$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft File: fPRMBtXqffDL1PaFCPFOhNoIt1I.mft (raw, json) Hash identifier: pUIzwlo7NoC77GihpmXRzTCQNMhkM1yOfmaceATo5bA= Subject key identifier: 7C:23:A7:76:81:71:4E:FB:35:C9:01:DA:63:0F:2C:52:5E:FE:19:BF Authority key identifier: 7C:F4:4C:06:D5:EA:7D:F0:CB:D4:F6:85:08:F1:4E:84:DA:08:B7:52 Certificate issuer: /CN=7CF44C06D5EA7DF0CBD4F68508F14E84DA08B752 Certificate serial: 15E1 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fPRMBtXqffDL1PaFCPFOhNoIt1I.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft Manifest number: 15DC Signing time: Mon 28 Apr 2025 16:09:39 +0000 Manifest this update: Mon 28 Apr 2025 16:09:39 +0000 Manifest next update: Mon 28 Apr 2025 22:09:39 +0000 Files and hashes: 1: OYh5JEj0uWuUFwdKjB10pF76_pI.roa (hash: An6u7oH3sagNhBru0T5ojCoKJVfFfrmJ66mlx7PcbhI=) 2: fPRMBtXqffDL1PaFCPFOhNoIt1I.crl (hash: 5MnVD0jYW7XoS2ZMr2ADTWbq/xGUo2OKWhNi6thkkH8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fPRMBtXqffDL1PaFCPFOhNoIt1I.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:09:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5601 (0x15e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CF44C06D5EA7DF0CBD4F68508F14E84DA08B752 Validity Not Before: Apr 28 16:09:39 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=7C23A77681714EFB35C901DA630F2C525EFE19BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:2a:bb:7b:59:64:df:24:f6:6c:eb:bb:11:8a: b8:10:c4:dc:0b:39:e9:39:6c:d6:f4:fe:8e:d2:6e: e7:2d:e0:8d:d1:3e:30:0e:e9:e9:40:0f:13:58:9a: 69:08:05:09:2f:da:e8:f6:ad:0c:58:f4:89:f1:ca: 1d:29:f9:c3:d9:7f:c6:67:52:8e:67:28:ac:e3:d8: 38:37:9d:d0:40:be:39:4c:d1:d0:16:c4:e8:ef:c9: be:0c:de:94:15:2f:53:6a:a7:3a:00:77:42:a3:19: af:82:30:ff:13:d5:ad:8d:1e:56:28:9f:59:a7:74: 5d:f8:3c:7e:c9:cf:96:8d:f7:12:24:92:e7:5d:da: 7a:86:6c:c4:44:4e:34:4c:12:22:b8:ae:6b:4f:21: 78:f5:ca:31:5f:72:7c:2d:16:ae:01:e0:b5:f1:52: ae:78:6d:ac:46:c0:99:f9:ea:79:13:92:fa:7f:3e: 3b:d6:b1:98:50:b4:d0:4d:24:f2:1d:87:61:f9:75: 25:cc:b7:5f:cc:c7:a8:38:03:d3:32:d6:7a:73:37: e7:d2:db:ab:8a:b2:86:aa:9f:8d:c0:b6:f4:6e:cf: 8d:8f:3c:69:99:b6:07:1d:af:c5:23:e0:a2:01:63: df:7a:72:b4:89:b0:38:aa:e4:f5:97:12:29:1d:f1: 07:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:23:A7:76:81:71:4E:FB:35:C9:01:DA:63:0F:2C:52:5E:FE:19:BF X509v3 Authority Key Identifier: keyid:7C:F4:4C:06:D5:EA:7D:F0:CB:D4:F6:85:08:F1:4E:84:DA:08:B7:52 