fa:d3:e7: 91:07:67:26:35:ce:74:70:27:ff:47:59:61:79:7e: b6:8e:fb:c8:a1:9e:7d:5e:84:75:cd:cb:20:d5:98: 30:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:6B:69:02:74:63:F8:A7:68:3B:39:60:AD:61:9D:11:CA:B7:44:44 X509v3 Authority Key Identifier: keyid:91:7A:24:DC:2F:5F:C0:75:5C:EA:C9:FE:1C:C5:C4:C5:5D:7C:DD:FA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3284/kXok3C9fwHVc6sn-HMXExV183fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kXok3C9fwHVc6sn-HMXExV183fo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3284/kXok3C9fwHVc6sn-HMXExV183fo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:1b:de:0a:e7:52:84:0c:9a:f9:20:49:bc:a9:68:df:3a:59: b2:52:a2:12:5d:12:d7:5f:6c:8e:e2:90:34:d3:82:da:70:01: 62:41:59:90:85:94:66:71:4b:87:64:bd:af:cd:97:2b:5a:3f: a6:a0:5d:da:1d:b9:f7:60:92:aa:88:ea:fd:aa:b4:26:75:a1: 60:b6:d1:b7:f9:88:c7:15:c0:95:a5:62:9f:5d:a7:a6:2d:21: dc:56:27:92:97:ac:e5:14:56:a0:89:7d:a4:17:37:2f:d5:d3: e5:64:33:7d:32:3a:9f:ff:3c:1b:48:8a:49:42:68:7a:98:4b: e0:18:12:b0:29:c9:db:08:a7:bd:68:b8:0e:42:51:79:ad:1d: 44:53:fb:de:b3:dc:2a:cf:b7:79:a3:7e:e9:54:53:95:07:db: 82:54:f9:56:c9:ee:22:62:60:a1:11:cf:c6:c5:91:1c:83:4d: 5f:17:a7:c1:b8:52:45:1c:be:2b:c4:16:5e:3f:f7:e6:82:b9: 53:e1:61:c9:c3:0b:d9:c5:9a:99:62:e2:e6:77:86:03:a1:bd: 4d:97:e3:cf:aa:2c:e2:30:b5:b2:88:59:44:52:8b:95:46:99: 05:8a:40:4f:fc:f2:61:12:59:c3:12:7d:dd:17:e4:ee:06:91: ee:3c:74:22 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBq0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTE3 QTI0REMyRjVGQzA3NTVDRUFDOUZFMUNDNUM0QzU1RDdDRERGQTAeFw0yNTA0MjYw ODM5NDhaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDM1NkI2OTAyNzQ2M0Y4 QTc2ODNCMzk2MEFENjE5RDExQ0FCNzQ0NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrTkVMs0bfhbSq/71ESa7cn/ITcUYOCJtCZIE4oDxsExkCUVxF NHXKinSw9ez5i6Z/3XjFkz1bMSzRmCLwbn3mQhWXEX6z2hHkIMFuZPt6BUkuaiBW BaVg/b2rDdTim5fn+SXq8NUYPF4u5+3z+KzyDZBA3DESoubeoOc7VR6STRc331MY IRMVh6u9jcckCvAj7sTqA1WKbRbDE4Zh4UMIL4tw/3Jjx6ho9KRvCXyRtpoKs7do KUWWXRePhJ8ZBXjUdgrYn1DJXoj85ImVwTO47EG/VVOzk860e7EZr/rT55EHZyY1 znRwJ/9HWWF5fraO+8ihnn1ehHXNyyDVmDADAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUNWtpAnRj+KdoOzlgrWGdEcq3REQwHwYDVR0jBBgwFoAUkXok3C9fwHVc6sn+ HMXExV183fowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI4 NC9rWG9rM0M5ZndIVmM2c24tSE1YRXhWMTgzZm8uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2tYb2szQzlmd0hWYzZzbi1ITVhFeFYxODNmby5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyODQva1hvazNDOWZ3SFZj NnNuLUhNWEV4VjE4M2ZvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBADAb3grnUoQMmvkgSbypaN86WbJSohJdEtdfbI7ikDTTgtpwAWJBWZCFlGZx S4dkva/NlytaP6agXdodufdgkqqI6v2qtCZ1oWC20bf5iMcVwJWlYp9dp6YtIdxW J5KXrOUUVqCJfaQXNy/V0+VkM30yOp//PBtIiklCaHqYS+AYErApydsIp71ouA5C UXmtHURT+96z3CrPt3mjfulUU5UH24JU+VbJ7iJiYKERz8bFkRyDTV8Xp8G4UkUc vivEFl4/9+aCuVPhYcnDC9nFmpli4uZ3hgOhvU2X48+qLOIwtbKIWURSi5VGmQWK QE/88mESWcMSfd0X5O4Gke48dCI= -----END CERTIFICATE-----Generated at Sat Apr 26 14:13:01 2025 by rpki-client