$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3307/USN2g1L_1eSeSpn0-TWAPoNb35Y.mft File: USN2g1L_1eSeSpn0-TWAPoNb35Y.mft (raw, json) Hash identifier: 5hhl7v/J+laJFJRmvgfgXzJ6nRLKblTXas8uUNordVc= Subject key identifier: 7E:9E:E0:90:3F:FE:91:E9:63:B2:B8:E8:9E:D7:23:94:AA:68:A5:31 Authority key identifier: 51:23:76:83:52:FF:D5:E4:9E:4A:99:F4:F9:35:80:3E:83:5B:DF:96 Certificate issuer: /CN=5123768352FFD5E49E4A99F4F935803E835BDF96 Certificate serial: 0759 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/USN2g1L_1eSeSpn0-TWAPoNb35Y.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3307/USN2g1L_1eSeSpn0-TWAPoNb35Y.mft Manifest number: 0759 Signing time: Mon 11 Aug 2025 09:03:45 +0000 Manifest this update: Mon 11 Aug 2025 09:03:45 +0000 Manifest next update: Mon 11 Aug 2025 15:03:45 +0000 Files and hashes: 1: USN2g1L_1eSeSpn0-TWAPoNb35Y.crl (hash: 1gzlwQ5hnJSqcDgPmwR2dfKBrNRBT4bz+heYjpVLo80=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3307/USN2g1L_1eSeSpn0-TWAPoNb35Y.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3307/USN2g1L_1eSeSpn0-TWAPoNb35Y.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/USN2g1L_1eSeSpn0-TWAPoNb35Y.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1881 (0x759) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5123768352FFD5E49E4A99F4F935803E835BDF96 Validity Not Before: Aug 11 09:03:45 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=7E9EE0903FFE91E963B2B8E89ED72394AA68A531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:9a:9d:f9:db:d7:5e:9b:ea:09:7d:fd:85:6b: 77:8b:7d:07:20:7a:11:87:2d:f3:bf:be:bf:15:ee: a2:cc:b0:df:f3:19:de:42:46:1f:de:67:d8:f2:14: 53:b7:3b:0d:71:63:82:c7:e2:02:20:d3:74:e2:81: 2d:7c:66:6d:e0:e4:bd:5e:3a:5d:76:8e:71:ef:56: 87:4e:e3:f9:4a:df:2b:19:54:82:dd:71:4a:4d:65: b2:99:ee:4d:b7:36:b2:89:d9:38:0c:de:58:7e:e6: e2:93:b0:e5:64:3c:ee:7e:5c:86:00:57:20:29:60: 0b:76:9d:c7:6c:82:3e:5c:7a:09:5d:6e:77:72:18: e6:76:03:2e:e3:1a:82:90:82:5e:2c:ef:8f:8a:30: 24:92:d1:7a:4e:3c:88:d7:73:31:0b:d8:d9:20:95: 61:73:11:aa:c4:6d:b4:d6:70:7a:18:90:b3:4e:d4: 01:72:fa:b6:35:73:11:ea:af:78:c1:b7:1d:fe:4e: ba:92:c8:62:f6:8b:21:09:b8:57:2b:48:02:de:af: 1d:67:46:03:b9:5d:5f:f5:94:e5:ca:0d:d9:b4:4c: 4c:cf:13:98:47:fe:4f:e0:89:0a:2e:89:78:02:3b: b4:82:a1:ed:2e:8d:ad:d3:c6:a4:af:d3:b2:a3:6e: 11:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:9E:E0:90:3F:FE:91:E9:63:B2:B8:E8:9E:D7:23:94:AA:68:A5:31 X509v3 Authority Key Identifier: keyid:51:23:76:83:52:FF:D5:E4:9E:4A:99:F4:F9:35:80:3E:83:5B:DF:96 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3307/USN2g1L_1eSeSpn0-TWAPoNb35Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/USN2g1L_1eSeSpn0-TWAPoNb35Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3307/USN2g1L_1eSeSpn0-TWAPoNb35Y.