$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3290/xWg5B3F2O7YxSEuxvd-uSFlvXOI.mft File: xWg5B3F2O7YxSEuxvd-uSFlvXOI.mft (raw, json) Hash identifier: erZb8D3NjisLP8b/tEBrqSAacrfBr2dCOp9qKp2dJg0= Subject key identifier: 3A:6B:64:A2:57:5F:AD:47:2E:90:7F:75:1C:F0:18:E7:97:46:1F:16 Authority key identifier: C5:68:39:07:71:76:3B:B6:31:48:4B:B1:BD:DF:AE:48:59:6F:5C:E2 Certificate issuer: /CN=C568390771763BB631484BB1BDDFAE48596F5CE2 Certificate serial: 0650 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xWg5B3F2O7YxSEuxvd-uSFlvXOI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3290/xWg5B3F2O7YxSEuxvd-uSFlvXOI.mft Manifest number: 0650 Signing time: Mon 28 Apr 2025 16:06:54 +0000 Manifest this update: Mon 28 Apr 2025 16:06:54 +0000 Manifest next update: Mon 28 Apr 2025 22:06:54 +0000 Files and hashes: 1: xWg5B3F2O7YxSEuxvd-uSFlvXOI.crl (hash: 7NEp774chjBXqV2qDQ9iDVWPm5djU2E+OPzZUEzSrgk=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3290/xWg5B3F2O7YxSEuxvd-uSFlvXOI.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3290/xWg5B3F2O7YxSEuxvd-uSFlvXOI.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xWg5B3F2O7YxSEuxvd-uSFlvXOI.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:06:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1616 (0x650) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C568390771763BB631484BB1BDDFAE48596F5CE2 Validity Not Before: Apr 28 16:06:54 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=3A6B64A2575FAD472E907F751CF018E797461F16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2a:63:38:19:15:71:2a:01:f8:db:f8:41:8c: 70:db:35:07:d3:25:7a:d2:3b:a7:99:52:c3:81:06: 31:60:61:58:c0:40:62:21:80:8c:69:4b:1b:46:16: b5:c6:3a:86:08:84:b0:2e:74:ad:d6:9b:ce:36:8a: bb:de:8d:da:66:33:12:9a:e7:f3:a2:d0:15:8c:02: 52:26:ea:0a:c5:f0:ba:c7:ed:82:e1:20:39:67:73: 55:77:41:65:7c:73:79:77:f7:cc:c0:5d:e9:f0:c1: 00:ae:d3:4f:58:49:31:f3:3d:29:ff:c4:a5:eb:8f: ec:65:13:74:6a:81:6a:ce:9b:ec:32:d4:b9:b2:02: 9f:ed:5d:69:43:0a:1f:1b:eb:ee:46:72:f7:ed:38: 7a:be:39:64:5a:9c:96:b5:13:98:ac:25:a4:a0:07: 0a:66:63:80:be:a3:10:df:39:4d:c7:95:f9:d0:68: 6e:a2:05:f6:82:f3:6b:46:7f:2c:91:60:99:23:71: 66:79:62:df:7c:27:d9:c8:ef:7a:f4:dd:de:81:d9: 2e:29:a9:d7:e8:76:22:7d:af:3c:63:e8:b1:05:42: 48:bd:8f:85:5a:a6:32:4c:d7:49:66:dd:7c:4e:a1: 70:09:90:8a:00:ef:e7:e2:c1:ce:a3:7c:03:7f:90: 20:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:6B:64:A2:57:5F:AD:47:2E:90:7F:75:1C:F0:18:E7:97:46:1F:16 X509v3 Authority Key Identifier: keyid:C5:68:39:07:71:76:3B:B6:31:48:4B:B1:BD:DF:AE:48:59:6F:5C:E2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3290/xWg5B3F2O7YxSEuxvd-uSFlvXOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xWg5B3F2O7YxSEuxvd-uSFlvXOI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3290/xWg5B3F2O7YxSEuxvd-uSFlvXOI.