$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft File: 0Thk00ASqL2IAiF99LmT9iQBB2w.mft (raw, json) Hash identifier: BZXIltXGeCUhy0ApN44M2QuDNM9qSKvCI4XBK4heNnM= Subject key identifier: 00:91:B7:3B:A0:64:11:18:D0:2A:80:45:59:62:19:82:07:B8:3A:C5 Authority key identifier: D1:38:64:D3:40:12:A8:BD:88:02:21:7D:F4:B9:93:F6:24:01:07:6C Certificate issuer: /CN=D13864D34012A8BD8802217DF4B993F62401076C Certificate serial: 04AF Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0Thk00ASqL2IAiF99LmT9iQBB2w.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft Manifest number: 04AF Signing time: Sat 23 Aug 2025 16:05:59 +0000 Manifest this update: Sat 23 Aug 2025 16:05:59 +0000 Manifest next update: Sat 23 Aug 2025 22:05:59 +0000 Files and hashes: 1: 0Thk00ASqL2IAiF99LmT9iQBB2w.crl (hash: 3ZcDF4Kze2yWCYk1SfejTSklrqnjlguPUt4tKXRze7Y=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0Thk00ASqL2IAiF99LmT9iQBB2w.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Aug 2025 21:04:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1199 (0x4af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D13864D34012A8BD8802217DF4B993F62401076C Validity Not Before: Aug 23 16:05:59 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=0091B73BA0641118D02A80455962198207B83AC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2f:dd:4f:f5:72:89:66:0d:f6:f6:47:59:ec: ef:40:b2:1c:56:8e:08:72:8a:d3:68:9a:b4:0f:7c: ea:16:27:97:c8:f2:4c:ec:26:15:97:6c:e3:16:9a: 09:5c:90:34:44:85:54:23:41:4d:b4:41:a7:41:92: f2:33:4c:fe:3b:19:8c:40:d3:bc:8f:e3:31:d6:2e: c7:fe:4c:6c:3e:e4:ef:c8:74:0a:db:1d:3c:e2:07: 38:d5:0c:a0:16:fc:6f:22:f5:09:8f:2b:ad:b0:11: 2f:ec:3f:04:f1:82:ed:38:51:42:d2:46:ab:fb:e4: 24:f6:1a:60:04:66:6a:4b:5a:9d:78:14:c1:84:90: c1:4c:a3:6e:14:e2:3b:7c:dd:5d:e1:c1:d2:83:6f: 11:6d:40:89:48:47:e2:d6:c4:63:c5:e8:c7:15:d1: ed:eb:a7:fb:b5:09:fe:b5:d7:c3:a5:e4:6a:dc:61: dd:8f:73:dd:fe:ec:f4:da:7a:40:a0:61:62:f5:c5: 35:6a:28:36:e0:ef:db:a9:1b:f7:40:e1:fa:12:9f: 67:c5:4e:48:84:83:1d:93:c7:b3:3f:ba:c4:09:25: 8a:b4:b0:a9:b7:68:8c:a9:b3:88:a5:ba:d1:75:16: 2c:0c:36:fc:c2:72:a2:1b:56:c0:e1:c5:6c:d9:4a: 4d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:91:B7:3B:A0:64:11:18:D0:2A:80:45:59:62:19:82:07:B8:3A:C5 X509v3 Authority Key Identifier: keyid:D1:38:64:D3:40:12:A8:BD:88:02:21:7D:F4:B9:93:F6:24:01:07:6C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0Thk00ASqL2IAiF99LmT9iQBB2w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:a1:71:8b:63:40:49:13:56:8c:05:b7:c0:e8:07:72:49:5d: 73:1c:f1:75:69:00:4e:72:2c:e9:e5:cd:bf:df:ca:21:fa:aa: 1c:71:0a:75:03:62:8d:5a:25:69:b7:12:11:53:5a:ba:38:df: 11:f0:93:bb:82:c0:62:ac:4f:7d:3c:4d:0a:be:96:b3:6b:af: 38:01:2b:cf:03:f1:8f:f8:ed:af:5a:dd:a0:eb:00:6c:a3:f2: 78:47:4e:d1:e7:29:47:5e:d2:c9:45:7d:97:70:64:71:82:91: b7:a2:c4:82:80:d6:97:e3:31:29:66:69:46:90:b6:e7:2e:da: a0:de:67:b5:1f:a9:04:2f:a5:c3:b4:33:b5:24:7b:98:14:52: 56:64:2b:22:6b:69:a4:c8:6d:e4:28:cc:7d:8f:47:9f:db:80: ff:e4:02:c8:ed:c0:91:a5:08:04:f1:ad:ba:b8:54:98:5d:43: 63:75:d6:82:0c:74:65:d0:cf:08:b7:71:1b:36:0d:80:45:2b: 70:2e:6d:2e:86:5d:6d:0a:3c:39:4e:00:a0:89:37:12:82:13: 6a:9e:f6:ac:f5:3a:b5:98:d5:ed:45:56:96:83:56:29:e3:d9: ab:17:6b:d5:20:87:fa:a2:14:ae:c6:df:ca:a7:a4:b6:b9:e2: 52:48:75:25 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBK8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDEz ODY0RDM0MDEyQThCRDg4MDIyMTdERjRCOTkzRjYyNDAxMDc2QzAeFw0yNTA4MjMx NjA1NTlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDAwOTFCNzNCQTA2NDEx MThEMDJBODA0NTU5NjIxOTgyMDdCODNBQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSL91P9XKJZg329kdZ7O9AshxWjghyitNomrQPfOoWJ5fI8kzs JhWXbOMWmglckDREhVQjQU20QadBkvIzTP47GYxA07yP4zHWLsf+TGw+5O/IdArb HTziBzjVDKAW/G8i9QmPK62wES/sPwTxgu04UULSRqv75CT2GmAEZmpLWp14FMGE kMFMo24U4jt83V3hwdKDbxFtQIlIR+LWxGPF6McV0e3rp/u1Cf6118Ol5GrcYd2P c93+7PTaekCgYWL1xTVqKDbg79upG/dA4foSn2fFTkiEgx2Tx7M/usQJJYq0sKm3 aIyps4ilutF1FiwMNvzCcqIbVsDhxWzZSk0NAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUAJG3O6BkERjQKoBFWWIZgge4OsUwHwYDVR0jBBgwFoAU0Thk00ASqL2IAiF9 9LmT9iQBB2wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM0 My8wVGhrMDBBU3FMMklBaUY5OUxtVDlpUUJCMncuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBUaGswMEFTcUwySUFpRjk5TG1UOWlRQkIydy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNDMvMFRoazAwQVNxTDJJ QWlGOTlMbVQ5aVFCQjJ3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAJGhcYtjQEkTVowFt8DoB3JJXXMc8XVpAE5yLOnlzb/fyiH6qhxxCnUDYo1a JWm3EhFTWro43xHwk7uCwGKsT308TQq+lrNrrzgBK88D8Y/47a9a3aDrAGyj8nhH TtHnKUde0slFfZdwZHGCkbeixIKA1pfjMSlmaUaQtucu2qDeZ7UfqQQvpcO0M7Uk e5gUUlZkKyJraaTIbeQozH2PR5/bgP/kAsjtwJGlCATxrbq4VJhdQ2N11oIMdGXQ zwi3cRs2DYBFK3AubS6GXW0KPDlOAKCJNxKCE2qe9qz1OrWY1e1FVpaDVinj2asX a9Ugh/qiFK7G38qnpLa54lJIdSU= -----END CERTIFICATE-----Generated at Sat Aug 23 20:43:07 2025 by rpki-client