$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft File: 0Thk00ASqL2IAiF99LmT9iQBB2w.mft (raw, json) Hash identifier: sdTxJmCe6wylWw0ArkFKnu5Kml/o/mJ9oW3imiOaa/U= Subject key identifier: 00:91:B7:3B:A0:64:11:18:D0:2A:80:45:59:62:19:82:07:B8:3A:C5 Authority key identifier: D1:38:64:D3:40:12:A8:BD:88:02:21:7D:F4:B9:93:F6:24:01:07:6C Certificate issuer: /CN=D13864D34012A8BD8802217DF4B993F62401076C Certificate serial: 05CA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0Thk00ASqL2IAiF99LmT9iQBB2w.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft Manifest number: 05CA Signing time: Mon 20 Oct 2025 17:08:31 +0000 Manifest this update: Mon 20 Oct 2025 17:08:31 +0000 Manifest next update: Mon 20 Oct 2025 23:08:31 +0000 Files and hashes: 1: 0Thk00ASqL2IAiF99LmT9iQBB2w.crl (hash: 3WnA2noVybUaAKFKPHe+77+93R8cpNse5lb/1HSPxWY=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0Thk00ASqL2IAiF99LmT9iQBB2w.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 23:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1482 (0x5ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D13864D34012A8BD8802217DF4B993F62401076C Validity Not Before: Oct 20 17:08:31 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=0091B73BA0641118D02A80455962198207B83AC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2f:dd:4f:f5:72:89:66:0d:f6:f6:47:59:ec: ef:40:b2:1c:56:8e:08:72:8a:d3:68:9a:b4:0f:7c: ea:16:27:97:c8:f2:4c:ec:26:15:97:6c:e3:16:9a: 09:5c:90:34:44:85:54:23:41:4d:b4:41:a7:41:92: f2:33:4c:fe:3b:19:8c:40:d3:bc:8f:e3:31:d6:2e: c7:fe:4c:6c:3e:e4:ef:c8:74:0a:db:1d:3c:e2:07: 38:d5:0c:a0:16:fc:6f:22:f5:09:8f:2b:ad:b0:11: 2f:ec:3f:04:f1:82:ed:38:51:42:d2:46:ab:fb:e4: 24:f6:1a:60:04:66:6a:4b:5a:9d:78:14:c1:84:90: c1:4c:a3:6e:14:e2:3b:7c:dd:5d:e1:c1:d2:83:6f: 11:6d:40:89:48:47:e2:d6:c4:63:c5:e8:c7:15:d1: ed:eb:a7:fb:b5:09:fe:b5:d7:c3:a5:e4:6a:dc:61: dd:8f:73:dd:fe:ec:f4:da:7a:40:a0:61:62:f5:c5: 35:6a:28:36:e0:ef:db:a9:1b:f7:40:e1:fa:12:9f: 67:c5:4e:48:84:83:1d:93:c7:b3:3f:ba:c4:09:25: 8a:b4:b0:a9:b7:68:8c:a9:b3:88:a5:ba:d1:75:16: 2c:0c:36:fc:c2:72:a2:1b:56:c0:e1:c5:6c:d9:4a: 4d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:91:B7:3B:A0:64:11:18:D0:2A:80:45:59:62:19:82:07:B8:3A:C5 X509v3 Authority Key Identifier: keyid:D1:38:64:D3:40:12:A8:BD:88:02:21:7D:F4:B9:93:F6:24:01:07:6C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0Thk00ASqL2IAiF99LmT9iQBB2w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:39:bc:9f:16:d1:97:36:d0:13:e3:63:cc:3f:21:f7:ad:5e: 