$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft File: 71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft (raw, json) Hash identifier: u93lkNuUkPwWIQ1zzjYuskfszg4MF0s+zOW2XD7RK58= Subject key identifier: AD:93:02:49:8B:06:E5:E4:EA:C8:53:F6:F8:50:B9:36:0C:2E:6A:0E Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 1577C5D870F7541D7E1186F3C07B0D7090898C9B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft Manifest number: 0132 Signing time: Sat 13 Jun 2026 22:12:17 +0000 Manifest this update: Sat 13 Jun 2026 22:07:17 +0000 Manifest next update: Mon 15 Jun 2026 01:41:17 +0000 Files and hashes: 1: AS23650.roa (hash: VALlQJwjNOg8bDEnUEf1pM1KwzCi0dpBAy70p4EimUU=) 2: AS13378.roa (hash: z7WoxW6y6As770YEf9e55N542SJAwrWAe0MwQupnAEI=) 3: AS4134.roa (hash: 5ekg3RKNKtteZBYRYZXMiH6J+SA+AiJnLbNnD8EA5io=) 4: AS4837.roa (hash: ea+cPwwS0LBVuUEwWrKPu7+ygJBaq9i/HHmuJmTnrLM=) 5: 71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl (hash: GZvJW0rdvU+nDVV1eHOxT/XaAVaFb8jZSf6lc/QR8FA=) 6: AS63567.roa (hash: DWWX/OGUwb5UtXDdAkHKcEzptEhODNtNLqhXQ2YBxAM=) 7: AS0.roa (hash: 2whuGFj5CSwsR/pdhiLgE8oiFshD2k+kToFmQb91xT4=) 8: AS56046.roa (hash: hO5MOO4KUqfrniKpdaorkO0bhP+Pd9W4UlSnmkJqq6k=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 16:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:77:c5:d8:70:f7:54:1d:7e:11:86:f3:c0:7b:0d:70:90:89:8c:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Jun 13 22:07:17 2026 GMT Not After : Jun 15 01:41:17 2026 GMT Subject: CN=AD9302498B06E5E4EAC853F6F850B9360C2E6A0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:94:8e:3c:37:83:d8:5d:1f:03:49:0a:8e:76: 71:ba:d3:7b:0c:d0:ff:0c:e0:70:15:9d:32:7b:ae: e4:0e:6b:88:78:2f:58:52:64:c5:b1:26:a0:49:34: 82:91:32:1c:c8:66:bc:ef:94:66:79:6a:37:7e:1b: dc:ec:bd:57:a0:a2:fe:e2:c7:96:c8:b8:68:46:77: bf:3b:41:95:48:c5:ab:0f:ee:c2:84:72:fd:f4:80: 3a:61:41:0e:41:c6:6e:98:08:38:08:2f:7d:93:a3: 85:c9:7e:0a:33:cd:f6:d1:ca:b9:a1:bc:80:c0:d7: c3:7e:f2:96:76:b6:98:da:bf:a0:ca:e8:20:d0:60: d9:8c:7c:29:cb:4d:b3:fd:6b:7b:30:de:ac:ca:fd: 33:59:a9:c5:ea:07:96:5c:42:fd:48:1a:5e:db:6c: 71:6d:ca:94:9e:ae:3e:bf:29:1f:44:5f:a9:80:f2: ac:58:e1:b7:a6:ee:53:07:27:47:77:97:cb:0d:16: c5:df:de:c8:2f:37:5a:7b:91:a8:6e:08:60:ae:a2: 11:48:18:9e:8d:64:3d:1b:6b:1e:75:13:ec:fd:8c: f4:38:48:eb:6c:9d:39:fc:c3:1e:57:fc:99:98:e2: 