$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft File: Fwt8oG9XNbekD5f_H1O64TNIqT4.mft (raw, json) Hash identifier: ZwgjP6k6WohrPV9HCHjbiqIr7440H5qNvAIpFCx/ZFQ= Subject key identifier: A0:64:3F:CB:C0:A8:EB:2A:32:5E:55:08:9D:E5:09:60:A7:B6:77:C2 Authority key identifier: 17:0B:7C:A0:6F:57:35:B7:A4:0F:97:FF:1F:53:BA:E1:33:48:A9:3E Certificate issuer: /CN=170B7CA06F5735B7A40F97FF1F53BAE13348A93E Certificate serial: 08D6 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Fwt8oG9XNbekD5f_H1O64TNIqT4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft Manifest number: 08D3 Signing time: Mon 28 Apr 2025 17:07:00 +0000 Manifest this update: Mon 28 Apr 2025 17:07:00 +0000 Manifest next update: Mon 28 Apr 2025 23:07:00 +0000 Files and hashes: 1: DTJOEl42rlpiAANO4FGlm-jwgW4.roa (hash: tZhR6vDrnzGj28cQqezVKGdCmEoL4wYz8p4dkA3OU5Q=) 2: Fwt8oG9XNbekD5f_H1O64TNIqT4.crl (hash: KAJbfNFGqYRf5+fy2JMf8B4ajHpQjiFrppxK8wbHYHk=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Fwt8oG9XNbekD5f_H1O64TNIqT4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:08:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2262 (0x8d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=170B7CA06F5735B7A40F97FF1F53BAE13348A93E Validity Not Before: Apr 28 17:07:00 2025 GMT Not After : Apr 9 06:27:19 2026 GMT Subject: CN=A0643FCBC0A8EB2A325E55089DE50960A7B677C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:12:cb:42:29:5b:78:a1:90:13:25:44:5a:da: b9:04:bd:c8:ad:b5:e7:51:99:b4:f0:32:58:43:25: 6d:dc:d8:0e:31:39:27:b1:6d:e0:c4:03:e6:e6:57: 7b:0b:22:21:e6:6b:6a:d1:6f:2f:69:cd:2d:44:22: 5e:a1:76:c5:fd:5e:06:1a:45:3d:4f:98:84:bd:40: 2a:84:be:75:ce:00:57:cd:a9:f7:80:69:b0:e9:3b: 3b:01:87:66:a5:e4:b0:64:39:c6:1e:c9:57:37:49: 55:e0:ee:7c:86:4a:97:0b:56:5c:ca:48:10:b5:28: cd:c8:4c:91:1f:1f:26:b4:41:2d:6a:4e:b1:44:3b: 9c:23:6c:13:93:42:c1:76:e1:65:9a:67:07:30:9a: 0a:9f:ce:de:a8:c7:fd:20:49:63:6b:ab:57:0e:8c: 67:5f:48:d1:91:0f:4e:78:bf:78:42:e7:7d:d7:fd: ec:90:8b:cd:00:51:99:df:30:05:54:78:f6:11:18: dd:71:ad:c8:65:dc:30:3d:b8:95:17:70:04:51:ac: 5e:5f:7b:b9:d5:96:b9:ef:a3:c8:52:bd:c1:09:82: b6:ea:65:be:8d:b5:5e:e0:0e:58:1c:23:2f:4f:38: 0a:41:b0:d7:6a:16:8a:97:db:f5:fc:bf:77:3d:06: 2f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:64:3F:CB:C0:A8:EB:2A:32:5E:55:08:9D:E5:09:60:A7:B6:77:C2 X509v3 Authority Key Identifier: keyid:17:0B:7C:A0:6F:57:35:B7:A4:0F:97:FF:1F:53:BA:E1:33:48:A9:3E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Fwt8oG9XNbekD5f_H1O64TNIqT4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:df:5d:69:cd:fc:a2:46:31:43:8f:2d:7e:b7:9d:a9:de:f6: 18:4c:2e:16:5f:5f:0f:2c:bd:2a:98:3d:33:88:e6:7f:7f:d0: 26:27:80:8a:8f:84:8c:ea:e6:18:4e:97:08:34:4b:34:6e:d5: fa:cb:ae:75:6a:37:a2:7d:58:38:af:69:3a:be:d2:42:6e:66: 89:a0:8d:95:d5:43:c8:61:a5:2d:b4:0b:2c:e5:a9:3f:14:c4: f5:72:ec:30:c7:1e:1f:ae:79:9b:24:96:30:87:d0:e4:7c:60: 79:90:17:10:cf:ea:16:38:d7:1a:83:23:3f:2a:58:93:5e:4f: 61:70:e9:ba:fe:37:75:51:8a:1f:92:21:eb:6c:8f:d1:74:e6: 56:96:53:2c:75:c2:14:fc:a0:91:10:df:96:ce:46:06:66:3d: 91:ae:fc:3b:d4:f6:67:74:da:4b:f3:a5:5f:c4:52:64:83:e1: a1:cd:48:7f:f1:74:72:4d:b8:99:31:46:d0:c8:24:3e:b7:67: d2:35:e7:d1:53:bb:9d:17:41:f2:24:83:65:74:e7:d8:d5:4a: c7:f2:f7:75:44:cb:42:76:84:a5:9f:6c:86:5f:d1:45:4a:09: 68:c6:93:a3:89:43:46:f3:e7:b4:85:b8:e3:ee:5c:2f:18:8d: 9e:0d:ec:ae -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCNYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTcw QjdDQTA2RjU3MzVCN0E0MEY5N0ZGMUY1M0JBRTEzMzQ4QTkzRTAeFw0yNTA0Mjgx NzA3MDBaFw0yNjA0MDkwNjI3MTlaMDMxMTAvBgNVBAMTKEEwNjQzRkNCQzBBOEVC MkEzMjVFNTUwODlERTUwOTYwQTdCNjc3QzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDoEstCKVt4oZATJURa2rkEvcittedRmbTwMlhDJW3c2A4xOSex beDEA+bmV3sLIiHma2rRby9pzS1EIl6hdsX9XgYaRT1PmIS9QCqEvnXOAFfNqfeA abDpOzsBh2al5LBkOcYeyVc3SVXg7nyGSpcLVlzKSBC1KM3ITJEfHya0QS1qTrFE O5wjbBOTQsF24WWaZwcwmgqfzt6ox/0gSWNrq1cOjGdfSNGRD054v3hC533X/eyQ i80AUZnfMAVUePYRGN1xrchl3DA9uJUXcARRrF5fe7nVlrnvo8hSvcEJgrbqZb6N tV7gDlgcIy9POApBsNdqFoqX2/X8v3c9Bi+NAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUoGQ/y8Co6yoyXlUIneUJYKe2d8IwHwYDVR0jBBgwFoAUFwt8oG9XNbekD5f/ H1O64TNIqT4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI2 Mi9Gd3Q4b0c5WE5iZWtENWZfSDFPNjRUTklxVDQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0Z3dDhvRzlYTmJla0Q1Zl9IMU82NFROSXFUNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNjIvRnd0OG9HOVhOYmVr RDVmX0gxTzY0VE5JcVQ0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBADnfXWnN/KJGMUOPLX63nane9hhMLhZfXw8svSqYPTOI5n9/0CYngIqPhIzq 5hhOlwg0SzRu1frLrnVqN6J9WDivaTq+0kJuZomgjZXVQ8hhpS20CyzlqT8UxPVy 7DDHHh+ueZskljCH0OR8YHmQFxDP6hY41xqDIz8qWJNeT2Fw6br+N3VRih+SIets j9F05laWUyx1whT8oJEQ35bORgZmPZGu/DvU9md02kvzpV/EUmSD4aHNSH/xdHJN uJkxRtDIJD63Z9I159FTu50XQfIkg2V059jVSsfy93VEy0J2hKWfbIZf0UVKCWjG k6OJQ0bz57SFuOPuXC8YjZ4N7K4= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:27 2025 by rpki-client on console.sobornost.net