$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3370/APoIYl4faqqWhep7FdLGrPL4yPU.mft File: APoIYl4faqqWhep7FdLGrPL4yPU.mft (raw, json) Hash identifier: EBjL1j3WtaGA1+RgbNq8MsFjamxD6leog4iKnrKJF9M= Subject key identifier: 03:33:F4:8C:E0:37:25:15:4F:BE:33:3A:B8:1E:58:0B:44:F7:80:AE Authority key identifier: 00:FA:08:62:5E:1F:6A:AA:96:85:EA:7B:15:D2:C6:AC:F2:F8:C8:F5 Certificate issuer: /CN=00FA08625E1F6AAA9685EA7B15D2C6ACF2F8C8F5 Certificate serial: 09 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/APoIYl4faqqWhep7FdLGrPL4yPU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3370/APoIYl4faqqWhep7FdLGrPL4yPU.mft Manifest number: 09 Signing time: Mon 28 Apr 2025 17:06:49 +0000 Manifest this update: Mon 28 Apr 2025 17:06:49 +0000 Manifest next update: Mon 28 Apr 2025 23:06:49 +0000 Files and hashes: 1: APoIYl4faqqWhep7FdLGrPL4yPU.crl (hash: vJ/uLuxKSc5KCRZWWIt+2gUrBOj9FIsTHIMTB0jKfy8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3370/APoIYl4faqqWhep7FdLGrPL4yPU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3370/APoIYl4faqqWhep7FdLGrPL4yPU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/APoIYl4faqqWhep7FdLGrPL4yPU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00FA08625E1F6AAA9685EA7B15D2C6ACF2F8C8F5 Validity Not Before: Apr 28 17:06:49 2025 GMT Not After : Apr 27 06:42:38 2026 GMT Subject: CN=0333F48CE03725154FBE333AB81E580B44F780AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:da:00:ce:f2:6e:fd:c3:b6:34:dc:37:20:59: fc:19:d4:8d:2d:c7:aa:16:76:8b:91:d8:32:6a:a5: 05:a3:35:be:81:5c:f8:6d:f6:45:af:39:a2:c2:95: 8a:c9:58:29:28:96:e9:25:a6:fe:bf:e7:7b:98:c5: 28:91:52:c9:9e:dd:60:69:49:41:4f:a4:a5:f4:51: a4:f4:e6:ab:3c:11:8e:51:bb:5d:e7:06:fb:6e:fa: 2c:fa:b5:96:11:73:c9:de:64:00:e2:e5:2a:13:d5: 01:ba:0c:02:71:64:b1:c0:33:d5:f9:79:61:b9:3b: c7:cc:41:f4:26:48:6d:99:8a:91:0b:5e:18:7a:18: 26:ed:e1:3c:55:c0:46:2b:63:82:11:ae:c3:a2:45: 5b:92:b0:92:3f:ef:9f:5e:79:e1:3b:76:6a:99:49: 4c:38:f5:7e:a9:8f:59:1a:74:a0:76:d0:70:f5:bb: ee:c6:e7:e8:cc:25:1a:d1:89:4b:53:b9:98:4c:73: dc:4e:d1:c3:6e:0a:16:6f:a7:ae:ec:09:78:75:9a: 3b:c5:d4:89:1e:ef:7f:67:3f:74:26:19:4c:e7:e9: de:05:2a:ea:f1:b7:64:8e:ac:2d:24:f9:6e:4c:5d: a4:05:b5:a3:c3:70:a9:04:f1:89:9e:f1:63:a7:34: 08:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:33:F4:8C:E0:37:25:15:4F:BE:33:3A:B8:1E:58:0B:44:F7:80:AE X509v3 Authority Key Identifier: keyid:00:FA:08:62:5E:1F:6A:AA:96:85:EA:7B:15:D2:C6:AC:F2:F8:C8:F5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3370/APoIYl4faqqWhep7FdLGrPL4yPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/APoIYl4faqqWhep7FdLGrPL4yPU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3370/APoIYl4faqqWhep7FdLGrPL4yPU.