$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2991/KnUvQ6QxoheyTTXOiiVkyVhFESE.mft File: KnUvQ6QxoheyTTXOiiVkyVhFESE.mft (raw, json) Hash identifier: 9c5S7NhHLCDKiv1yNz0NBj/GKQuDqxxRRIV6KQ8SODA= Subject key identifier: CE:4F:CC:CC:7F:C4:06:44:6F:9B:C0:34:DA:0C:68:06:60:F5:E5:8B Authority key identifier: 2A:75:2F:43:A4:31:A2:17:B2:4D:35:CE:8A:25:64:C9:58:45:11:21 Certificate issuer: /CN=2A752F43A431A217B24D35CE8A2564C958451121 Certificate serial: 1492 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KnUvQ6QxoheyTTXOiiVkyVhFESE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2991/KnUvQ6QxoheyTTXOiiVkyVhFESE.mft Manifest number: 1492 Signing time: Mon 28 Apr 2025 17:07:59 +0000 Manifest this update: Mon 28 Apr 2025 17:07:59 +0000 Manifest next update: Mon 28 Apr 2025 23:07:59 +0000 Files and hashes: 1: KnUvQ6QxoheyTTXOiiVkyVhFESE.crl (hash: j0TCCYnEvIG4wC/pr4TvMfE2aRd1AOwMd3y0zW/C6iU=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2991/KnUvQ6QxoheyTTXOiiVkyVhFESE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2991/KnUvQ6QxoheyTTXOiiVkyVhFESE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KnUvQ6QxoheyTTXOiiVkyVhFESE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5266 (0x1492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A752F43A431A217B24D35CE8A2564C958451121 Validity Not Before: Apr 28 17:07:59 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=CE4FCCCC7FC406446F9BC034DA0C680660F5E58B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0a:2d:b6:33:50:4d:fe:37:bc:70:77:b3:3b: 5c:c4:d9:4b:6f:6b:50:47:d3:96:39:23:fd:62:a7: bc:f0:80:44:25:f9:77:a8:a9:81:dd:32:24:3a:d0: a3:8b:19:9f:05:ab:0c:41:ef:10:dc:2c:ba:a5:d8: 87:4f:ba:2f:f7:c7:40:85:12:02:0c:4e:89:24:f7: 11:b2:b9:d2:0d:2c:87:0b:ff:54:65:c9:ec:23:fb: 80:d8:aa:15:af:7f:8e:ed:f6:f6:a0:c0:83:a4:16: 41:93:41:cc:4b:32:cf:0f:1d:81:3f:27:b8:42:8f: e4:73:c9:5b:da:c2:77:96:1a:c0:65:45:b6:54:45: 32:7d:ac:88:a7:bf:03:68:12:6d:2a:7b:96:02:21: f8:93:dd:e1:97:78:4d:c4:90:ec:ab:53:6b:53:6b: 17:1b:c3:50:6c:88:60:90:cb:99:46:65:f5:71:8d: 61:c9:f6:23:7c:b1:5e:bd:12:73:b5:63:5c:f2:f6: 06:a5:86:e0:38:60:46:7f:ac:47:2f:75:a1:64:7e: e2:4e:23:18:a8:19:59:65:88:7a:e8:08:a3:ea:2b: 84:71:32:08:51:28:b2:1e:44:83:86:3a:c4:30:8f: 5c:c1:f6:25:5b:61:6d:a7:d4:4b:16:1d:9a:25:bb: e9:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:4F:CC:CC:7F:C4:06:44:6F:9B:C0:34:DA:0C:68:06:60:F5:E5:8B X509v3 Authority Key Identifier: