$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.mft File: gL0CjXa7PVXmZBaamvDfKpjHUFU.mft (raw, json) Hash identifier: GtFSURQnrM/ohk/PVTigeXxnhY3BIOYrmqLz9N415KE= Subject key identifier: FA:3F:BB:B8:7E:5C:7B:29:FA:21:7F:39:55:03:60:5A:00:1E:68:CC Authority key identifier: 80:BD:02:8D:76:BB:3D:55:E6:64:16:9A:9A:F0:DF:2A:98:C7:50:55 Certificate issuer: /CN=80BD028D76BB3D55E664169A9AF0DF2A98C75055 Certificate serial: 02E1 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gL0CjXa7PVXmZBaamvDfKpjHUFU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.mft Manifest number: 02DD Signing time: Mon 20 Oct 2025 13:34:47 +0000 Manifest this update: Mon 20 Oct 2025 13:34:47 +0000 Manifest next update: Mon 20 Oct 2025 19:34:47 +0000 Files and hashes: 1: 8C2_C6gmSDmgalrvcm8Ft5YQ9fc.roa (hash: cFvjS3C7Ni9jMGlyzmgHeGCnydk3CR0hQkqEtMnTBtQ=) 2: gL0CjXa7PVXmZBaamvDfKpjHUFU.crl (hash: /9zH/RUnKkw2j2L6tHLjZRLTYW3MOcXUvo0JxD+ekmA=) 3: rG9SJlY2VCyvJqAzoBsnhQ0xcBM.roa (hash: JIOcK/4hBjG98Ni9c37B+JALVOIlIpEiHyXVV83dZhY=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gL0CjXa7PVXmZBaamvDfKpjHUFU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 737 (0x2e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80BD028D76BB3D55E664169A9AF0DF2A98C75055 Validity Not Before: Oct 20 13:34:47 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=FA3FBBB87E5C7B29FA217F395503605A001E68CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:27:e1:84:0a:83:ff:ec:79:a2:9d:4a:97:a8: 69:00:14:a3:9d:11:75:70:8d:a7:1c:d4:66:d5:51: c7:10:fc:49:8f:34:62:61:f7:b2:61:e1:51:ba:51: 71:61:35:9c:f3:16:0c:cf:41:80:40:e8:c4:6a:d1: 20:dc:80:0a:bf:c2:a1:46:db:20:68:d8:d5:6b:66: 92:8d:36:f5:cd:8e:c0:00:fe:a8:f1:35:64:13:00: 34:65:0d:4d:03:67:2e:da:ca:1c:41:6b:cd:dd:cb: f2:af:be:43:b0:4d:6c:98:a2:6d:ef:89:00:a9:03: df:11:50:c2:95:21:9c:db:3d:a8:cc:4c:81:ed:be: 06:06:44:63:60:67:89:d9:fb:83:49:94:c9:fd:26: 62:c4:20:29:28:a2:b2:c3:cf:0e:dd:21:41:f5:3f: 5a:ed:c9:7c:62:4a:dd:44:9f:c7:be:9d:a0:e8:86: 48:5c:dc:de:a5:4e:cf:0a:c7:9d:e3:d8:59:82:62: 12:94:a9:5b:fe:cc:a4:f2:54:05:32:7d:07:7c:7a: ba:1a:e9:08:a8:c0:6a:cb:fa:db:f5:f1:69:54:d5: 74:72:4d:71:a3:6c:02:7e:b0:81:d8:de:46:19:32: ad:37:ae:d1:f1:87:43:36:c8:8b:6a:25:cd:3d:82: 78:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:3F:BB:B8:7E:5C:7B:29:FA:21:7F:39:55:03:60:5A:00:1E:68:CC X509v3 Authority Key Identifier: keyid:80:BD:02:8D:76:BB:3D:55:E6:64:16:9A:9A:F0:DF:2A:98:C7:50:55 