$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3337/2wnDhcqGTQSV-VGV_38HvFdh4XY.mft File: 2wnDhcqGTQSV-VGV_38HvFdh4XY.mft (raw, json) Hash identifier: fqZXwanhkWLJtkrWq7qbsLgcRixm25+/wMPNbHXWPFA= Subject key identifier: 04:1A:A5:E8:17:43:B7:42:48:C3:C1:96:FF:3D:92:37:B7:68:7F:F7 Authority key identifier: DB:09:C3:85:CA:86:4D:04:95:F9:51:95:FF:7F:07:BC:57:61:E1:76 Certificate issuer: /CN=DB09C385CA864D0495F95195FF7F07BC5761E176 Certificate serial: 02C3 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2wnDhcqGTQSV-VGV_38HvFdh4XY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3337/2wnDhcqGTQSV-VGV_38HvFdh4XY.mft Manifest number: 02C3 Signing time: Sat 26 Apr 2025 08:38:59 +0000 Manifest this update: Sat 26 Apr 2025 08:38:59 +0000 Manifest next update: Sat 26 Apr 2025 14:38:59 +0000 Files and hashes: 1: 2wnDhcqGTQSV-VGV_38HvFdh4XY.crl (hash: tFh9ECsotNxbp5IajF7eXafTS/wCVE3cg0JIihOAnDU=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3337/2wnDhcqGTQSV-VGV_38HvFdh4XY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3337/2wnDhcqGTQSV-VGV_38HvFdh4XY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2wnDhcqGTQSV-VGV_38HvFdh4XY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 14:38:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 707 (0x2c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB09C385CA864D0495F95195FF7F07BC5761E176 Validity Not Before: Apr 26 08:38:59 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=041AA5E81743B74248C3C196FF3D9237B7687FF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0e:76:e4:6b:ce:10:9a:1b:62:cc:f1:71:7e: 61:36:c7:6b:20:47:da:a5:25:c4:bc:d0:40:10:60: 35:fd:34:4c:6b:c5:32:bf:8b:d8:d4:36:a3:2a:63: 51:5a:a4:3f:a8:d8:71:40:65:03:dc:8d:bc:4f:7f: 4a:aa:8c:80:55:83:73:ef:9a:4e:92:94:1d:b4:bd: eb:37:17:2c:32:a1:35:26:32:fc:aa:00:cf:9d:d3: 49:74:19:ca:0d:92:0d:29:b5:f8:ad:88:67:db:3a: 92:17:68:83:a9:dc:51:09:5f:f6:5d:7c:b1:34:37: f4:73:d9:01:14:88:09:e0:94:f4:59:f2:8a:01:98: 36:20:d7:59:9c:65:e5:4a:20:b6:e8:47:fb:ea:c6: cc:13:56:a1:a0:63:d5:d4:13:e8:6e:86:04:cb:4e: f2:0a:5d:27:82:4c:16:86:7d:b4:87:b3:aa:49:48: df:a0:d3:20:29:9f:08:fc:64:79:84:22:16:50:d0: 63:ea:89:4d:d1:08:87:13:04:7a:17:4e:97:fc:e7: 5d:14:6d:af:83:03:16:b3:7e:23:58:a9:7e:b5:12: ae:4b:b3:74:84:fd:7b:6a:c0:f4:49:7c:e3:d6:66: 54:b9:d7:dd:44:50:85:04:8e:78:5a:ed:2c:04:96: 0a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:1A:A5:E8:17:43:B7:42:48:C3:C1:96:FF:3D:92:37:B7:68:7F:F7 X509v3 Authority Key Identifier: keyid:DB:09:C3:85:CA:86:4D:04:95:F9:51:95:FF:7F:07:BC:57:61:E1:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3337/2wnDhcqGTQSV-VGV_38HvFdh4XY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2wnDhcqGTQSV-VGV_38HvFdh4XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3337/2wnDhcqGTQSV-VGV_38HvFdh4XY.