$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.mft File: 0VDidxb20dIqOfSm3lvj6JNPgUI.mft (raw, json) Hash identifier: EObWPVp9QUx8OgeBzEEz5JkQop85SDHGO5wBIMEqyqw= Subject key identifier: 1F:56:71:BB:92:B8:7E:4A:94:7E:BE:45:F2:DC:A1:29:C0:B5:99:85 Authority key identifier: D1:50:E2:77:16:F6:D1:D2:2A:39:F4:A6:DE:5B:E3:E8:93:4F:81:42 Certificate issuer: /CN=D150E27716F6D1D22A39F4A6DE5BE3E8934F8142 Certificate serial: 034E Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0VDidxb20dIqOfSm3lvj6JNPgUI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.mft Manifest number: 034E Signing time: Wed 13 Aug 2025 05:01:46 +0000 Manifest this update: Wed 13 Aug 2025 05:01:46 +0000 Manifest next update: Wed 13 Aug 2025 11:01:46 +0000 Files and hashes: 1: 0VDidxb20dIqOfSm3lvj6JNPgUI.crl (hash: 4RX1ZxY/oQpDR4clghMrR7XpqzbvkX0OQV3gh6/Or3A=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0VDidxb20dIqOfSm3lvj6JNPgUI.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 11:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 846 (0x34e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D150E27716F6D1D22A39F4A6DE5BE3E8934F8142 Validity Not Before: Aug 13 05:01:46 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=1F5671BB92B87E4A947EBE45F2DCA129C0B59985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:91:b3:91:12:fd:4a:ca:29:b9:98:23:9c:5e: 07:53:17:99:67:58:79:46:79:a7:d6:2f:6f:ca:9d: 63:df:21:5e:81:85:13:cb:21:44:f7:d3:f1:f7:43: 53:06:9d:a4:e5:db:61:88:09:be:7c:18:72:57:db: e7:cc:c2:6c:27:81:6e:ff:1d:0a:9d:f3:14:ad:c5: 6b:d6:a7:e3:6e:cc:3d:28:d0:01:23:51:58:11:3d: f1:96:20:3f:8c:0f:e1:6a:63:c8:4f:46:a3:e4:72: 5a:57:1d:37:52:b4:b5:23:41:bd:97:a6:bd:80:97: d6:cf:76:0c:42:f8:66:fb:82:d1:d5:58:ac:e5:58: 0f:fd:34:ea:37:69:2b:69:af:7a:cc:00:8d:86:42: d5:20:a2:7f:13:33:4a:c0:79:0c:82:1a:30:3b:25: b8:78:87:f3:77:5d:ae:db:ae:b9:d1:a9:b4:47:e5: 0a:67:ec:ec:bf:ad:88:bf:f1:ed:e9:6d:0c:11:34: 5e:c0:03:3c:d9:97:c8:d8:49:e0:22:79:b8:da:8c: b8:69:fe:fa:d2:90:45:78:ee:32:1c:a3:46:d2:a0: 4c:6f:bf:b3:b4:ed:1c:9d:90:9b:07:d5:f5:f1:ac: 5c:a6:9e:1b:73:77:41:e2:f3:7c:7e:6c:48:38:a1: fc:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:56:71:BB:92:B8:7E:4A:94:7E:BE:45:F2:DC:A1:29:C0:B5:99:85 X509v3 Authority Key Identifier: keyid:D1:50:E2:77:16:F6:D1:D2:2A:39:F4:A6:DE:5B:E3:E8:93:4F:81:42 