$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.mft File: 406o9-mW0qoqsVi7lztBbAR30cw.mft (raw, json) Hash identifier: 2aW9TglAA4f15dCuAlrnEIFRnQEVflDMEa9M8hU/WPQ= Subject key identifier: 6B:FA:67:FF:C3:FA:63:CA:3D:1C:DB:3C:D1:92:22:E9:13:A9:84:E3 Authority key identifier: E3:4E:A8:F7:E9:96:D2:AA:2A:B1:58:BB:97:3B:41:6C:04:77:D1:CC Certificate issuer: /CN=E34EA8F7E996D2AA2AB158BB973B416C0477D1CC Certificate serial: 0540 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/406o9-mW0qoqsVi7lztBbAR30cw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.mft Manifest number: 0540 Signing time: Wed 13 Aug 2025 16:04:27 +0000 Manifest this update: Wed 13 Aug 2025 16:04:27 +0000 Manifest next update: Wed 13 Aug 2025 22:04:27 +0000 Files and hashes: 1: 406o9-mW0qoqsVi7lztBbAR30cw.crl (hash: uR6akXEcsfRhPFXMlhlnXSOsPf+XmS6X9g8CeUY9/WE=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/406o9-mW0qoqsVi7lztBbAR30cw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 22:04:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1344 (0x540) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E34EA8F7E996D2AA2AB158BB973B416C0477D1CC Validity Not Before: Aug 13 16:04:27 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=6BFA67FFC3FA63CA3D1CDB3CD19222E913A984E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5a:55:51:4e:6a:d3:08:f1:32:68:ab:2b:45: 7c:5d:fd:a7:c8:d9:59:46:ee:1d:33:bc:5a:e7:c3: 02:65:b8:cf:c3:ab:3a:30:9e:b4:a7:d9:b0:dc:45: 1f:8b:9f:1d:4d:50:cd:42:d3:f2:8f:71:47:41:45: e2:45:8a:2c:36:b1:c3:f3:ba:58:a5:af:35:8b:a1: 69:ae:b4:8c:91:f2:75:93:9c:94:fb:78:59:64:99: 08:35:78:e3:bf:73:a6:81:f7:9c:0d:8c:cc:99:ac: 46:30:eb:fe:62:ff:29:c7:ff:ff:a1:03:0e:a2:b9: 16:9d:b3:8c:71:fb:86:4b:c5:17:df:12:80:c2:9d: ab:b2:42:0e:51:a6:a3:00:94:4f:f0:87:37:d7:10: ba:a4:39:d4:c5:5b:9e:65:19:58:83:39:86:d4:7b: 79:63:8e:38:5e:b4:99:19:68:10:ac:c3:0f:ee:fa: 32:1e:b6:6a:89:3d:8b:6c:ae:94:c8:a3:8c:11:89: 58:a7:e0:69:b2:d0:72:97:69:4d:01:b8:00:b5:cd: e1:f5:c8:25:78:17:fe:6b:44:49:03:03:ce:7d:70: ea:18:b8:49:5e:0a:54:ba:d4:2a:67:cc:6d:88:50: 24:33:9e:5e:0e:9c:85:77:35:f2:25:7c:63:95:e0: 57:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:FA:67:FF:C3:FA:63:CA:3D:1C:DB:3C:D1:92:22:E9:13:A9:84:E3 X509v3 Authority Key Identifier: keyid:E3:4E:A8:F7:E9:96:D2:AA:2A:B1:58:BB:97:3B:41:6C:04:77:D1:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/406o9-mW0qoqsVi7lztBbAR30cw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:bc:6f:d2:4b:85:aa:d1:47:03:82:1e:33:10:94:34:f3:10: 