$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3340/pDidtIvE6TSc2eEd0MttcHaa4xk.mft File: pDidtIvE6TSc2eEd0MttcHaa4xk.mft (raw, json) Hash identifier: NvZ9RYdVSI+fdkuqFzuVIKtVq9l4kZ21rK8dNYYniM4= Subject key identifier: C0:52:39:ED:FF:B8:35:E3:EA:F1:43:96:11:63:60:E3:9C:CB:FE:1A Authority key identifier: A4:38:9D:B4:8B:C4:E9:34:9C:D9:E1:1D:D0:CB:6D:70:76:9A:E3:19 Certificate issuer: /CN=A4389DB48BC4E9349CD9E11DD0CB6D70769AE319 Certificate serial: 03D0 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/pDidtIvE6TSc2eEd0MttcHaa4xk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3340/pDidtIvE6TSc2eEd0MttcHaa4xk.mft Manifest number: 03D0 Signing time: Fri 04 Jul 2025 20:17:09 +0000 Manifest this update: Fri 04 Jul 2025 20:17:09 +0000 Manifest next update: Sat 05 Jul 2025 02:17:09 +0000 Files and hashes: 1: pDidtIvE6TSc2eEd0MttcHaa4xk.crl (hash: hltGtoYtDOllPyEWyh89UgZ2Z+UozjCpfrzbG7UDRu0=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3340/pDidtIvE6TSc2eEd0MttcHaa4xk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3340/pDidtIvE6TSc2eEd0MttcHaa4xk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/pDidtIvE6TSc2eEd0MttcHaa4xk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 00:44:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 976 (0x3d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A4389DB48BC4E9349CD9E11DD0CB6D70769AE319 Validity Not Before: Jul 4 20:17:09 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=C05239EDFFB835E3EAF14396116360E39CCBFE1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:fc:64:9d:88:bd:06:62:49:e7:89:cb:66:36: 3e:77:37:0e:8e:8d:35:9e:5b:97:5d:90:3d:f3:61: ce:7c:59:e9:0a:31:f1:dd:81:fa:24:99:71:dc:e4: 78:a6:9e:b6:12:74:61:08:47:72:8b:35:66:96:92: e2:06:10:af:f0:6a:c9:87:1f:de:cd:6e:d0:50:4a: 22:3c:22:4a:58:c6:86:8a:83:95:9a:17:2c:9e:3e: 3e:a3:ad:62:b6:f5:c8:1b:aa:04:e9:64:a7:23:2e: a2:bd:35:27:55:e2:23:2a:e2:7a:91:bb:f4:1f:c3: e4:fa:81:82:9f:ea:69:ec:1b:27:a2:b0:b6:8e:90: 3e:86:3d:63:52:bb:dd:75:30:f6:0d:93:a7:97:fc: 98:1b:62:eb:35:67:3c:f7:40:30:58:3a:f0:21:78: bb:00:d3:55:63:84:3c:8e:87:be:10:5c:6e:62:fa: 80:4a:a4:e8:5b:74:ec:5a:50:7f:1b:eb:64:b5:30: da:43:09:7a:c3:7a:2f:85:71:5a:4d:72:7b:9b:d2: ac:5a:b1:a6:50:f1:8a:47:ee:24:27:26:43:85:fa: 07:56:06:69:9a:ba:be:f9:c4:2f:12:c3:4d:d4:ed: 74:d5:1a:24:7b:7a:a7:ad:4f:e0:92:9b:30:95:3f: c2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:52:39:ED:FF:B8:35:E3:EA:F1:43:96:11:63:60:E3:9C:CB:FE:1A X509v3 Authority Key Identifier: keyid:A4:38:9D:B4:8B:C4:E9:34:9C:D9:E1:1D:D0:CB:6D:70:76:9A:E3:19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3340/pDidtIvE6TSc2eEd0MttcHaa4xk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/pDidtIvE6TSc2eEd0MttcHaa4xk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3340/pDidtIvE6TSc2eEd0MttcHaa4xk.