$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/678/UJGXL6ttHEVOK0QS3ESFpHRYvjY.mft File: UJGXL6ttHEVOK0QS3ESFpHRYvjY.mft (raw, json) Hash identifier: zMI4TaTSWk2VhQwNX1wzJwQt96CPOEG8kmHSwbeJf2A= Subject key identifier: 0E:11:2D:BB:61:71:02:64:88:46:63:A5:59:99:07:4B:E9:DF:ED:12 Authority key identifier: 50:91:97:2F:AB:6D:1C:45:4E:2B:44:12:DC:44:85:A4:74:58:BE:36 Certificate issuer: /CN=5091972FAB6D1C454E2B4412DC4485A47458BE36 Certificate serial: 1898 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UJGXL6ttHEVOK0QS3ESFpHRYvjY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/678/UJGXL6ttHEVOK0QS3ESFpHRYvjY.mft Manifest number: 1898 Signing time: Sat 17 May 2025 13:09:08 +0000 Manifest this update: Sat 17 May 2025 13:09:08 +0000 Manifest next update: Sat 17 May 2025 19:09:08 +0000 Files and hashes: 1: UJGXL6ttHEVOK0QS3ESFpHRYvjY.crl (hash: lxjm53TcCxhimZsMVt+obhXTVje65SN/Ss8Hbrt6bWM=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/678/UJGXL6ttHEVOK0QS3ESFpHRYvjY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/678/UJGXL6ttHEVOK0QS3ESFpHRYvjY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UJGXL6ttHEVOK0QS3ESFpHRYvjY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 19:09:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6296 (0x1898) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5091972FAB6D1C454E2B4412DC4485A47458BE36 Validity Not Before: May 17 13:09:08 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=0E112DBB61710264884663A55999074BE9DFED12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e7:76:61:d1:03:2b:e3:f6:0c:ce:c3:a5:bf: e0:89:6c:50:37:41:5d:34:7f:a1:ea:ba:9a:de:a9: 00:a6:09:28:c9:59:2c:fd:3e:26:2c:7d:1c:e1:9e: 71:d2:1e:9e:da:0f:52:76:7a:ec:d3:9a:08:3d:17: 2e:da:e0:b2:3b:da:ef:5b:a8:d5:09:db:32:e7:c7: f2:26:66:b0:2a:53:a6:aa:3c:f8:4a:dd:72:f1:e1: 31:7e:b0:8b:a1:9f:af:27:20:29:8c:af:cb:61:06: 5c:52:f2:8f:c5:fe:ef:38:7f:46:44:2e:db:21:88: 6d:d5:9e:7b:4a:2e:94:16:57:c4:fb:67:c3:3c:60: c8:05:00:92:7a:db:84:ec:2b:01:25:68:66:a6:76: 73:52:41:e7:3c:80:f7:9e:ce:75:93:f3:c8:50:b8: fa:17:32:06:fe:31:4e:55:f4:0e:57:ff:f8:a5:a5: 9a:54:67:dd:ee:1d:e5:06:42:12:23:a0:8f:a6:16: d1:4d:60:62:64:e3:63:a7:b6:91:dd:bd:3e:36:60: bf:fb:44:c7:56:6c:a9:28:81:8f:5c:b1:e8:40:62: b2:0d:3d:77:f1:8a:84:04:d3:88:33:20:21:45:db: d5:d5:68:68:09:ea:58:5d:16:ab:27:6a:0f:ad:f0: 64:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:11:2D:BB:61:71:02:64:88:46:63:A5:59:99:07:4B:E9:DF:ED:12 X509v3 Authority Key Identifier: keyid:50:91:97:2F:AB:6D:1C:45:4E:2B:44:12:DC:44:85:A4:74:58:BE:36 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/678/UJGXL6ttHEVOK0QS3ESFpHRYvjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UJGXL6ttHEVOK0QS3ESFpHRYvjY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/678/UJGXL6ttHEVOK0QS3ESFpHRYvjY.