$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft File: MhLECXbovqr84IRHL8u8MS-Szow.mft (raw, json) Hash identifier: AF3yugheg5A70J8umbm287YCuCQySoxm1vnPPFac8w0= Subject key identifier: 8F:4E:72:36:9C:B7:C3:91:35:92:C8:ED:1B:D1:83:39:AB:1E:9A:A1 Authority key identifier: 32:12:C4:09:76:E8:BE:AA:FC:E0:84:47:2F:CB:BC:31:2F:92:CE:8C Certificate issuer: /CN=3212C40976E8BEAAFCE084472FCBBC312F92CE8C Certificate serial: 025C Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MhLECXbovqr84IRHL8u8MS-Szow.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft Manifest number: 025C Signing time: Sun 22 Jun 2025 01:11:39 +0000 Manifest this update: Sun 22 Jun 2025 01:11:38 +0000 Manifest next update: Sun 22 Jun 2025 07:11:38 +0000 Files and hashes: 1: MhLECXbovqr84IRHL8u8MS-Szow.crl (hash: a1vGngrJInanMJjM4YIOYiyjXhTX7f82sMnfwjkNfjY=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MhLECXbovqr84IRHL8u8MS-Szow.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 07:11:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3212C40976E8BEAAFCE084472FCBBC312F92CE8C Validity Not Before: Jun 22 01:11:38 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=8F4E72369CB7C3913592C8ED1BD18339AB1E9AA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:17:73:c0:0a:10:46:57:fc:81:4a:e0:16:96: 31:df:e3:b6:c6:55:c2:5b:37:e9:32:93:3c:d6:08: 4b:ad:c3:79:e9:c9:ca:d1:66:48:f0:81:07:20:30: 9a:21:e2:86:e4:b3:6c:94:7a:f7:66:52:19:6e:54: a5:56:6c:4a:33:eb:bf:c7:b1:b3:1a:4e:45:3f:09: 67:cf:88:10:38:9e:1b:dd:33:b6:40:d3:d5:57:e0: ab:a1:56:98:80:67:1a:8d:79:2a:f2:37:a0:58:ce: cf:6c:df:56:ac:ce:8f:66:3f:83:43:14:57:f5:3c: 49:58:7b:e1:5e:e0:96:92:3e:28:28:b1:d8:27:7a: 6c:98:45:ba:fd:d3:2d:8a:4b:25:74:83:ea:ad:7d: c9:7c:54:8a:0c:ac:9d:85:8f:26:a6:95:06:4d:0a: b7:91:7d:8e:e8:40:48:ab:f1:f4:67:25:9f:33:5f: d0:88:92:1d:d2:f7:52:f6:3b:a9:bb:d4:9d:8e:15: ef:33:78:3f:91:12:1a:19:32:ca:01:da:b1:e3:15: ec:94:f1:ce:a4:93:4b:3a:02:05:ef:34:e5:a3:9b: 82:22:32:60:50:c0:b5:46:87:fe:ee:2a:b9:14:fb: 7d:89:98:11:31:c8:4d:08:e5:32:d2:37:93:72:d2: b5:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:4E:72:36:9C:B7:C3:91:35:92:C8:ED:1B:D1:83:39:AB:1E:9A:A1 X509v3 Authority Key Identifier: keyid:32:12:C4:09:76:E8:BE:AA:FC:E0:84:47:2F:CB:BC:31:2F:92:CE:8C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MhLECXbovqr84IRHL8u8MS-Szow.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:fc:25:06:e6:a5:a5:e8:e6:1a:53:19:e1:05:e1:f0:9e:52: 5e:98:74:1a:02:d9:03:b0:a6:bc:cb:46:ad:9a:e3:e7:5b:f2: b6:bb:f3:11:e3:b6:b9:8a:34:34:54:39:52:a2:21:da:2c:d2: ed:43:05:9a:a3:fd:9c:64:7f:61:8f:bb:11:f8:b6:6d:98:65: bd:9d:2c:e4:bb:bb:94:95:01:37:e3:0a:ac:75:e4:17:33:2a: d3:91:91:3f:86:99:2b:12:d4:a2:18:7f:f2:4b:25:44:0d:45: 15:16:c8:64:84:82:c6:1f:e5:e0:4e:7e:44:e9:94:53:d9:fb: 9b:b0:be:a8:e4:42:ea:7f:98:ea:26:86:3a:bd:16:2a:a8:d8: f7:25:05:14:96:0f:39:0a:fa:13:c0:33:c9:92:07:22:a8:cc: f9:38:e1:2a:f1:d9:eb:f7:50:bf:72:15:9b:77:d0:5e:84:3c: d3:d8:8d:1c:69:eb:0d:13:58:d9:86:ef:05:4c:b3:89:5e:0b: 42:cb:19:f2:bc:3c:f9:59:21:52:2d:ce:1b:ec:9d:fe:b6:b2: 4f:bb:60:f1:f9:c5:0f:ee:08:04:17:1f:72:3a:e7:a0:01:d9: a6:b0:44:35:5a:53:30:0f:db:59:d5:71:ed:d7:7f:31:83:35: 8d:e2:e2:ff -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzIx MkM0MDk3NkU4QkVBQUZDRTA4NDQ3MkZDQkJDMzEyRjkyQ0U4QzAeFw0yNTA2MjIw MTExMzhaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDhGNEU3MjM2OUNCN0Mz OTEzNTkyQzhFRDFCRDE4MzM5QUIxRTlBQTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrF3PAChBGV/yBSuAWljHf47bGVcJbN+kykzzWCEutw3npycrR ZkjwgQcgMJoh4obks2yUevdmUhluVKVWbEoz67/HsbMaTkU/CWfPiBA4nhvdM7ZA 09VX4KuhVpiAZxqNeSryN6BYzs9s31aszo9mP4NDFFf1PElYe+Fe4JaSPigosdgn emyYRbr90y2KSyV0g+qtfcl8VIoMrJ2FjyamlQZNCreRfY7oQEir8fRnJZ8zX9CI kh3S91L2O6m71J2OFe8zeD+REhoZMsoB2rHjFeyU8c6kk0s6AgXvNOWjm4IiMmBQ wLVGh/7uKrkU+32JmBExyE0I5TLSN5Ny0rXvAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUj05yNpy3w5E1ksjtG9GDOasemqEwHwYDVR0jBBgwFoAUMhLECXbovqr84IRH L8u8MS+SzowwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM1 My9NaExFQ1hib3Zxcjg0SVJITDh1OE1TLVN6b3cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL01oTEVDWGJvdnFyODRJUkhMOHU4TVMtU3pvdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNTMvTWhMRUNYYm92cXI4 NElSSEw4dThNUy1Tem93Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAAf8JQbmpaXo5hpTGeEF4fCeUl6YdBoC2QOwprzLRq2a4+db8ra78xHjtrmK NDRUOVKiIdos0u1DBZqj/Zxkf2GPuxH4tm2YZb2dLOS7u5SVATfjCqx15BczKtOR kT+GmSsS1KIYf/JLJUQNRRUWyGSEgsYf5eBOfkTplFPZ+5uwvqjkQup/mOomhjq9 Fiqo2PclBRSWDzkK+hPAM8mSByKozPk44Srx2ev3UL9yFZt30F6EPNPYjRxp6w0T WNmG7wVMs4leC0LLGfK8PPlZIVItzhvsnf62sk+7YPH5xQ/uCAQXH3I656AB2aaw RDVaUzAP21nVce3XfzGDNY3i4v8= -----END CERTIFICATE-----Generated at Sun Jun 22 06:58:01 2025 by rpki-client