$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3322/MSQwkFuWKBQp1OEUENoKNXUIPAQ.mft File: MSQwkFuWKBQp1OEUENoKNXUIPAQ.mft (raw, json) Hash identifier: cuqrIB5crQn4o2oWDJDD6y2BwvM61ktT8flge7R0FEI= Subject key identifier: 61:9D:7A:78:02:41:74:56:E9:3C:0E:3E:02:1B:96:4B:CD:13:C6:91 Authority key identifier: 31:24:30:90:5B:96:28:14:29:D4:E1:14:10:DA:0A:35:75:08:3C:04 Certificate issuer: /CN=312430905B96281429D4E11410DA0A3575083C04 Certificate serial: 04E2 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MSQwkFuWKBQp1OEUENoKNXUIPAQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3322/MSQwkFuWKBQp1OEUENoKNXUIPAQ.mft Manifest number: 04E2 Signing time: Sat 21 Jun 2025 11:16:53 +0000 Manifest this update: Sat 21 Jun 2025 11:16:53 +0000 Manifest next update: Sat 21 Jun 2025 17:16:53 +0000 Files and hashes: 1: MSQwkFuWKBQp1OEUENoKNXUIPAQ.crl (hash: JIrDKe+4XUsdV70qhhOpNJZmk45xxL4uPyQ01JTCKv0=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3322/MSQwkFuWKBQp1OEUENoKNXUIPAQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3322/MSQwkFuWKBQp1OEUENoKNXUIPAQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MSQwkFuWKBQp1OEUENoKNXUIPAQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:16:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1250 (0x4e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=312430905B96281429D4E11410DA0A3575083C04 Validity Not Before: Jun 21 11:16:53 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=619D7A7802417456E93C0E3E021B964BCD13C691 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f0:cd:da:1f:39:c0:51:b3:c7:fb:ac:61:a1: e1:92:96:4b:ac:88:5b:ab:11:3b:34:a1:b5:85:aa: bb:1f:38:d6:db:15:a2:f8:8c:67:9f:ce:ad:0a:35: 32:eb:39:59:f3:c9:39:0b:11:bb:66:23:0b:6c:eb: 95:11:2b:a0:d3:8f:36:a8:dd:c8:c0:bf:fd:c4:11: fe:5f:dd:34:ba:cc:ed:26:e6:74:75:9d:63:fc:56: 54:a0:72:79:b2:d0:75:07:d3:b6:fb:28:61:bd:ac: e3:3e:2c:cc:92:d6:e1:5e:14:6f:1b:0c:47:93:66: 9d:1e:2d:11:21:b7:08:af:49:02:a4:21:7d:5e:8a: 65:36:24:bb:50:74:6f:60:59:19:52:aa:8b:01:03: 13:d6:48:d3:c4:ab:81:fe:1f:55:af:ec:05:2f:30: 71:85:72:95:71:6e:5b:74:ef:87:59:cc:9b:e1:d1: 38:49:08:71:bf:30:b7:fc:f6:8b:8b:94:78:82:a1: 73:67:09:87:51:c4:6c:ed:c5:e2:51:24:88:dd:39: 0d:d4:0d:cc:bd:b2:cd:c0:3f:b5:88:48:e8:83:3b: 0d:81:3e:67:15:0e:cc:19:65:2e:f1:b0:cf:1d:f5: 2a:12:ab:31:8c:bb:93:c0:db:77:bf:b5:72:c5:0d: 4f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:9D:7A:78:02:41:74:56:E9:3C:0E:3E:02:1B:96:4B:CD:13:C6:91 X509v3 Authority Key Identifier: keyid:31:24:30:90:5B:96:28:14:29:D4:E1:14:10:DA:0A:35:75:08:3C:04 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3322/MSQwkFuWKBQp1OEUENoKNXUIPAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MSQwkFuWKBQp1OEUENoKNXUIPAQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3322/MSQwkFuWKBQp1OEUENoKNXUIPAQ.