$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3337/2wnDhcqGTQSV-VGV_38HvFdh4XY.mft File: 2wnDhcqGTQSV-VGV_38HvFdh4XY.mft (raw, json) Hash identifier: ypx7RPMlmMT/kcVOWrJ8qhjEii0ww4mEBrsIyaBoDQ0= Subject key identifier: 04:1A:A5:E8:17:43:B7:42:48:C3:C1:96:FF:3D:92:37:B7:68:7F:F7 Authority key identifier: DB:09:C3:85:CA:86:4D:04:95:F9:51:95:FF:7F:07:BC:57:61:E1:76 Certificate issuer: /CN=DB09C385CA864D0495F95195FF7F07BC5761E176 Certificate serial: 04D3 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2wnDhcqGTQSV-VGV_38HvFdh4XY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3337/2wnDhcqGTQSV-VGV_38HvFdh4XY.mft Manifest number: 04D3 Signing time: Mon 11 Aug 2025 09:04:40 +0000 Manifest this update: Mon 11 Aug 2025 09:04:40 +0000 Manifest next update: Mon 11 Aug 2025 15:04:40 +0000 Files and hashes: 1: 2wnDhcqGTQSV-VGV_38HvFdh4XY.crl (hash: BXytY6+Aya8UKVMdfgT20qKpfMPookXjiUb5GMtkF2A=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3337/2wnDhcqGTQSV-VGV_38HvFdh4XY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3337/2wnDhcqGTQSV-VGV_38HvFdh4XY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2wnDhcqGTQSV-VGV_38HvFdh4XY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1235 (0x4d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB09C385CA864D0495F95195FF7F07BC5761E176 Validity Not Before: Aug 11 09:04:40 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=041AA5E81743B74248C3C196FF3D9237B7687FF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0e:76:e4:6b:ce:10:9a:1b:62:cc:f1:71:7e: 61:36:c7:6b:20:47:da:a5:25:c4:bc:d0:40:10:60: 35:fd:34:4c:6b:c5:32:bf:8b:d8:d4:36:a3:2a:63: 51:5a:a4:3f:a8:d8:71:40:65:03:dc:8d:bc:4f:7f: 4a:aa:8c:80:55:83:73:ef:9a:4e:92:94:1d:b4:bd: eb:37:17:2c:32:a1:35:26:32:fc:aa:00:cf:9d:d3: 49:74:19:ca:0d:92:0d:29:b5:f8:ad:88:67:db:3a: 92:17:68:83:a9:dc:51:09:5f:f6:5d:7c:b1:34:37: f4:73:d9:01:14:88:09:e0:94:f4:59:f2:8a:01:98: 36:20:d7:59:9c:65:e5:4a:20:b6:e8:47:fb:ea:c6: cc:13:56:a1:a0:63:d5:d4:13:e8:6e:86:04:cb:4e: f2:0a:5d:27:82:4c:16:86:7d:b4:87:b3:aa:49:48: df:a0:d3:20:29:9f:08:fc:64:79:84:22:16:50:d0: 63:ea:89:4d:d1:08:87:13:04:7a:17:4e:97:fc:e7: 5d:14:6d:af:83:03:16:b3:7e:23:58:a9:7e:b5:12: ae:4b:b3:74:84:fd:7b:6a:c0:f4:49:7c:e3:d6:66: 54:b9:d7:dd:44:50:85:04:8e:78:5a:ed:2c:04:96: 0a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:1A:A5:E8:17:43:B7:42:48:C3:C1:96:FF:3D:92:37:B7:68:7F:F7 X509v3 Authority Key Identifier: keyid:DB:09:C3:85:CA:86:4D:04:95:F9:51:95:FF:7F:07:BC:57:61:E1:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3337/2wnDhcqGTQSV-VGV_38HvFdh4XY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2wnDhcqGTQSV-VGV_38HvFdh4XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3337/2wnDhcqGTQSV-VGV_38HvFdh4XY.