$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3335/dLHNkLnEHIANH1u3AQiWQC4auU4.mft File: dLHNkLnEHIANH1u3AQiWQC4auU4.mft (raw, json) Hash identifier: LzQkPT6x+B3mf6VO+E/ok3yYYJcvtHPxri3N12pi/Ac= Subject key identifier: B0:54:D2:70:E7:FB:43:E0:C7:77:B3:3D:79:CA:A9:F9:0E:52:26:B0 Authority key identifier: 74:B1:CD:90:B9:C4:1C:80:0D:1F:5B:B7:01:08:96:40:2E:1A:B9:4E Certificate issuer: /CN=74B1CD90B9C41C800D1F5BB7010896402E1AB94E Certificate serial: 04DA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dLHNkLnEHIANH1u3AQiWQC4auU4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3335/dLHNkLnEHIANH1u3AQiWQC4auU4.mft Manifest number: 04DA Signing time: Mon 11 Aug 2025 09:04:41 +0000 Manifest this update: Mon 11 Aug 2025 09:04:41 +0000 Manifest next update: Mon 11 Aug 2025 15:04:41 +0000 Files and hashes: 1: dLHNkLnEHIANH1u3AQiWQC4auU4.crl (hash: 3HEU+bfFfa7/KSIAIJ9WhM+oKeJrHJ3twlUtTpX1RNk=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3335/dLHNkLnEHIANH1u3AQiWQC4auU4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3335/dLHNkLnEHIANH1u3AQiWQC4auU4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dLHNkLnEHIANH1u3AQiWQC4auU4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1242 (0x4da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74B1CD90B9C41C800D1F5BB7010896402E1AB94E Validity Not Before: Aug 11 09:04:41 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=B054D270E7FB43E0C777B33D79CAA9F90E5226B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:83:0f:2d:e4:fc:fd:40:e6:c9:69:06:2c:d0: 63:f2:39:94:44:ab:77:3a:54:18:e1:c0:8b:d4:20: b5:d0:43:40:59:34:7a:aa:f6:39:9f:1e:33:db:12: ee:50:c0:ca:13:fc:45:b1:1d:b7:34:16:6d:80:c6: 5d:34:23:6d:aa:00:3b:ec:a7:1a:3c:5c:ac:75:3b: a9:01:17:f5:1f:18:2e:25:84:b9:d7:6b:4e:9c:10: 87:af:01:0b:e7:59:73:8c:28:a9:50:67:22:9a:cd: 72:96:01:0c:11:76:26:c0:92:aa:9b:34:5d:30:1e: 39:13:38:e1:1c:c6:1c:6e:11:34:f4:ad:4a:e1:13: 04:5e:12:53:7d:59:9c:7f:06:60:84:25:be:29:49: ae:e5:d2:fe:0c:5d:57:0b:7a:ed:33:47:1c:a8:ce: ef:03:5a:09:66:d1:a3:61:45:fa:d1:16:80:84:6d: 04:bf:e8:8f:a1:7a:70:d2:a9:96:dc:48:df:2b:b5: 04:a6:94:f3:4f:30:bb:68:5c:f0:06:6b:8b:88:4f: 60:80:e3:8a:b7:ee:8e:d7:88:58:0a:65:12:73:ae: a1:65:8b:b6:03:f7:c9:08:1c:e7:93:51:38:98:0c: 1d:ef:03:ac:63:26:e3:fd:e3:36:8e:25:6d:83:1f: 50:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:54:D2:70:E7:FB:43:E0:C7:77:B3:3D:79:CA:A9:F9:0E:52:26:B0 X509v3 Authority Key Identifier: