$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.mft File: 406o9-mW0qoqsVi7lztBbAR30cw.mft (raw, json) Hash identifier: ihRAQuzF4q0CE/49gRe5j/4nV0Zri4uCmLNAY5ArghM= Subject key identifier: 6B:FA:67:FF:C3:FA:63:CA:3D:1C:DB:3C:D1:92:22:E9:13:A9:84:E3 Authority key identifier: E3:4E:A8:F7:E9:96:D2:AA:2A:B1:58:BB:97:3B:41:6C:04:77:D1:CC Certificate issuer: /CN=E34EA8F7E996D2AA2AB158BB973B416C0477D1CC Certificate serial: 06DA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/406o9-mW0qoqsVi7lztBbAR30cw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.mft Manifest number: 06DA Signing time: Wed 05 Nov 2025 20:12:47 +0000 Manifest this update: Wed 05 Nov 2025 20:12:47 +0000 Manifest next update: Thu 06 Nov 2025 02:12:47 +0000 Files and hashes: 1: 406o9-mW0qoqsVi7lztBbAR30cw.crl (hash: CQwaBZ8ikvbcKzmW4BuJELfOrI+rx0aI5EZn8Za3r6Y=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/406o9-mW0qoqsVi7lztBbAR30cw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 02:12:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1754 (0x6da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E34EA8F7E996D2AA2AB158BB973B416C0477D1CC Validity Not Before: Nov 5 20:12:47 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=6BFA67FFC3FA63CA3D1CDB3CD19222E913A984E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5a:55:51:4e:6a:d3:08:f1:32:68:ab:2b:45: 7c:5d:fd:a7:c8:d9:59:46:ee:1d:33:bc:5a:e7:c3: 02:65:b8:cf:c3:ab:3a:30:9e:b4:a7:d9:b0:dc:45: 1f:8b:9f:1d:4d:50:cd:42:d3:f2:8f:71:47:41:45: e2:45:8a:2c:36:b1:c3:f3:ba:58:a5:af:35:8b:a1: 69:ae:b4:8c:91:f2:75:93:9c:94:fb:78:59:64:99: 08:35:78:e3:bf:73:a6:81:f7:9c:0d:8c:cc:99:ac: 46:30:eb:fe:62:ff:29:c7:ff:ff:a1:03:0e:a2:b9: 16:9d:b3:8c:71:fb:86:4b:c5:17:df:12:80:c2:9d: ab:b2:42:0e:51:a6:a3:00:94:4f:f0:87:37:d7:10: ba:a4:39:d4:c5:5b:9e:65:19:58:83:39:86:d4:7b: 79:63:8e:38:5e:b4:99:19:68:10:ac:c3:0f:ee:fa: 32:1e:b6:6a:89:3d:8b:6c:ae:94:c8:a3:8c:11:89: 58:a7:e0:69:b2:d0:72:97:69:4d:01:b8:00:b5:cd: e1:f5:c8:25:78:17:fe:6b:44:49:03:03:ce:7d:70: ea:18:b8:49:5e:0a:54:ba:d4:2a:67:cc:6d:88:50: 24:33:9e:5e:0e:9c:85:77:35:f2:25:7c:63:95:e0: 57:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:FA:67:FF:C3:FA:63:CA:3D:1C:DB:3C:D1:92:22:E9:13:A9:84:E3 X509v3 Authority Key Identifier: keyid:E3:4E:A8:F7:E9:96:D2:AA:2A:B1:58:BB:97:3B:41:6C:04:77:D1:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/406o9-mW0qoqsVi7lztBbAR30cw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:46:72:a1:df:e5:12:ac:0a:86:cd:81:ea:33:64:5b:7b:84: a4:39:21:57:02:44:f8:8b:d8:8c:07:4b:4b:9d:3c:b8:2f:41: 3c:d3:ed:1a:59:54:46:62:4f:51:06:92:cf:ad:3b:55:0d:89: 83:3a:ef:b8:84:73:43:4f:6a:e0:92:a2:5b:f0:54:e4:94:63: 0f:66:42:3c:9a:23:98:5a:68:2f:ae:d1:2b:1f:c1:a3:bd:5e: 54:a9:d9:a2:2d:41:4c:a1:63:24:95:f3:cf:81:e5:e4:0c:12: b6:58:c8:67:c2:cc:81:10:b3:aa:45:4d:f6:0e:4d:d9:37:e7: 81:b0:0a:4a:1e:ce:e2:c4:d5:cc:1e:37:68:06:01:d2:ba:2d: 02:e2:2e:a6:2e:93:e6:30:a2:b1:08:fe:0e:06:da:22:88:10: 2c:f2:84:15:0b:ab:31:f4:40:10:d3:b0:1b:b7:cd:94:b3:c1: 47:72:c9:46:32:b5:51:5e:91:e5:be:e3:16:f5:26:ce:0e:bc: 74:94:f6:41:a9:49:44:ac:bb:b1:6b:29:99:8b:45:71:98:8a: 4d:98:4a:a0:f7:91:6f:4b:90:38:1e:8a:a5:62:af:4f:6c:57: 34:db:36:a3:4a:69:52:b0:87:26:31:73:ed:77:eb:73:39:5c: a9:d4:dc:8a -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBtowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTM0 RUE4RjdFOTk2RDJBQTJBQjE1OEJCOTczQjQxNkMwNDc3RDFDQzAeFw0yNTExMDUy MDEyNDdaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDZCRkE2N0ZGQzNGQTYz Q0EzRDFDREIzQ0QxOTIyMkU5MTNBOTg0RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5WlVRTmrTCPEyaKsrRXxd/afI2VlG7h0zvFrnwwJluM/Dqzow nrSn2bDcRR+Lnx1NUM1C0/KPcUdBReJFiiw2scPzulilrzWLoWmutIyR8nWTnJT7 eFlkmQg1eOO/c6aB95wNjMyZrEYw6/5i/ynH//+hAw6iuRads4xx+4ZLxRffEoDC nauyQg5RpqMAlE/whzfXELqkOdTFW55lGViDOYbUe3ljjjhetJkZaBCsww/u+jIe tmqJPYtsrpTIo4wRiVin4Gmy0HKXaU0BuAC1zeH1yCV4F/5rREkDA859cOoYuEle ClS61CpnzG2IUCQznl4OnIV3NfIlfGOV4FdtAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUa/pn/8P6Y8o9HNs80ZIi6ROphOMwHwYDVR0jBBgwFoAU406o9+mW0qoqsVi7 lztBbAR30cwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMy OC80MDZvOS1tVzBxb3FzVmk3bHp0QmJBUjMwY3cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzQwNm85LW1XMHFvcXNWaTdsenRCYkFSMzBjdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMjgvNDA2bzktbVcwcW9x c1ZpN2x6dEJiQVIzMGN3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAH5GcqHf5RKsCobNgeozZFt7hKQ5IVcCRPiL2IwHS0udPLgvQTzT7RpZVEZi T1EGks+tO1UNiYM677iEc0NPauCSolvwVOSUYw9mQjyaI5haaC+u0SsfwaO9XlSp 2aItQUyhYySV88+B5eQMErZYyGfCzIEQs6pFTfYOTdk354GwCkoezuLE1cweN2gG AdK6LQLiLqYuk+YworEI/g4G2iKIECzyhBULqzH0QBDTsBu3zZSzwUdyyUYytVFe keW+4xb1Js4OvHSU9kGpSUSsu7FrKZmLRXGYik2YSqD3kW9LkDgeiqVir09sVzTb NqNKaVKwhyYxc+1363M5XKnU3Io= -----END CERTIFICATE-----Generated at Thu Nov 6 01:54:00 2025 by rpki-client