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:41:4e:fd:c3:ef:0f:3c:24:68:47:5a:7b:f3:ad:94:65:b6: b1:ba:37:cc:db:98:c7:de:e5:31:2a:80:42:84:23:dc:04:8a: 82:f1:29:c0:51:f3:b2:7d:f7:db:05:e1:ba:c6:e7:77:69:d3: 82:eb:01:de:61:6d:55:07:7d:4d:f5:7f:dc:8a:a0:2b:56:44: d5:14:0c:2a:34:e5:52:d4:f2:e4:56:13:ab:1a:9d:66:5e:ad: c9:1a:3b:55:42:68:d7:ac:96:7c:c9:0c:97:aa:45:47:37:28: 61:62:fc:64:50:59:fd:f3:37:15:24:40:b9:85:65:89:5a:bc: 0b:e0:27:1b:72:71:c0:dc:cc:3e:4a:ae:e3:26:cb:d9:a5:95: f8:04:64:65:1f:62:09:67:d4:1d:a5:d8:8c:e7:a9:5f:5b:a4: f9:3f:d8:4b:87:ff:88:0b:01:73:a8:b0:55:bb:01:84:7c:71: 4e:cd:41:72:37:6d:98:98:e6:23:b1:9b:32:b9:2f:5a:42:b8: 48:47:74:df:4e:e2:f0:63:ab:29:7d:84:16:c2:da:38:f5:df: ce:af:9a:25:54:c3:05:0b:26:0f:12:8b:1c:69:9f:ed:8c:fe: 1b:54:ce:1e:71:50:69:4d:21:a9:94:94:78:4a:aa:07:b0:67: f2:8f:fc:84 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICB1kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy Mzc2ODM1MkZGRDVFNDlFNEE5OUY0RjkzNTgwM0U4MzVCREY5NjAeFw0yNTA4MTEw OTAzNDVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDdFOUVFMDkwM0ZGRTkx RTk2M0IyQjhFODlFRDcyMzk0QUE2OEE1MzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcmp3529dem+oJff2Fa3eLfQcgehGHLfO/vr8V7qLMsN/zGd5C Rh/eZ9jyFFO3Ow1xY4LH4gIg03TigS18Zm3g5L1eOl12jnHvVodO4/lK3ysZVILd cUpNZbKZ7k23NrKJ2TgM3lh+5uKTsOVkPO5+XIYAVyApYAt2ncdsgj5cegldbndy GOZ2Ay7jGoKQgl4s74+KMCSS0XpOPIjXczEL2NkglWFzEarEbbTWcHoYkLNO1AFy +rY1cxHqr3jBtx3+TrqSyGL2iyEJuFcrSALerx1nRgO5XV/1lOXKDdm0TEzPE5hH /k/giQouiXgCO7SCoe0uja3TxqSv07KjbhG3AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUfp7gkD/+keljsrjontcjlKpopTEwHwYDVR0jBBgwFoAUUSN2g1L/1eSeSpn0 +TWAPoNb35YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMw Ny9VU04yZzFMXzFlU2VTcG4wLVRXQVBvTmIzNVkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1VTTjJnMUxfMWVTZVNwbjAtVFdBUG9OYjM1WS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMDcvVVNOMmcxTF8xZVNl U3BuMC1UV0FQb05iMzVZLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAHJBTv3D7w88JGhHWnvzrZRltrG6N8zbmMfe5TEqgEKEI9wEioLxKcBR87J9 99sF4brG53dp04LrAd5hbVUHfU31f9yKoCtWRNUUDCo05VLU8uRWE6sanWZercka O1VCaNeslnzJDJeqRUc3KGFi/GRQWf3zNxUkQLmFZYlavAvgJxtyccDczD5KruMm y9mllfgEZGUfYgln1B2l2IznqV9bpPk/2EuH/4gLAXOosFW7AYR8cU7NQXI3bZiY 5iOxmzK5L1pCuEhHdN9O4vBjqyl9hBbC2jj1386vmiVUwwULJg8Sixxpn+2M/htU zh5xUGlNIamUlHhKqgewZ/KP/IQ= -----END CERTIFICATE-----Generated at Mon Aug 11 10:42:45 2025 by rpki-client