$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.mft File: 5W2kwnXzzMktCGICoe2neD8MPQ0.mft (raw, json) Hash identifier: 7oz/no+JV42lYdMaudduH+lZx+xinmOUN9bQK9HYy1M= Subject key identifier: 0C:CB:B5:AC:4A:4B:DE:AC:4C:76:79:60:95:18:43:F5:24:7A:1D:7A Authority key identifier: E5:6D:A4:C2:75:F3:CC:C9:2D:08:62:02:A1:ED:A7:78:3F:0C:3D:0D Certificate issuer: /CN=E56DA4C275F3CCC92D086202A1EDA7783F0C3D0D Certificate serial: 2342 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5W2kwnXzzMktCGICoe2neD8MPQ0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.mft Manifest number: 2336 Signing time: Wed 13 Aug 2025 16:05:19 +0000 Manifest this update: Wed 13 Aug 2025 16:05:19 +0000 Manifest next update: Wed 13 Aug 2025 22:05:19 +0000 Files and hashes: 1: 0p4OnuorqVemfKiNz4jb1ANy_VQ.roa (hash: XoSGiFq8O6Q57IRgvp7PfupeNUc2/oaY3bSF8APHxvs=) 2: 5W2kwnXzzMktCGICoe2neD8MPQ0.crl (hash: QPawoNzsw+E9X7E+nUhv0PImYmlQfrdVAMSKLdLgjug=) 3: nupcYpRncbBv3-9dSwkTJgvZMyQ.roa (hash: 4MbXF1Yx0L8hJq971GxzZ01dBBGTfAi9S+9JFIVKcDg=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5W2kwnXzzMktCGICoe2neD8MPQ0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 22:05:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9026 (0x2342) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E56DA4C275F3CCC92D086202A1EDA7783F0C3D0D Validity Not Before: Aug 13 16:05:19 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=0CCBB5AC4A4BDEAC4C767960951843F5247A1D7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ea:bf:55:b5:b2:2a:34:a3:a3:ce:e5:87:48: 68:50:c4:78:dd:a6:a2:af:92:c0:5f:7b:cf:2f:c8: cc:60:4b:df:f7:3d:d8:34:9d:a0:ff:6b:f5:ea:e0: e9:b9:61:d3:29:63:95:9c:fe:ae:d5:1c:af:5e:92: 5a:90:62:f7:01:56:0d:1a:76:da:ce:c0:30:a8:fa: d3:4a:ca:2d:3a:3e:3b:97:80:03:58:33:2c:67:5b: 37:ac:97:0a:2e:fa:7a:07:d1:78:ef:5e:a0:e3:5b: 4d:cf:f6:6b:14:06:6f:56:00:5e:31:59:73:09:0b: ca:af:d1:f7:a5:31:86:20:c8:48:f4:93:a3:25:3a: 15:b1:cb:21:e8:43:23:24:ca:f8:5d:c2:7d:f3:b7: bc:96:ac:08:32:11:e6:bd:b8:80:37:f8:5e:ea:52: 5e:ad:14:78:d4:13:4a:d2:98:06:2c:ca:7b:99:ec: 7e:a8:e1:55:66:9c:a7:27:be:75:aa:43:e1:62:7a: 85:0c:e5:a5:de:b9:5e:94:9f:8d:5d:89:cf:57:21: 41:ff:9b:2c:0e:a0:5c:1d:de:17:ff:98:d0:39:e9: a4:b5:1b:ac:25:ff:96:fe:12:1a:72:0d:86:5e:44: 0a:4a:41:7e:0a:39:67:d7:8f:07:9f:96:96:e7:1f: 16:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:CB:B5:AC:4A:4B:DE:AC:4C:76:79:60:95:18:43:F5:24:7A:1D:7A X509v3 Authority Key Identifier: keyid:E5:6D:A4:C2:75:F3:CC:C9:2D:08:62:02:A1:ED:A7:78:3F:0C:3D:0D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5W2kwnXzzMktCGICoe2neD8MPQ0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:4c:ed:55:91:0f:ed:3d:a0:99:02:4d:20:b4:1a:cc:7c:bc: aa:71:23:3a:13:32:be:50:9c:3d:13:f6:77:9f:23:8c:99:8c: ae:8e:5a:16:f8:39:74:f3:93:ce:b4:05:c2:f6:39:df:11:20: 34:ca:a7:de:60:ee:af:67:bf:79:1f:5b:0f:57:27:30:2b:b9: c7:ec:c2:7e:56:54:6c:74:25:88:af:e6:f4:81:53:e8:a6:33: 4d:58:b3:a8:21:a8:03:e8:a7:9b:2c:e2:45:2b:cf:be:c4:30: 94:e2:88:90:d5:85:b4:7e:bf:f5:d7:bd:fc:99:5c:54:87:81: 5d:65:80:26:43:62:e9:41:44:26:89:a1:d3:3c:d1:06:be:b7: ee:88:8d:b3:ff:4f:37:c5:be:ab:30:94:b3:1b:66:e8:5a:82: ac:86:3f:be:15:98:9c:77:c0:fd:d5:da:88:30:7b:e4:f9:f8: 17:c6:91:7a:1d:53:27:b2:5c:16:cb:68:b0:75:bc:d4:4c:df: 1d:61:6e:b5:64:59:ec:59:67:52:ac:d6:bb:b8:dc:55:56:c8: 99:ac:5d:ed:4c:48:45:cf:cb:a1:0f:06:43:0d:70:a4:41:d9: b5:17:37:04:94:65:f1:5a:19:38:c7:7b:58:c1:19:1b:12:c4: da:b4:11:d3 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICI0IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTU2 REE0QzI3NUYzQ0NDOTJEMDg2MjAyQTFFREE3NzgzRjBDM0QwRDAeFw0yNTA4MTMx NjA1MTlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDBDQ0JCNUFDNEE0QkRF QUM0Qzc2Nzk2MDk1MTg0M0Y1MjQ3QTFEN0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDF6r9VtbIqNKOjzuWHSGhQxHjdpqKvksBfe88vyMxgS9/3Pdg0 naD/a/Xq4Om5YdMpY5Wc/q7VHK9eklqQYvcBVg0adtrOwDCo+tNKyi06PjuXgANY MyxnWzeslwou+noH0XjvXqDjW03P9msUBm9WAF4xWXMJC8qv0felMYYgyEj0k6Ml OhWxyyHoQyMkyvhdwn3zt7yWrAgyEea9uIA3+F7qUl6tFHjUE0rSmAYsynuZ7H6o 4VVmnKcnvnWqQ+FieoUM5aXeuV6Un41dic9XIUH/mywOoFwd3hf/mNA56aS1G6wl /5b+EhpyDYZeRApKQX4KOWfXjweflpbnHxY7AgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUDMu1rEpL3qxMdnlglRhD9SR6HXowHwYDVR0jBBgwFoAU5W2kwnXzzMktCGIC oe2neD8MPQ0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIx LzVXMmt3blh6ek1rdENHSUNvZTJuZUQ4TVBRMC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvNVcya3duWHp6TWt0Q0dJQ29lMm5lRDhNUFEwLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIxLzVXMmt3blh6ek1rdENH SUNvZTJuZUQ4TVBRMC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCOTO1VkQ/tPaCZAk0gtBrMfLyqcSM6EzK+UJw9E/Z3nyOMmYyujloW+Dl085PO tAXC9jnfESA0yqfeYO6vZ795H1sPVycwK7nH7MJ+VlRsdCWIr+b0gVPopjNNWLOo IagD6KebLOJFK8++xDCU4oiQ1YW0fr/11738mVxUh4FdZYAmQ2LpQUQmiaHTPNEG vrfuiI2z/083xb6rMJSzG2boWoKshj++FZicd8D91dqIMHvk+fgXxpF6HVMnslwW y2iwdbzUTN8dYW61ZFnsWWdSrNa7uNxVVsiZrF3tTEhFz8uhDwZDDXCkQdm1FzcE lGXxWhk4x3tYwRkbEsTatBHT -----END CERTIFICATE-----Generated at Wed Aug 13 20:23:14 2025 by rpki-client