keyid:2A:75:2F:43:A4:31:A2:17:B2:4D:35:CE:8A:25:64:C9:58:45:11:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2991/KnUvQ6QxoheyTTXOiiVkyVhFESE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KnUvQ6QxoheyTTXOiiVkyVhFESE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2991/KnUvQ6QxoheyTTXOiiVkyVhFESE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:a4:cd:b0:1f:9a:ca:4d:93:7c:10:be:e1:8d:b5:59:6e:95: 42:6e:3f:6a:d9:e1:c5:89:b6:bb:ff:37:a9:49:08:7a:3f:95: b3:f6:fc:b2:c4:b5:f4:90:82:46:e1:00:2a:3a:16:10:ac:b6: b7:d2:57:c3:59:9f:95:bb:37:f7:b1:d8:06:12:f5:86:36:d0: 2b:f3:13:df:d3:f4:f8:a5:bc:30:27:81:9f:0e:f1:60:67:fd: 0d:40:b1:93:4f:ee:1e:10:c8:82:98:ea:24:8c:72:d1:60:c6: b5:50:6b:d7:fb:5a:90:0c:56:62:c6:78:7b:f4:45:f9:ea:43: 88:aa:12:81:c3:79:88:ed:b5:ed:78:89:ba:ae:5d:14:d5:64: 75:f5:18:05:4f:dc:83:55:c9:3b:51:f0:75:27:03:2b:80:e8: 9a:8a:80:e4:6d:52:7b:27:6b:f9:dc:0e:6e:71:20:10:52:34: be:c0:ca:62:38:0d:55:d2:b5:d3:d4:80:df:3f:2c:99:5f:18: 84:dc:f0:91:f1:3b:9c:9d:59:0d:4b:06:6e:d4:10:26:ec:28: 48:eb:30:ad:e7:80:fe:12:65:05:50:e6:48:85:37:0f:c8:f6: 74:0c:d6:08:6c:ee:e9:5c:49:29:ac:83:c1:8e:07:a5:5a:da: f9:31:46:ee -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICFJIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE3 NTJGNDNBNDMxQTIxN0IyNEQzNUNFOEEyNTY0Qzk1ODQ1MTEyMTAeFw0yNTA0Mjgx NzA3NTlaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKENFNEZDQ0NDN0ZDNDA2 NDQ2RjlCQzAzNERBMEM2ODA2NjBGNUU1OEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGCi22M1BN/je8cHezO1zE2Utva1BH05Y5I/1ip7zwgEQl+Xeo qYHdMiQ60KOLGZ8FqwxB7xDcLLql2IdPui/3x0CFEgIMTokk9xGyudINLIcL/1Rl yewj+4DYqhWvf47t9vagwIOkFkGTQcxLMs8PHYE/J7hCj+RzyVvawneWGsBlRbZU RTJ9rIinvwNoEm0qe5YCIfiT3eGXeE3EkOyrU2tTaxcbw1BsiGCQy5lGZfVxjWHJ 9iN8sV69EnO1Y1zy9galhuA4YEZ/rEcvdaFkfuJOIxioGVlliHroCKPqK4RxMghR KLIeRIOGOsQwj1zB9iVbYW2n1EsWHZolu+kHAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUzk/MzH/EBkRvm8A02gxoBmD15YswHwYDVR0jBBgwFoAUKnUvQ6QxoheyTTXO iiVkyVhFESEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjk5 MS9LblV2UTZReG9oZXlUVFhPaWlWa3lWaEZFU0UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0tuVXZRNlF4b2hleVRUWE9paVZreVZoRkVTRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI5OTEvS25VdlE2UXhvaGV5 VFRYT2lpVmt5VmhGRVNFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAFmkzbAfmspNk3wQvuGNtVlulUJuP2rZ4cWJtrv/N6lJCHo/lbP2/LLEtfSQ gkbhACo6FhCstrfSV8NZn5W7N/ex2AYS9YY20CvzE9/T9PilvDAngZ8O8WBn/Q1A sZNP7h4QyIKY6iSMctFgxrVQa9f7WpAMVmLGeHv0RfnqQ4iqEoHDeYjtte14ibqu XRTVZHX1GAVP3INVyTtR8HUnAyuA6JqKgORtUnsna/ncDm5xIBBSNL7AymI4DVXS tdPUgN8/LJlfGITc8JHxO5ydWQ1LBm7UECbsKEjrMK3ngP4SZQVQ5kiFNw/I9nQM 1ghs7ulcSSmsg8GOB6Va2vkxRu4= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:26 2025 by rpki-client on console.sobornost.net