$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/508/m0o8NrQjR6zvNuhKZuae5Zvti3Y.mft File: m0o8NrQjR6zvNuhKZuae5Zvti3Y.mft (raw, json) Hash identifier: +lMssUV56EsxHEvpHPIPbsJvsWvyoJozhoU4pLhKqWM= Subject key identifier: 42:CA:EE:A6:60:60:CA:33:38:7B:50:1B:B1:26:DC:FB:B8:C4:4E:4E Authority key identifier: 9B:4A:3C:36:B4:23:47:AC:EF:36:E8:4A:66:E6:9E:E5:9B:ED:8B:76 Certificate issuer: /CN=9B4A3C36B42347ACEF36E84A66E69EE59BED8B76 Certificate serial: 19B7 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/m0o8NrQjR6zvNuhKZuae5Zvti3Y.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/508/m0o8NrQjR6zvNuhKZuae5Zvti3Y.mft Manifest number: 19B2 Signing time: Sat 05 Jul 2025 01:14:56 +0000 Manifest this update: Sat 05 Jul 2025 01:14:56 +0000 Manifest next update: Sat 05 Jul 2025 07:14:56 +0000 Files and hashes: 1: GCIdxqm-WcsHOj6_YFUYRmDRbZs.roa (hash: 3qXm3+lk5XLaY3V7FcSpIrb2+VzRfoseYvCbETIDo5E=) 2: UwI293Y5hF5uYhO69WoGcEjcrxQ.roa (hash: s1gz99xfRDksaBoffYwCjuimAwS5FnaGuweieaGNUm0=) 3: m0o8NrQjR6zvNuhKZuae5Zvti3Y.crl (hash: qEk/QHHRpQ6ML5i2SEEWNAqT3o8lq2LLHWux6vx92oI=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/508/m0o8NrQjR6zvNuhKZuae5Zvti3Y.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/508/m0o8NrQjR6zvNuhKZuae5Zvti3Y.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/m0o8NrQjR6zvNuhKZuae5Zvti3Y.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 07:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6583 (0x19b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B4A3C36B42347ACEF36E84A66E69EE59BED8B76 Validity Not Before: Jul 5 01:14:56 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=42CAEEA66060CA33387B501BB126DCFBB8C44E4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:75:e9:fb:c8:37:26:30:8e:a9:73:91:eb:0d: d3:a8:4b:94:58:77:f2:a5:18:d1:24:94:c9:4f:84: 16:5f:19:49:15:da:ef:5e:46:93:09:48:dc:21:2c: d6:38:6e:8c:9f:77:57:5a:af:4b:1a:53:6b:a1:32: 77:5c:75:26:c5:51:ab:17:75:bb:8c:26:74:b9:60: a0:77:e6:e7:14:62:f8:98:12:6f:35:59:62:2b:d5: 56:2d:e1:58:51:dc:35:6b:0f:ed:38:ac:0f:ee:24: 37:8e:94:8a:4d:81:d5:49:03:f1:af:58:e6:ac:dd: 33:3d:a6:ab:5d:64:4f:6c:78:8f:0e:7c:91:09:6d: a5:b9:9f:23:ee:d3:d9:86:81:84:20:f7:2a:94:9a: a0:25:0f:f5:5c:1c:8d:b3:2c:e2:9a:65:e5:8e:ef: 85:ec:ee:e0:2a:ce:77:5c:30:7a:0a:6b:66:38:c7: 58:60:8e:49:9a:c9:90:12:99:73:35:b4:ac:e4:85: ab:30:0d:a7:fa:ef:97:8c:64:c1:cc:93:a0:dc:0d: e6:18:f4:6d:f3:e3:2b:78:3c:4e:ba:97:98:c5:1b: bf:46:10:5f:f0:ef:cd:13:be:9c:a8:39:68:90:65: 51:b5:2f:20:8e:20:42:06:5d:58:4b:33:2b:a1:fb: f6:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:CA:EE:A6:60:60:CA:33:38:7B:50:1B:B1:26:DC:FB:B8:C4:4E:4E X509v3 Authority Key Identifier: keyid:9B:4A:3C:36:B4:23:47:AC:EF:36:E8:4A:66:E6:9E:E5:9B:ED:8B:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/508/m0o8NrQjR6zvNuhKZuae5Zvti3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/m0o8NrQjR6zvNuhKZuae5Zvti3Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/508/m0o8NrQjR6zvNuhKZuae5Zvti3Y.