$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.mft File: IGM8jmnuaH1MQSPQwJea0UTlXrc.mft (raw, json) Hash identifier: yV6DbtVPguZKifFLfs7hOQcyJxVyWH4zoimucMxyRbc= Subject key identifier: 8A:73:24:BA:58:30:A5:5C:DA:6E:BE:7C:2F:41:0F:BC:89:0A:40:04 Authority key identifier: 20:63:3C:8E:69:EE:68:7D:4C:41:23:D0:C0:97:9A:D1:44:E5:5E:B7 Certificate issuer: /CN=20633C8E69EE687D4C4123D0C0979AD144E55EB7 Certificate serial: 55C2 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/IGM8jmnuaH1MQSPQwJea0UTlXrc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.mft Manifest number: 55C2 Signing time: Sun 19 Oct 2025 22:04:20 +0000 Manifest this update: Sun 19 Oct 2025 22:04:20 +0000 Manifest next update: Mon 20 Oct 2025 04:04:20 +0000 Files and hashes: 1: IGM8jmnuaH1MQSPQwJea0UTlXrc.crl (hash: Y4yLl/Be2+Z9ta0IsSXNfEH24Nm2o3zN3YVRYiQWN6g=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/IGM8jmnuaH1MQSPQwJea0UTlXrc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 04:04:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21954 (0x55c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20633C8E69EE687D4C4123D0C0979AD144E55EB7 Validity Not Before: Oct 19 22:04:20 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=8A7324BA5830A55CDA6EBE7C2F410FBC890A4004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ab:60:9d:02:16:1f:62:3c:eb:5a:2b:b6:b8: f7:29:bc:cd:7e:af:3c:eb:15:1c:b0:23:41:af:c5: a1:d6:bd:a2:51:84:8e:75:24:28:c9:8b:dd:10:55: 35:51:72:b6:86:35:dc:47:8c:55:85:96:be:e2:fd: 92:d3:8f:b8:ed:f7:23:02:ec:f3:6c:d0:12:fa:26: b0:59:a5:a4:43:33:f9:1a:39:42:0b:97:62:9a:27: bf:42:79:32:2e:9e:8c:d8:09:45:03:93:4a:6e:93: 07:69:53:64:bc:61:96:2b:44:51:5b:39:ef:45:97: ec:47:cd:4c:55:99:99:1c:c0:b7:00:9f:0b:a2:80: d7:da:2d:b8:f6:05:6c:ac:40:f9:fb:13:31:27:65: 99:a6:29:19:4e:50:8e:e3:87:01:9e:ea:2f:5f:12: 58:39:0e:95:61:f3:27:52:7a:a6:27:0c:c9:16:46: 53:d9:de:02:b1:93:64:46:17:37:f6:06:10:e0:a7: 94:6a:75:78:62:a3:fa:5b:41:e7:35:8d:53:a9:5b: 14:0f:cc:44:2f:09:4b:fc:2c:ac:c5:77:33:78:10: c3:06:ed:f9:ef:e9:c0:ef:b4:9e:4f:82:f9:66:e4: 2d:37:53:91:e5:d4:0b:2c:14:74:0b:84:15:03:94: d8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:73:24:BA:58:30:A5:5C:DA:6E:BE:7C:2F:41:0F:BC:89:0A:40:04 X509v3 Authority Key Identifier: keyid:20:63:3C:8E:69:EE:68:7D:4C:41:23:D0:C0:97:9A:D1:44:E5:5E:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/IGM8jmnuaH1MQSPQwJea0UTlXrc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:0f:58:49:fb:5a:29:cf:9c:cc:94:b2:70:88:3c:fd:ec:df: 