$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft File: MhLECXbovqr84IRHL8u8MS-Szow.mft (raw, json) Hash identifier: Xj22Z/8rC/I4xTI6v4ZRk1dXFSi9ZhBz1XZ0VLUQ+58= Subject key identifier: 8F:4E:72:36:9C:B7:C3:91:35:92:C8:ED:1B:D1:83:39:AB:1E:9A:A1 Authority key identifier: 32:12:C4:09:76:E8:BE:AA:FC:E0:84:47:2F:CB:BC:31:2F:92:CE:8C Certificate issuer: /CN=3212C40976E8BEAAFCE084472FCBBC312F92CE8C Certificate serial: 0361 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MhLECXbovqr84IRHL8u8MS-Szow.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft Manifest number: 0361 Signing time: Wed 13 Aug 2025 21:03:55 +0000 Manifest this update: Wed 13 Aug 2025 21:03:55 +0000 Manifest next update: Thu 14 Aug 2025 03:03:55 +0000 Files and hashes: 1: MhLECXbovqr84IRHL8u8MS-Szow.crl (hash: zwFuVXiLHINyun/O/6la5h6sJE2MRHyjZzwP/snhv+0=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MhLECXbovqr84IRHL8u8MS-Szow.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 00:33:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 865 (0x361) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3212C40976E8BEAAFCE084472FCBBC312F92CE8C Validity Not Before: Aug 13 21:03:55 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=8F4E72369CB7C3913592C8ED1BD18339AB1E9AA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:17:73:c0:0a:10:46:57:fc:81:4a:e0:16:96: 31:df:e3:b6:c6:55:c2:5b:37:e9:32:93:3c:d6:08: 4b:ad:c3:79:e9:c9:ca:d1:66:48:f0:81:07:20:30: 9a:21:e2:86:e4:b3:6c:94:7a:f7:66:52:19:6e:54: a5:56:6c:4a:33:eb:bf:c7:b1:b3:1a:4e:45:3f:09: 67:cf:88:10:38:9e:1b:dd:33:b6:40:d3:d5:57:e0: ab:a1:56:98:80:67:1a:8d:79:2a:f2:37:a0:58:ce: cf:6c:df:56:ac:ce:8f:66:3f:83:43:14:57:f5:3c: 49:58:7b:e1:5e:e0:96:92:3e:28:28:b1:d8:27:7a: 6c:98:45:ba:fd:d3:2d:8a:4b:25:74:83:ea:ad:7d: c9:7c:54:8a:0c:ac:9d:85:8f:26:a6:95:06:4d:0a: b7:91:7d:8e:e8:40:48:ab:f1:f4:67:25:9f:33:5f: d0:88:92:1d:d2:f7:52:f6:3b:a9:bb:d4:9d:8e:15: ef:33:78:3f:91:12:1a:19:32:ca:01:da:b1:e3:15: ec:94:f1:ce:a4:93:4b:3a:02:05:ef:34:e5:a3:9b: 82:22:32:60:50:c0:b5:46:87:fe:ee:2a:b9:14:fb: 7d:89:98:11:31:c8:4d:08:e5:32:d2:37:93:72:d2: b5:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:4E:72:36:9C:B7:C3:91:35:92:C8:ED:1B:D1:83:39:AB:1E:9A:A1 X509v3 Authority Key Identifier: keyid:32:12:C4:09:76:E8:BE:AA:FC:E0:84:47:2F:CB:BC:31:2F:92:CE:8C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MhLECXbovqr84IRHL8u8MS-Szow.