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:ec:f8:7e:28:e6:e2:5b:f0:87:af:02:ee:f7:3a:b7:3f:cc: 37:b2:1e:87:1a:e7:86:f0:43:eb:e6:02:a9:20:ad:a4:e3:98: 47:0f:ea:f5:f4:df:30:bb:e1:d9:e8:52:b2:a6:83:22:f4:59: dc:51:05:7f:ed:fe:dc:b6:b9:68:69:a7:31:93:44:8f:13:bc: ea:20:f7:70:67:c1:28:46:24:3b:42:33:03:68:6b:aa:5f:aa: 57:7b:c8:fd:3c:87:ff:7d:74:92:85:13:22:da:40:9f:af:3a: 45:2a:0c:e0:ed:ac:18:df:17:72:b7:e7:49:2f:28:0a:73:31: ff:34:6c:c3:09:49:e5:a8:ab:b2:a9:21:ab:48:11:24:c3:77: 3f:08:7c:61:cb:9f:7c:cb:cb:ad:36:9b:c3:ec:f2:b4:48:7e: 71:e1:66:cc:85:14:7b:c7:94:ec:5f:28:bc:ed:6d:fd:40:60: 0a:21:32:c4:92:a0:91:69:f5:54:58:7e:9c:dc:e4:68:85:83: ec:a6:b3:59:40:23:0a:a2:a5:cd:13:2e:41:dd:c1:a0:e0:7b: d5:b6:e4:3c:b0:f5:20:9a:af:14:e8:5b:63:c3:ac:20:50:fa: ee:b4:9f:33:74:31:9d:63:d6:29:f0:99:95:d9:50:df:a0:63: a1:1e:03:66 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICGbcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUI0 QTNDMzZCNDIzNDdBQ0VGMzZFODRBNjZFNjlFRTU5QkVEOEI3NjAeFw0yNTA3MDUw MTE0NTZaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDQyQ0FFRUE2NjA2MENB MzMzODdCNTAxQkIxMjZEQ0ZCQjhDNDRFNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlden7yDcmMI6pc5HrDdOoS5RYd/KlGNEklMlPhBZfGUkV2u9e RpMJSNwhLNY4boyfd1dar0saU2uhMndcdSbFUasXdbuMJnS5YKB35ucUYviYEm81 WWIr1VYt4VhR3DVrD+04rA/uJDeOlIpNgdVJA/GvWOas3TM9pqtdZE9seI8OfJEJ baW5nyPu09mGgYQg9yqUmqAlD/VcHI2zLOKaZeWO74Xs7uAqzndcMHoKa2Y4x1hg jkmayZASmXM1tKzkhaswDaf675eMZMHMk6DcDeYY9G3z4yt4PE66l5jFG79GEF/w 780TvpyoOWiQZVG1LyCOIEIGXVhLMyuh+/ZrAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUQsrupmBgyjM4e1AbsSbc+7jETk4wHwYDVR0jBBgwFoAUm0o8NrQjR6zvNuhK Zuae5Zvti3YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTA4 L20wbzhOclFqUjZ6dk51aEtadWFlNVp2dGkzWS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvbTBvOE5yUWpSNnp2TnVoS1p1YWU1WnZ0aTNZLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTA4L20wbzhOclFqUjZ6dk51 aEtadWFlNVp2dGkzWS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCc7Ph+KObiW/CHrwLu9zq3P8w3sh6HGueG8EPr5gKpIK2k45hHD+r19N8wu+HZ 6FKypoMi9FncUQV/7f7ctrloaacxk0SPE7zqIPdwZ8EoRiQ7QjMDaGuqX6pXe8j9 PIf/fXSShRMi2kCfrzpFKgzg7awY3xdyt+dJLygKczH/NGzDCUnlqKuyqSGrSBEk w3c/CHxhy598y8utNpvD7PK0SH5x4WbMhRR7x5TsXyi87W39QGAKITLEkqCRafVU WH6c3ORohYPsprNZQCMKoqXNEy5B3cGg4HvVtuQ8sPUgmq8U6Ftjw6wgUPrutJ8z dDGdY9Yp8JmV2VDfoGOhHgNm -----END CERTIFICATE-----Generated at Sat Jul 5 04:23:29 2025 by rpki-client