$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft File: 67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft (raw, json) Hash identifier: CdyS9W1DylA38k4Vh5gqQAY8Ht7koUnHDdsDmObbzO0= Subject key identifier: AD:CB:E7:71:1F:23:14:6C:5F:CD:49:DA:5C:C3:6C:0E:2B:28:3A:77 Authority key identifier: 67:96:6D:34:EF:BF:4C:BC:FB:00:CF:9C:20:45:39:BF:E0:A2:53:16 Certificate issuer: /CN=67966D34EFBF4CBCFB00CF9C204539BFE0A25316 Certificate serial: 69B15C2B1EA3A82BFD3B5D738771D888DBEF7C68 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft Manifest number: 78 Signing time: Fri 17 Apr 2026 14:04:43 +0000 Manifest this update: Fri 17 Apr 2026 13:59:43 +0000 Manifest next update: Sat 18 Apr 2026 15:16:43 +0000 Files and hashes: 1: 3130332e3134302e31342e302f32332d3332203d3e20313339303931.roa (hash: Dm1g3UjQyhGbjlFkBoWW9J4T2d5S6s8go1jP82Lkdfk=) 2: 67966D34EFBF4CBCFB00CF9C204539BFE0A25316.crl (hash: ww6XoJ6Xm/xmRf3ujbWpgtQkoaTLIKhMNV7Uu0ef+44=) 3: 3130332e3134302e31342e302f32332d3332203d3e203137363231.roa (hash: 2cWU5UH8whnz87agI1VludkKe4lf2cSxtmFnl04vmyI=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.crl rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 15:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:b1:5c:2b:1e:a3:a8:2b:fd:3b:5d:73:87:71:d8:88:db:ef:7c:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67966D34EFBF4CBCFB00CF9C204539BFE0A25316 Validity Not Before: Apr 17 13:59:43 2026 GMT Not After : Apr 18 15:16:43 2026 GMT Subject: CN=ADCBE7711F23146C5FCD49DA5CC36C0E2B283A77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:f2:b4:b5:7e:83:fd:1b:7f:e8:6b:3f:0a:68: f5:01:f9:2a:f4:a1:a7:01:c6:5d:23:f1:e2:20:25: 4f:45:84:86:2c:7d:42:dd:e2:84:9c:6f:b9:a5:47: 91:25:f3:2e:dc:5d:5c:ea:9a:2a:cb:ef:19:98:ca: 27:9d:61:a6:87:d8:1f:e4:ae:99:23:0e:f5:8e:ef: f7:58:9f:32:3f:ac:1f:b8:4c:89:75:91:13:a9:3b: bf:68:fa:85:3c:50:72:88:a5:ad:e4:40:51:4e:34: 2a:cb:2c:38:54:3f:af:46:50:5b:f8:0f:33:59:52: 9d:ea:c2:fd:16:41:5e:5a:f5:df:3b:c8:e8:75:42: 1a:4b:45:7c:0c:91:10:42:a5:76:4e:d5:fe:09:a1: 12:a1:8b:91:a8:0b:23:a7:72:17:e7:92:71:54:ca: 5e:3e:da:15:df:95:d7:de:d5:24:c8:bd:59:09:a6: 50:08:b7:7e:d3:dd:53:3e:7b:41:f6:62:62:ea:3d: db:2a:26:e2:28:28:de:3e:ae:3d:97:d3:eb:5b:4d: d3:11:39:f0:88:7a:8e:1e:be:85:77:65:1a:e8:1e: 09:92:6d:d2:b3:7e:f9:18:a0:20:97:c9:be:89:d7: 9f:84:5c:5d:88:47:f1:cb:b5:9b:fd:74:9a:96:2b: b4:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:CB:E7:71:1F:23:14:6C:5F:CD:49:DA:5C:C3:6C:0E:2B:28:3A:77 X509v3 Authority Key Identifier: keyid:67:96:6D:34:EF:BF:4C:BC:FB:00:CF:9C:20:45:39:BF:E0:A2:53:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:ff:2d:a4:47:ff:08:8a:d9:ec:6a:e2:65:3c:95:04:3c:b3: da:24:e0:3c:f5:8a:3c:b3:af:53:19:ad:86:2b:6b:2c:2e:50: 1b:66:4b:06:7f:b4:7a:3f:84:c0:14:3a:55:02:4f:e5:99:0c: 8c:7c:c8:d2:80:3d:94:dc:06:05:3b:ec:c2:63:b5:27:35:66: 2b:ee:ab:8c:a5:02:2a:23:0a:aa:e4:d4:99:e1:e8:5b:30:5d: 23:19:73:98:37:7a:da:8e:73:c6:0c:ec:aa:4c:43:0b:7a:2f: 95:35:ba:e6:59:98:42:e3:50:96:21:be:41:76:40:5c:e3:7b: 32:9d:17:fd:de:cd:f0:e0:45:f2:13:34:bd:d5:12:48:ba:43: 20:f7:94:c0:57:19:46:62:a6:6e:cc:42:58:8b:59:16:f6:f9: 37:78:2b:33:a3:b6:27:83:40:b7:c9:55:c7:e3:fa:90:26:f7: 8d:0b:15:32:c0:19:26:d6:37:98:65:0b:ad:67:b9:da:82:04: 09:b8:8f:97:44:