$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/678/UJGXL6ttHEVOK0QS3ESFpHRYvjY.mft File: UJGXL6ttHEVOK0QS3ESFpHRYvjY.mft (raw, json) Hash identifier: Pr0A7XtJSeHUr0HtGcwrLKZx6EC4umQ05obKDd3EDX4= Subject key identifier: 0E:11:2D:BB:61:71:02:64:88:46:63:A5:59:99:07:4B:E9:DF:ED:12 Authority key identifier: 50:91:97:2F:AB:6D:1C:45:4E:2B:44:12:DC:44:85:A4:74:58:BE:36 Certificate issuer: /CN=5091972FAB6D1C454E2B4412DC4485A47458BE36 Certificate serial: 1B93 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UJGXL6ttHEVOK0QS3ESFpHRYvjY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/678/UJGXL6ttHEVOK0QS3ESFpHRYvjY.mft Manifest number: 1B93 Signing time: Sun 19 Oct 2025 22:05:39 +0000 Manifest this update: Sun 19 Oct 2025 22:05:39 +0000 Manifest next update: Mon 20 Oct 2025 04:05:39 +0000 Files and hashes: 1: UJGXL6ttHEVOK0QS3ESFpHRYvjY.crl (hash: SfbjhPxkf4wuInQoojapTIhOwRlP2vw4A7ho6e7bkP8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/678/UJGXL6ttHEVOK0QS3ESFpHRYvjY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/678/UJGXL6ttHEVOK0QS3ESFpHRYvjY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UJGXL6ttHEVOK0QS3ESFpHRYvjY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 04:05:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7059 (0x1b93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5091972FAB6D1C454E2B4412DC4485A47458BE36 Validity Not Before: Oct 19 22:05:39 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=0E112DBB61710264884663A55999074BE9DFED12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e7:76:61:d1:03:2b:e3:f6:0c:ce:c3:a5:bf: e0:89:6c:50:37:41:5d:34:7f:a1:ea:ba:9a:de:a9: 00:a6:09:28:c9:59:2c:fd:3e:26:2c:7d:1c:e1:9e: 71:d2:1e:9e:da:0f:52:76:7a:ec:d3:9a:08:3d:17: 2e:da:e0:b2:3b:da:ef:5b:a8:d5:09:db:32:e7:c7: f2:26:66:b0:2a:53:a6:aa:3c:f8:4a:dd:72:f1:e1: 31:7e:b0:8b:a1:9f:af:27:20:29:8c:af:cb:61:06: 5c:52:f2:8f:c5:fe:ef:38:7f:46:44:2e:db:21:88: 6d:d5:9e:7b:4a:2e:94:16:57:c4:fb:67:c3:3c:60: c8:05:00:92:7a:db:84:ec:2b:01:25:68:66:a6:76: 73:52:41:e7:3c:80:f7:9e:ce:75:93:f3:c8:50:b8: fa:17:32:06:fe:31:4e:55:f4:0e:57:ff:f8:a5:a5: 9a:54:67:dd:ee:1d:e5:06:42:12:23:a0:8f:a6:16: d1:4d:60:62:64:e3:63:a7:b6:91:dd:bd:3e:36:60: bf:fb:44:c7:56:6c:a9:28:81:8f:5c:b1:e8:40:62: b2:0d:3d:77:f1:8a:84:04:d3:88:33:20:21:45:db: d5:d5:68:68:09:ea:58:5d:16:ab:27:6a:0f:ad:f0: 64:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:11:2D:BB:61:71:02:64:88:46:63:A5:59:99:07:4B:E9:DF:ED:12 X509v3 Authority Key Identifier: keyid:50:91:97:2F:AB:6D:1C:45:4E:2B:44:12:DC:44:85:A4:74:58:BE:36 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/678/UJGXL6ttHEVOK0QS3ESFpHRYvjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UJGXL6ttHEVOK0QS3ESFpHRYvjY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/678/UJGXL6ttHEVOK0QS3ESFpHRYvjY.