$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2528/COaEfe781aS_jvY6VWfs2gflVik.mft File: COaEfe781aS_jvY6VWfs2gflVik.mft (raw, json) Hash identifier: tdvuzZv+v88WvUKLsp8gfhPbl+cTU4p0O0VjdeHlS9I= Subject key identifier: F2:97:CA:F4:89:E2:A5:25:7F:9B:47:5E:5C:3B:8A:7E:C6:66:EE:CE Authority key identifier: 08:E6:84:7D:EE:FC:D5:A4:BF:8E:F6:3A:55:67:EC:DA:07:E5:56:29 Certificate issuer: /CN=08E6847DEEFCD5A4BF8EF63A5567ECDA07E55629 Certificate serial: 1E4F Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/COaEfe781aS_jvY6VWfs2gflVik.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2528/COaEfe781aS_jvY6VWfs2gflVik.mft Manifest number: 1E4F Signing time: Fri 04 Jul 2025 05:17:37 +0000 Manifest this update: Fri 04 Jul 2025 05:17:37 +0000 Manifest next update: Fri 04 Jul 2025 11:17:37 +0000 Files and hashes: 1: COaEfe781aS_jvY6VWfs2gflVik.crl (hash: P03X0JAQljN/6xXClmblrsmAie2kX+fEYT+dDwBlYAU=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2528/COaEfe781aS_jvY6VWfs2gflVik.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2528/COaEfe781aS_jvY6VWfs2gflVik.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/COaEfe781aS_jvY6VWfs2gflVik.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 09:15:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7759 (0x1e4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08E6847DEEFCD5A4BF8EF63A5567ECDA07E55629 Validity Not Before: Jul 4 05:17:37 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=F297CAF489E2A5257F9B475E5C3B8A7EC666EECE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:da:00:96:3c:bd:65:31:9d:3a:11:dd:03:ac: a6:b4:e5:b2:2e:3d:a0:96:51:07:d6:51:88:3e:97: b5:64:c6:ff:e7:d1:0a:d2:10:e4:d6:4f:20:be:b5: 24:c2:a0:68:4e:48:78:2e:7b:ab:75:f2:3a:9c:06: 2a:5e:ae:c5:53:25:12:b6:ef:79:af:0c:53:00:de: 2a:52:70:55:9e:e3:cc:a5:b6:80:7f:cd:b5:f2:e9: b4:c5:12:fc:b7:87:45:8d:ff:f6:67:a9:93:da:f8: d5:9b:e4:45:8b:bf:64:9e:90:27:5d:ca:29:bc:41: 0d:d7:99:c2:74:02:87:dd:3b:1b:71:f7:bf:26:45: 28:0a:8a:ec:84:d6:16:be:e6:08:64:27:b4:f8:87: 86:a1:e0:0e:f6:e9:00:8f:bd:2e:18:07:99:34:9e: 9c:2c:30:ad:75:a2:d7:f7:7a:09:9a:d3:8a:76:65: e0:24:44:85:f4:46:82:bf:69:9e:03:bb:13:ce:d1: 20:02:2f:49:73:74:0d:7b:6b:38:6e:45:d5:5b:56: cc:63:c8:b8:57:45:79:72:60:98:52:b0:bd:bf:d3: 29:c7:57:7d:74:35:2d:bc:8b:ba:f3:bc:59:4c:a9: 8a:3d:58:31:5b:90:1a:bd:2c:0e:6a:97:31:3f:8a: 31:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:97:CA:F4:89:E2:A5:25:7F:9B:47:5E:5C:3B:8A:7E:C6:66:EE:CE X509v3 Authority Key Identifier: keyid:08:E6:84:7D:EE:FC:D5:A4:BF:8E:F6:3A:55:67:EC:DA:07:E5:56:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2528/COaEfe781aS_jvY6VWfs2gflVik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/COaEfe781aS_jvY6VWfs2gflVik.