$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2662/vcTZgftYN_Id2VEGP1m0dd1WJTY.mft File: vcTZgftYN_Id2VEGP1m0dd1WJTY.mft (raw, json) Hash identifier: OiOGGC+tWN2EG1eMKYsnV1S3O3plSoQ2a23u76Fpd7U= Subject key identifier: 48:ED:2D:04:59:DF:0F:E7:68:E6:07:DA:7C:6D:13:70:A3:01:41:9D Authority key identifier: BD:C4:D9:81:FB:58:37:F2:1D:D9:51:06:3F:59:B4:75:DD:56:25:36 Certificate issuer: /CN=BDC4D981FB5837F21DD951063F59B475DD562536 Certificate serial: 34 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vcTZgftYN_Id2VEGP1m0dd1WJTY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2662/vcTZgftYN_Id2VEGP1m0dd1WJTY.mft Manifest number: 33 Signing time: Sun 18 May 2025 02:37:38 +0000 Manifest this update: Sun 18 May 2025 02:37:38 +0000 Manifest next update: Sun 18 May 2025 08:37:38 +0000 Files and hashes: 1: ihz4sFLDfkN7Fk9DCBqiadh-ivQ.roa (hash: gR5LOmN4JF2dPB94elxL+UoXokAkI2kc2RKlgGd4ebs=) 2: vcTZgftYN_Id2VEGP1m0dd1WJTY.crl (hash: vMCUL38czhl6rHOX7xyqsaFx3ydMVfYGq2mo0F8/RDo=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2662/vcTZgftYN_Id2VEGP1m0dd1WJTY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2662/vcTZgftYN_Id2VEGP1m0dd1WJTY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vcTZgftYN_Id2VEGP1m0dd1WJTY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:39:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDC4D981FB5837F21DD951063F59B475DD562536 Validity Not Before: May 18 02:37:38 2025 GMT Not After : May 8 11:58:22 2026 GMT Subject: CN=48ED2D0459DF0FE768E607DA7C6D1370A301419D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:85:01:25:5d:b3:c7:08:4c:9d:8f:fb:8d:cc: f4:c4:07:1f:79:ca:fb:0d:18:3a:55:90:e8:6d:a6: 53:ed:b3:73:02:97:4d:46:3f:52:7d:2d:2a:9d:29: b0:92:90:d8:01:f3:25:ad:1f:dd:a1:17:0a:a4:69: d7:2e:a6:d1:2e:45:7b:ba:09:2d:c0:77:aa:d0:f5: cb:a3:50:a9:2f:7e:5a:a0:11:0b:96:c6:ff:49:78: 79:e4:59:a5:e2:b2:d0:82:37:69:da:01:40:4c:89: 3a:d1:c2:0b:d7:ea:5d:3e:7f:92:ed:ad:2b:b7:3e: ec:a9:b1:0e:34:16:c0:a2:8e:2f:c3:a0:06:0e:c6: 29:0e:62:a9:6a:9a:85:d9:32:83:51:7e:a0:e6:ab: 8d:e8:c2:45:7b:a1:94:9d:a5:04:29:32:a7:77:16: 8f:c7:e8:38:70:3f:43:8c:97:de:e7:3d:0e:e3:5d: e0:7d:70:c8:11:4d:16:a1:67:c6:94:11:6b:7e:c1: a6:1e:5a:43:06:58:74:49:a9:6f:b0:eb:54:ff:c2: ce:2e:61:27:de:29:59:21:92:1c:54:04:69:8b:70: 76:85:e4:83:21:38:3e:69:af:de:0e:9e:cb:27:a7: 40:06:b7:03:05:3f:3d:55:56:b3:44:b9:fc:2e:41: 58:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:ED:2D:04:59:DF:0F:E7:68:E6:07:DA:7C:6D:13:70:A3:01:41:9D X509v3 Authority Key Identifier: keyid:BD:C4:D9:81:FB:58:37:F2:1D:D9:51:06:3F:59:B4:75:DD:56:25:36 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2662/vcTZgftYN_Id2VEGP1m0dd1WJTY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vcTZgftYN_Id2VEGP1m0dd1WJTY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2662/vcTZgftYN_Id2VEGP1m0dd1WJTY.