$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/678/UJGXL6ttHEVOK0QS3ESFpHRYvjY.mft File: UJGXL6ttHEVOK0QS3ESFpHRYvjY.mft (raw, json) Hash identifier: eFdnx8IlsyYAN2gms7MM7jrEgpXJaFO2uFSuyz+ySng= Subject key identifier: 0E:11:2D:BB:61:71:02:64:88:46:63:A5:59:99:07:4B:E9:DF:ED:12 Authority key identifier: 50:91:97:2F:AB:6D:1C:45:4E:2B:44:12:DC:44:85:A4:74:58:BE:36 Certificate issuer: /CN=5091972FAB6D1C454E2B4412DC4485A47458BE36 Certificate serial: 1986 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UJGXL6ttHEVOK0QS3ESFpHRYvjY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/678/UJGXL6ttHEVOK0QS3ESFpHRYvjY.mft Manifest number: 1986 Signing time: Fri 04 Jul 2025 15:13:38 +0000 Manifest this update: Fri 04 Jul 2025 15:13:38 +0000 Manifest next update: Fri 04 Jul 2025 21:13:38 +0000 Files and hashes: 1: UJGXL6ttHEVOK0QS3ESFpHRYvjY.crl (hash: GC2XNiPt9ZEg9pfgdUm6NdxixcDAxH0pmsr+ArkzoAg=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/678/UJGXL6ttHEVOK0QS3ESFpHRYvjY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/678/UJGXL6ttHEVOK0QS3ESFpHRYvjY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UJGXL6ttHEVOK0QS3ESFpHRYvjY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 21:13:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6534 (0x1986) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5091972FAB6D1C454E2B4412DC4485A47458BE36 Validity Not Before: Jul 4 15:13:38 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=0E112DBB61710264884663A55999074BE9DFED12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e7:76:61:d1:03:2b:e3:f6:0c:ce:c3:a5:bf: e0:89:6c:50:37:41:5d:34:7f:a1:ea:ba:9a:de:a9: 00:a6:09:28:c9:59:2c:fd:3e:26:2c:7d:1c:e1:9e: 71:d2:1e:9e:da:0f:52:76:7a:ec:d3:9a:08:3d:17: 2e:da:e0:b2:3b:da:ef:5b:a8:d5:09:db:32:e7:c7: f2:26:66:b0:2a:53:a6:aa:3c:f8:4a:dd:72:f1:e1: 31:7e:b0:8b:a1:9f:af:27:20:29:8c:af:cb:61:06: 5c:52:f2:8f:c5:fe:ef:38:7f:46:44:2e:db:21:88: 6d:d5:9e:7b:4a:2e:94:16:57:c4:fb:67:c3:3c:60: c8:05:00:92:7a:db:84:ec:2b:01:25:68:66:a6:76: 73:52:41:e7:3c:80:f7:9e:ce:75:93:f3:c8:50:b8: fa:17:32:06:fe:31:4e:55:f4:0e:57:ff:f8:a5:a5: 9a:54:67:dd:ee:1d:e5:06:42:12:23:a0:8f:a6:16: d1:4d:60:62:64:e3:63:a7:b6:91:dd:bd:3e:36:60: bf:fb:44:c7:56:6c:a9:28:81:8f:5c:b1:e8:40:62: b2:0d:3d:77:f1:8a:84:04:d3:88:33:20:21:45:db: d5:d5:68:68:09:ea:58:5d:16:ab:27:6a:0f:ad:f0: 64:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:11:2D:BB:61:71:02:64:88:46:63:A5:59:99:07:4B:E9:DF:ED:12 X509v3 Authority Key Identifier: keyid:50:91:97:2F:AB:6D:1C:45:4E:2B:44:12:DC:44:85:A4:74:58:BE:36 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/678/UJGXL6ttHEVOK0QS3ESFpHRYvjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UJGXL6ttHEVOK0QS3ESFpHRYvjY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/678/UJGXL6ttHEVOK0QS3ESFpHRYvjY.