$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2072/vPQBem4pFfJhR9QZ5fen0WTQSYQ.mft File: vPQBem4pFfJhR9QZ5fen0WTQSYQ.mft (raw, json) Hash identifier: tG/87SYHOIkxJg9XupLpskS+QgpiVdq86uhbU3JW49E= Subject key identifier: 56:CA:4C:99:B6:C7:E8:0B:5F:09:94:1B:6E:F6:A3:5C:59:76:15:A1 Authority key identifier: BC:F4:01:7A:6E:29:15:F2:61:47:D4:19:E5:F7:A7:D1:64:D0:49:84 Certificate issuer: /CN=BCF4017A6E2915F26147D419E5F7A7D164D04984 Certificate serial: 200B Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vPQBem4pFfJhR9QZ5fen0WTQSYQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2072/vPQBem4pFfJhR9QZ5fen0WTQSYQ.mft Manifest number: 2006 Signing time: Sat 23 Aug 2025 21:02:46 +0000 Manifest this update: Sat 23 Aug 2025 21:02:46 +0000 Manifest next update: Sun 24 Aug 2025 03:02:46 +0000 Files and hashes: 1: 56m64Ou0nCfyZ4zVW6CqefNP7gY.roa (hash: 7Ep7Bwvng+B6VLF371ylPSSDWFXrMowJ7fainn1ZrrQ=) 2: vPQBem4pFfJhR9QZ5fen0WTQSYQ.crl (hash: 857QAxDPNw1l17pagv8WMQ9tRLLf8tseGjcgrq1Rojo=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2072/vPQBem4pFfJhR9QZ5fen0WTQSYQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2072/vPQBem4pFfJhR9QZ5fen0WTQSYQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vPQBem4pFfJhR9QZ5fen0WTQSYQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 02:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8203 (0x200b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCF4017A6E2915F26147D419E5F7A7D164D04984 Validity Not Before: Aug 23 21:02:46 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=56CA4C99B6C7E80B5F09941B6EF6A35C597615A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:95:98:3c:86:db:0c:4f:fa:c0:9b:3b:6f:00: 11:c2:b7:65:ce:dd:c6:4e:0d:fb:7c:f3:5a:2f:f0: 10:6b:e5:75:0e:99:a2:e9:d3:4c:eb:83:fb:a4:66: 0c:ad:ec:f6:aa:26:ab:30:fc:08:e2:52:64:ec:74: d7:61:93:6e:29:a2:f2:11:6b:42:3c:a3:99:15:72: 97:8c:33:37:9a:43:88:4b:33:b6:d5:96:8d:91:99: f3:92:5f:ae:e4:ea:42:3b:7d:19:fb:b5:f4:42:ea: 80:f4:f9:50:8d:82:d0:69:cd:e3:11:a2:63:16:df: 60:c2:43:45:45:3f:27:11:e4:74:86:09:05:7f:fd: bb:6a:9f:c7:09:67:25:1d:b5:fc:86:51:6a:c8:38: 2d:a3:ed:17:8b:d1:e3:ca:9b:65:c3:4d:15:73:e5: 68:ae:5c:45:d4:8f:33:47:f3:2f:13:99:55:cd:40: ff:0f:b6:3b:91:43:7d:a6:a1:08:2a:e6:66:b9:05: 59:78:d5:a3:47:9e:87:f7:b5:55:5c:2a:5d:2e:5f: 8e:b7:b2:c9:6b:77:ea:73:50:b5:be:56:84:77:09: 23:2c:a4:ce:cd:01:12:32:24:37:97:08:a5:7d:48: 37:77:94:28:35:f7:4d:5f:51:6e:a0:a0:51:45:56: 3e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:CA:4C:99:B6:C7:E8:0B:5F:09:94:1B:6E:F6:A3:5C:59:76:15:A1 X509v3 Authority Key Identifier: keyid:BC:F4:01:7A:6E:29:15:F2:61:47:D4:19:E5:F7:A7:D1:64:D0:49:84 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2072/vPQBem4pFfJhR9QZ5fen0WTQSYQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vPQBem4pFfJhR9QZ5fen0WTQSYQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2072/vPQBem4pFfJhR9QZ5fen0WTQSYQ.