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:43:98:3b:2b:db:c4:b6:61:12:73:eb:bc:38:89:19:33:2c: b1:f8:b6:76:bd:ca:fb:51:b9:d0:f1:07:ee:18:2c:be:ed:5f: 10:7e:cc:ba:f8:da:97:73:35:48:d2:86:4d:8f:82:9b:05:07: dc:72:59:7e:3a:7f:91:ec:26:2d:8e:01:2a:09:75:ed:f4:ab: 16:48:58:00:1f:29:08:ba:29:86:a8:45:42:d7:1a:66:b3:b5: 21:3d:f0:99:d2:b4:f4:a0:8f:03:d0:37:36:74:98:c5:fe:ec: e3:a5:6b:82:4a:ed:5a:26:02:92:14:ff:93:cd:39:2d:a1:f3: 70:af:5e:fe:d8:84:db:0f:c7:16:07:e1:01:92:cb:db:e9:89: 54:23:87:ca:de:48:37:89:59:39:71:55:cf:da:f1:b5:dd:e8: 2d:67:ff:26:b0:66:e5:3c:50:a3:25:8f:eb:2b:73:84:07:9e: 65:67:66:a2:f3:db:37:6f:1a:3c:2d:4a:eb:e3:f7:3c:31:f9: 51:eb:62:e3:fe:63:46:c3:0c:15:15:0c:87:af:f8:90:16:44: 6b:9e:f4:c2:70:3d:ff:6e:5f:62:7d:7e:58:e9:7f:51:bd:3f: 90:c3:d4:5e:c5:aa:62:8d:bb:a0:f1:a8:ab:e4:ca:75:e5:72: 3f:c3:72:89 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBlAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzU2 ODM5MDc3MTc2M0JCNjMxNDg0QkIxQkRERkFFNDg1OTZGNUNFMjAeFw0yNTA0Mjgx NjA2NTRaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDNBNkI2NEEyNTc1RkFE NDcyRTkwN0Y3NTFDRjAxOEU3OTc0NjFGMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4KmM4GRVxKgH42/hBjHDbNQfTJXrSO6eZUsOBBjFgYVjAQGIh gIxpSxtGFrXGOoYIhLAudK3Wm842irvejdpmMxKa5/Oi0BWMAlIm6grF8LrH7YLh IDlnc1V3QWV8c3l398zAXenwwQCu009YSTHzPSn/xKXrj+xlE3RqgWrOm+wy1Lmy Ap/tXWlDCh8b6+5GcvftOHq+OWRanJa1E5isJaSgBwpmY4C+oxDfOU3HlfnQaG6i BfaC82tGfyyRYJkjcWZ5Yt98J9nI73r03d6B2S4pqdfodiJ9rzxj6LEFQki9j4Va pjJM10lm3XxOoXAJkIoA7+fiwc6jfAN/kCBJAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUOmtkoldfrUcukH91HPAY55dGHxYwHwYDVR0jBBgwFoAUxWg5B3F2O7YxSEux vd+uSFlvXOIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI5 MC94V2c1QjNGMk83WXhTRXV4dmQtdVNGbHZYT0kuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3hXZzVCM0YyTzdZeFNFdXh2ZC11U0ZsdlhPSS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyOTAveFdnNUIzRjJPN1l4 U0V1eHZkLXVTRmx2WE9JLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAB1DmDsr28S2YRJz67w4iRkzLLH4tna9yvtRudDxB+4YLL7tXxB+zLr42pdz NUjShk2PgpsFB9xyWX46f5HsJi2OASoJde30qxZIWAAfKQi6KYaoRULXGmaztSE9 8JnStPSgjwPQNzZ0mMX+7OOla4JK7VomApIU/5PNOS2h83CvXv7YhNsPxxYH4QGS y9vpiVQjh8reSDeJWTlxVc/a8bXd6C1n/yawZuU8UKMlj+src4QHnmVnZqLz2zdv GjwtSuvj9zwx+VHrYuP+Y0bDDBUVDIev+JAWRGue9MJwPf9uX2J9fljpf1G9P5DD 1F7FqmKNu6DxqKvkynXlcj/Dcok= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:27 2025 by rpki-client on console.sobornost.net