$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.mft File: 0VDidxb20dIqOfSm3lvj6JNPgUI.mft (raw, json) Hash identifier: 7D2+iQNcxXDfXj1c/V0/w6xfe3+bUmx94v4YyImtSH4= Subject key identifier: 1F:56:71:BB:92:B8:7E:4A:94:7E:BE:45:F2:DC:A1:29:C0:B5:99:85 Authority key identifier: D1:50:E2:77:16:F6:D1:D2:2A:39:F4:A6:DE:5B:E3:E8:93:4F:81:42 Certificate issuer: /CN=D150E27716F6D1D22A39F4A6DE5BE3E8934F8142 Certificate serial: 04F1 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0VDidxb20dIqOfSm3lvj6JNPgUI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.mft Manifest number: 04F1 Signing time: Wed 05 Nov 2025 19:41:07 +0000 Manifest this update: Wed 05 Nov 2025 19:41:07 +0000 Manifest next update: Thu 06 Nov 2025 01:41:07 +0000 Files and hashes: 1: 0VDidxb20dIqOfSm3lvj6JNPgUI.crl (hash: /8M+GP4uKutwfqwlP8uWs3QGtVSjgj4SNfzZjuSx3AU=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0VDidxb20dIqOfSm3lvj6JNPgUI.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 23:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1265 (0x4f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D150E27716F6D1D22A39F4A6DE5BE3E8934F8142 Validity Not Before: Nov 5 19:41:07 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=1F5671BB92B87E4A947EBE45F2DCA129C0B59985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:91:b3:91:12:fd:4a:ca:29:b9:98:23:9c:5e: 07:53:17:99:67:58:79:46:79:a7:d6:2f:6f:ca:9d: 63:df:21:5e:81:85:13:cb:21:44:f7:d3:f1:f7:43: 53:06:9d:a4:e5:db:61:88:09:be:7c:18:72:57:db: e7:cc:c2:6c:27:81:6e:ff:1d:0a:9d:f3:14:ad:c5: 6b:d6:a7:e3:6e:cc:3d:28:d0:01:23:51:58:11:3d: f1:96:20:3f:8c:0f:e1:6a:63:c8:4f:46:a3:e4:72: 5a:57:1d:37:52:b4:b5:23:41:bd:97:a6:bd:80:97: d6:cf:76:0c:42:f8:66:fb:82:d1:d5:58:ac:e5:58: 0f:fd:34:ea:37:69:2b:69:af:7a:cc:00:8d:86:42: d5:20:a2:7f:13:33:4a:c0:79:0c:82:1a:30:3b:25: b8:78:87:f3:77:5d:ae:db:ae:b9:d1:a9:b4:47:e5: 0a:67:ec:ec:bf:ad:88:bf:f1:ed:e9:6d:0c:11:34: 5e:c0:03:3c:d9:97:c8:d8:49:e0:22:79:b8:da:8c: b8:69:fe:fa:d2:90:45:78:ee:32:1c:a3:46:d2:a0: 4c:6f:bf:b3:b4:ed:1c:9d:90:9b:07:d5:f5:f1:ac: 5c:a6:9e:1b:73:77:41:e2:f3:7c:7e:6c:48:38:a1: fc:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:56:71:BB:92:B8:7E:4A:94:7E:BE:45:F2:DC:A1:29:C0:B5:99:85 X509v3 Authority Key Identifier: keyid:D1:50:E2:77:16:F6:D1:D2:2A:39:F4:A6:DE:5B:E3:E8:93:4F:81:42 