$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3352/H0H3cLlh6rXj8C3PeC_GHGdWJ00.mft File: H0H3cLlh6rXj8C3PeC_GHGdWJ00.mft (raw, json) Hash identifier: VsV0VIYG3GUDqqmGmb1BkBQjXMde/RnqfN961mxOXfQ= Subject key identifier: 5F:BE:75:6E:5D:53:DF:C2:2E:3E:58:F9:2F:30:FD:94:57:44:AF:E7 Authority key identifier: 1F:41:F7:70:B9:61:EA:B5:E3:F0:2D:CF:78:2F:C6:1C:67:56:27:4D Certificate issuer: /CN=1F41F770B961EAB5E3F02DCF782FC61C6756274D Certificate serial: 0395 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H0H3cLlh6rXj8C3PeC_GHGdWJ00.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3352/H0H3cLlh6rXj8C3PeC_GHGdWJ00.mft Manifest number: 0395 Signing time: Sat 23 Aug 2025 16:06:31 +0000 Manifest this update: Sat 23 Aug 2025 16:06:31 +0000 Manifest next update: Sat 23 Aug 2025 22:06:31 +0000 Files and hashes: 1: H0H3cLlh6rXj8C3PeC_GHGdWJ00.crl (hash: glIMRUjP+B2iw9sGvhZG3urnZysJzej2tgpSeW7n9N4=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3352/H0H3cLlh6rXj8C3PeC_GHGdWJ00.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3352/H0H3cLlh6rXj8C3PeC_GHGdWJ00.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H0H3cLlh6rXj8C3PeC_GHGdWJ00.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Aug 2025 21:04:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 917 (0x395) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F41F770B961EAB5E3F02DCF782FC61C6756274D Validity Not Before: Aug 23 16:06:31 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=5FBE756E5D53DFC22E3E58F92F30FD945744AFE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:29:e5:2a:3a:1c:96:6b:15:d9:90:40:2e:ff: 36:34:3d:dd:bd:df:58:d5:a3:8e:f5:92:29:06:1f: bf:84:20:4a:af:9c:6f:00:d9:38:63:9b:46:c5:0d: c4:3f:3b:bd:ae:70:10:02:8c:9f:5b:ac:93:4c:69: 31:94:bf:5b:81:a2:b7:64:62:79:2d:f3:53:09:5f: df:cb:06:bb:5b:a9:25:80:23:d5:7f:f7:15:91:66: c6:f5:67:0c:ba:6b:c0:e6:a9:30:86:72:f2:6b:07: 43:4d:75:43:8e:ad:9a:92:4a:95:69:b7:aa:42:61: 5c:96:4b:41:f8:82:b2:d2:da:e0:19:c3:36:65:a2: b2:de:06:a6:e4:31:24:f1:0d:9f:32:9e:59:92:e0: fb:2d:b6:ba:6f:b0:ee:8f:f4:1a:08:f8:7d:ce:cb: 1b:40:b8:fc:66:7e:ef:bf:5d:ef:1c:2e:2e:1a:dc: d6:15:82:4b:ba:1f:0c:72:1a:aa:75:7b:55:55:b3: fa:ec:b0:ee:db:07:f0:6f:73:06:23:34:3f:34:37: 5b:a3:05:bd:f6:ae:55:e7:fc:50:55:e0:d9:97:f9: c6:60:27:8b:82:df:64:af:54:06:05:93:5b:c0:97: 5c:dd:76:4b:a2:56:75:5c:eb:8e:32:47:2b:d1:ef: 04:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:BE:75:6E:5D:53:DF:C2:2E:3E:58:F9:2F:30:FD:94:57:44:AF:E7 X509v3 Authority Key Identifier: keyid:1F:41:F7:70:B9:61:EA:B5:E3:F0:2D:CF:78:2F:C6:1C:67:56:27:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3352/H0H3cLlh6rXj8C3PeC_GHGdWJ00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H0H3cLlh6rXj8C3PeC_GHGdWJ00.