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gL0CjXa7PVXmZBaamvDfKpjHUFU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:2a:4a:0f:60:c4:d2:54:e4:21:63:9e:0b:e1:ec:70:66:41: 91:50:80:c0:67:ac:4b:ad:be:49:ca:c5:ff:1e:6d:39:22:83: c2:74:e3:25:50:0e:46:7e:65:bc:88:69:c0:e0:c7:61:3e:ea: 2a:03:87:d1:63:7b:61:48:7a:60:20:cd:6e:9b:e5:39:27:73: 59:e7:9b:0f:94:d5:34:e1:d6:2f:65:b6:54:13:e5:98:1e:57: 2e:2b:bc:70:8e:e7:a5:48:73:a5:ab:a7:5d:5d:67:77:33:2c: d8:1d:ee:20:d8:c6:cc:bb:11:16:6f:b6:5f:f3:1b:43:e1:26: 60:70:b7:a7:00:3f:1b:43:1b:b6:1b:47:cf:59:2c:10:bc:0a: 07:d4:54:fd:8c:07:8f:81:18:f5:a7:cd:ca:3e:66:94:18:a0: 84:fc:2f:66:2b:06:e0:ee:d9:21:66:55:6f:21:4a:59:ec:1b: 89:e7:66:86:3e:ca:62:80:f5:91:16:8e:70:7f:eb:a8:25:5f: 3a:a4:c2:49:bf:26:0a:51:bd:96:bb:23:a0:75:d1:dc:f2:53: 30:7c:dc:94:a2:15:f1:e9:22:d8:83:eb:0a:cd:34:35:2b:8e: e2:50:52:66:64:8e:86:4f:e4:a7:d9:f0:c5:05:d2:47:8e:0a: 84:77:3e:84 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICAuEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODBC RDAyOEQ3NkJCM0Q1NUU2NjQxNjlBOUFGMERGMkE5OEM3NTA1NTAeFw0yNTEwMjAx MzM0NDdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEZBM0ZCQkI4N0U1QzdC MjlGQTIxN0YzOTU1MDM2MDVBMDAxRTY4Q0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCaJ+GECoP/7HminUqXqGkAFKOdEXVwjacc1GbVUccQ/EmPNGJh 97Jh4VG6UXFhNZzzFgzPQYBA6MRq0SDcgAq/wqFG2yBo2NVrZpKNNvXNjsAA/qjx NWQTADRlDU0DZy7ayhxBa83dy/KvvkOwTWyYom3viQCpA98RUMKVIZzbPajMTIHt vgYGRGNgZ4nZ+4NJlMn9JmLEICkoorLDzw7dIUH1P1rtyXxiSt1En8e+naDohkhc 3N6lTs8Kx53j2FmCYhKUqVv+zKTyVAUyfQd8eroa6QiowGrL+tv18WlU1XRyTXGj bAJ+sIHY3kYZMq03rtHxh0M2yItqJc09gnghAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU+j+7uH5ceyn6IX85VQNgWgAeaMwwHwYDVR0jBBgwFoAUgL0CjXa7PVXmZBaa mvDfKpjHUFUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE2 NC9nTDBDalhhN1BWWG1aQmFhbXZEZktwakhVRlUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2dMMENqWGE3UFZYbVpCYWFtdkRmS3BqSFVGVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNjQvZ0wwQ2pYYTdQVlht WkJhYW12RGZLcGpIVUZVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBABgqSg9gxNJU5CFjngvh7HBmQZFQgMBnrEutvknKxf8ebTkig8J04yVQDkZ+ ZbyIacDgx2E+6ioDh9Fje2FIemAgzW6b5Tknc1nnmw+U1TTh1i9ltlQT5ZgeVy4r vHCO56VIc6Wrp11dZ3czLNgd7iDYxsy7ERZvtl/zG0PhJmBwt6cAPxtDG7YbR89Z LBC8CgfUVP2MB4+BGPWnzco+ZpQYoIT8L2YrBuDu2SFmVW8hSlnsG4nnZoY+ymKA 9ZEWjnB/66glXzqkwkm/JgpRvZa7I6B10dzyUzB83JSiFfHpItiD6wrNNDUrjuJQ UmZkjoZP5KfZ8MUF0keOCoR3PoQ= -----END CERTIFICATE-----Generated at Mon Oct 20 17:40:13 2025 by rpki-client