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:aa:97:16:fe:e2:60:50:cb:69:ba:7f:be:d5:af:17:e6:00: ac:da:82:64:0e:75:c0:64:a3:4f:aa:c5:cf:d5:5f:77:80:49: a3:e8:22:5a:1c:e9:74:cb:3f:c0:c8:3b:95:7a:3c:c9:c8:9d: 10:13:06:ff:51:44:8d:d9:d6:a2:c0:8a:ef:e7:e0:9f:0a:49: d7:ae:f4:18:6b:09:66:8e:20:ea:f9:07:30:f5:b7:ee:f8:21: 25:47:08:75:59:3f:a6:f6:a0:4d:7a:a9:a7:f3:a0:c4:f3:76: d3:d4:86:45:13:3d:33:d7:62:aa:2e:55:fc:b8:fc:d9:b2:6b: ac:ea:95:7c:30:d9:f7:40:35:e4:2d:71:f9:b4:f1:90:0c:f3: 63:cb:70:8d:9b:3d:0f:ca:79:58:84:9e:9a:86:99:01:e5:55: d3:39:ab:57:ac:29:c1:41:ac:3d:3f:13:de:85:75:5d:1d:ce: b1:72:6b:f6:53:02:85:9e:65:61:de:bf:34:3b:b4:2c:13:a7: 85:70:fd:63:3a:4f:c7:34:64:05:da:07:11:98:1b:27:ec:7f: ea:e4:88:c8:99:96:12:09:8c:b4:26:36:70:9b:60:4c:9f:f4: 5f:b3:38:c4:4e:c7:19:11:b3:75:90:77:15:b3:22:65:1b:f3: ec:a9:c7:22 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICA2EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzIx MkM0MDk3NkU4QkVBQUZDRTA4NDQ3MkZDQkJDMzEyRjkyQ0U4QzAeFw0yNTA4MTMy MTAzNTVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDhGNEU3MjM2OUNCN0Mz OTEzNTkyQzhFRDFCRDE4MzM5QUIxRTlBQTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrF3PAChBGV/yBSuAWljHf47bGVcJbN+kykzzWCEutw3npycrR ZkjwgQcgMJoh4obks2yUevdmUhluVKVWbEoz67/HsbMaTkU/CWfPiBA4nhvdM7ZA 09VX4KuhVpiAZxqNeSryN6BYzs9s31aszo9mP4NDFFf1PElYe+Fe4JaSPigosdgn emyYRbr90y2KSyV0g+qtfcl8VIoMrJ2FjyamlQZNCreRfY7oQEir8fRnJZ8zX9CI kh3S91L2O6m71J2OFe8zeD+REhoZMsoB2rHjFeyU8c6kk0s6AgXvNOWjm4IiMmBQ wLVGh/7uKrkU+32JmBExyE0I5TLSN5Ny0rXvAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUj05yNpy3w5E1ksjtG9GDOasemqEwHwYDVR0jBBgwFoAUMhLECXbovqr84IRH L8u8MS+SzowwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM1 My9NaExFQ1hib3Zxcjg0SVJITDh1OE1TLVN6b3cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL01oTEVDWGJvdnFyODRJUkhMOHU4TVMtU3pvdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNTMvTWhMRUNYYm92cXI4 NElSSEw4dThNUy1Tem93Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAKeqlxb+4mBQy2m6f77VrxfmAKzagmQOdcBko0+qxc/VX3eASaPoIloc6XTL P8DIO5V6PMnInRATBv9RRI3Z1qLAiu/n4J8KSdeu9BhrCWaOIOr5BzD1t+74ISVH CHVZP6b2oE16qafzoMTzdtPUhkUTPTPXYqouVfy4/Nmya6zqlXww2fdANeQtcfm0 8ZAM82PLcI2bPQ/KeViEnpqGmQHlVdM5q1esKcFBrD0/E96FdV0dzrFya/ZTAoWe ZWHevzQ7tCwTp4Vw/WM6T8c0ZAXaBxGYGyfsf+rkiMiZlhIJjLQmNnCbYEyf9F+z OMROxxkRs3WQdxWzImUb8+ypxyI= -----END CERTIFICATE-----Generated at Wed Aug 13 22:13:54 2025 by rpki-client