$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft File: yiG6irdU_NZK2pljjW_l5HJTtME.mft (raw, json) Hash identifier: 0ZMuH/iiquB2Moikitpe//YT8S8LAJrXRmWNT384V7A= Subject key identifier: 68:C2:4A:13:88:FC:9D:03:DD:D1:06:4E:2D:28:66:14:B9:9B:94:34 Authority key identifier: CA:21:BA:8A:B7:54:FC:D6:4A:DA:99:63:8D:6F:E5:E4:72:53:B4:C1 Certificate issuer: /CN=CA21BA8AB754FCD64ADA99638D6FE5E47253B4C1 Certificate serial: 2C92 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yiG6irdU_NZK2pljjW_l5HJTtME.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft Manifest number: 2C92 Signing time: Mon 20 Oct 2025 12:05:45 +0000 Manifest this update: Mon 20 Oct 2025 12:05:45 +0000 Manifest next update: Mon 20 Oct 2025 18:05:45 +0000 Files and hashes: 1: yiG6irdU_NZK2pljjW_l5HJTtME.crl (hash: dXWz7jPosHJKJ9YVpbc9dLRgBaXAMtvn60qTYU50284=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yiG6irdU_NZK2pljjW_l5HJTtME.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:05:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11410 (0x2c92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA21BA8AB754FCD64ADA99638D6FE5E47253B4C1 Validity Not Before: Oct 20 12:05:45 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=68C24A1388FC9D03DDD1064E2D286614B99B9434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:35:45:84:0d:f7:9c:a7:65:94:83:6d:ed:a4: ef:0e:58:34:52:71:ae:b9:fc:eb:af:f2:19:7c:fa: 68:fd:76:de:aa:43:e7:01:5f:f2:a7:a7:18:11:ec: 70:de:c2:50:21:52:73:aa:4d:79:8a:20:5b:b8:6d: 8a:6b:59:68:28:7c:ee:84:19:8d:5e:88:82:df:2e: 3e:6f:e9:bf:95:65:32:57:49:c1:74:64:c8:64:44: 38:5e:32:9c:a4:34:b0:55:6b:e3:60:9c:a4:b2:a0: e4:74:71:87:d2:f4:73:d7:31:61:cc:55:e1:06:eb: 2d:06:5d:b5:d0:7d:a7:b4:95:2b:db:63:f6:24:35: 82:6f:1a:4d:96:b3:95:c3:f5:88:8b:81:44:bf:08: 8d:b2:b9:73:8e:47:26:16:fa:e9:be:36:09:a2:fc: 2b:ad:76:9e:20:5f:89:4e:7e:06:3c:b9:70:38:55: 44:ad:5b:b1:8c:75:45:f2:ae:35:12:62:1f:98:16: 4c:96:a6:83:1d:48:2e:e2:3f:3c:df:7e:dd:44:17: 7f:eb:30:b1:a8:ae:e8:a5:40:ef:a9:ae:af:00:80: 84:a1:68:96:2f:48:08:fd:e2:fc:bc:ec:74:3c:bb: 16:27:13:a3:8b:fc:38:0e:ac:af:fe:16:67:3a:36: 2d:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C2:4A:13:88:FC:9D:03:DD:D1:06:4E:2D:28:66:14:B9:9B:94:34 X509v3 Authority Key Identifier: keyid:CA:21:BA:8A:B7:54:FC:D6:4A:DA:99:63:8D:6F:E5:E4:72:53:B4:C1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yiG6irdU_NZK2pljjW_l5HJTtME.