$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3335/dLHNkLnEHIANH1u3AQiWQC4auU4.mft File: dLHNkLnEHIANH1u3AQiWQC4auU4.mft (raw, json) Hash identifier: N22VqFOQXLkk754z60jerEyW8sK9eatvcgsfyxWjKOY= Subject key identifier: B0:54:D2:70:E7:FB:43:E0:C7:77:B3:3D:79:CA:A9:F9:0E:52:26:B0 Authority key identifier: 74:B1:CD:90:B9:C4:1C:80:0D:1F:5B:B7:01:08:96:40:2E:1A:B9:4E Certificate issuer: /CN=74B1CD90B9C41C800D1F5BB7010896402E1AB94E Certificate serial: 067E Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dLHNkLnEHIANH1u3AQiWQC4auU4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3335/dLHNkLnEHIANH1u3AQiWQC4auU4.mft Manifest number: 067E Signing time: Wed 05 Nov 2025 15:13:48 +0000 Manifest this update: Wed 05 Nov 2025 15:13:48 +0000 Manifest next update: Wed 05 Nov 2025 21:13:48 +0000 Files and hashes: 1: dLHNkLnEHIANH1u3AQiWQC4auU4.crl (hash: ENlQ/U5HzXGVifTC+7kwZVa/ZD4UcauWBsuz9DHsYXw=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3335/dLHNkLnEHIANH1u3AQiWQC4auU4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3335/dLHNkLnEHIANH1u3AQiWQC4auU4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dLHNkLnEHIANH1u3AQiWQC4auU4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 21:13:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1662 (0x67e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74B1CD90B9C41C800D1F5BB7010896402E1AB94E Validity Not Before: Nov 5 15:13:48 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=B054D270E7FB43E0C777B33D79CAA9F90E5226B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:83:0f:2d:e4:fc:fd:40:e6:c9:69:06:2c:d0: 63:f2:39:94:44:ab:77:3a:54:18:e1:c0:8b:d4:20: b5:d0:43:40:59:34:7a:aa:f6:39:9f:1e:33:db:12: ee:50:c0:ca:13:fc:45:b1:1d:b7:34:16:6d:80:c6: 5d:34:23:6d:aa:00:3b:ec:a7:1a:3c:5c:ac:75:3b: a9:01:17:f5:1f:18:2e:25:84:b9:d7:6b:4e:9c:10: 87:af:01:0b:e7:59:73:8c:28:a9:50:67:22:9a:cd: 72:96:01:0c:11:76:26:c0:92:aa:9b:34:5d:30:1e: 39:13:38:e1:1c:c6:1c:6e:11:34:f4:ad:4a:e1:13: 04:5e:12:53:7d:59:9c:7f:06:60:84:25:be:29:49: ae:e5:d2:fe:0c:5d:57:0b:7a:ed:33:47:1c:a8:ce: ef:03:5a:09:66:d1:a3:61:45:fa:d1:16:80:84:6d: 04:bf:e8:8f:a1:7a:70:d2:a9:96:dc:48:df:2b:b5: 04:a6:94:f3:4f:30:bb:68:5c:f0:06:6b:8b:88:4f: 60:80:e3:8a:b7:ee:8e:d7:88:58:0a:65:12:73:ae: a1:65:8b:b6:03:f7:c9:08:1c:e7:93:51:38:98:0c: 1d:ef:03:ac:63:26:e3:fd:e3:36:8e:25:6d:83:1f: 50:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:54:D2:70:E7:FB:43:E0:C7:77:B3:3D:79:CA:A9:F9:0E:52:26:B0 X509v3 Authority Key Identifier: keyid:74:B1:CD:90:B9:C4:1C:80:0D:1F:5B:B7:01:08:96:40:2E:1A:B9:4E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3335/dLHNkLnEHIANH1u3AQiWQC4auU4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dLHNkLnEHIANH1u3AQiWQC4auU4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3335/dLHNkLnEHIANH1u3AQiWQC4auU4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:c4:d7:f7:91:62:96:0f:fc:a1:3d:32:d2:53:6c:ee:12:19: 7d:c3:c3:ef:aa:dc:d0:98:4b:d7:d6:69:ed:7a:d7:dc:ae:03: b2:62:a6:84:b1:02:42:36:9c:78:1a:98:25:7a:5d:af:1f:0d: 52:80:04:9f:a0:a9:36:82:6c:27:69:54:b8:bc:74:76:fd:52: 29:fb:c4:22:26:13:2c:0e:dc:49:d0:2a:68:63:c6:85:a8:e6: 81:70:f9:0c:0e:b4:9c:2c:1b:7e:b3:e9:ef:62:5b:ad:ac:21: f7:ce:93:7f:15:b0:4d:62:27:0c:eb:64:e9:48:34:60:09:c1: 98:2c:ae:49:da:db:35:fa:4e:37:5e:23:3d:58:de:3a:ad:bc: 6c:15:53:19:34:69:1a:95:1c:05:7c:9a:3a:24:be:99:1f:fb: 65:20:01:49:53:ce:e9:ea:59:88:15:8c:7e:1e:7c:46:90:0f: 47:49:14:0e:01:5e:81:13:8f:41:11:2b:44:9e:82:04:62:f7: be:07:53:af:4a:a6:55:46:96:53:f5:bf:b9:a9:38:9c:99:6b: b9:d1:c7:a1:4f:71:30:a4:00:c1:0e:df:d8:9c:50:3d:5d:13: f1:d2:6e:1c:10:87:c3:e5:7f:80:4a:42:6a:77:ee:b4:5d:b2: e6:48:58:cd -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBn4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzRC MUNEOTBCOUM0MUM4MDBEMUY1QkI3MDEwODk2NDAyRTFBQjk0RTAeFw0yNTExMDUx NTEzNDhaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEIwNTREMjcwRTdGQjQz RTBDNzc3QjMzRDc5Q0FBOUY5MEU1MjI2QjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1gw8t5Pz9QObJaQYs0GPyOZREq3c6VBjhwIvUILXQQ0BZNHqq 9jmfHjPbEu5QwMoT/EWxHbc0Fm2Axl00I22qADvspxo8XKx1O6kBF/UfGC4lhLnX a06cEIevAQvnWXOMKKlQZyKazXKWAQwRdibAkqqbNF0wHjkTOOEcxhxuETT0rUrh EwReElN9WZx/BmCEJb4pSa7l0v4MXVcLeu0zRxyozu8DWglm0aNhRfrRFoCEbQS/ 6I+henDSqZbcSN8rtQSmlPNPMLtoXPAGa4uIT2CA44q37o7XiFgKZRJzrqFli7YD 98kIHOeTUTiYDB3vA6xjJuP94zaOJW2DH1AjAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUsFTScOf7Q+DHd7M9ecqp+Q5SJrAwHwYDVR0jBBgwFoAUdLHNkLnEHIANH1u3 AQiWQC4auU4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMz NS9kTEhOa0xuRUhJQU5IMXUzQVFpV1FDNGF1VTQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2RMSE5rTG5FSElBTkgxdTNBUWlXUUM0YXVVNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMzUvZExITmtMbkVISUFO SDF1M0FRaVdRQzRhdVU0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBALjE1/eRYpYP/KE9MtJTbO4SGX3Dw++q3NCYS9fWae1619yuA7JipoSxAkI2 nHgamCV6Xa8fDVKABJ+gqTaCbCdpVLi8dHb9Uin7xCImEywO3EnQKmhjxoWo5oFw +QwOtJwsG36z6e9iW62sIffOk38VsE1iJwzrZOlINGAJwZgsrkna2zX6TjdeIz1Y 3jqtvGwVUxk0aRqVHAV8mjokvpkf+2UgAUlTzunqWYgVjH4efEaQD0dJFA4BXoET j0ERK0SeggRi974HU69KplVGllP1v7mpOJyZa7nRx6FPcTCkAMEO39icUD1dE/HS bhwQh8Plf4BKQmp37rRdsuZIWM0= -----END CERTIFICATE-----Generated at Wed Nov 5 19:55:36 2025 by rpki-client