$ rpki-client -vvf rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft File: D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft (raw, json) Hash identifier: EXsT0G28T1CjmZSwF3olzFF0MqRxn39hQ41VNg9Ljw4= Subject key identifier: F3:23:7D:80:2C:23:70:2B:43:34:FA:8D:BF:5F:7A:1F:C5:2B:A5:F1 Authority key identifier: D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 Certificate issuer: /CN=A91E5D610000/serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Certificate serial: 7A21280C3630FB69F8AD9529739EF3B18047ED63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject info access: rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft Manifest number: 45 Signing time: Mon 28 Apr 2025 16:50:59 +0000 Manifest this update: Mon 28 Apr 2025 16:45:59 +0000 Manifest next update: Tue 29 Apr 2025 18:25:59 +0000 Files and hashes: 1: D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl (hash: KrNSLT3bu574lAwgq0j2brgmMU4jWnrktGNrY6qgtF0=) 2: A828E0147CD8DE9E7A474DCDF06AD96FB37738EE.cer (hash: f7exy09Qe6ik4aLqqKmpADRHOOTa550ov7CNAjQ9pWo=) 3: 3130332e3136352e3131302e302f32342d3234203d3e2034353338.roa (hash: JFCS9e0aLryMYeNDBnDNiNrsCRSXbd1lFhCNwVkVDrU=) 4: 3130332e3136352e3131312e302f32342d3234203d3e2034353338.roa (hash: PNHsRydJIcZcSuQ0M2TmRWfZvicOhf+CKjeYcEuSD58=) Validation: OK Signature path: rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 18:25:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:21:28:0c:36:30:fb:69:f8:ad:95:29:73:9e:f3:b1:80:47:ed:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610000, serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Validity Not Before: Apr 28 16:45:59 2025 GMT Not After : Apr 29 18:25:59 2025 GMT Subject: CN=F3237D802C23702B4334FA8DBF5F7A1FC52BA5F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:50:c6:18:73:04:d3:7e:30:28:7d:60:e4:d1: 98:41:f2:4b:64:8f:b2:5a:66:f0:fe:f4:22:4c:be: 77:9f:f6:07:c0:57:ff:aa:ef:55:e4:a9:bd:64:5c: 1c:e3:91:c8:d0:c0:2d:fc:fa:76:57:cb:c3:11:f7: cb:b9:51:d9:e7:09:d3:c5:7e:d3:d8:58:b1:25:79: 07:06:87:5a:28:16:10:28:5a:f8:87:48:f5:98:e5: 18:5e:1f:e0:14:3f:f6:dd:d8:63:5e:76:d6:5c:ec: 73:25:1b:6e:a6:dd:bc:28:bd:af:bb:28:98:0d:0b: 24:13:28:d0:2b:7b:cb:1a:64:d8:ce:61:01:47:bc: e9:ff:ad:a5:b0:a4:45:bb:e5:48:af:eb:b7:f2:64: b5:06:4c:05:64:65:f8:aa:b3:ee:2a:ca:95:18:e8: 58:3e:bf:dd:5d:b3:1c:e4:c6:3e:f3:ee:bf:29:fa: 5b:e7:22:f0:00:16:70:c3:e0:d5:c2:bf:53:f1:b4: ef:9d:ae:73:4f:53:16:b5:29:d9:7b:d7:18:78:88: e2:c1:59:08:01:8b:f8:d9:74:ee:5f:73:06:a8:1a: 25:83:fc:a1:0e:c8:53:06:60:ad:e1:fa:ae:3c:85: 89:15:59:f1:9b:b2:19:44:be:f9:3a:98:20:c2:ae: d5:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:23:7D:80:2C:23:70:2B:43:34:FA:8D:BF:5F:7A:1F:C5:2B:A5:F1 X509v3 