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0VDidxb20dIqOfSm3lvj6JNPgUI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:5d:6f:d2:de:76:be:26:57:db:05:57:07:b0:5f:24:33:18: 6f:bc:2e:be:d6:13:a0:d0:04:d0:ee:fa:ed:4b:b3:2f:33:2d: df:b4:93:de:4d:87:7b:9a:ac:b3:95:9f:2a:6c:b5:ac:2b:35: a8:0b:4c:95:39:97:6a:49:2b:f4:f1:a6:96:83:d2:57:bc:93: 56:95:ba:3a:54:0e:14:21:76:fa:e2:6e:4e:7e:31:00:6d:9a: ee:19:27:d8:ba:41:f6:06:cb:04:a0:2e:69:d0:6a:04:62:86: 85:64:bb:ba:cf:e3:d4:d3:35:19:09:2f:31:6b:b3:67:1a:32: db:9f:0d:b4:c0:be:d4:35:21:c2:13:de:50:e0:da:c4:0b:17: aa:b5:5b:ea:0e:50:bc:01:fc:ff:31:75:02:d3:88:07:d1:e0: b4:f0:f4:92:1f:d8:31:07:18:35:d0:f2:49:02:b9:99:0a:80: c2:87:5c:bc:f2:0a:dd:73:8e:04:a8:51:33:33:2e:63:17:ca: 59:78:3f:17:f7:c9:28:28:5f:4b:f0:e4:5b:5a:b8:fb:71:50: e3:0b:10:48:6b:d8:34:a9:9a:87:0a:b6:0c:ac:8f:72:c5:dd: f2:9a:3d:0f:35:22:2e:8a:0e:01:9b:4c:db:40:65:59:46:62: 2e:5f:55:0a -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBPEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE1 MEUyNzcxNkY2RDFEMjJBMzlGNEE2REU1QkUzRTg5MzRGODE0MjAeFw0yNTExMDUx OTQxMDdaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDFGNTY3MUJCOTJCODdF NEE5NDdFQkU0NUYyRENBMTI5QzBCNTk5ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwkbOREv1Kyim5mCOcXgdTF5lnWHlGeafWL2/KnWPfIV6BhRPL IUT30/H3Q1MGnaTl22GICb58GHJX2+fMwmwngW7/HQqd8xStxWvWp+NuzD0o0AEj UVgRPfGWID+MD+FqY8hPRqPkclpXHTdStLUjQb2Xpr2Al9bPdgxC+Gb7gtHVWKzl WA/9NOo3aStpr3rMAI2GQtUgon8TM0rAeQyCGjA7Jbh4h/N3Xa7brrnRqbRH5Qpn 7Oy/rYi/8e3pbQwRNF7AAzzZl8jYSeAiebjajLhp/vrSkEV47jIco0bSoExvv7O0 7RydkJsH1fXxrFymnhtzd0Hi83x+bEg4ofyVAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUH1Zxu5K4fkqUfr5F8tyhKcC1mYUwHwYDVR0jBBgwFoAU0VDidxb20dIqOfSm 3lvj6JNPgUIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM1 NS8wVkRpZHhiMjBkSXFPZlNtM2x2ajZKTlBnVUkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBWRGlkeGIyMGRJcU9mU20zbHZqNkpOUGdVSS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNTUvMFZEaWR4YjIwZElx T2ZTbTNsdmo2Sk5QZ1VJLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAD9db9Ledr4mV9sFVwewXyQzGG+8Lr7WE6DQBNDu+u1Lsy8zLd+0k95Nh3ua rLOVnypstawrNagLTJU5l2pJK/TxppaD0le8k1aVujpUDhQhdvribk5+MQBtmu4Z J9i6QfYGywSgLmnQagRihoVku7rP49TTNRkJLzFrs2caMtufDbTAvtQ1IcIT3lDg 2sQLF6q1W+oOULwB/P8xdQLTiAfR4LTw9JIf2DEHGDXQ8kkCuZkKgMKHXLzyCt1z jgSoUTMzLmMXyll4Pxf3ySgoX0vw5FtauPtxUOMLEEhr2DSpmocKtgysj3LF3fKa PQ81Ii6KDgGbTNtAZVlGYi5fVQo= -----END CERTIFICATE-----Generated at Wed Nov 5 22:45:34 2025 by rpki-client