$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2943/1cLOEmHln9dtPj-wDl66jkTaMMk.mft File: 1cLOEmHln9dtPj-wDl66jkTaMMk.mft (raw, json) Hash identifier: G+pk4pLAiANTvKarx95uv57AbAFuzg2UcupKXFtzXEU= Subject key identifier: 73:2E:7B:1C:3B:DB:ED:46:1E:23:94:5E:D8:FE:15:3E:BE:65:67:F8 Authority key identifier: D5:C2:CE:12:61:E5:9F:D7:6D:3E:3F:B0:0E:5E:BA:8E:44:DA:30:C9 Certificate issuer: /CN=D5C2CE1261E59FD76D3E3FB00E5EBA8E44DA30C9 Certificate serial: 03D8 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1cLOEmHln9dtPj-wDl66jkTaMMk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2943/1cLOEmHln9dtPj-wDl66jkTaMMk.mft Manifest number: 03D4 Signing time: Mon 28 Apr 2025 17:07:43 +0000 Manifest this update: Mon 28 Apr 2025 17:07:43 +0000 Manifest next update: Mon 28 Apr 2025 23:07:43 +0000 Files and hashes: 1: 1cLOEmHln9dtPj-wDl66jkTaMMk.crl (hash: 0rL1f/Gu9XLSxYuQfiELs4Jt1osRoPsrZ/KmuuLtG8g=) 2: 37YW15iLsWmoG_oPYuIHXvuuBIc.roa (hash: pSKQ7bWnbwbE/tXIoQ9xSOGuzx2kr+0GffJUKBbHHtY=) 3: 6tZ1PL_nWX5MjFotFyIopnr5Exc.roa (hash: jzlE9qZ3+so7n9Amj5N0YsNe4YAdpgMvcCvTOPlZ8mY=) 4: VcylARub8mZSef4yflS9wcetRkg.roa (hash: ppcUX4GT6DPoQpfAw+ymbHChfU33r/5rAdK0ayKsrf0=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2943/1cLOEmHln9dtPj-wDl66jkTaMMk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2943/1cLOEmHln9dtPj-wDl66jkTaMMk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1cLOEmHln9dtPj-wDl66jkTaMMk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 984 (0x3d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D5C2CE1261E59FD76D3E3FB00E5EBA8E44DA30C9 Validity Not Before: Apr 28 17:07:43 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=732E7B1C3BDBED461E23945ED8FE153EBE6567F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b8:98:24:46:68:f3:90:4d:3e:03:10:92:59: b4:34:35:a1:3a:a0:c6:2d:8c:ce:e3:55:0c:a6:30: 10:90:74:ce:e2:76:73:7f:30:29:70:ee:04:be:73: ff:18:e8:43:b6:a5:c2:7d:8f:da:c5:e7:6b:50:3c: eb:60:d5:f2:09:c8:37:83:16:b7:16:a2:4a:c8:ec: c9:0b:3a:57:f0:4a:3b:03:a6:54:26:c3:2e:ce:fd: 3c:70:51:03:0e:15:f7:36:b3:63:ff:2c:0c:a8:00: 13:d7:03:a7:78:de:ec:4a:4c:97:4c:fe:f9:b9:ad: a7:bf:46:ad:7a:dd:bd:dd:a5:5c:fd:2d:3a:d6:f0: a4:2f:92:44:66:81:ba:a3:1b:63:f4:b5:8b:96:7d: 9c:d8:eb:db:f3:7f:4c:d7:71:6c:eb:d8:39:84:f8: d0:57:9a:89:9a:99:d1:4a:61:b2:13:a3:bd:8d:98: 6e:b9:67:f6:f1:ce:cf:bf:ff:8c:ff:71:d2:dc:de: 83:e5:37:9b:25:59:58:b8:b8:be:66:91:f6:1b:36: d9:e1:c5:4c:f4:30:5d:27:e5:04:0d:23:e2:f8:f8: 11:60:ce:74:16:93:41:94:5c:3d:1b:84:6b:46:32: 08:c8:b5:43:c6:6d:91:0a:52:66:f5:c0:ea:86:db: 69:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:2E:7B:1C:3B:DB:ED:46:1E:23:94:5E:D8:FE:15:3E:BE:65:67:F8 X509v3 Authority Key Identifier: keyid:D5:C2:CE:12:61:E5:9F:D7:6D:3E:3F:B0:0E:5E:BA:8E:44:DA:30:C9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2943/1cLOEmHln9dtPj-wDl66jkTaMMk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1cLOEmHln9dtPj-wDl66jkTaMMk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2943/1cLOEmHln9dtPj-wDl66jkTaMMk.