$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft File: 0Thk00ASqL2IAiF99LmT9iQBB2w.mft (raw, json) Hash identifier: UDkvHzjZfLkaVIfc7wQ4Xwliu1MJZjn6YI2sxU6dpTo= Subject key identifier: 00:91:B7:3B:A0:64:11:18:D0:2A:80:45:59:62:19:82:07:B8:3A:C5 Authority key identifier: D1:38:64:D3:40:12:A8:BD:88:02:21:7D:F4:B9:93:F6:24:01:07:6C Certificate issuer: /CN=D13864D34012A8BD8802217DF4B993F62401076C Certificate serial: 03B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0Thk00ASqL2IAiF99LmT9iQBB2w.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft Manifest number: 03B9 Signing time: Fri 04 Jul 2025 10:17:27 +0000 Manifest this update: Fri 04 Jul 2025 10:17:27 +0000 Manifest next update: Fri 04 Jul 2025 16:17:27 +0000 Files and hashes: 1: 0Thk00ASqL2IAiF99LmT9iQBB2w.crl (hash: ygabIV3NgYOMUz5DMQontlDv7rGslMDo/762TDnla/U=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0Thk00ASqL2IAiF99LmT9iQBB2w.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 16:17:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 953 (0x3b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D13864D34012A8BD8802217DF4B993F62401076C Validity Not Before: Jul 4 10:17:27 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=0091B73BA0641118D02A80455962198207B83AC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2f:dd:4f:f5:72:89:66:0d:f6:f6:47:59:ec: ef:40:b2:1c:56:8e:08:72:8a:d3:68:9a:b4:0f:7c: ea:16:27:97:c8:f2:4c:ec:26:15:97:6c:e3:16:9a: 09:5c:90:34:44:85:54:23:41:4d:b4:41:a7:41:92: f2:33:4c:fe:3b:19:8c:40:d3:bc:8f:e3:31:d6:2e: c7:fe:4c:6c:3e:e4:ef:c8:74:0a:db:1d:3c:e2:07: 38:d5:0c:a0:16:fc:6f:22:f5:09:8f:2b:ad:b0:11: 2f:ec:3f:04:f1:82:ed:38:51:42:d2:46:ab:fb:e4: 24:f6:1a:60:04:66:6a:4b:5a:9d:78:14:c1:84:90: c1:4c:a3:6e:14:e2:3b:7c:dd:5d:e1:c1:d2:83:6f: 11:6d:40:89:48:47:e2:d6:c4:63:c5:e8:c7:15:d1: ed:eb:a7:fb:b5:09:fe:b5:d7:c3:a5:e4:6a:dc:61: dd:8f:73:dd:fe:ec:f4:da:7a:40:a0:61:62:f5:c5: 35:6a:28:36:e0:ef:db:a9:1b:f7:40:e1:fa:12:9f: 67:c5:4e:48:84:83:1d:93:c7:b3:3f:ba:c4:09:25: 8a:b4:b0:a9:b7:68:8c:a9:b3:88:a5:ba:d1:75:16: 2c:0c:36:fc:c2:72:a2:1b:56:c0:e1:c5:6c:d9:4a: 4d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:91:B7:3B:A0:64:11:18:D0:2A:80:45:59:62:19:82:07:B8:3A:C5 X509v3 Authority Key Identifier: keyid:D1:38:64:D3:40:12:A8:BD:88:02:21:7D:F4:B9:93:F6:24:01:07:6C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0Thk00ASqL2IAiF99LmT9iQBB2w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:2b:6b:d6:25:e8:0f:53:1e:0a:72:3d:03:a2:c3:17:b5:9d: 1d:5b:6d:93:5c:7d:a7:48:63:7a:a6:0a:4c:71:7d:fd:81:16: b5:79:95:13:65:a4:e4:81:d4:6d:f8:dc:cb:ce:fe:80:79:c2: de:f8:d8:c7:d3:59:f9:49:79:04:8d:1d:75:d9:33:8d:f7:35: 81:70:63:bc:e4:85:5e:41:fa:82:a3:4b:77:fa:3e:b9:e6:6f: f5:45:30:ad:8b:4c:6c:74:aa:e5:4d:2d:cf:4e:d5:07:ef:29: c5:17:cb:33:50:e6:e3:a6:95:98:27:a4:25:bb:5d:ba:96:93: b2:bc:1e:1d:0b:7f:22:7d:7d:54:23:0b:32:86:84:cd:0a:a7: 8d:5b:e9:cc:82:ba:b4:d9:db:90:08:a1:8e:27:01:3b:58:79: 37:22:dd:f8:9f:d4:df:b2:a4:65:28:49:a9:fb:fc:81:e5:73: de:19:0e:f1:ef:ef:16:0f:6c:22:75:e7:26:5b:44:07:b2:35: 07:52:39:e4:3f:96:7f:2b:38:9c:01:18:fd:e2:7e:4a:0b:64: 8e:6f:6e:b5:d0:9a:d1:a6:a1:f8:ec:69:14:18:dd:eb:ab:11: 00:a1:a9:b0:05:84:02:4f:63:c6:07:91:39:f0:cf:3b:c4:09: 09:53:95:38 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICA7kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDEz ODY0RDM0MDEyQThCRDg4MDIyMTdERjRCOTkzRjYyNDAxMDc2QzAeFw0yNTA3MDQx MDE3MjdaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDAwOTFCNzNCQTA2NDEx MThEMDJBODA0NTU5NjIxOTgyMDdCODNBQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSL91P9XKJZg329kdZ7O9AshxWjghyitNomrQPfOoWJ5fI8kzs JhWXbOMWmglckDREhVQjQU20QadBkvIzTP47GYxA07yP4zHWLsf+TGw+5O/IdArb HTziBzjVDKAW/G8i9QmPK62wES/sPwTxgu04UULSRqv75CT2GmAEZmpLWp14FMGE kMFMo24U4jt83V3hwdKDbxFtQIlIR+LWxGPF6McV0e3rp/u1Cf6118Ol5GrcYd2P c93+7PTaekCgYWL1xTVqKDbg79upG/dA4foSn2fFTkiEgx2Tx7M/usQJJYq0sKm3 aIyps4ilutF1FiwMNvzCcqIbVsDhxWzZSk0NAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUAJG3O6BkERjQKoBFWWIZgge4OsUwHwYDVR0jBBgwFoAU0Thk00ASqL2IAiF9 9LmT9iQBB2wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM0 My8wVGhrMDBBU3FMMklBaUY5OUxtVDlpUUJCMncuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBUaGswMEFTcUwySUFpRjk5TG1UOWlRQkIydy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNDMvMFRoazAwQVNxTDJJ QWlGOTlMbVQ5aVFCQjJ3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAGAra9Yl6A9THgpyPQOiwxe1nR1bbZNcfadIY3qmCkxxff2BFrV5lRNlpOSB 1G343MvO/oB5wt742MfTWflJeQSNHXXZM433NYFwY7zkhV5B+oKjS3f6Prnmb/VF MK2LTGx0quVNLc9O1QfvKcUXyzNQ5uOmlZgnpCW7XbqWk7K8Hh0LfyJ9fVQjCzKG hM0Kp41b6cyCurTZ25AIoY4nATtYeTci3fif1N+ypGUoSan7/IHlc94ZDvHv7xYP bCJ15yZbRAeyNQdSOeQ/ln8rOJwBGP3ifkoLZI5vbrXQmtGmofjsaRQY3eurEQCh qbAFhAJPY8YHkTnwzzvECQlTlTg= -----END CERTIFICATE-----Generated at Fri Jul 4 15:45:09 2025 by rpki-client