$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft File: qP3wu66meVNpOJbHY_Ep2jtBg-s.mft (raw, json) Hash identifier: 9IGiBcnNiXyN69OTtV9iT2JApoQamH/TZCqGPeWUbls= Subject key identifier: 81:42:3B:A7:7A:B7:08:72:49:D6:8E:24:98:CC:5E:6A:24:72:0A:E3 Authority key identifier: A8:FD:F0:BB:AE:A6:79:53:69:38:96:C7:63:F1:29:DA:3B:41:83:EB Certificate issuer: /CN=A8FDF0BBAEA67953693896C763F129DA3B4183EB Certificate serial: 016D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qP3wu66meVNpOJbHY_Ep2jtBg-s.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft Manifest number: 0164 Signing time: Wed 05 Nov 2025 08:11:21 +0000 Manifest this update: Wed 05 Nov 2025 08:11:20 +0000 Manifest next update: Wed 05 Nov 2025 14:11:20 +0000 Files and hashes: 1: 3gLZcEB9b6CcG88DthuUvQzuMng.roa (hash: sTik18vjb2qG/NYnXK3uG9tY/DL8xWE+DymUfLAIlnE=) 2: F0kSGnAIagivcV8g5cUdsyi-f3E.roa (hash: UcsToYzGinH+LaJVhXhSb5v+g/uBThplPaSlnEqw7FM=) 3: RXJSANHbZrdpPxa1bsPmTvjO39Q.roa (hash: 95CUp/VfY7PSkOcAscjkDxH3xv1Hjai/9RJJgyl0Hqs=) 4: WC1nHAg0yIPcV3WIpCTCZDMOWmM.roa (hash: aYTc6ZXigj8FqXcD/bFRpNLNct9j8zBZNjugMTj8hX8=) 5: qP3wu66meVNpOJbHY_Ep2jtBg-s.crl (hash: gLvSTaZnMc0BzoepLnQF8B3YUVSo0rFRDbyHv94qikg=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qP3wu66meVNpOJbHY_Ep2jtBg-s.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 14:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 365 (0x16d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A8FDF0BBAEA67953693896C763F129DA3B4183EB Validity Not Before: Nov 5 08:11:20 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=81423BA77AB7087249D68E2498CC5E6A24720AE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a7:40:c5:41:bc:f5:4e:9b:62:5d:a9:4a:2d: 3f:e6:d7:ce:78:ff:60:eb:5a:fc:45:18:10:55:5e: 31:48:05:87:80:17:55:a9:d6:e3:b2:13:d4:23:9e: f0:f4:51:84:ae:af:07:95:68:71:29:21:c8:1f:ac: 40:95:69:f7:c8:cd:b5:9f:bd:cf:9d:60:1b:03:8e: 6e:12:c1:53:bd:31:df:c5:b5:e0:67:df:39:04:60: 25:5f:3c:a5:5b:d9:61:9b:01:1f:4c:7e:ee:a7:00: e3:07:dd:69:a7:83:82:e5:99:f9:57:24:6d:1d:a9: 5b:0f:ee:45:21:3f:b4:b1:d9:d5:72:c3:6e:59:19: b9:d0:b7:46:65:b9:04:eb:e6:9d:d7:c8:10:1e:66: a2:ad:3f:07:5b:2f:a8:74:79:1a:9a:7b:fd:1e:7f: f2:a4:33:61:4a:4f:ad:8b:30:d4:b5:fe:a2:77:b0: de:f2:85:76:d2:1d:33:e1:08:f4:b5:9d:53:5e:3a: ae:67:ec:cb:a2:d3:39:ad:47:b5:1c:c4:90:a5:ea: 55:4e:24:55:e5:1a:e2:e2:0f:e3:77:2c:3f:4d:e6: 50:99:a8:4b:bb:fd:81:0d:12:db:31:1e:5c:20:69: ba:16:09:96:4a:0a:3c:f3:f1:c2:8b:2f:fc:7e:b9: 1a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:42:3B:A7:7A:B7:08:72:49:D6:8E:24:98:CC:5E:6A:24:72:0A:E3 X509v3 Authority