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:4b:39:3f:8c:40:1e:8b:aa:5d:32:3f:2b:e8:2c:ab:1d:35: 37:19:53:0f:11:96:a1:1a:50:49:be:8e:ea:42:05:10:26:7f: 84:d4:43:55:a5:fe:6d:69:36:b7:db:31:bd:59:db:78:1c:7f: ec:e1:11:05:52:30:f3:d7:8c:1f:e2:23:55:21:8d:f9:d4:21: 9a:97:50:5f:5f:17:6f:74:4a:6c:9d:ab:b1:2a:8f:d7:a9:7d: f1:a3:93:c2:6e:69:d5:9c:19:66:c1:bc:0d:55:4a:71:78:fe: 77:97:47:ff:6b:96:68:56:a0:9d:4f:90:b5:00:80:df:fd:97: 74:61:a7:2e:a4:83:b0:95:0a:e5:f5:66:cd:21:bb:14:e6:ce: 28:27:9e:89:ca:59:48:70:78:0f:ef:75:55:77:95:3a:c0:70: b3:ae:48:8d:de:2e:94:2e:ae:d0:f6:b4:f3:f0:78:c2:cc:ca: 97:1e:15:90:b5:3c:ec:76:1b:1e:de:6d:4f:45:8f:71:00:05: e8:b0:15:79:10:18:8b:c8:b3:7a:a9:bb:80:86:82:8d:f6:86: 02:76:9b:ff:ad:d3:bc:8f:c9:8b:7e:62:e7:58:9d:96:11:09: 16:78:18:4f:28:b3:3e:09:bd:ee:25:36:fe:21:ac:8a:74:06: ed:4f:5d:3e -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICA9gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDVD MkNFMTI2MUU1OUZENzZEM0UzRkIwMEU1RUJBOEU0NERBMzBDOTAeFw0yNTA0Mjgx NzA3NDNaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDczMkU3QjFDM0JEQkVE NDYxRTIzOTQ1RUQ4RkUxNTNFQkU2NTY3RjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCuJgkRmjzkE0+AxCSWbQ0NaE6oMYtjM7jVQymMBCQdM7idnN/ MClw7gS+c/8Y6EO2pcJ9j9rF52tQPOtg1fIJyDeDFrcWokrI7MkLOlfwSjsDplQm wy7O/TxwUQMOFfc2s2P/LAyoABPXA6d43uxKTJdM/vm5rae/Rq163b3dpVz9LTrW 8KQvkkRmgbqjG2P0tYuWfZzY69vzf0zXcWzr2DmE+NBXmomamdFKYbITo72NmG65 Z/bxzs+//4z/cdLc3oPlN5slWVi4uL5mkfYbNtnhxUz0MF0n5QQNI+L4+BFgznQW k0GUXD0bhGtGMgjItUPGbZEKUmb1wOqG22nlAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUcy57HDvb7UYeI5Re2P4VPr5lZ/gwHwYDVR0jBBgwFoAU1cLOEmHln9dtPj+w Dl66jkTaMMkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjk0 My8xY0xPRW1IbG45ZHRQai13RGw2NmprVGFNTWsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzFjTE9FbUhsbjlkdFBqLXdEbDY2amtUYU1Nay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI5NDMvMWNMT0VtSGxuOWR0 UGotd0RsNjZqa1RhTU1rLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBALJLOT+MQB6Lql0yPyvoLKsdNTcZUw8RlqEaUEm+jupCBRAmf4TUQ1Wl/m1p NrfbMb1Z23gcf+zhEQVSMPPXjB/iI1UhjfnUIZqXUF9fF290Smydq7Eqj9epffGj k8JuadWcGWbBvA1VSnF4/neXR/9rlmhWoJ1PkLUAgN/9l3Rhpy6kg7CVCuX1Zs0h uxTmzignnonKWUhweA/vdVV3lTrAcLOuSI3eLpQurtD2tPPweMLMypceFZC1POx2 Gx7ebU9Fj3EABeiwFXkQGIvIs3qpu4CGgo32hgJ2m/+t07yPyYt+YudYnZYRCRZ4 GE8osz4Jve4lNv4hrIp0Bu1PXT4= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:26 2025 by rpki-client on console.sobornost.net