84:53:0e:1a:9a:e8:0e:eb:41:78:5f:ab:70:a0:2b:85:81:e9: 36:a0:a6:41:9c:e5:df:98:1b:43:65:0b:e4:fc:09:ff:e9:5a: f6:e9:10:9c:5e:1b:44:0f:58:18:eb:7e:cd:ef:c3:15:b6:48: 8b:3e:30:ea:33:02:72:86:f7:aa:2e:05:94:3e:4d:b1:1a:58: 78:83:b1:7e:fd:f0:0d:5d:62:5f:15:ac:27:93:bb:9b:ec:af: c4:b0:ba:49:78:c2:7a:e3:ab:70:84:83:e0:45:c6:2f:9c:04: bc:1c:c4:ff:46:94:8e:3a:c9:5b:12:b8:d5:cd:e2:7b:4b:41: 12:b1:6f:5d:7a:db:c5:14:da:d9:35:6c:6b:51:5a:d9:54:2b: 41:d9:7a:42:45:e1:e4:b2:9a:8b:a1:2c:e7:fd:15:df:84:c2: 26:7a:34:71:22:26:c4:a5:d5:46:18:e0:6c:f6:f4:b7:0a:03: f5:0b:e8:fb:b5:19:55:af:f7:33:0d:c9:9f:da:99:e4:bf:c7: e9:b4:7c:ff:e6:c0:71:30:f9:92:cc:4c:65:03:fe:c8:64:ca: ea:90:13:fe:5a:9a:08:81:0e:c5:4e:54:61:cf:8b:b6:19:c7: 75:c6:0f:54 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBcowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDEz ODY0RDM0MDEyQThCRDg4MDIyMTdERjRCOTkzRjYyNDAxMDc2QzAeFw0yNTEwMjAx NzA4MzFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDAwOTFCNzNCQTA2NDEx MThEMDJBODA0NTU5NjIxOTgyMDdCODNBQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSL91P9XKJZg329kdZ7O9AshxWjghyitNomrQPfOoWJ5fI8kzs JhWXbOMWmglckDREhVQjQU20QadBkvIzTP47GYxA07yP4zHWLsf+TGw+5O/IdArb HTziBzjVDKAW/G8i9QmPK62wES/sPwTxgu04UULSRqv75CT2GmAEZmpLWp14FMGE kMFMo24U4jt83V3hwdKDbxFtQIlIR+LWxGPF6McV0e3rp/u1Cf6118Ol5GrcYd2P c93+7PTaekCgYWL1xTVqKDbg79upG/dA4foSn2fFTkiEgx2Tx7M/usQJJYq0sKm3 aIyps4ilutF1FiwMNvzCcqIbVsDhxWzZSk0NAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUAJG3O6BkERjQKoBFWWIZgge4OsUwHwYDVR0jBBgwFoAU0Thk00ASqL2IAiF9 9LmT9iQBB2wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM0 My8wVGhrMDBBU3FMMklBaUY5OUxtVDlpUUJCMncuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBUaGswMEFTcUwySUFpRjk5TG1UOWlRQkIydy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNDMvMFRoazAwQVNxTDJJ QWlGOTlMbVQ5aVFCQjJ3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBACE5vJ8W0Zc20BPjY8w/IfetXoRTDhqa6A7rQXhfq3CgK4WB6TagpkGc5d+Y G0NlC+T8Cf/pWvbpEJxeG0QPWBjrfs3vwxW2SIs+MOozAnKG96ouBZQ+TbEaWHiD sX798A1dYl8VrCeTu5vsr8Swukl4wnrjq3CEg+BFxi+cBLwcxP9GlI46yVsSuNXN 4ntLQRKxb11628UU2tk1bGtRWtlUK0HZekJF4eSymouhLOf9Fd+EwiZ6NHEiJsSl 1UYY4Gz29LcKA/UL6Pu1GVWv9zMNyZ/ameS/x+m0fP/mwHEw+ZLMTGUD/shkyuqQ E/5amgiBDsVOVGHPi7YZx3XGD1Q= -----END CERTIFICATE-----Generated at Mon Oct 20 19:30:32 2025 by rpki-client