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:61:cd:d8:e2:bf:52:73:15:21:bf:bf:e6:10:e8:a6:e2:1b: a6:82:92:3f:49:e7:15:df:76:1a:10:22:3d:29:54:19:be:58: ea:42:19:f0:b7:04:74:f5:c5:65:a1:89:51:19:0b:5a:a0:ca: 31:91:74:e9:de:23:d8:f0:07:b5:00:43:c3:be:81:aa:95:92: 8c:c0:fd:f8:6f:b9:2d:e1:61:4d:e9:88:4d:d8:52:d6:f6:2a: 30:aa:db:7c:3f:b2:e8:c9:1c:a7:21:d8:0f:dd:bb:1a:28:2c: 7d:db:aa:63:43:0b:04:c1:0d:ae:f1:ae:11:32:60:e6:dc:ca: cd:6b:9e:ac:75:8a:1f:f3:8a:b4:76:6d:a6:81:57:b7:a1:8e: 4b:c4:75:2b:27:dd:47:d6:c2:ed:88:03:c0:36:43:ca:1a:9f: 37:37:83:3d:76:7b:b7:97:fd:89:24:11:c2:94:2e:d4:64:4f: 6a:19:37:0b:ff:11:96:48:c8:76:83:d7:2d:58:91:80:db:73: db:09:5f:bd:d4:8c:54:9e:8a:5f:ad:9b:b7:77:21:fb:dd:de: 25:03:ca:a0:84:02:c0:ae:22:4b:8d:54:f0:af:ec:9b:e0:0a: 22:4a:53:ab:68:77:6b:1e:46:2d:18:26:d9:d8:89:70:ba:8e: 2e:f4:ca:dd -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICA9AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTQz ODlEQjQ4QkM0RTkzNDlDRDlFMTFERDBDQjZENzA3NjlBRTMxOTAeFw0yNTA3MDQy MDE3MDlaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEMwNTIzOUVERkZCODM1 RTNFQUYxNDM5NjExNjM2MEUzOUNDQkZFMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCV/GSdiL0GYknnictmNj53Nw6OjTWeW5ddkD3zYc58WekKMfHd gfokmXHc5HimnrYSdGEIR3KLNWaWkuIGEK/wasmHH97NbtBQSiI8IkpYxoaKg5Wa FyyePj6jrWK29cgbqgTpZKcjLqK9NSdV4iMq4nqRu/Qfw+T6gYKf6mnsGyeisLaO kD6GPWNSu911MPYNk6eX/JgbYus1Zzz3QDBYOvAheLsA01VjhDyOh74QXG5i+oBK pOhbdOxaUH8b62S1MNpDCXrDei+FcVpNcnub0qxasaZQ8YpH7iQnJkOF+gdWBmma ur75xC8Sw03U7XTVGiR7eqetT+CSmzCVP8I9AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUwFI57f+4NePq8UOWEWNg45zL/howHwYDVR0jBBgwFoAUpDidtIvE6TSc2eEd 0MttcHaa4xkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM0 MC9wRGlkdEl2RTZUU2MyZUVkME10dGNIYWE0eGsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3BEaWR0SXZFNlRTYzJlRWQwTXR0Y0hhYTR4ay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNDAvcERpZHRJdkU2VFNj MmVFZDBNdHRjSGFhNHhrLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAGhhzdjiv1JzFSG/v+YQ6KbiG6aCkj9J5xXfdhoQIj0pVBm+WOpCGfC3BHT1 xWWhiVEZC1qgyjGRdOneI9jwB7UAQ8O+gaqVkozA/fhvuS3hYU3piE3YUtb2KjCq 23w/sujJHKch2A/duxooLH3bqmNDCwTBDa7xrhEyYObcys1rnqx1ih/zirR2baaB V7ehjkvEdSsn3UfWwu2IA8A2Q8oanzc3gz12e7eX/YkkEcKULtRkT2oZNwv/EZZI yHaD1y1YkYDbc9sJX73UjFSeil+tm7d3Ifvd3iUDyqCEAsCuIkuNVPCv7JvgCiJK U6tod2seRi0YJtnYiXC6ji70yt0= -----END CERTIFICATE-----Generated at Fri Jul 4 21:49:23 2025 by rpki-client