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:19:d0:ca:a1:d6:12:de:7c:b7:4f:d1:2e:0a:8a:84:ab:cb: 21:e5:df:86:66:0a:b8:cf:4c:10:a5:17:71:b6:99:6f:ee:92: 81:f9:42:d6:60:38:20:42:7b:d6:0b:51:69:5d:f2:4e:ae:52: 77:1c:f3:7d:fd:3f:aa:0b:77:f1:95:6e:6e:75:36:50:68:0d: e1:6f:49:41:e2:28:bb:d7:71:45:b2:9d:43:c1:35:6d:37:75: 0d:21:9d:d8:fc:13:45:ee:b0:5d:db:1e:22:01:46:fd:91:a6: 2e:a5:1a:8e:27:ef:73:ba:15:18:75:28:85:62:10:06:0e:b2: b0:07:46:5d:50:1e:45:b1:8e:5b:fe:48:53:2b:2b:8f:06:69: 78:87:c6:11:d8:b4:27:a2:70:81:70:33:c0:a0:d7:89:89:0c: 6c:7b:08:c0:38:93:90:6d:c8:7a:95:9b:94:f9:d8:54:a3:8d: 18:b1:5f:73:ba:e7:28:49:5c:bc:75:ca:be:f4:1d:5e:a5:1f: 21:d4:49:88:37:c1:12:25:5e:5f:22:42:20:84:7d:a3:59:ef: 3b:4e:b4:7a:30:d3:85:d6:0e:d8:15:d2:f1:f6:7e:74:b7:13: f7:2f:5f:57:05:ad:69:52:51:7e:29:87:c4:14:0d:11:4b:48: 84:ac:66:6f -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICG5MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTA5 MTk3MkZBQjZEMUM0NTRFMkI0NDEyREM0NDg1QTQ3NDU4QkUzNjAeFw0yNTEwMTky MjA1MzlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDBFMTEyREJCNjE3MTAy NjQ4ODQ2NjNBNTU5OTkwNzRCRTlERkVEMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDh53Zh0QMr4/YMzsOlv+CJbFA3QV00f6HqupreqQCmCSjJWSz9 PiYsfRzhnnHSHp7aD1J2euzTmgg9Fy7a4LI72u9bqNUJ2zLnx/ImZrAqU6aqPPhK 3XLx4TF+sIuhn68nICmMr8thBlxS8o/F/u84f0ZELtshiG3VnntKLpQWV8T7Z8M8 YMgFAJJ624TsKwElaGamdnNSQec8gPeeznWT88hQuPoXMgb+MU5V9A5X//ilpZpU Z93uHeUGQhIjoI+mFtFNYGJk42OntpHdvT42YL/7RMdWbKkogY9csehAYrINPXfx ioQE04gzICFF29XVaGgJ6lhdFqsnag+t8GQrAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUDhEtu2FxAmSIRmOlWZkHS+nf7RIwHwYDVR0jBBgwFoAUUJGXL6ttHEVOK0QS 3ESFpHRYvjYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjc4 L1VKR1hMNnR0SEVWT0swUVMzRVNGcEhSWXZqWS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvVUpHWEw2dHRIRVZPSzBRUzNFU0ZwSFJZdmpZLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjc4L1VKR1hMNnR0SEVWT0sw UVMzRVNGcEhSWXZqWS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCwGdDKodYS3ny3T9EuCoqEq8sh5d+GZgq4z0wQpRdxtplv7pKB+ULWYDggQnvW C1FpXfJOrlJ3HPN9/T+qC3fxlW5udTZQaA3hb0lB4ii713FFsp1DwTVtN3UNIZ3Y /BNF7rBd2x4iAUb9kaYupRqOJ+9zuhUYdSiFYhAGDrKwB0ZdUB5FsY5b/khTKyuP Bml4h8YR2LQnonCBcDPAoNeJiQxsewjAOJOQbch6lZuU+dhUo40YsV9zuucoSVy8 dcq+9B1epR8h1EmIN8ESJV5fIkIghH2jWe87TrR6MNOF1g7YFdLx9n50txP3L19X Ba1pUlF+KYfEFA0RS0iErGZv -----END CERTIFICATE-----Generated at Mon Oct 20 00:32:27 2025 by rpki-client