5e:36:1b:61:65:8c:51:43:ab:5a:9f:e1:bf:12:63:b9:09:72: fa:aa:10:b1:ba:66:c7:54:92:b8:7e:70:fd:3e:18:a0:1c:36: 20:b3:f9:35:21:71:cf:c3:b5:ec:e1:01:84:a5:44:0f:04:e5: a9:66:90:26:8d:48:22:2c:06:08:4b:c0:b2:f8:4b:0d:e4:5c: 4c:b5:59:2a:f5:68:8d:1d:e4:e0:f3:20:6a:93:2b:cc:59:b9: 49:ee:e8:d9:1f:1f:93:91:ae:64:e3:e2:05:2d:f7:fb:0e:d8: 3e:df:ee:81:9d:a1:01:45:f2:f2:ea:35:cd:b0:2e:49:1d:a2: e7:73:78:ec:f4:bb:06:61:46:f1:66:52:ed:80:51:92:e7:6d: 0e:c9:6b:88:69:d9:d8:33:94:56:2b:35:bd:2d:16:47:da:ae: 70:5e:18:c4:ae:77:6f:bd:ad:fa:bd:50:07:52:ab:a7:34:48: ea:05:ee:33:ba:b9:cf:c8:c6:12:54:44:d0:6c:8f:a1:49:6f: 20:56:d8:d1:0f:27:c1:fd:47:6f:98:31:db:58:ac:d8:6f:fc: 1c:97:93:39:62:45:9e:42:88:8d:1e:85:c2:13:7f:f4:b8:f1: 51:86:ed:e0 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICVcIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjA2 MzNDOEU2OUVFNjg3RDRDNDEyM0QwQzA5NzlBRDE0NEU1NUVCNzAeFw0yNTEwMTky MjA0MjBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDhBNzMyNEJBNTgzMEE1 NUNEQTZFQkU3QzJGNDEwRkJDODkwQTQwMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPq2CdAhYfYjzrWiu2uPcpvM1+rzzrFRywI0GvxaHWvaJRhI51 JCjJi90QVTVRcraGNdxHjFWFlr7i/ZLTj7jt9yMC7PNs0BL6JrBZpaRDM/kaOUIL l2KaJ79CeTIunozYCUUDk0pukwdpU2S8YZYrRFFbOe9Fl+xHzUxVmZkcwLcAnwui gNfaLbj2BWysQPn7EzEnZZmmKRlOUI7jhwGe6i9fElg5DpVh8ydSeqYnDMkWRlPZ 3gKxk2RGFzf2BhDgp5RqdXhio/pbQec1jVOpWxQPzEQvCUv8LKzFdzN4EMMG7fnv 6cDvtJ5Pgvlm5C03U5Hl1AssFHQLhBUDlNibAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUinMkulgwpVzabr58L0EPvIkKQAQwHwYDVR0jBBgwFoAUIGM8jmnuaH1MQSPQ wJea0UTlXrcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM4 Mi9JR004am1udWFIMU1RU1BRd0plYTBVVGxYcmMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0lHTThqbW51YUgxTVFTUFF3SmVhMFVUbFhyYy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEzODIvSUdNOGptbnVhSDFN UVNQUXdKZWEwVVRsWHJjLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAG4PWEn7WinPnMyUsnCIPP3s3142G2FljFFDq1qf4b8SY7kJcvqqELG6ZsdU krh+cP0+GKAcNiCz+TUhcc/DtezhAYSlRA8E5almkCaNSCIsBghLwLL4Sw3kXEy1 WSr1aI0d5ODzIGqTK8xZuUnu6NkfH5ORrmTj4gUt9/sO2D7f7oGdoQFF8vLqNc2w LkkdoudzeOz0uwZhRvFmUu2AUZLnbQ7Ja4hp2dgzlFYrNb0tFkfarnBeGMSud2+9 rfq9UAdSq6c0SOoF7jO6uc/IxhJURNBsj6FJbyBW2NEPJ8H9R2+YMdtYrNhv/ByX kzliRZ5CiI0ehcITf/S48VGG7eA= -----END CERTIFICATE-----Generated at Mon Oct 20 00:33:40 2025 by rpki-client