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2528/COaEfe781aS_jvY6VWfs2gflVik.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:f9:8a:f8:d6:85:86:df:1b:31:4c:0b:10:1f:82:d5:2c:55: 3b:57:9f:d7:45:98:bc:5f:95:30:9d:64:8b:1c:96:87:1e:b6: 6d:58:f2:d4:50:e3:30:5c:ce:a1:1b:5c:94:f4:2a:7c:69:96: 2d:50:9a:53:de:f2:3d:69:19:ac:71:f2:3b:d3:4f:3a:66:20: ef:58:e3:18:e3:78:b0:e6:53:23:3e:6f:64:28:d1:44:c6:cf: 51:d4:be:1f:5f:32:e6:17:ac:91:fd:03:ae:3f:9b:73:a8:25: 89:95:3f:3e:f6:46:df:96:89:88:63:94:40:a4:4f:d2:40:a4: a7:55:8a:06:74:61:e8:5c:99:cb:31:ff:6e:1b:d9:80:8a:89: 77:85:2b:81:5d:74:67:65:c7:52:3a:80:bc:94:43:df:21:a5: 2d:22:d8:11:71:70:63:04:7b:dd:8e:6a:7f:aa:3b:be:bd:25: f5:d0:bf:9d:1e:de:74:ab:df:2a:2b:67:9d:74:e9:f4:45:be: 05:d0:36:9b:c5:29:2f:fb:10:9e:4d:7b:96:f9:9d:db:d4:b7: 63:97:31:85:ad:7b:a4:ab:d3:df:d3:db:14:73:e1:05:06:2b: 85:1d:e5:39:f0:4e:bb:a8:ff:9b:bc:9d:f2:a8:cd:a0:79:f6: d3:ed:4d:ee -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICHk8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDhF Njg0N0RFRUZDRDVBNEJGOEVGNjNBNTU2N0VDREEwN0U1NTYyOTAeFw0yNTA3MDQw NTE3MzdaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEYyOTdDQUY0ODlFMkE1 MjU3RjlCNDc1RTVDM0I4QTdFQzY2NkVFQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDx2gCWPL1lMZ06Ed0DrKa05bIuPaCWUQfWUYg+l7Vkxv/n0QrS EOTWTyC+tSTCoGhOSHgue6t18jqcBipersVTJRK273mvDFMA3ipScFWe48yltoB/ zbXy6bTFEvy3h0WN//ZnqZPa+NWb5EWLv2SekCddyim8QQ3XmcJ0AofdOxtx978m RSgKiuyE1ha+5ghkJ7T4h4ah4A726QCPvS4YB5k0npwsMK11otf3egma04p2ZeAk RIX0RoK/aZ4DuxPO0SACL0lzdA17azhuRdVbVsxjyLhXRXlyYJhSsL2/0ynHV310 NS28i7rzvFlMqYo9WDFbkBq9LA5qlzE/ijF9AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU8pfK9InipSV/m0deXDuKfsZm7s4wHwYDVR0jBBgwFoAUCOaEfe781aS/jvY6 VWfs2gflVikwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjUy OC9DT2FFZmU3ODFhU19qdlk2VldmczJnZmxWaWsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0NPYUVmZTc4MWFTX2p2WTZWV2ZzMmdmbFZpay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI1MjgvQ09hRWZlNzgxYVNf anZZNlZXZnMyZ2ZsVmlrLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBACD5ivjWhYbfGzFMCxAfgtUsVTtXn9dFmLxflTCdZIsclocetm1Y8tRQ4zBc zqEbXJT0Knxpli1QmlPe8j1pGaxx8jvTTzpmIO9Y4xjjeLDmUyM+b2Qo0UTGz1HU vh9fMuYXrJH9A64/m3OoJYmVPz72Rt+WiYhjlECkT9JApKdVigZ0Yehcmcsx/24b 2YCKiXeFK4FddGdlx1I6gLyUQ98hpS0i2BFxcGMEe92Oan+qO769JfXQv50e3nSr 3yorZ5106fRFvgXQNpvFKS/7EJ5Ne5b5ndvUt2OXMYWte6Sr09/T2xRz4QUGK4Ud 5TnwTruo/5u8nfKozaB59tPtTe4= -----END CERTIFICATE-----Generated at Fri Jul 4 06:49:54 2025 by rpki-client