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:63:c0:83:56:e3:4d:e3:b8:ea:e1:8f:be:1e:e1:48:f5:fc: a0:35:77:87:28:16:a6:0e:50:ce:7f:24:76:cb:a6:66:df:ff: 4f:46:67:4e:8b:2e:18:9d:0c:71:eb:b8:5b:0c:ee:f1:49:ad: 62:b5:a5:3e:18:5a:f2:21:00:96:a2:05:82:a0:8d:88:dc:be: e0:47:d8:28:ea:0b:75:80:bc:24:16:fb:e9:d1:2a:ae:15:05: f1:7e:ab:e9:50:25:87:9a:44:05:ee:8c:0e:71:bb:02:b8:d1: 67:f4:4b:cb:93:7a:51:d4:ca:b9:ef:3a:9a:4f:5d:2f:ad:a5: 6e:ed:9d:6d:9c:9a:8e:99:ba:50:01:2f:c4:67:ae:fa:21:1a: 2d:8d:cf:a8:73:a1:2d:8b:75:b8:99:3e:70:cc:f3:0d:de:da: 27:bc:cf:83:90:74:d6:19:aa:a3:69:2e:f9:7b:6c:e7:af:2e: 5f:19:04:45:f5:38:88:79:e3:98:f2:29:89:34:d0:18:f7:ea: bb:3c:db:a3:c4:58:e0:7a:27:47:51:ae:17:d4:b4:5e:da:aa: 8a:24:7a:9b:12:72:38:84:26:ae:2e:95:11:ae:25:65:98:29: 4c:79:35:93:9a:bd:fa:da:38:d4:77:58:7a:1c:04:f2:d5:89: fc:17:37:c5 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBNMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREIw OUMzODVDQTg2NEQwNDk1Rjk1MTk1RkY3RjA3QkM1NzYxRTE3NjAeFw0yNTA4MTEw OTA0NDBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDA0MUFBNUU4MTc0M0I3 NDI0OEMzQzE5NkZGM0Q5MjM3Qjc2ODdGRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqDnbka84QmhtizPFxfmE2x2sgR9qlJcS80EAQYDX9NExrxTK/ i9jUNqMqY1FapD+o2HFAZQPcjbxPf0qqjIBVg3Pvmk6SlB20ves3FywyoTUmMvyq AM+d00l0GcoNkg0ptfitiGfbOpIXaIOp3FEJX/ZdfLE0N/Rz2QEUiAnglPRZ8ooB mDYg11mcZeVKILboR/vqxswTVqGgY9XUE+huhgTLTvIKXSeCTBaGfbSHs6pJSN+g 0yApnwj8ZHmEIhZQ0GPqiU3RCIcTBHoXTpf8510Uba+DAxazfiNYqX61Eq5Ls3SE /XtqwPRJfOPWZlS5191EUIUEjnha7SwElgotAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUBBql6BdDt0JIw8GW/z2SN7dof/cwHwYDVR0jBBgwFoAU2wnDhcqGTQSV+VGV /38HvFdh4XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMz Ny8yd25EaGNxR1RRU1YtVkdWXzM4SHZGZGg0WFkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzJ3bkRoY3FHVFFTVi1WR1ZfMzhIdkZkaDRYWS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMzcvMnduRGhjcUdUUVNW LVZHVl8zOEh2RmRoNFhZLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAIdjwINW403juOrhj74e4Uj1/KA1d4coFqYOUM5/JHbLpmbf/09GZ06LLhid DHHruFsM7vFJrWK1pT4YWvIhAJaiBYKgjYjcvuBH2CjqC3WAvCQW++nRKq4VBfF+ q+lQJYeaRAXujA5xuwK40Wf0S8uTelHUyrnvOppPXS+tpW7tnW2cmo6ZulABL8Rn rvohGi2Nz6hzoS2LdbiZPnDM8w3e2ie8z4OQdNYZqqNpLvl7bOevLl8ZBEX1OIh5 45jyKYk00Bj36rs826PEWOB6J0dRrhfUtF7aqookepsScjiEJq4ulRGuJWWYKUx5 NZOavfraONR3WHocBPLVifwXN8U= -----END CERTIFICATE-----Generated at Mon Aug 11 13:01:06 2025 by rpki-client