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:7a:7e:ea:85:b1:13:36:ff:ab:f0:7f:0e:5f:94:d6:1f:d9: 1b:99:2b:88:9b:bd:1b:b8:27:4b:28:32:34:39:23:7c:c7:e8: 70:31:ca:b6:ae:81:56:45:ee:01:ec:94:0a:c6:47:60:a2:9c: 54:29:2b:16:a1:98:ae:a7:fa:d6:c0:99:41:06:6b:71:13:e3: a7:44:07:98:3a:1a:f7:ad:3d:cd:0d:cb:aa:d2:90:8c:c5:7e: 99:dc:36:e3:3f:3b:c6:2b:21:2c:23:bc:5c:c9:7d:6a:36:b2: 2e:3f:5c:52:af:33:d1:ac:8e:1e:2f:8b:0c:8f:06:86:91:3c: 0c:ad:a7:d3:60:64:28:e3:b3:8a:59:22:d7:0a:36:e5:58:62: 36:85:e5:48:ff:fa:a1:27:61:41:42:3d:36:c7:ac:db:f7:79: d5:a9:98:cb:d9:34:27:f2:49:d1:0f:ea:b2:b7:92:e0:f6:9a: 0c:42:38:93:e3:cc:fa:c7:01:01:39:56:22:8f:29:64:6b:3a: d6:21:ff:70:b6:56:a6:ed:29:68:df:d4:92:04:8f:48:25:5b: 72:82:af:01:a2:a1:73:5f:c3:33:3d:4c:68:47:de:4d:54:2d: cd:57:c6:b5:89:e2:c6:dd:28:bb:95:31:88:82:b7:d9:55:09: 65:91:b1:9d -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBOIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzEy NDMwOTA1Qjk2MjgxNDI5RDRFMTE0MTBEQTBBMzU3NTA4M0MwNDAeFw0yNTA2MjEx MTE2NTNaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDYxOUQ3QTc4MDI0MTc0 NTZFOTNDMEUzRTAyMUI5NjRCQ0QxM0M2OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC78M3aHznAUbPH+6xhoeGSlkusiFurETs0obWFqrsfONbbFaL4 jGefzq0KNTLrOVnzyTkLEbtmIwts65URK6DTjzao3cjAv/3EEf5f3TS6zO0m5nR1 nWP8VlSgcnmy0HUH07b7KGG9rOM+LMyS1uFeFG8bDEeTZp0eLREhtwivSQKkIX1e imU2JLtQdG9gWRlSqosBAxPWSNPEq4H+H1Wv7AUvMHGFcpVxblt074dZzJvh0ThJ CHG/MLf89ouLlHiCoXNnCYdRxGztxeJRJIjdOQ3UDcy9ss3AP7WISOiDOw2BPmcV DswZZS7xsM8d9SoSqzGMu5PA23e/tXLFDU/TAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUYZ16eAJBdFbpPA4+AhuWS80TxpEwHwYDVR0jBBgwFoAUMSQwkFuWKBQp1OEU ENoKNXUIPAQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMy Mi9NU1F3a0Z1V0tCUXAxT0VVRU5vS05YVUlQQVEuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL01TUXdrRnVXS0JRcDFPRVVFTm9LTlhVSVBBUS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMjIvTVNRd2tGdVdLQlFw MU9FVUVOb0tOWFVJUEFRLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAGN6fuqFsRM2/6vwfw5flNYf2RuZK4ibvRu4J0soMjQ5I3zH6HAxyraugVZF 7gHslArGR2CinFQpKxahmK6n+tbAmUEGa3ET46dEB5g6GvetPc0Ny6rSkIzFfpnc NuM/O8YrISwjvFzJfWo2si4/XFKvM9Gsjh4viwyPBoaRPAytp9NgZCjjs4pZItcK NuVYYjaF5Uj/+qEnYUFCPTbHrNv3edWpmMvZNCfySdEP6rK3kuD2mgxCOJPjzPrH AQE5ViKPKWRrOtYh/3C2VqbtKWjf1JIEj0glW3KCrwGioXNfwzM9TGhH3k1ULc1X xrWJ4sbdKLuVMYiCt9lVCWWRsZ0= -----END CERTIFICATE-----Generated at Sat Jun 21 16:17:45 2025 by rpki-client