keyid:74:B1:CD:90:B9:C4:1C:80:0D:1F:5B:B7:01:08:96:40:2E:1A:B9:4E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3335/dLHNkLnEHIANH1u3AQiWQC4auU4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dLHNkLnEHIANH1u3AQiWQC4auU4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3335/dLHNkLnEHIANH1u3AQiWQC4auU4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:13:13:cb:94:17:38:c8:ce:90:1d:44:4a:34:bd:b9:89:1f: 16:99:87:43:12:32:e1:38:6b:75:de:c5:e0:95:01:57:31:88: 65:0a:d2:50:e8:1e:74:7d:fb:2f:4d:51:27:de:51:b9:26:73: 1d:f6:e5:c8:df:32:51:96:17:bc:92:77:ba:a2:76:16:9b:6e: 6a:09:ad:e0:00:d8:9d:36:1f:8b:b4:ef:20:55:50:ee:ca:78: ab:3e:1c:17:3e:74:54:90:10:4e:40:af:33:ff:8c:e6:d3:0b: 45:6c:fc:88:56:fc:9d:03:67:33:86:f0:e7:90:ae:ec:f7:25: 93:5e:b5:f9:d8:c8:53:76:8e:03:70:de:ce:0b:4e:b8:69:d5: 57:b5:77:71:01:80:2f:fd:47:aa:6f:59:40:d1:c3:98:46:06: 22:d1:66:a1:3b:af:fc:d8:78:ae:0a:ac:71:2c:b8:f5:cb:7b: fc:6f:71:a2:d3:8f:55:b9:d2:e3:46:9f:92:31:b8:5f:9e:33: ab:ba:e1:86:85:78:e1:10:46:01:b0:8c:8a:a8:53:43:6f:0a: 68:94:af:9d:6c:e7:d1:62:ad:cd:39:9a:f4:01:6d:71:d3:dc: 2d:61:51:47:1b:65:05:c6:8d:82:d0:7f:58:40:2d:73:13:a4: 44:1d:bf:cd -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBNowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzRC MUNEOTBCOUM0MUM4MDBEMUY1QkI3MDEwODk2NDAyRTFBQjk0RTAeFw0yNTA4MTEw OTA0NDFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEIwNTREMjcwRTdGQjQz RTBDNzc3QjMzRDc5Q0FBOUY5MEU1MjI2QjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1gw8t5Pz9QObJaQYs0GPyOZREq3c6VBjhwIvUILXQQ0BZNHqq 9jmfHjPbEu5QwMoT/EWxHbc0Fm2Axl00I22qADvspxo8XKx1O6kBF/UfGC4lhLnX a06cEIevAQvnWXOMKKlQZyKazXKWAQwRdibAkqqbNF0wHjkTOOEcxhxuETT0rUrh EwReElN9WZx/BmCEJb4pSa7l0v4MXVcLeu0zRxyozu8DWglm0aNhRfrRFoCEbQS/ 6I+henDSqZbcSN8rtQSmlPNPMLtoXPAGa4uIT2CA44q37o7XiFgKZRJzrqFli7YD 98kIHOeTUTiYDB3vA6xjJuP94zaOJW2DH1AjAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUsFTScOf7Q+DHd7M9ecqp+Q5SJrAwHwYDVR0jBBgwFoAUdLHNkLnEHIANH1u3 AQiWQC4auU4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMz NS9kTEhOa0xuRUhJQU5IMXUzQVFpV1FDNGF1VTQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2RMSE5rTG5FSElBTkgxdTNBUWlXUUM0YXVVNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMzUvZExITmtMbkVISUFO SDF1M0FRaVdRQzRhdVU0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBABoTE8uUFzjIzpAdREo0vbmJHxaZh0MSMuE4a3XexeCVAVcxiGUK0lDoHnR9 +y9NUSfeUbkmcx325cjfMlGWF7ySd7qidhabbmoJreAA2J02H4u07yBVUO7KeKs+ HBc+dFSQEE5ArzP/jObTC0Vs/IhW/J0DZzOG8OeQruz3JZNetfnYyFN2jgNw3s4L Trhp1Ve1d3EBgC/9R6pvWUDRw5hGBiLRZqE7r/zYeK4KrHEsuPXLe/xvcaLTj1W5 0uNGn5IxuF+eM6u64YaFeOEQRgGwjIqoU0NvCmiUr51s59Firc05mvQBbXHT3C1h UUcbZQXGjYLQf1hALXMTpEQdv80= -----END CERTIFICATE-----Generated at Mon Aug 11 10:40:23 2025 by rpki-client