$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/50/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.mft File: OdKJwhDg7Qi9MAYOyP3ObWjuaZU.mft (raw, json) Hash identifier: 4kKDo91tMKdI7mPQ4XCipGaMSQPv1wbMAfvMKOcOlNQ= Subject key identifier: A2:B1:0D:87:B2:0C:1D:01:60:A4:67:5C:11:BF:53:A0:49:28:C5:23 Authority key identifier: 39:D2:89:C2:10:E0:ED:08:BD:30:06:0E:C8:FD:CE:6D:68:EE:69:95 Certificate issuer: /CN=39D289C210E0ED08BD30060EC8FDCE6D68EE6995 Certificate serial: 16A0 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/50/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.mft Manifest number: 16A0 Signing time: Wed 13 Aug 2025 16:03:53 +0000 Manifest this update: Wed 13 Aug 2025 16:03:53 +0000 Manifest next update: Wed 13 Aug 2025 22:03:53 +0000 Files and hashes: 1: OdKJwhDg7Qi9MAYOyP3ObWjuaZU.crl (hash: clM31gSLJLvNeUe/i6XNJYKDFwmkrvG8huQMuxa5M1U=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/50/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/50/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 22:03:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5792 (0x16a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39D289C210E0ED08BD30060EC8FDCE6D68EE6995 Validity Not Before: Aug 13 16:03:53 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=A2B10D87B20C1D0160A4675C11BF53A04928C523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f5:0f:57:bf:fd:7f:fc:57:01:e7:d8:db:f1: 33:81:b6:c1:f4:14:a7:56:4d:ca:ab:f7:58:59:e2: 9c:ad:d5:06:0a:9d:1d:7d:8e:79:3e:65:bd:2f:15: f0:d5:85:04:0b:c5:d0:fe:54:e4:6a:41:ee:79:d1: 1a:15:91:74:c2:9d:94:81:82:9d:ca:0a:3b:c2:b5: 6f:6b:50:ff:db:03:c5:02:e8:d1:4b:43:e9:84:ca: fd:cf:93:a1:d2:ba:14:1d:79:ca:4f:87:dd:56:a8: 2a:6e:be:46:0a:78:f4:86:5d:3f:a4:8c:b0:4b:3a: ef:1e:e6:c2:ca:e5:84:a3:1b:34:4f:8c:03:9f:09: 6a:b8:c2:ed:33:29:ee:7b:a0:ac:77:13:53:6b:4d: fa:db:c5:49:1c:6e:c0:47:cb:45:15:b9:8b:ae:b1: 9a:4e:93:c4:7e:d0:46:63:e0:3e:25:bd:f0:3e:3c: ad:30:ec:f0:a9:32:96:bb:ac:fa:64:6d:a6:0e:87: 22:20:90:96:a4:6d:c8:2f:ad:27:2a:ef:c4:9d:08: d7:38:a3:52:f2:10:44:5c:33:be:16:86:c9:d7:07: ac:82:5b:53:fb:9b:45:4c:91:80:fd:04:5f:2b:cc: 74:30:5c:7f:8c:cf:dd:71:2d:a0:2d:45:46:6b:48: 3c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:B1:0D:87:B2:0C:1D:01:60:A4:67:5C:11:BF:53:A0:49:28:C5:23 X509v3 Authority Key Identifier: keyid:39:D2:89:C2:10:E0:ED:08:BD:30:06:0E:C8:FD:CE:6D:68:EE:69:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/50/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/50/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:4b:17:31:fe:df:76:41:c6:25:5f:1a:da:ad:41:76:cd:a7: 