$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft File: 67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft (raw, json) Hash identifier: I6OBQUFvSxQhnYaAH841lBkP1CzuFuSmmU8Pg5wBQbU= Subject key identifier: 28:5D:B1:08:CB:DD:EE:F2:6C:18:4B:6D:4C:03:46:06:90:16:E0:D1 Authority key identifier: 67:96:6D:34:EF:BF:4C:BC:FB:00:CF:9C:20:45:39:BF:E0:A2:53:16 Certificate issuer: /CN=67966D34EFBF4CBCFB00CF9C204539BFE0A25316 Certificate serial: 389EFCB72E06552D2FC5595087B29C7D0DE7E77F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft Manifest number: C4 Signing time: Sat 13 Jun 2026 20:27:13 +0000 Manifest this update: Sat 13 Jun 2026 20:22:13 +0000 Manifest next update: Sun 14 Jun 2026 22:39:13 +0000 Files and hashes: 1: 3130332e3134302e31342e302f32332d3332203d3e20313339303931.roa (hash: Dm1g3UjQyhGbjlFkBoWW9J4T2d5S6s8go1jP82Lkdfk=) 2: 3130332e3134302e31342e302f32332d3332203d3e203137363231.roa (hash: 2cWU5UH8whnz87agI1VludkKe4lf2cSxtmFnl04vmyI=) 3: 67966D34EFBF4CBCFB00CF9C204539BFE0A25316.crl (hash: JdmJKNjjP++j4Ocyl5pf0eVj4nNC4b/c9/d1LPGF4hU=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.crl rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 16:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:9e:fc:b7:2e:06:55:2d:2f:c5:59:50:87:b2:9c:7d:0d:e7:e7:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67966D34EFBF4CBCFB00CF9C204539BFE0A25316 Validity Not Before: Jun 13 20:22:13 2026 GMT Not After : Jun 14 22:39:13 2026 GMT Subject: CN=285DB108CBDDEEF26C184B6D4C0346069016E0D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:9c:76:e5:c8:29:1d:a2:45:3b:e3:17:c6:b9: 69:9e:49:6a:14:5b:a7:1b:01:91:4d:0d:9c:90:ce: c9:cb:51:f2:01:3e:d0:27:64:29:8e:3a:d0:c2:71: bf:c4:d6:7e:75:ad:6c:71:3c:28:c0:17:a5:43:de: 31:c7:05:e9:34:a2:01:e5:b9:f5:dc:44:5c:77:52: 56:53:03:80:02:ed:b7:dd:e7:4d:21:17:14:5a:94: 41:9f:74:bb:29:73:ba:f6:a1:a2:01:90:9c:b1:b3: 64:cc:90:b5:68:51:5a:41:6a:83:3e:f0:ba:4e:8f: d4:e9:ac:2d:85:a8:b4:14:4d:06:06:83:5a:e1:6b: 9b:49:e3:6f:06:0c:6d:79:bc:a3:fe:ee:f2:9d:c2: e4:0e:f1:4f:ce:91:68:99:79:43:55:38:88:64:b2: 1d:b5:f2:ac:08:1f:8e:15:30:48:e4:00:26:45:fe: 9a:0a:56:5d:2c:91:a7:62:c9:63:2a:9c:06:52:a8: f2:7e:2f:78:fd:f4:48:6b:64:55:7a:06:38:8c:4f: 1f:48:3a:78:21:a2:81:9a:97:92:2b:19:fc:9c:bd: d4:75:cf:7f:52:da:95:3d:0c:7a:21:d3:f3:34:c0: 6f:3e:c9:4d:ad:a9:9f:9c:a5:f3:b7:2f:c3:1e:a2: be:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:5D:B1:08:CB:DD:EE:F2:6C:18:4B:6D:4C:03:46:06:90:16:E0:D1 X509v3 Authority Key Identifier: keyid:67:96:6D:34:EF:BF:4C:BC:FB:00:CF:9C:20:45:39:BF:E0:A2:53:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:1c:ee:3a:79:f3:20:7f:94:75:38:e8:80:d7:f4:81:ce:c1: 57:73:60:a6:b2:2f:1c:18:c8:45:1f:62:27:39:dc:4a:b4:51: 53:44:42:b5:04:fb:f4:c5:8e:75:29:d3:73:59:f9:e1:2b:f2: 79:78:8e:cd:49:04:b1:3d:17:c1:de:29:b7:1b:46:77:a2:2f: a5:92:3f:7b:66:4f:63:11:c1:85:cf:de:a6:0f:6d:03:55:a1: 3a:1c:ed:d5:9c:85:4e:7d:3f:99:04:df:ac:c5:61:d1:28:55: 6a:fe:64:ef:42:7d:af:8b:02:bd:ca:cf:f7:a8:08:aa:fa:62: 2f:95:ba:18:03:3f:cf:42:3a:7f:fa:2f:be:4a:53:45:92:21: 0c:82:6e:e8:60:39:42:20:db:01:62:e8:82:f5:53:7f:50:e2: c8:ad:79:c4:95:0b:27:7a:24:8d:94:da:db:f0:7c:4c:97:54: eb:b7:b2:ce:dd:cf:3e:88:16:44:34:64:52:5f:35:ce:cc:50: 9c:0f:c1:e0:94:a5:2c:21:9c:26:9a:a3:c2:92:5a:74:f3:ec: 14:a7:11:3a:58:86:63:6d:3d:e2:4d:71:22:11:5e:84:b0:f4: f9:9a:f9:86:1e:16:71:e6:4c:f5:f1:e2:8f:3d:2b:79:62:67: a0:b0:a3:f4 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUOJ78ty4GVS0vxVlQh7KcfQ3n538wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc5NjZEMzRFRkJGNENCQ0ZCMDBDRjlDMjA0NTM5QkZF MEEyNTMxNjAeFw0yNjA2MTMyMDIyMTNaFw0yNjA2MTQyMjM5MTNaMDMxMTAvBgNV BAMTKDI4NURCMTA4Q0JEREVFRjI2QzE4NEI2RDRDMDM0NjA2OTAxNkUwRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqnHblyCkdokU74xfGuWmeSWoU W6cbAZFNDZyQzsnLUfIBPtAnZCmOOtDCcb/E1n51rWxxPCjAF6VD3jHHBek0ogHl ufXcRFx3UlZTA4AC7bfd500hFxRalEGfdLspc7r2oaIBkJyxs2TMkLVoUVpBaoM+ 8LpOj9TprC2FqLQUTQYGg1rha5tJ428GDG15vKP+7vKdwuQO8U/OkWiZeUNVOIhk sh218qwIH44VMEjkACZF/poKVl0skadiyWMqnAZSqPJ+L3j99EhrZFV6BjiMTx9I OnghooGal5IrGfycvdR1z39S2pU9DHoh0/M0wG8+yU2tqZ+cpfO3L8Meor7pAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUKF2xCMvd7vJsGEttTANGBpAW4NEwHwYDVR0j BBgwFoAUZ5ZtNO+/TLz7AM+cIEU5v+CiUxYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4Mjc0MTU3Nzg1OTA3NC8wLzY3OTY2RDM0RUZCRjRDQkNGQjAwQ0Y5QzIwNDUz OUJGRTBBMjUzMTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjc5NjZEMzRFRkJGNENCQ0ZCMDBDRjlDMjA0NTM5QkZFMEEyNTMxNi5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODI3NDE1Nzc4NTkwNzQvMC82Nzk2NkQzNEVGQkY0 Q0JDRkIwMENGOUMyMDQ1MzlCRkUwQTI1MzE2Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXBzuOnnzIH+U dTjogNf0gc7BV3NgprIvHBjIRR9iJzncSrRRU0RCtQT79MWOdSnTc1n54SvyeXiO zUkEsT0Xwd4ptxtGd6IvpZI/e2ZPYxHBhc/epg9tA1WhOhzt1ZyFTn0/mQTfrMVh 0ShVav5k70J9r4sCvcrP96gIqvpiL5W6GAM/z0I6f/ovvkpTRZIhDIJu6GA5QiDb AWLogvVTf1DiyK15xJULJ3okjZTa2/B8TJdU67eyzt3PPogWRDRkUl81zsxQnA/B 4JSlLCGcJpqjwpJadPPsFKcROliGY2094k1xIhFehLD0+Zr5hh4WceZM9fHijz0r eWJnoLCj9A== -----END CERTIFICATE-----Generated at Sun Jun 14 00:09:48 2026 by rpki-client