$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3296/Dyhlg1nJdzIhcfQCMyNCwx3XxW4.mft File: Dyhlg1nJdzIhcfQCMyNCwx3XxW4.mft (raw, json) Hash identifier: 2h0UI+Py945IrI0BDGCzUem0sKRRvKGy0PFteIIRGL0= Subject key identifier: 94:4E:1C:38:AF:E2:E2:30:95:2C:64:88:E7:63:4B:3C:0D:46:DA:AE Authority key identifier: 0F:28:65:83:59:C9:77:32:21:71:F4:02:33:23:42:C3:1D:D7:C5:6E Certificate issuer: /CN=0F28658359C977322171F402332342C31DD7C56E Certificate serial: 0804 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Dyhlg1nJdzIhcfQCMyNCwx3XxW4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3296/Dyhlg1nJdzIhcfQCMyNCwx3XxW4.mft Manifest number: 0804 Signing time: Wed 13 Aug 2025 16:04:20 +0000 Manifest this update: Wed 13 Aug 2025 16:04:20 +0000 Manifest next update: Wed 13 Aug 2025 22:04:20 +0000 Files and hashes: 1: Dyhlg1nJdzIhcfQCMyNCwx3XxW4.crl (hash: wHLTXK15BnsR9biLZ/TznBEgqmMYvf7IuPBIQuaWWEA=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3296/Dyhlg1nJdzIhcfQCMyNCwx3XxW4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3296/Dyhlg1nJdzIhcfQCMyNCwx3XxW4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Dyhlg1nJdzIhcfQCMyNCwx3XxW4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 22:04:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2052 (0x804) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0F28658359C977322171F402332342C31DD7C56E Validity Not Before: Aug 13 16:04:20 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=944E1C38AFE2E230952C6488E7634B3C0D46DAAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b2:bf:39:ef:ea:19:21:97:bf:5d:97:ce:93: 81:d6:bf:9d:4a:29:d2:34:01:33:c8:a7:bb:48:af: f2:bb:99:a9:7a:70:87:2e:53:bb:e2:64:38:38:ec: 52:08:cf:bd:d5:5e:8d:25:e0:84:7f:a1:07:46:1c: 32:52:cf:d6:e0:b3:ba:d5:f0:18:49:16:0d:ce:5d: e2:ea:f5:b3:6a:28:c8:31:d1:04:b5:cf:2f:05:30: 93:4c:9c:21:98:42:d9:a2:35:08:65:c8:3b:02:20: ba:01:e2:31:80:ee:1c:2d:50:1b:d9:18:e3:cb:42: 7a:ed:40:66:2d:b6:04:f7:06:a4:f2:df:a7:d4:d2: 47:af:a9:8b:72:90:bd:77:b9:92:e0:31:65:01:ad: 57:e8:be:7e:f6:0c:73:d5:39:e7:6b:2f:8a:52:50: 4d:7e:25:ba:da:e8:e4:94:03:8c:15:e0:ed:d8:27: df:cf:40:c0:12:69:ed:58:fe:cc:8f:89:28:96:a9: fd:46:15:0e:bd:40:b0:a8:d5:6e:b6:f4:51:7f:84: 53:f0:ca:fc:1d:7b:6e:09:71:67:bc:b6:b4:ab:3b: cc:42:df:c3:23:1c:53:0e:09:8d:0a:f3:e5:ba:a1: d3:f9:2d:22:6b:6e:27:41:91:44:20:85:96:3c:9d: cf:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:4E:1C:38:AF:E2:E2:30:95:2C:64:88:E7:63:4B:3C:0D:46:DA:AE X509v3 Authority Key Identifier: keyid:0F:28:65:83:59:C9:77:32:21:71:F4:02:33:23:42:C3:1D:D7:C5:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3296/Dyhlg1nJdzIhcfQCMyNCwx3XxW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Dyhlg1nJdzIhcfQCMyNCwx3XxW4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3296/Dyhlg1nJdzIhcfQCMyNCwx3XxW4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:1e:11:ae:c1:f4:bc:45:13:23:a2:66:64:d9:96:46:cc:b0: 60:f6:18:c1:25:f9:5b:6c:cc:86:98:ee:46:31:45:d3:85:94: 3a:16:df:e2:47:51:f5:53:c8:24:0b:6b:fc:b8:c1:13:31:b0: 48:b7:9b:39:72:fc:9b:23:64:12:8d:3e:53:22:13:d6:32:b1: 33:7a:cf:e5:1d:54:2f:57:ef:f8:a7:7b:bd:89:33:e0:32:57: 18:bf:1a:4d:3d:cc:6d:ff:15:c6:52:fe:0f:53:ab:04:f9:fe: 10:95:d3:83:50:d0:bf:24:d8:3c:a2:d2:f9:46:04:9a:0b:e8: c9:42:a1:3d:32:c5:b1:04:38:5a:2d:15:52:8c:a5:4d:71:b8: 5e:ee:4c:68:aa:e4:e9:39:27:d3:7b:72:bb:0f:d8:5d:45:e7: cb:0c:db:8b:2f:b0:44:01:7e:ca:70:ba:d1:85:f2:81:67:0b: 8a:01:b5:a3:f2:2b:6e:50:ab:ea:92:28:8c:66:59:10:67:b1: c1:e3:b1:38:26:3f:d1:32:1d:0a:b0:67:d8:d9:55:bc:ad:ef: e4:ef:27:6e:5a:66:6d:3f:63:18:7c:40:2f:47:5e:81:64:2c: 11:ea:e8:60:fc:ca:e4:75:bd:a1:bf:5a:c9:d7:6c:0f:f7:10: 05:8a:c1:30 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCAQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEYy ODY1ODM1OUM5NzczMjIxNzFGNDAyMzMyMzQyQzMxREQ3QzU2RTAeFw0yNTA4MTMx NjA0MjBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDk0NEUxQzM4QUZFMkUy MzA5NTJDNjQ4OEU3NjM0QjNDMEQ0NkRBQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrsr857+oZIZe/XZfOk4HWv51KKdI0ATPIp7tIr/K7mal6cIcu U7viZDg47FIIz73VXo0l4IR/oQdGHDJSz9bgs7rV8BhJFg3OXeLq9bNqKMgx0QS1 zy8FMJNMnCGYQtmiNQhlyDsCILoB4jGA7hwtUBvZGOPLQnrtQGYttgT3BqTy36fU 0kevqYtykL13uZLgMWUBrVfovn72DHPVOedrL4pSUE1+Jbra6OSUA4wV4O3YJ9/P QMASae1Y/syPiSiWqf1GFQ69QLCo1W629FF/hFPwyvwde24JcWe8trSrO8xC38Mj HFMOCY0K8+W6odP5LSJrbidBkUQghZY8nc/ZAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUlE4cOK/i4jCVLGSI52NLPA1G2q4wHwYDVR0jBBgwFoAUDyhlg1nJdzIhcfQC MyNCwx3XxW4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI5 Ni9EeWhsZzFuSmR6SWhjZlFDTXlOQ3d4M1h4VzQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0R5aGxnMW5KZHpJaGNmUUNNeU5Dd3gzWHhXNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyOTYvRHlobGcxbkpkeklo Y2ZRQ015TkN3eDNYeFc0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBACceEa7B9LxFEyOiZmTZlkbMsGD2GMEl+VtszIaY7kYxRdOFlDoW3+JHUfVT yCQLa/y4wRMxsEi3mzly/JsjZBKNPlMiE9YysTN6z+UdVC9X7/ine72JM+AyVxi/ Gk09zG3/FcZS/g9TqwT5/hCV04NQ0L8k2Dyi0vlGBJoL6MlCoT0yxbEEOFotFVKM pU1xuF7uTGiq5Ok5J9N7crsP2F1F58sM24svsEQBfspwutGF8oFnC4oBtaPyK25Q q+qSKIxmWRBnscHjsTgmP9EyHQqwZ9jZVbyt7+TvJ25aZm0/Yxh8QC9HXoFkLBHq 6GD8yuR1vaG/WsnXbA/3EAWKwTA= -----END CERTIFICATE-----Generated at Wed Aug 13 20:24:43 2025 by rpki-client