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:d2:6e:05:f9:16:83:d7:a5:c1:4a:b2:a0:67:a5:aa:8b:9e: 64:53:7b:a3:69:c8:11:ed:54:57:68:01:7c:58:aa:b2:6f:d2: e9:f9:00:ad:92:f9:07:a5:48:0e:21:51:5c:48:02:16:6c:6e: c8:c1:9c:60:ae:f6:c6:13:ed:b6:54:01:72:2a:05:88:c8:e9: 01:b2:29:35:26:36:2a:e2:8a:9d:32:92:e6:2c:97:59:f3:55: 41:b8:72:74:7e:53:c7:c4:67:f6:a7:d5:5b:fb:e8:09:65:cc: b5:02:6b:25:dd:dc:1f:54:6e:b8:f8:b1:c0:d5:df:b9:7f:36: c5:94:45:ac:73:3c:9d:c5:6b:86:b4:27:d6:b0:eb:18:c5:23: 5e:d6:c1:58:31:c1:8d:47:af:ce:4f:34:e8:ec:66:95:3c:a5: 9a:a9:d7:4d:17:01:b0:66:c0:8b:dd:ab:85:0a:ef:cf:28:20: 86:a4:9c:41:ca:e8:18:9d:60:ab:79:9e:ad:68:c6:a6:eb:61: db:b5:19:d2:72:88:d7:a8:ab:79:ff:b2:0f:e8:a1:4f:e5:cb: 16:b4:a1:e7:44:4b:54:42:20:0c:20:11:6c:de:f1:6d:2c:d9: 9e:3b:7b:3f:51:d3:ba:4e:6b:46:a1:1d:0e:0d:12:a1:0e:a8: 2c:02:38:a5 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgICLJIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Ey MUJBOEFCNzU0RkNENjRBREE5OTYzOEQ2RkU1RTQ3MjUzQjRDMTAeFw0yNTEwMjAx MjA1NDVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDY4QzI0QTEzODhGQzlE MDNEREQxMDY0RTJEMjg2NjE0Qjk5Qjk0MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpNUWEDfecp2WUg23tpO8OWDRSca65/Ouv8hl8+mj9dt6qQ+cB X/KnpxgR7HDewlAhUnOqTXmKIFu4bYprWWgofO6EGY1eiILfLj5v6b+VZTJXScF0 ZMhkRDheMpykNLBVa+NgnKSyoOR0cYfS9HPXMWHMVeEG6y0GXbXQfae0lSvbY/Yk NYJvGk2Ws5XD9YiLgUS/CI2yuXOORyYW+um+Ngmi/Cutdp4gX4lOfgY8uXA4VUSt W7GMdUXyrjUSYh+YFkyWpoMdSC7iPzzfft1EF3/rMLGoruilQO+prq8AgIShaJYv SAj94vy87HQ8uxYnE6OL/DgOrK/+Fmc6Ni3hAgMBAAGjggIIMIICBDAdBgNVHQ4E FgQUaMJKE4j8nQPd0QZOLShmFLmblDQwHwYDVR0jBBgwFoAUyiG6irdU/NZK2plj jW/l5HJTtMEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvOTgv eWlHNmlyZFVfTlpLMnBsampXX2w1SEpUdE1FLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC95aUc2aXJkVV9OWksycGxqaldfbDVISlR0TUUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC85OC95aUc2aXJkVV9OWksycGxq aldfbDVISlR0TUUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYB BQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEA UdJuBfkWg9elwUqyoGelqoueZFN7o2nIEe1UV2gBfFiqsm/S6fkArZL5B6VIDiFR XEgCFmxuyMGcYK72xhPttlQBcioFiMjpAbIpNSY2KuKKnTKS5iyXWfNVQbhydH5T x8Rn9qfVW/voCWXMtQJrJd3cH1RuuPixwNXfuX82xZRFrHM8ncVrhrQn1rDrGMUj XtbBWDHBjUevzk806OxmlTylmqnXTRcBsGbAi92rhQrvzygghqScQcroGJ1gq3me rWjGputh27UZ0nKI16iref+yD+ihT+XLFrSh50RLVEIgDCARbN7xbSzZnjt7P1HT uk5rRqEdDg0SoQ6oLAI4pQ== -----END CERTIFICATE-----Generated at Mon Oct 20 13:42:15 2025 by rpki-client