$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.mft File: 406o9-mW0qoqsVi7lztBbAR30cw.mft (raw, json) Hash identifier: KomkT41R4UNfWpudZnv+jw+8UG+rEq+wMugYyxlfZOE= Subject key identifier: 6B:FA:67:FF:C3:FA:63:CA:3D:1C:DB:3C:D1:92:22:E9:13:A9:84:E3 Authority key identifier: E3:4E:A8:F7:E9:96:D2:AA:2A:B1:58:BB:97:3B:41:6C:04:77:D1:CC Certificate issuer: /CN=E34EA8F7E996D2AA2AB158BB973B416C0477D1CC Certificate serial: 043D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/406o9-mW0qoqsVi7lztBbAR30cw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.mft Manifest number: 043D Signing time: Sun 22 Jun 2025 01:15:20 +0000 Manifest this update: Sun 22 Jun 2025 01:15:20 +0000 Manifest next update: Sun 22 Jun 2025 07:15:20 +0000 Files and hashes: 1: 406o9-mW0qoqsVi7lztBbAR30cw.crl (hash: aXFAHvEBawjzeGnJF0PiMvmpyzjT2gIGNy2t7aHP3bA=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/406o9-mW0qoqsVi7lztBbAR30cw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 07:15:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1085 (0x43d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E34EA8F7E996D2AA2AB158BB973B416C0477D1CC Validity Not Before: Jun 22 01:15:20 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=6BFA67FFC3FA63CA3D1CDB3CD19222E913A984E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5a:55:51:4e:6a:d3:08:f1:32:68:ab:2b:45: 7c:5d:fd:a7:c8:d9:59:46:ee:1d:33:bc:5a:e7:c3: 02:65:b8:cf:c3:ab:3a:30:9e:b4:a7:d9:b0:dc:45: 1f:8b:9f:1d:4d:50:cd:42:d3:f2:8f:71:47:41:45: e2:45:8a:2c:36:b1:c3:f3:ba:58:a5:af:35:8b:a1: 69:ae:b4:8c:91:f2:75:93:9c:94:fb:78:59:64:99: 08:35:78:e3:bf:73:a6:81:f7:9c:0d:8c:cc:99:ac: 46:30:eb:fe:62:ff:29:c7:ff:ff:a1:03:0e:a2:b9: 16:9d:b3:8c:71:fb:86:4b:c5:17:df:12:80:c2:9d: ab:b2:42:0e:51:a6:a3:00:94:4f:f0:87:37:d7:10: ba:a4:39:d4:c5:5b:9e:65:19:58:83:39:86:d4:7b: 79:63:8e:38:5e:b4:99:19:68:10:ac:c3:0f:ee:fa: 32:1e:b6:6a:89:3d:8b:6c:ae:94:c8:a3:8c:11:89: 58:a7:e0:69:b2:d0:72:97:69:4d:01:b8:00:b5:cd: e1:f5:c8:25:78:17:fe:6b:44:49:03:03:ce:7d:70: ea:18:b8:49:5e:0a:54:ba:d4:2a:67:cc:6d:88:50: 24:33:9e:5e:0e:9c:85:77:35:f2:25:7c:63:95:e0: 57:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:FA:67:FF:C3:FA:63:CA:3D:1C:DB:3C:D1:92:22:E9:13:A9:84:E3 X509v3 Authority Key Identifier: keyid:E3:4E:A8:F7:E9:96:D2:AA:2A:B1:58:BB:97:3B:41:6C:04:77:D1:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/406o9-mW0qoqsVi7lztBbAR30cw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:c8:e8:b4:ac:1d:2a:f6:3f:3b:ca:98:22:83:57:a1:fd:46: aa:fc:d8:46:47:b2:a6:48:5c:d9:87:64:32:bb:99:9b:97:dc: 3e:aa:f4:5e:d0:7e:0a:6d:db:2c:ef:34:71:88:a5:3a:33:a4: 0f:a7:57:2d:57:d8:32:b9:8b:63:4b:b5:ce:f1:3d:fd:31:d4: 09:62:87:56:c6:59:b9:80:32:f2:b0:8f:42:48:43:5d:72:7d: 64:fe:8f:0e:7d:c6:f0:3d:c2:0c:a4:34:99:96:45:15:44:bc: a5:6e:1f:7e:79:d3:c9:ab:cc:08:df:06:e7:80:ff:3a:f1:18: 85:03:1e:38:f9:a2:dd:1f:be:ae:6c:a0:92:37:94:65:64:54: ba:17:49:eb:ff:1f:60:e9:71:43:47:04:99:82:e1:fa:5b:03: c3:31:14:29:ef:c5:e4:a2:82:51:76:10:71:ca:dc:60:d8:a4: 46:96:3e:84:fa:cf:0f:ea:05:b7:0e:1a:e2:cc:2f:d3:c4:ef: 65:5d:27:00:7a:19:44:89:cb:c5:6a:d5:02:ee:14:84:84:6c: 92:67:3f:fb:24:30:6f:ce:a0:4b:73:ba:1b:fc:91:5b:50:7b: a0:9e:74:72:f7:de:c4:3d:8f:0d:6f:51:49:63:04:32:3a:9b: 78:e2:8c:bd -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBD0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTM0 RUE4RjdFOTk2RDJBQTJBQjE1OEJCOTczQjQxNkMwNDc3RDFDQzAeFw0yNTA2MjIw MTE1MjBaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDZCRkE2N0ZGQzNGQTYz Q0EzRDFDREIzQ0QxOTIyMkU5MTNBOTg0RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5WlVRTmrTCPEyaKsrRXxd/afI2VlG7h0zvFrnwwJluM/Dqzow nrSn2bDcRR+Lnx1NUM1C0/KPcUdBReJFiiw2scPzulilrzWLoWmutIyR8nWTnJT7 eFlkmQg1eOO/c6aB95wNjMyZrEYw6/5i/ynH//+hAw6iuRads4xx+4ZLxRffEoDC nauyQg5RpqMAlE/whzfXELqkOdTFW55lGViDOYbUe3ljjjhetJkZaBCsww/u+jIe tmqJPYtsrpTIo4wRiVin4Gmy0HKXaU0BuAC1zeH1yCV4F/5rREkDA859cOoYuEle ClS61CpnzG2IUCQznl4OnIV3NfIlfGOV4FdtAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUa/pn/8P6Y8o9HNs80ZIi6ROphOMwHwYDVR0jBBgwFoAU406o9+mW0qoqsVi7 lztBbAR30cwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMy OC80MDZvOS1tVzBxb3FzVmk3bHp0QmJBUjMwY3cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzQwNm85LW1XMHFvcXNWaTdsenRCYkFSMzBjdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMjgvNDA2bzktbVcwcW9x c1ZpN2x6dEJiQVIzMGN3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAA7I6LSsHSr2PzvKmCKDV6H9Rqr82EZHsqZIXNmHZDK7mZuX3D6q9F7Qfgpt 2yzvNHGIpTozpA+nVy1X2DK5i2NLtc7xPf0x1Alih1bGWbmAMvKwj0JIQ11yfWT+ jw59xvA9wgykNJmWRRVEvKVuH35508mrzAjfBueA/zrxGIUDHjj5ot0fvq5soJI3 lGVkVLoXSev/H2DpcUNHBJmC4fpbA8MxFCnvxeSiglF2EHHK3GDYpEaWPoT6zw/q BbcOGuLML9PE72VdJwB6GUSJy8Vq1QLuFISEbJJnP/skMG/OoEtzuhv8kVtQe6Ce dHL33sQ9jw1vUUljBDI6m3jijL0= -----END CERTIFICATE-----Generated at Sun Jun 22 06:14:58 2025 by rpki-client