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0VDidxb20dIqOfSm3lvj6JNPgUI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:89:dc:29:fd:bd:70:d6:15:a3:7f:c8:ff:b7:78:19:54:3e: 7a:67:36:95:61:2d:2f:97:19:82:c6:f5:99:7b:11:1d:68:73: db:84:ad:2d:dc:ab:35:06:7e:59:92:63:03:8c:4b:5b:9d:da: 4e:18:5f:23:13:42:1e:6e:46:59:a1:4e:fc:b0:6e:fc:ec:28: ea:82:d3:92:47:10:a4:50:ee:e9:6e:e0:13:ad:92:00:dd:a4: 25:b7:5a:3b:78:d2:26:8e:0f:a1:58:66:18:4f:1e:9e:e9:96: 3c:26:3d:db:21:a7:8a:1a:15:27:c1:be:12:b3:23:f7:21:f3: 58:fa:53:a8:e9:04:83:22:99:40:a2:a5:4f:c9:a3:45:c6:2f: 9d:b0:ca:cd:9e:e2:72:29:89:8b:c6:38:ae:69:76:b6:fd:05: 14:d2:3a:06:51:bd:69:6a:48:37:a5:b1:f8:8e:32:a0:56:80: 3b:46:15:bc:21:6a:87:21:fe:77:e0:6a:66:b9:58:36:b6:33: c3:26:bb:a4:d2:5b:12:0d:7b:db:b3:d8:08:d7:c2:e1:9b:8f: 6e:3e:85:0d:a8:f0:f2:72:64:a1:cb:e8:e9:a1:7d:42:0d:43: 49:fb:2b:76:41:41:4e:d5:64:8f:26:41:4b:2f:63:b1:31:7c: d7:41:36:8c -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICA04wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE1 MEUyNzcxNkY2RDFEMjJBMzlGNEE2REU1QkUzRTg5MzRGODE0MjAeFw0yNTA4MTMw NTAxNDZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDFGNTY3MUJCOTJCODdF NEE5NDdFQkU0NUYyRENBMTI5QzBCNTk5ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwkbOREv1Kyim5mCOcXgdTF5lnWHlGeafWL2/KnWPfIV6BhRPL IUT30/H3Q1MGnaTl22GICb58GHJX2+fMwmwngW7/HQqd8xStxWvWp+NuzD0o0AEj UVgRPfGWID+MD+FqY8hPRqPkclpXHTdStLUjQb2Xpr2Al9bPdgxC+Gb7gtHVWKzl WA/9NOo3aStpr3rMAI2GQtUgon8TM0rAeQyCGjA7Jbh4h/N3Xa7brrnRqbRH5Qpn 7Oy/rYi/8e3pbQwRNF7AAzzZl8jYSeAiebjajLhp/vrSkEV47jIco0bSoExvv7O0 7RydkJsH1fXxrFymnhtzd0Hi83x+bEg4ofyVAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUH1Zxu5K4fkqUfr5F8tyhKcC1mYUwHwYDVR0jBBgwFoAU0VDidxb20dIqOfSm 3lvj6JNPgUIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM1 NS8wVkRpZHhiMjBkSXFPZlNtM2x2ajZKTlBnVUkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBWRGlkeGIyMGRJcU9mU20zbHZqNkpOUGdVSS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNTUvMFZEaWR4YjIwZElx T2ZTbTNsdmo2Sk5QZ1VJLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAJ+J3Cn9vXDWFaN/yP+3eBlUPnpnNpVhLS+XGYLG9Zl7ER1oc9uErS3cqzUG flmSYwOMS1ud2k4YXyMTQh5uRlmhTvywbvzsKOqC05JHEKRQ7ulu4BOtkgDdpCW3 Wjt40iaOD6FYZhhPHp7pljwmPdshp4oaFSfBvhKzI/ch81j6U6jpBIMimUCipU/J o0XGL52wys2e4nIpiYvGOK5pdrb9BRTSOgZRvWlqSDelsfiOMqBWgDtGFbwhaoch /nfgama5WDa2M8Mmu6TSWxINe9uz2AjXwuGbj24+hQ2o8PJyZKHL6OmhfUINQ0n7 K3ZBQU7VZI8mQUsvY7ExfNdBNow= -----END CERTIFICATE-----Generated at Wed Aug 13 07:59:39 2025 by rpki-client