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3352/H0H3cLlh6rXj8C3PeC_GHGdWJ00.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:af:a7:d7:ed:2e:d7:a1:d6:b5:73:15:4c:9d:07:72:f5:99: 06:0f:15:47:38:c2:04:18:22:5c:be:9d:55:d6:7f:d7:1e:89: 67:84:42:b7:65:9b:e6:dc:23:a3:0b:5d:25:60:d3:a7:a1:fd: 35:1f:9e:8a:d1:03:e3:6d:e8:ff:e0:d5:36:69:02:c1:d3:80: de:a5:1a:53:d7:05:4f:ea:76:32:7a:b8:6d:ac:f5:2a:21:65: 11:81:22:f2:6b:ce:55:18:40:02:80:a0:47:9d:a9:f0:bf:b5: ff:a5:91:cc:82:68:42:42:05:fc:06:b7:5f:f9:d6:6f:51:16: 4c:d8:9f:d4:36:79:33:f5:bb:59:39:7e:35:a3:13:90:31:8b: 51:c5:20:08:7f:5d:a8:e9:47:a5:2a:59:b3:ce:2d:65:d6:6a: 1f:a1:b7:b8:99:84:d6:14:16:a3:8f:46:5d:0f:46:4f:81:54: db:f1:9f:31:be:be:1b:75:ba:fb:98:6c:06:af:62:62:e8:fc: 29:8b:55:ec:71:a4:3d:09:79:94:ff:9a:cd:f7:63:5d:2d:b4: d9:c4:a0:5d:3c:3d:83:ba:f7:fa:fc:90:6f:a3:83:ae:e5:7f: 89:96:62:8c:05:93:b5:e4:3a:26:a9:81:62:0b:b8:43:57:ce: 92:c7:f3:d4 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICA5UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUY0 MUY3NzBCOTYxRUFCNUUzRjAyRENGNzgyRkM2MUM2NzU2Mjc0RDAeFw0yNTA4MjMx NjA2MzFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDVGQkU3NTZFNUQ1M0RG QzIyRTNFNThGOTJGMzBGRDk0NTc0NEFGRTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjKeUqOhyWaxXZkEAu/zY0Pd2931jVo471kikGH7+EIEqvnG8A 2Thjm0bFDcQ/O72ucBACjJ9brJNMaTGUv1uBordkYnkt81MJX9/LBrtbqSWAI9V/ 9xWRZsb1Zwy6a8DmqTCGcvJrB0NNdUOOrZqSSpVpt6pCYVyWS0H4grLS2uAZwzZl orLeBqbkMSTxDZ8ynlmS4PsttrpvsO6P9BoI+H3OyxtAuPxmfu+/Xe8cLi4a3NYV gku6HwxyGqp1e1VVs/rssO7bB/BvcwYjND80N1ujBb32rlXn/FBV4NmX+cZgJ4uC 32SvVAYFk1vAl1zddkuiVnVc644yRyvR7wRrAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUX751bl1T38IuPlj5LzD9lFdEr+cwHwYDVR0jBBgwFoAUH0H3cLlh6rXj8C3P eC/GHGdWJ00wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM1 Mi9IMEgzY0xsaDZyWGo4QzNQZUNfR0hHZFdKMDAuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0gwSDNjTGxoNnJYajhDM1BlQ19HSEdkV0owMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNTIvSDBIM2NMbGg2clhq OEMzUGVDX0dIR2RXSjAwLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAGuvp9ftLteh1rVzFUydB3L1mQYPFUc4wgQYIly+nVXWf9ceiWeEQrdlm+bc I6MLXSVg06eh/TUfnorRA+Nt6P/g1TZpAsHTgN6lGlPXBU/qdjJ6uG2s9SohZRGB IvJrzlUYQAKAoEedqfC/tf+lkcyCaEJCBfwGt1/51m9RFkzYn9Q2eTP1u1k5fjWj E5Axi1HFIAh/XajpR6UqWbPOLWXWah+ht7iZhNYUFqOPRl0PRk+BVNvxnzG+vht1 uvuYbAavYmLo/CmLVexxpD0JeZT/ms33Y10ttNnEoF08PYO69/r8kG+jg67lf4mW YowFk7XkOiapgWILuENXzpLH89Q= -----END CERTIFICATE-----Generated at Sat Aug 23 20:35:16 2025 by rpki-client