6c:17:59:85:f0:5a:ad:2d:15:21:84:88:f6:c7:ba:4a:96:df: 82:c4:46:be:d4:68:e2:9d:6b:93:44:52:21:7a:b3:c4:73:9b: 8c:41:12:25:29:6e:74:c5:53:9b:aa:8c:ec:e1:98:08:62:fe: 73:4b:ba:9f:59:f4:f6:9b:58:96:ae:34:66:4c:6b:26:66:08: 2e:d7:7f:03:19:a5:61:3f:6f:45:8b:be:f4:d0:fa:99:c4:fb: 07:be:8a:6a:01:e9:f7:5c:92:f5:8f:f3:1e:9e:7d:b9:ea:d9: 87:02:19:0c:82:94:3f:03:29:95:89:c9:44:1f:06:96:c4:2f: 17:0f:09:33:6b:e6:ea:35:76:73:c8:a9:10:df:aa:6e:7a:59: a0:a0:e9:74:56:09:e3:4e:9e:4e:52:1b:37:90:a2:73:10:6c: 45:12:38:92:2e:59:a7:a2:ba:67:f9:34:c8:56:a4:56:35:e8: a0:c1:03:32:9a:bb:45:96:4c:9b:43:f5:2f:88:05:46:04:c1: 73:49:36:46:bb:77:11:57:2a:69:f0:2a:44:99:da:09:e6:b2: 46:5a:ea:70:e6:ff:a5:fa:d6:ca:c2:95:46:c4:4b:29:43:ce: d5:77:a8:ce -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgICFqAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzlE Mjg5QzIxMEUwRUQwOEJEMzAwNjBFQzhGRENFNkQ2OEVFNjk5NTAeFw0yNTA4MTMx NjAzNTNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEEyQjEwRDg3QjIwQzFE MDE2MEE0Njc1QzExQkY1M0EwNDkyOEM1MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDe9Q9Xv/1//FcB59jb8TOBtsH0FKdWTcqr91hZ4pyt1QYKnR19 jnk+Zb0vFfDVhQQLxdD+VORqQe550RoVkXTCnZSBgp3KCjvCtW9rUP/bA8UC6NFL Q+mEyv3Pk6HSuhQdecpPh91WqCpuvkYKePSGXT+kjLBLOu8e5sLK5YSjGzRPjAOf CWq4wu0zKe57oKx3E1NrTfrbxUkcbsBHy0UVuYuusZpOk8R+0EZj4D4lvfA+PK0w 7PCpMpa7rPpkbaYOhyIgkJakbcgvrScq78SdCNc4o1LyEERcM74WhsnXB6yCW1P7 m0VMkYD9BF8rzHQwXH+Mz91xLaAtRUZrSDx1AgMBAAGjggIIMIICBDAdBgNVHQ4E FgQUorENh7IMHQFgpGdcEb9ToEkoxSMwHwYDVR0jBBgwFoAUOdKJwhDg7Qi9MAYO yP3ObWjuaZUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTAv T2RLSndoRGc3UWk5TUFZT3lQM09iV2p1YVpVLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9PZEtKd2hEZzdRaTlNQVlPeVAzT2JXanVhWlUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC81MC9PZEtKd2hEZzdRaTlNQVlP eVAzT2JXanVhWlUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYB BQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEA SksXMf7fdkHGJV8a2q1Bds2nbBdZhfBarS0VIYSI9se6SpbfgsRGvtRo4p1rk0RS IXqzxHObjEESJSludMVTm6qM7OGYCGL+c0u6n1n09ptYlq40ZkxrJmYILtd/Axml YT9vRYu+9ND6mcT7B76KagHp91yS9Y/zHp59uerZhwIZDIKUPwMplYnJRB8GlsQv Fw8JM2vm6jV2c8ipEN+qbnpZoKDpdFYJ406eTlIbN5CicxBsRRI4ki5Zp6K6Z/k0 yFakVjXooMEDMpq7RZZMm0P1L4gFRgTBc0k2Rrt3EVcqafAqRJnaCeayRlrqcOb/ pfrWysKVRsRLKUPO1Xeozg== -----END CERTIFICATE-----Generated at Wed Aug 13 20:24:06 2025 by rpki-client