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:ee:51:c1:06:13:2c:d6:e9:51:90:7c:bd:43:50:24:a6:29: 1e:51:69:ae:50:b0:b2:db:8b:ab:71:ee:33:53:08:c2:7f:5d: b9:48:59:07:b1:65:16:42:a1:81:b9:5f:5b:e3:0c:07:ab:64: b8:f9:11:8c:cf:2c:cc:6d:77:e8:0d:d2:d9:ff:88:ff:5f:bf: d0:84:0e:aa:32:f5:ac:33:6b:3f:63:5b:23:72:e1:fe:4b:25: 18:46:9c:b0:06:7b:16:dd:76:41:4e:f9:28:5b:a4:6a:1a:dd: f0:2c:f1:4f:aa:eb:64:d3:0b:06:b5:80:97:e0:02:77:ec:a5: f8:3b:ff:8f:26:25:5f:67:a5:96:39:59:08:c5:f6:6d:91:be: 12:1b:3a:d1:aa:c6:a7:aa:f5:df:b9:1a:e6:0e:71:c2:93:db: 4b:a8:d7:96:7f:4e:0a:50:f0:aa:26:84:c1:ce:7f:26:52:10: 83:cc:ce:78:8c:bd:b0:26:60:ae:72:13:9c:0e:6a:a7:96:ce: 03:d6:a3:4a:b2:0b:22:2b:18:84:64:0b:c4:32:e6:c1:02:8a: f6:c2:e8:9e:dd:f8:72:85:b5:6e:fd:21:48:b5:03:8c:1f:7d: 14:57:11:fa:d9:ce:0f:36:52:39:13:c7:e2:c6:86:95:9e:78: 74:31:47:8a -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICGJgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTA5 MTk3MkZBQjZEMUM0NTRFMkI0NDEyREM0NDg1QTQ3NDU4QkUzNjAeFw0yNTA1MTcx MzA5MDhaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDBFMTEyREJCNjE3MTAy NjQ4ODQ2NjNBNTU5OTkwNzRCRTlERkVEMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDh53Zh0QMr4/YMzsOlv+CJbFA3QV00f6HqupreqQCmCSjJWSz9 PiYsfRzhnnHSHp7aD1J2euzTmgg9Fy7a4LI72u9bqNUJ2zLnx/ImZrAqU6aqPPhK 3XLx4TF+sIuhn68nICmMr8thBlxS8o/F/u84f0ZELtshiG3VnntKLpQWV8T7Z8M8 YMgFAJJ624TsKwElaGamdnNSQec8gPeeznWT88hQuPoXMgb+MU5V9A5X//ilpZpU Z93uHeUGQhIjoI+mFtFNYGJk42OntpHdvT42YL/7RMdWbKkogY9csehAYrINPXfx ioQE04gzICFF29XVaGgJ6lhdFqsnag+t8GQrAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUDhEtu2FxAmSIRmOlWZkHS+nf7RIwHwYDVR0jBBgwFoAUUJGXL6ttHEVOK0QS 3ESFpHRYvjYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjc4 L1VKR1hMNnR0SEVWT0swUVMzRVNGcEhSWXZqWS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvVUpHWEw2dHRIRVZPSzBRUzNFU0ZwSFJZdmpZLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjc4L1VKR1hMNnR0SEVWT0sw UVMzRVNGcEhSWXZqWS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAE7lHBBhMs1ulRkHy9Q1AkpikeUWmuULCy24urce4zUwjCf125SFkHsWUWQqGB uV9b4wwHq2S4+RGMzyzMbXfoDdLZ/4j/X7/QhA6qMvWsM2s/Y1sjcuH+SyUYRpyw BnsW3XZBTvkoW6RqGt3wLPFPqutk0wsGtYCX4AJ37KX4O/+PJiVfZ6WWOVkIxfZt kb4SGzrRqsanqvXfuRrmDnHCk9tLqNeWf04KUPCqJoTBzn8mUhCDzM54jL2wJmCu chOcDmqnls4D1qNKsgsiKxiEZAvEMubBAor2wuie3fhyhbVu/SFItQOMH30UVxH6 2c4PNlI5E8fixoaVnnh0MUeK -----END CERTIFICATE-----Generated at Sat May 17 16:58:19 2025 by rpki-client