6b:7c:7f:89:93:b5:ff:98:84:30:d3:dd:5c:da:fa:d1:b8:32: e3:d9:7c:43:57:6e:c4:0f:54:d0:a6:0b:42:bf:f5:c1:62:2e: 16:cc:12:b7:2f:29:11:8a:b3:bd:e5:38:0a:63:cf:37:f0:53: e0:d7:65:6f:bf:83:5c:ef:ff:f0:5f:67:35:08:3c:e3:1c:87: 58:69:e2:7b:69:36:5a:63:55:ec:c6:24:20:07:f5:02:28:45: fd:9f:4c:ce:f9:e7:9c:86:ae:93:61:44:c8:7b:f8:14:2a:eb: a3:56:04:e9:ff:47:35:cd:ae:27:11:d1:26:78:a3:b0:2d:ce: f1:9b:22:26:a2:11:29:dc:0c:cc:37:db:cd:95:46:9b:43:12: 77:1a:a0:18:e6:1f:0c:9f:62:9d:11:a0:0d:14:5b:36:99:b4: 18:e4:73:8e:0a:cc:d2:5b:9a:46:64:c9:4d:5e:6a:b9:e4:c7: d3:d6:7e:a7:53:17:77:14:8c:09:8f:74:d1:11:23:d0:85:86: f1:13:20:39:7a:6d:bd:f4:ed:c1:c0:0d:b5:68:4f:5d:43:1f: f1:99:be:f4:bd:65:f6:0a:dc:88:b8:8c:49:e6:0d:10:d4:45: af:d5:a1:8f -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBUAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTM0 RUE4RjdFOTk2RDJBQTJBQjE1OEJCOTczQjQxNkMwNDc3RDFDQzAeFw0yNTA4MTMx NjA0MjdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDZCRkE2N0ZGQzNGQTYz Q0EzRDFDREIzQ0QxOTIyMkU5MTNBOTg0RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5WlVRTmrTCPEyaKsrRXxd/afI2VlG7h0zvFrnwwJluM/Dqzow nrSn2bDcRR+Lnx1NUM1C0/KPcUdBReJFiiw2scPzulilrzWLoWmutIyR8nWTnJT7 eFlkmQg1eOO/c6aB95wNjMyZrEYw6/5i/ynH//+hAw6iuRads4xx+4ZLxRffEoDC nauyQg5RpqMAlE/whzfXELqkOdTFW55lGViDOYbUe3ljjjhetJkZaBCsww/u+jIe tmqJPYtsrpTIo4wRiVin4Gmy0HKXaU0BuAC1zeH1yCV4F/5rREkDA859cOoYuEle ClS61CpnzG2IUCQznl4OnIV3NfIlfGOV4FdtAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUa/pn/8P6Y8o9HNs80ZIi6ROphOMwHwYDVR0jBBgwFoAU406o9+mW0qoqsVi7 lztBbAR30cwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMy OC80MDZvOS1tVzBxb3FzVmk3bHp0QmJBUjMwY3cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzQwNm85LW1XMHFvcXNWaTdsenRCYkFSMzBjdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMjgvNDA2bzktbVcwcW9x c1ZpN2x6dEJiQVIzMGN3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAA28b9JLharRRwOCHjMQlDTzEGt8f4mTtf+YhDDT3Vza+tG4MuPZfENXbsQP VNCmC0K/9cFiLhbMErcvKRGKs73lOApjzzfwU+DXZW+/g1zv//BfZzUIPOMch1hp 4ntpNlpjVezGJCAH9QIoRf2fTM7555yGrpNhRMh7+BQq66NWBOn/RzXNricR0SZ4 o7AtzvGbIiaiESncDMw3282VRptDEncaoBjmHwyfYp0RoA0UWzaZtBjkc44KzNJb mkZkyU1earnkx9PWfqdTF3cUjAmPdNERI9CFhvETIDl6bb307cHADbVoT11DH/GZ vvS9ZfYK3Ii4jEnmDRDURa/VoY8= -----END CERTIFICATE-----Generated at Wed Aug 13 20:24:08 2025 by rpki-client