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:7e:55:06:7a:d8:27:10:e4:b8:64:93:1a:de:8b:e5:2b:c0: ae:5f:60:c4:ad:5a:d5:97:1d:0b:58:c5:bc:da:6b:21:84:8a: 04:34:30:e4:0e:56:c1:9e:8e:e4:23:28:c7:6f:9f:a7:ff:f0: 22:3e:52:1a:fb:c6:15:51:30:97:b4:47:c1:f3:b4:c2:21:2a: 90:cb:ea:a2:b5:d9:9f:a2:32:ad:0d:09:43:d2:2f:f0:0b:58: 94:4a:00:fe:c1:1e:14:53:0b:74:0e:b0:00:15:7b:f1:2b:e1: 32:a3:ca:a6:2a:68:97:d5:37:d6:5e:05:50:42:7d:af:bf:12: 47:7b:e5:60:2a:e8:c7:59:79:1e:37:e2:39:27:23:bc:c8:74: 3a:87:7d:d8:4d:34:65:38:dd:0e:64:dd:7d:8b:79:bd:8c:d3: 08:2e:92:68:f4:b5:99:b6:ad:d0:49:02:91:31:e3:38:a1:39: db:67:89:40:b3:3f:d6:20:55:75:b0:8f:3e:2e:62:fa:6c:5c: c1:db:c5:cb:4e:f1:f5:4f:3e:9c:3d:b1:d1:6d:0e:f6:f7:45: 3d:3b:93:9d:1a:7d:81:d6:01:fc:50:23:4b:4a:4f:36:9b:ef: d7:a2:93:c9:f5:c0:2a:65:14:b7:a8:1b:69:93:2a:0b:b2:30: 9e:79:94:94 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICAsMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREIw OUMzODVDQTg2NEQwNDk1Rjk1MTk1RkY3RjA3QkM1NzYxRTE3NjAeFw0yNTA0MjYw ODM4NTlaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDA0MUFBNUU4MTc0M0I3 NDI0OEMzQzE5NkZGM0Q5MjM3Qjc2ODdGRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqDnbka84QmhtizPFxfmE2x2sgR9qlJcS80EAQYDX9NExrxTK/ i9jUNqMqY1FapD+o2HFAZQPcjbxPf0qqjIBVg3Pvmk6SlB20ves3FywyoTUmMvyq AM+d00l0GcoNkg0ptfitiGfbOpIXaIOp3FEJX/ZdfLE0N/Rz2QEUiAnglPRZ8ooB mDYg11mcZeVKILboR/vqxswTVqGgY9XUE+huhgTLTvIKXSeCTBaGfbSHs6pJSN+g 0yApnwj8ZHmEIhZQ0GPqiU3RCIcTBHoXTpf8510Uba+DAxazfiNYqX61Eq5Ls3SE /XtqwPRJfOPWZlS5191EUIUEjnha7SwElgotAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUBBql6BdDt0JIw8GW/z2SN7dof/cwHwYDVR0jBBgwFoAU2wnDhcqGTQSV+VGV /38HvFdh4XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMz Ny8yd25EaGNxR1RRU1YtVkdWXzM4SHZGZGg0WFkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzJ3bkRoY3FHVFFTVi1WR1ZfMzhIdkZkaDRYWS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMzcvMnduRGhjcUdUUVNW LVZHVl8zOEh2RmRoNFhZLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAAV+VQZ62CcQ5Lhkkxrei+UrwK5fYMStWtWXHQtYxbzaayGEigQ0MOQOVsGe juQjKMdvn6f/8CI+Uhr7xhVRMJe0R8HztMIhKpDL6qK12Z+iMq0NCUPSL/ALWJRK AP7BHhRTC3QOsAAVe/Er4TKjyqYqaJfVN9ZeBVBCfa+/Ekd75WAq6MdZeR434jkn I7zIdDqHfdhNNGU43Q5k3X2Leb2M0wgukmj0tZm2rdBJApEx4zihOdtniUCzP9Yg VXWwjz4uYvpsXMHbxctO8fVPPpw9sdFtDvb3RT07k50afYHWAfxQI0tKTzab79ei k8n1wCplFLeoG2mTKguyMJ55lJQ= -----END CERTIFICATE-----Generated at Sat Apr 26 14:34:32 2025 by rpki-client