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:49:ae:59:11:a6:1e:96:6a:e2:e7:cd:56:29:99:0c:52:5b: 2a:87:63:ac:77:e9:eb:a4:cf:e7:97:c8:8b:11:3f:8d:8c:b4: 8d:ed:f5:5f:75:7a:0c:56:ec:46:f0:ab:f9:e3:72:38:01:4a: 70:f4:ef:54:14:30:af:17:58:ca:0d:91:14:fe:2f:0b:1c:6d: e5:d3:0e:c1:97:8a:12:09:2c:2c:30:b8:9c:62:10:90:88:e1: 0b:e8:13:b9:ba:11:e6:a1:d5:58:f1:20:83:bc:a5:2c:c6:58: 6e:81:e6:31:97:b4:08:df:30:b7:ad:d2:3f:91:4f:08:43:80: 1a:7b:be:01:f4:ea:ef:bd:44:77:3f:4a:71:b0:47:4d:87:6d: 13:d9:ac:f7:5e:bb:ff:d7:fd:49:25:77:f2:fa:2a:c2:aa:2f: 90:e8:02:16:d3:34:1c:c0:de:08:04:ec:6e:ee:98:59:13:41: 59:09:58:ed:e2:87:06:3c:8c:a4:5c:83:8e:b9:03:4b:ab:54: f7:f5:67:36:d6:2b:6f:8c:c4:8a:e7:7d:31:52:e9:5a:9e:80: 19:e7:6b:43:2b:b6:9d:44:46:c4:25:3f:3b:a9:11:21:18:be: a6:15:a1:dc:b9:80:53:ea:68:83:54:c1:2d:f2:60:3f:f3:78: 06:c4:e3:5b -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgIBCTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwMEZB MDg2MjVFMUY2QUFBOTY4NUVBN0IxNUQyQzZBQ0YyRjhDOEY1MB4XDTI1MDQyODE3 MDY0OVoXDTI2MDQyNzA2NDIzOFowMzExMC8GA1UEAxMoMDMzM0Y0OENFMDM3MjUx NTRGQkUzMzNBQjgxRTU4MEI0NEY3ODBBRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKPaAM7ybv3DtjTcNyBZ/BnUjS3HqhZ2i5HYMmqlBaM1voFc+G32 Ra85osKVislYKSiW6SWm/r/ne5jFKJFSyZ7dYGlJQU+kpfRRpPTmqzwRjlG7XecG +276LPq1lhFzyd5kAOLlKhPVAboMAnFkscAz1fl5Ybk7x8xB9CZIbZmKkQteGHoY Ju3hPFXARitjghGuw6JFW5Kwkj/vn1554Tt2aplJTDj1fqmPWRp0oHbQcPW77sbn 6MwlGtGJS1O5mExz3E7Rw24KFm+nruwJeHWaO8XUiR7vf2c/dCYZTOfp3gUq6vG3 ZI6sLST5bkxdpAW1o8NwqQTxiZ7xY6c0CFMCAwEAAaOCAgwwggIIMB0GA1UdDgQW BBQDM/SM4DclFU++Mzq4HlgLRPeArjAfBgNVHSMEGDAWgBQA+ghiXh9qqpaF6nsV 0sas8vjI9TAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMzcw L0FQb0lZbDRmYXFxV2hlcDdGZExHclBMNHlQVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvQVBvSVlsNGZhcXFXaGVwN0ZkTEdyUEw0eVBVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM3MC9BUG9JWWw0ZmFxcVdo ZXA3RmRMR3JQTDR5UFUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARkmuWRGmHpZq4ufNVimZDFJbKodjrHfp66TP55fIixE/jYy0je31X3V6DFbs RvCr+eNyOAFKcPTvVBQwrxdYyg2RFP4vCxxt5dMOwZeKEgksLDC4nGIQkIjhC+gT uboR5qHVWPEgg7ylLMZYboHmMZe0CN8wt63SP5FPCEOAGnu+AfTq771Edz9KcbBH TYdtE9ms9167/9f9SSV38voqwqovkOgCFtM0HMDeCATsbu6YWRNBWQlY7eKHBjyM pFyDjrkDS6tU9/VnNtYrb4zEiud9MVLpWp6AGedrQyu2nURGxCU/O6kRIRi+phWh 3LmAU+pog1TBLfJgP/N4BsTjWw== -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:28 2025 by rpki-client on console.sobornost.net