$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft File: 0Thk00ASqL2IAiF99LmT9iQBB2w.mft (raw, json) Hash identifier: H+aP/jH6xx6pOUc0ge8FoI/U9MYlctocoRbMGLMdjHU= Subject key identifier: 00:91:B7:3B:A0:64:11:18:D0:2A:80:45:59:62:19:82:07:B8:3A:C5 Authority key identifier: D1:38:64:D3:40:12:A8:BD:88:02:21:7D:F4:B9:93:F6:24:01:07:6C Certificate issuer: /CN=D13864D34012A8BD8802217DF4B993F62401076C Certificate serial: 02CE Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0Thk00ASqL2IAiF99LmT9iQBB2w.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft Manifest number: 02CE Signing time: Sat 17 May 2025 22:43:04 +0000 Manifest this update: Sat 17 May 2025 22:43:04 +0000 Manifest next update: Sun 18 May 2025 04:43:04 +0000 Files and hashes: 1: 0Thk00ASqL2IAiF99LmT9iQBB2w.crl (hash: GIhyKmimqin4jFSOXF76flGgB3CpOSKbczWLOi/FF40=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0Thk00ASqL2IAiF99LmT9iQBB2w.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:43:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 718 (0x2ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D13864D34012A8BD8802217DF4B993F62401076C Validity Not Before: May 17 22:43:04 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=0091B73BA0641118D02A80455962198207B83AC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2f:dd:4f:f5:72:89:66:0d:f6:f6:47:59:ec: ef:40:b2:1c:56:8e:08:72:8a:d3:68:9a:b4:0f:7c: ea:16:27:97:c8:f2:4c:ec:26:15:97:6c:e3:16:9a: 09:5c:90:34:44:85:54:23:41:4d:b4:41:a7:41:92: f2:33:4c:fe:3b:19:8c:40:d3:bc:8f:e3:31:d6:2e: c7:fe:4c:6c:3e:e4:ef:c8:74:0a:db:1d:3c:e2:07: 38:d5:0c:a0:16:fc:6f:22:f5:09:8f:2b:ad:b0:11: 2f:ec:3f:04:f1:82:ed:38:51:42:d2:46:ab:fb:e4: 24:f6:1a:60:04:66:6a:4b:5a:9d:78:14:c1:84:90: c1:4c:a3:6e:14:e2:3b:7c:dd:5d:e1:c1:d2:83:6f: 11:6d:40:89:48:47:e2:d6:c4:63:c5:e8:c7:15:d1: ed:eb:a7:fb:b5:09:fe:b5:d7:c3:a5:e4:6a:dc:61: dd:8f:73:dd:fe:ec:f4:da:7a:40:a0:61:62:f5:c5: 35:6a:28:36:e0:ef:db:a9:1b:f7:40:e1:fa:12:9f: 67:c5:4e:48:84:83:1d:93:c7:b3:3f:ba:c4:09:25: 8a:b4:b0:a9:b7:68:8c:a9:b3:88:a5:ba:d1:75:16: 2c:0c:36:fc:c2:72:a2:1b:56:c0:e1:c5:6c:d9:4a: 4d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:91:B7:3B:A0:64:11:18:D0:2A:80:45:59:62:19:82:07:B8:3A:C5 X509v3 Authority Key Identifier: keyid:D1:38:64:D3:40:12:A8:BD:88:02:21:7D:F4:B9:93:F6:24:01:07:6C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0Thk00ASqL2IAiF99LmT9iQBB2w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:82:c8:26:4c:0a:89:66:87:3c:52:36:b4:db:a6:f3:39:40: ba:12:26:80:36:72:be:8d:5c:e8:da:00:09:eb:75:6b:7e:10: 07:e7:7f:f9:1d:1a:81:5b:d9:6e:94:c7:5a:61:91:6b:68:4a: 76:1f:01:c8:db:09:0b:f0:4b:dd:2d:ea:4e:8f:17:d2:6f:43: a4:7f:73:d7:9d:93:86:36:dd:36:af:05:58:c1:e4:45:9c:fd: 82:81:6b:ac:75:43:9c:2e:6c:2e:c0:f2:34:1d:96:18:fc:dd: e7:a4:ae:64:69:17:e8:56:e4:94:2e:65:24:da:08:bb:6e:60: 72:e0:f2:cc:7a:9d:5a:f6:ff:11:28:c5:ce:0a:16:d8:ef:7b: e2:6c:40:3a:41:df:a9:f0:52:bd:01:3b:05:5c:3e:54:f9:5b: 2c:32:d4:2c:13:fa:86:87:b2:ef:4d:b7:1b:bc:08:d1:fe:14: 0a:e6:20:65:72:9d:97:ee:f7:85:ff:77:cb:e1:78:e1:cb:e4: 33:80:f6:a0:7a:44:d2:0c:c0:03:04:80:71:86:72:5d:ab:7a: 58:07:30:f8:eb:27:aa:a4:ae:bc:72:1f:9b:cf:8b:09:d0:4a: 80:b4:fa:0a:18:9f:33:50:94:2c:8c:9a:85:31:fa:db:65:88: e9:c4:d0:c3 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICAs4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDEz ODY0RDM0MDEyQThCRDg4MDIyMTdERjRCOTkzRjYyNDAxMDc2QzAeFw0yNTA1MTcy MjQzMDRaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDAwOTFCNzNCQTA2NDEx MThEMDJBODA0NTU5NjIxOTgyMDdCODNBQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSL91P9XKJZg329kdZ7O9AshxWjghyitNomrQPfOoWJ5fI8kzs JhWXbOMWmglckDREhVQjQU20QadBkvIzTP47GYxA07yP4zHWLsf+TGw+5O/IdArb HTziBzjVDKAW/G8i9QmPK62wES/sPwTxgu04UULSRqv75CT2GmAEZmpLWp14FMGE kMFMo24U4jt83V3hwdKDbxFtQIlIR+LWxGPF6McV0e3rp/u1Cf6118Ol5GrcYd2P c93+7PTaekCgYWL1xTVqKDbg79upG/dA4foSn2fFTkiEgx2Tx7M/usQJJYq0sKm3 aIyps4ilutF1FiwMNvzCcqIbVsDhxWzZSk0NAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUAJG3O6BkERjQKoBFWWIZgge4OsUwHwYDVR0jBBgwFoAU0Thk00ASqL2IAiF9 9LmT9iQBB2wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM0 My8wVGhrMDBBU3FMMklBaUY5OUxtVDlpUUJCMncuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBUaGswMEFTcUwySUFpRjk5TG1UOWlRQkIydy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNDMvMFRoazAwQVNxTDJJ QWlGOTlMbVQ5aVFCQjJ3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBACmCyCZMColmhzxSNrTbpvM5QLoSJoA2cr6NXOjaAAnrdWt+EAfnf/kdGoFb 2W6Ux1phkWtoSnYfAcjbCQvwS90t6k6PF9JvQ6R/c9edk4Y23TavBVjB5EWc/YKB a6x1Q5wubC7A8jQdlhj83eekrmRpF+hW5JQuZSTaCLtuYHLg8sx6nVr2/xEoxc4K Ftjve+JsQDpB36nwUr0BOwVcPlT5Wywy1CwT+oaHsu9Ntxu8CNH+FArmIGVynZfu 94X/d8vheOHL5DOA9qB6RNIMwAMEgHGGcl2relgHMPjrJ6qkrrxyH5vPiwnQSoC0 +goYnzNQlCyMmoUx+ttliOnE0MM= -----END CERTIFICATE-----Generated at Sun May 18 01:58:41 2025 by rpki-client