Authority Key Identifier: keyid:D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:1d:14:e4:07:76:7b:d4:ac:b3:cb:0c:5b:ce:b5:39:ee:dc: 6e:d5:39:97:81:29:c4:c5:84:b4:f2:0b:ec:b8:83:40:3c:3e: f2:d7:f2:a4:ad:51:f5:18:f1:fd:cb:4b:3f:17:1b:8d:c5:d7: ee:a7:be:0b:ae:eb:b5:c6:56:d9:16:d7:48:52:fd:ca:db:a7: 7f:6e:c8:a8:ce:13:ee:c9:a8:d3:88:00:2f:11:fa:b1:d1:ff: a7:3b:f5:49:79:5e:92:7e:5f:84:f5:32:88:2a:14:c0:80:a7: e5:fe:04:2b:2d:26:4b:d9:11:ca:52:c5:ac:21:a5:49:2b:10: e4:b5:79:d5:e3:dd:c0:f3:d6:a1:19:9b:a0:b4:09:60:68:77: 0c:5d:78:e5:7e:f6:be:4c:de:14:86:93:04:82:4a:5e:36:d6: e0:cd:fb:1a:43:28:1a:ca:05:da:3d:44:ca:15:17:c0:32:8b: 54:75:32:e2:7b:7f:4a:d9:15:1c:42:4d:ad:56:21:f7:8e:50: 59:26:2c:06:da:ca:41:10:24:a8:71:7d:7b:23:f7:d4:0f:ba: 33:dc:ce:80:23:01:a7:51:e6:a7:2d:ae:b7:c9:90:f9:79:52: a6:42:9e:bf:36:27:2d:1d:bc:5f:7b:97:94:83:25:89:3f:cb: 49:c1:23:11 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUeiEoDDYw+2n4rZUpc57zsYBH7WMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAwMTEwLwYDVQQFEyhEMTI0ODYwN0Iw REREMEEyMTZFOEQ3RkFDNUUyQzJFNzc3MEExMTM5MB4XDTI1MDQyODE2NDU1OVoX DTI1MDQyOTE4MjU1OVowMzExMC8GA1UEAxMoRjMyMzdEODAyQzIzNzAyQjQzMzRG QThEQkY1RjdBMUZDNTJCQTVGMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKZQxhhzBNN+MCh9YOTRmEHyS2SPslpm8P70Iky+d5/2B8BX/6rvVeSpvWRc HOORyNDALfz6dlfLwxH3y7lR2ecJ08V+09hYsSV5BwaHWigWECha+IdI9ZjlGF4f 4BQ/9t3YY1521lzscyUbbqbdvCi9r7somA0LJBMo0Ct7yxpk2M5hAUe86f+tpbCk RbvlSK/rt/JktQZMBWRl+Kqz7irKlRjoWD6/3V2zHOTGPvPuvyn6W+ci8AAWcMPg 1cK/U/G0752uc09TFrUp2XvXGHiI4sFZCAGL+Nl07l9zBqgaJYP8oQ7IUwZgreH6 rjyFiRVZ8ZuyGUS++TqYIMKu1XsCAwEAAaOCAgMwggH/MB0GA1UdDgQWBBTzI32A LCNwK0M0+o2/X3ofxSul8TAfBgNVHSMEGDAWgBTRJIYHsN3Qohbo1/rF4sLndwoR OTAOBgNVHQ8BAf8EBAMCB4AwZgYDVR0fBF8wXTBboFmgV4ZVcnN5bmM6Ly9ycGtp LmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS9EMTI0ODYwN0IwREREMEEyMTZF OEQ3RkFDNUUyQzJFNzc3MEExMTM5LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1 ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8wU1NHQjdEZDBLSVc2TmY2eGVMQzUz Y0tFVGsuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9y cGtpLmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS9EMTI0ODYwN0IwREREMEEy MTZFOEQ3RkFDNUUyQzJFNzc3MEExMTM5Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACx0U5Ad2e9Sss8sM W861Oe7cbtU5l4EpxMWEtPIL7LiDQDw+8tfypK1R9Rjx/ctLPxcbjcXX7qe+C67r tcZW2RbXSFL9ytunf27IqM4T7smo04gALxH6sdH/pzv1SXlekn5fhPUyiCoUwICn 5f4EKy0mS9kRylLFrCGlSSsQ5LV51ePdwPPWoRmboLQJYGh3DF145X72vkzeFIaT BIJKXjbW4M37GkMoGsoF2j1EyhUXwDKLVHUy4nt/StkVHEJNrVYh945QWSYsBtrK QRAkqHF9eyP31A+6M9zOgCMBp1Hmpy2ut8mQ+XlSpkKevzYnLR28X3uXlIMliT/L ScEjEQ== -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:24 2025 by rpki-client on console.sobornost.net