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:06:fc:dc:e7:53:a2:bd:21:8e:9d:66:27:45:32:23:f7:a7: 4a:6f:b3:50:c1:42:69:7f:b5:ee:b1:9b:75:74:70:28:7c:17: 94:59:5c:9f:26:ce:ea:26:29:e2:ed:95:a6:12:bb:cb:1d:7d: 58:f7:8b:e6:d8:08:cb:24:7f:3d:cf:a2:32:61:20:dc:c3:ae: 01:7f:0e:3b:2c:4d:cc:74:4f:1b:d0:27:17:d1:f1:36:c2:91: 84:77:78:3c:44:c3:6e:97:b9:56:80:f9:b6:91:54:01:de:60: 6c:12:22:73:c3:c7:03:42:de:2b:2f:f6:58:d8:14:72:0b:e8: d4:d0:39:e6:62:26:15:54:ee:13:19:c8:82:cb:de:ee:f6:55: f8:93:09:37:44:43:64:17:91:59:1c:e7:34:78:ee:b4:a6:3c: 1e:4b:ae:3b:2a:01:7b:72:19:6c:dd:0c:ca:75:55:b1:1c:3e: 75:a6:0f:36:9a:4a:bf:fb:78:3b:ac:b1:f0:3d:02:c5:1b:d0: f8:87:02:7c:fb:b7:0d:b2:62:c4:d7:78:d5:5d:5d:ff:1c:74: 6e:1f:c2:0d:04:ad:e2:2d:f9:8c:72:6e:51:00:7b:17:0e:3e: d4:ba:14:61:b7:a8:7f:04:6c:83:52:2e:3b:52:e8:70:74:f6: 86:0c:c9:a5 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgIBNDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCREM0 RDk4MUZCNTgzN0YyMUREOTUxMDYzRjU5QjQ3NURENTYyNTM2MB4XDTI1MDUxODAy MzczOFoXDTI2MDUwODExNTgyMlowMzExMC8GA1UEAxMoNDhFRDJEMDQ1OURGMEZF NzY4RTYwN0RBN0M2RDEzNzBBMzAxNDE5RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANKFASVds8cITJ2P+43M9MQHH3nK+w0YOlWQ6G2mU+2zcwKXTUY/ Un0tKp0psJKQ2AHzJa0f3aEXCqRp1y6m0S5Fe7oJLcB3qtD1y6NQqS9+WqARC5bG /0l4eeRZpeKy0II3adoBQEyJOtHCC9fqXT5/ku2tK7c+7KmxDjQWwKKOL8OgBg7G KQ5iqWqahdkyg1F+oOarjejCRXuhlJ2lBCkyp3cWj8foOHA/Q4yX3uc9DuNd4H1w yBFNFqFnxpQRa37Bph5aQwZYdEmpb7DrVP/Czi5hJ94pWSGSHFQEaYtwdoXkgyE4 Pmmv3g6eyyenQAa3AwU/PVVWs0S5/C5BWA0CAwEAAaOCAgwwggIIMB0GA1UdDgQW BBRI7S0EWd8P52jmB9p8bRNwowFBnTAfBgNVHSMEGDAWgBS9xNmB+1g38h3ZUQY/ WbR13VYlNjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNjYy L3ZjVFpnZnRZTl9JZDJWRUdQMW0wZGQxV0pUWS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvdmNUWmdmdFlOX0lkMlZFR1AxbTBkZDFXSlRZLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY2Mi92Y1RaZ2Z0WU5fSWQy VkVHUDFtMGRkMVdKVFkubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjgb83OdTor0hjp1mJ0UyI/enSm+zUMFCaX+17rGbdXRwKHwXlFlcnybO6iYp 4u2VphK7yx19WPeL5tgIyyR/Pc+iMmEg3MOuAX8OOyxNzHRPG9AnF9HxNsKRhHd4 PETDbpe5VoD5tpFUAd5gbBIic8PHA0LeKy/2WNgUcgvo1NA55mImFVTuExnIgsve 7vZV+JMJN0RDZBeRWRznNHjutKY8HkuuOyoBe3IZbN0MynVVsRw+daYPNppKv/t4 O6yx8D0CxRvQ+IcCfPu3DbJixNd41V1d/xx0bh/CDQSt4i35jHJuUQB7Fw4+1LoU YbeofwRsg1IuO1LocHT2hgzJpQ== -----END CERTIFICATE-----Generated at Sun May 18 04:42:05 2025 by rpki-client