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fPRMBtXqffDL1PaFCPFOhNoIt1I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:94:59:58:e2:94:8a:e9:f9:2b:6c:ec:f5:b3:49:e3:a7:ac: 21:26:a5:da:39:83:38:c3:7a:83:3e:4e:ce:0a:17:08:28:c5: 1f:b8:87:9c:b6:1f:d9:f4:4f:63:c4:2e:e8:42:f3:08:dc:1e: 3a:8d:ad:bd:38:27:0b:71:d3:79:13:ac:60:59:79:a3:79:9b: e0:e9:d7:e1:db:13:45:fe:d2:00:91:88:41:aa:52:9a:5c:93: 3e:f5:35:e0:33:09:f1:52:ff:bb:c9:b4:bc:27:cc:7a:73:f2: ca:36:5f:76:5d:d2:85:5a:f7:65:00:dd:14:37:fc:cc:e9:70: 4f:fc:1f:6d:9e:2a:4b:6f:e4:ee:69:0d:5b:87:30:2a:49:90: ac:08:cf:58:fc:da:12:c9:9e:26:35:03:f9:29:b3:3f:c7:64: 84:0d:1c:70:86:35:47:e3:91:23:d6:3c:12:aa:a4:19:b5:74: 68:ef:f4:3c:9b:4c:d7:88:74:74:e8:d4:66:01:f4:95:da:86: 1a:43:2f:bd:48:84:e2:db:44:09:06:85:42:9a:a4:62:94:cb: 98:f0:53:80:db:5d:b4:17:f8:86:79:ce:f7:9c:a4:df:8a:04: 4e:6c:4e:bf:d4:11:11:86:4b:7f:27:79:7d:c1:3c:57:ea:75: 54:91:07:b2 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICFeEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0NG NDRDMDZENUVBN0RGMENCRDRGNjg1MDhGMTRFODREQTA4Qjc1MjAeFw0yNTA0Mjgx NjA5MzlaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDdDMjNBNzc2ODE3MTRF RkIzNUM5MDFEQTYzMEYyQzUyNUVGRTE5QkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDuKrt7WWTfJPZs67sRirgQxNwLOek5bNb0/o7Sbuct4I3RPjAO 6elADxNYmmkIBQkv2uj2rQxY9Inxyh0p+cPZf8ZnUo5nKKzj2Dg3ndBAvjlM0dAW xOjvyb4M3pQVL1NqpzoAd0KjGa+CMP8T1a2NHlYon1mndF34PH7Jz5aN9xIkkudd 2nqGbMRETjRMEiK4rmtPIXj1yjFfcnwtFq4B4LXxUq54baxGwJn56nkTkvp/PjvW sZhQtNBNJPIdh2H5dSXMt1/Mx6g4A9My1npzN+fS26uKsoaqn43AtvRuz42PPGmZ tgcdr8Uj4KIBY996crSJsDiq5PWXEikd8QdHAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUfCOndoFxTvs1yQHaYw8sUl7+Gb8wHwYDVR0jBBgwFoAUfPRMBtXqffDL1PaF CPFOhNoIt1IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjU3 OC9mUFJNQnRYcWZmREwxUGFGQ1BGT2hOb0l0MUkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2ZQUk1CdFhxZmZETDFQYUZDUEZPaE5vSXQxSS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI1NzgvZlBSTUJ0WHFmZkRM MVBhRkNQRk9oTm9JdDFJLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAB6UWVjilIrp+Sts7PWzSeOnrCEmpdo5gzjDeoM+Ts4KFwgoxR+4h5y2H9n0 T2PELuhC8wjcHjqNrb04Jwtx03kTrGBZeaN5m+Dp1+HbE0X+0gCRiEGqUppckz71 NeAzCfFS/7vJtLwnzHpz8so2X3Zd0oVa92UA3RQ3/MzpcE/8H22eKktv5O5pDVuH MCpJkKwIz1j82hLJniY1A/kpsz/HZIQNHHCGNUfjkSPWPBKqpBm1dGjv9DybTNeI dHTo1GYB9JXahhpDL71IhOLbRAkGhUKapGKUy5jwU4DbXbQX+IZ5zvecpN+KBE5s Tr/UERGGS38neX3BPFfqdVSRB7I= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:25 2025 by rpki-client on console.sobornost.net