34:92:ae:fb:26:02:5e:56:d6:9f:ae:ab:73:9f:ec: ae:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:93:02:49:8B:06:E5:E4:EA:C8:53:F6:F8:50:B9:36:0C:2E:6A:0E X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:37:95:8e:e3:79:af:4b:f5:c2:72:d7:61:26:f7:20:eb:29: 55:e2:36:88:1a:33:a5:7b:e9:3c:72:36:e2:3a:96:c2:f0:a3: 81:15:16:9c:6c:c1:86:84:a7:df:1c:49:6c:92:26:00:f0:09: 33:f0:13:b4:1a:ce:96:ed:a1:fa:d5:e9:91:65:a9:c3:3d:fc: 90:c0:c2:0f:25:ee:1a:56:2c:f7:e5:f1:91:bb:fc:05:2d:ee: de:a6:70:d7:96:38:b3:4c:df:36:3a:74:77:b8:a6:0c:cb:22: db:7f:21:0f:7e:f7:e2:9c:63:c4:7e:e1:54:e2:db:05:a8:8a: ef:90:27:f9:3e:74:8e:77:4e:7e:40:19:15:0f:19:53:f9:2a: 0e:32:e3:ff:52:dd:ff:73:f0:40:e3:1a:c1:4e:58:0c:d1:5f: c1:14:12:57:44:47:37:93:79:a6:56:dd:38:3a:bf:e8:6d:2d: 8a:b3:0b:8c:c5:bb:1e:b4:c8:f6:2b:d1:c1:5d:0d:8f:56:7e: a6:3c:71:23:00:c2:30:a6:92:29:57:70:88:f5:99:18:3f:96: 9e:72:ad:88:f7:37:97:d1:6c:b5:7a:07:9c:4e:8d:dd:76:00: 6a:5a:93:b4:44:8a:20:31:2b:66:56:ac:6c:17:3e:94:e3:d2: 85:42:3f:97 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUFXfF2HD3VB1+EYbzwHsNcJCJjJswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA2MTMyMjA3MTdaFw0yNjA2MTUwMTQxMTdaMDMxMTAvBgNV BAMTKEFEOTMwMjQ5OEIwNkU1RTRFQUM4NTNGNkY4NTBCOTM2MEMyRTZBMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0lI48N4PYXR8DSQqOdnG603sM 0P8M4HAVnTJ7ruQOa4h4L1hSZMWxJqBJNIKRMhzIZrzvlGZ5ajd+G9zsvVegov7i x5bIuGhGd787QZVIxasP7sKEcv30gDphQQ5Bxm6YCDgIL32To4XJfgozzfbRyrmh vIDA18N+8pZ2tpjav6DK6CDQYNmMfCnLTbP9a3sw3qzK/TNZqcXqB5ZcQv1IGl7b bHFtypSerj6/KR9EX6mA8qxY4bem7lMHJ0d3l8sNFsXf3sgvN1p7kahuCGCuohFI GJ6NZD0bax51E+z9jPQ4SOtsnTn8wx5X/JmY4jSSrvsmAl5W1p+uq3Of7K7lAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUrZMCSYsG5eTqyFP2+FC5Ngwuag4wHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ3ODU3OTUvMC83MUM5QkZFNEM4RkQ3 RTc3N0ExQzlFNTVERkE2MEEzQUMyOUEyNTRFLm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASzeVjuN5r0v1 wnLXYSb3IOspVeI2iBozpXvpPHI24jqWwvCjgRUWnGzBhoSn3xxJbJImAPAJM/AT tBrOlu2h+tXpkWWpwz38kMDCDyXuGlYs9+Xxkbv8BS3u3qZw15Y4s0zfNjp0d7im DMsi238hD3734pxjxH7hVOLbBaiK75An+T50jndOfkAZFQ8ZU/kqDjLj/1Ld/3Pw QOMawU5YDNFfwRQSV0RHN5N5plbdODq/6G0tirMLjMW7HrTI9ivRwV0Nj1Z+pjxx IwDCMKaSKVdwiPWZGD+WnnKtiPc3l9FstXoHnE6N3XYAalqTtESKIDErZlasbBc+ lOPShUI/lw== -----END CERTIFICATE-----Generated at Sun Jun 14 01:45:15 2026 by rpki-client