Key Identifier: keyid:A8:FD:F0:BB:AE:A6:79:53:69:38:96:C7:63:F1:29:DA:3B:41:83:EB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qP3wu66meVNpOJbHY_Ep2jtBg-s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:51:2e:b6:2a:d9:2a:45:d6:1d:b1:3d:70:57:85:42:14:5d: 5a:97:8b:56:6f:26:d9:b8:27:9e:6e:23:05:7b:47:82:f3:2a: 57:cd:a2:9e:df:91:e4:54:1f:79:41:ed:4d:7b:92:6d:c4:74: bc:63:cd:f4:e3:de:00:81:ac:fa:ec:b0:30:84:af:87:7a:ba: 4a:e8:3d:91:0a:5f:73:f0:e6:a2:d4:63:2c:d5:99:4c:79:12: 0d:20:fa:68:49:22:83:48:f1:8b:04:18:29:fb:ab:62:22:95: 19:88:4f:5e:df:89:ce:74:eb:4f:34:7e:aa:15:bb:cd:0c:ec: 52:21:01:24:ff:a6:ec:19:bc:6b:cd:63:77:b3:f0:0c:18:3d: e3:a4:38:8c:5c:9e:d5:82:2c:bf:94:64:f3:0e:d2:45:9e:4f: c7:e7:af:f4:d3:38:a5:ba:3a:70:cd:d7:d8:49:85:88:ee:5e: d5:65:c7:7e:46:ea:77:42:d5:1a:68:ca:ac:db:ad:8c:c9:a2: aa:91:07:de:95:f8:36:6a:2b:07:ba:43:52:fb:d4:16:ff:dc: 0e:99:26:5b:c6:2b:79:2a:9d:9d:e0:18:95:ce:11:fd:94:64: 7c:66:f8:56:54:48:5c:c7:a4:6d:32:9d:24:df:e9:f4:07:60: 3e:95:06:53 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICAW0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQThG REYwQkJBRUE2Nzk1MzY5Mzg5NkM3NjNGMTI5REEzQjQxODNFQjAeFw0yNTExMDUw ODExMjBaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDgxNDIzQkE3N0FCNzA4 NzI0OUQ2OEUyNDk4Q0M1RTZBMjQ3MjBBRTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyp0DFQbz1TptiXalKLT/m1854/2DrWvxFGBBVXjFIBYeAF1Wp 1uOyE9QjnvD0UYSurweVaHEpIcgfrECVaffIzbWfvc+dYBsDjm4SwVO9Md/FteBn 3zkEYCVfPKVb2WGbAR9Mfu6nAOMH3Wmng4LlmflXJG0dqVsP7kUhP7Sx2dVyw25Z GbnQt0ZluQTr5p3XyBAeZqKtPwdbL6h0eRqae/0ef/KkM2FKT62LMNS1/qJ3sN7y hXbSHTPhCPS1nVNeOq5n7Mui0zmtR7UcxJCl6lVOJFXlGuLiD+N3LD9N5lCZqEu7 /YENEtsxHlwgaboWCZZKCjzz8cKLL/x+uRqZAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUgUI7p3q3CHJJ1o4kmMxeaiRyCuMwHwYDVR0jBBgwFoAUqP3wu66meVNpOJbH Y/Ep2jtBg+swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTg1 L3FQM3d1NjZtZVZOcE9KYkhZX0VwMmp0Qmctcy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvcVAzd3U2Nm1lVk5wT0piSFlfRXAyanRCZy1zLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTg1L3FQM3d1NjZtZVZOcE9K YkhZX0VwMmp0Qmctcy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCuUS62KtkqRdYdsT1wV4VCFF1al4tWbybZuCeebiMFe0eC8ypXzaKe35HkVB95 Qe1Ne5JtxHS8Y830494Agaz67LAwhK+HerpK6D2RCl9z8Oai1GMs1ZlMeRINIPpo SSKDSPGLBBgp+6tiIpUZiE9e34nOdOtPNH6qFbvNDOxSIQEk/6bsGbxrzWN3s/AM GD3jpDiMXJ7Vgiy/lGTzDtJFnk/H56/00zilujpwzdfYSYWI7l7VZcd+Rup3QtUa aMqs262MyaKqkQfelfg2aisHukNS+9QW/9wOmSZbxit5Kp2d4BiVzhH9lGR8ZvhW VEhcx6RtMp0k3+n0B2A+lQZT -----END CERTIFICATE-----Generated at Wed Nov 5 12:54:25 2025 by rpki-client