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:7c:8b:8b:a3:b3:5a:4b:28:0a:93:c4:7e:42:2d:5c:39:3f: cd:50:d4:11:1d:09:1a:9c:84:70:12:b6:22:92:6d:a9:78:c6: 56:05:7b:e9:3c:04:7d:d1:ff:c8:a8:aa:6e:e6:3b:68:65:82: a6:d9:1a:a1:19:72:cb:36:9a:03:6d:e3:7f:21:bb:77:c4:f1: 0f:13:ee:9e:54:87:ff:9b:24:79:71:f8:59:c3:3c:15:c5:4a: ba:b3:1c:69:d9:46:4b:c0:a6:52:ad:c6:ee:11:98:3d:0f:be: 53:e8:d6:35:e4:4d:f8:ad:74:4f:be:84:fb:d9:56:c2:b0:86: 8a:a8:fc:9f:35:d1:2b:91:90:03:e9:b4:7b:a4:8a:7f:3c:2d: da:fc:15:b7:b9:e4:72:04:ce:cc:53:8a:72:84:14:d7:79:8f: 38:7a:68:63:75:45:67:0c:b7:06:78:6f:84:6e:6b:2e:6f:ef: 24:c2:46:6a:79:50:8b:61:07:1e:e7:03:e2:ba:e9:78:a5:0c: 3c:d4:c4:a9:ec:49:20:4a:24:f3:ac:76:df:8d:b2:55:4b:39: 97:31:3f:71:4a:0b:8b:24:b1:9f:7f:0a:fa:2a:4b:4e:69:33: c2:17:ff:04:ed:d0:71:84:4b:5e:27:cf:6f:15:2b:a9:47:3d: 02:33:e5:f7 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICGYYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTA5 MTk3MkZBQjZEMUM0NTRFMkI0NDEyREM0NDg1QTQ3NDU4QkUzNjAeFw0yNTA3MDQx NTEzMzhaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDBFMTEyREJCNjE3MTAy NjQ4ODQ2NjNBNTU5OTkwNzRCRTlERkVEMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDh53Zh0QMr4/YMzsOlv+CJbFA3QV00f6HqupreqQCmCSjJWSz9 PiYsfRzhnnHSHp7aD1J2euzTmgg9Fy7a4LI72u9bqNUJ2zLnx/ImZrAqU6aqPPhK 3XLx4TF+sIuhn68nICmMr8thBlxS8o/F/u84f0ZELtshiG3VnntKLpQWV8T7Z8M8 YMgFAJJ624TsKwElaGamdnNSQec8gPeeznWT88hQuPoXMgb+MU5V9A5X//ilpZpU Z93uHeUGQhIjoI+mFtFNYGJk42OntpHdvT42YL/7RMdWbKkogY9csehAYrINPXfx ioQE04gzICFF29XVaGgJ6lhdFqsnag+t8GQrAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUDhEtu2FxAmSIRmOlWZkHS+nf7RIwHwYDVR0jBBgwFoAUUJGXL6ttHEVOK0QS 3ESFpHRYvjYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjc4 L1VKR1hMNnR0SEVWT0swUVMzRVNGcEhSWXZqWS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvVUpHWEw2dHRIRVZPSzBRUzNFU0ZwSFJZdmpZLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjc4L1VKR1hMNnR0SEVWT0sw UVMzRVNGcEhSWXZqWS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCVfIuLo7NaSygKk8R+Qi1cOT/NUNQRHQkanIRwErYikm2peMZWBXvpPAR90f/I qKpu5jtoZYKm2RqhGXLLNpoDbeN/Ibt3xPEPE+6eVIf/myR5cfhZwzwVxUq6sxxp 2UZLwKZSrcbuEZg9D75T6NY15E34rXRPvoT72VbCsIaKqPyfNdErkZAD6bR7pIp/ PC3a/BW3ueRyBM7MU4pyhBTXeY84emhjdUVnDLcGeG+Ebmsub+8kwkZqeVCLYQce 5wPiuul4pQw81MSp7EkgSiTzrHbfjbJVSzmXMT9xSguLJLGffwr6KktOaTPCF/8E 7dBxhEteJ89vFSupRz0CM+X3 -----END CERTIFICATE-----Generated at Fri Jul 4 19:30:04 2025 by rpki-client