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:d9:d9:10:28:6b:17:92:2b:fe:de:ab:a7:90:f8:b2:b3:c9: 0f:7e:01:eb:cf:52:10:96:b3:20:88:83:51:2c:36:28:69:ff: 3b:ae:b7:7d:a5:9a:e0:4f:66:be:a5:b5:49:76:96:95:6f:fb: 8a:84:88:54:75:41:ff:2c:86:17:97:b7:8e:9b:48:a9:ed:55: 8a:da:3e:17:68:ad:ff:2e:0f:f0:c5:64:8f:40:cd:e7:1a:e3: dc:74:14:07:0f:4c:45:ea:d7:33:f8:97:45:57:9e:e3:ba:10: 56:67:7d:12:96:40:f2:90:c9:d0:f2:86:49:bb:15:ea:52:bd: a5:4d:66:47:12:16:ba:50:65:6b:79:15:6b:df:e7:01:91:b2: 8c:ff:a2:eb:cf:e3:4c:b2:8f:38:52:54:07:f7:9e:9a:8d:dd: ce:1a:20:91:62:f8:6e:62:69:fd:e0:23:cf:94:7a:c4:6f:41: 39:b8:49:30:7e:40:e9:ef:d7:1c:c3:9b:44:24:be:41:ca:8e: af:b8:c6:d1:ae:99:7f:1d:1f:61:f5:26:43:d0:ce:2f:c3:68: 21:0f:f2:eb:51:c1:13:b3:67:95:3f:fe:c3:c5:2e:70:3a:02: 77:e9:33:ff:fd:2f:ee:7b:fd:89:4c:0e:49:b2:a1:69:f6:65: 7f:d8:a2:9e -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICIAswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkNG NDAxN0E2RTI5MTVGMjYxNDdENDE5RTVGN0E3RDE2NEQwNDk4NDAeFw0yNTA4MjMy MTAyNDZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDU2Q0E0Qzk5QjZDN0U4 MEI1RjA5OTQxQjZFRjZBMzVDNTk3NjE1QTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTlZg8htsMT/rAmztvABHCt2XO3cZODft881ov8BBr5XUOmaLp 00zrg/ukZgyt7PaqJqsw/AjiUmTsdNdhk24povIRa0I8o5kVcpeMMzeaQ4hLM7bV lo2RmfOSX67k6kI7fRn7tfRC6oD0+VCNgtBpzeMRomMW32DCQ0VFPycR5HSGCQV/ /btqn8cJZyUdtfyGUWrIOC2j7ReL0ePKm2XDTRVz5WiuXEXUjzNH8y8TmVXNQP8P tjuRQ32moQgq5ma5BVl41aNHnof3tVVcKl0uX463sslrd+pzULW+VoR3CSMspM7N ARIyJDeXCKV9SDd3lCg1901fUW6goFFFVj63AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUVspMmbbH6AtfCZQbbvajXFl2FaEwHwYDVR0jBBgwFoAUvPQBem4pFfJhR9QZ 5fen0WTQSYQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjA3 Mi92UFFCZW00cEZmSmhSOVFaNWZlbjBXVFFTWVEuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3ZQUUJlbTRwRmZKaFI5UVo1ZmVuMFdUUVNZUS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIwNzIvdlBRQmVtNHBGZkpo UjlRWjVmZW4wV1RRU1lRLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAKLZ2RAoaxeSK/7eq6eQ+LKzyQ9+AevPUhCWsyCIg1EsNihp/zuut32lmuBP Zr6ltUl2lpVv+4qEiFR1Qf8shheXt46bSKntVYraPhdorf8uD/DFZI9Azeca49x0 FAcPTEXq1zP4l0VXnuO6EFZnfRKWQPKQydDyhkm7FepSvaVNZkcSFrpQZWt5FWvf 5wGRsoz/ouvP40yyjzhSVAf3npqN3c4aIJFi+G5iaf3gI8+UesRvQTm4STB+QOnv 1xzDm0QkvkHKjq+4xtGumX8dH2H1JkPQzi/DaCEP8utRwROzZ5U//sPFLnA6Anfp M//9L+57/YlMDkmyoWn2ZX/Yop4= -----END CERTIFICATE-----Generated at Sun Aug 24 00:54:51 2025 by rpki-client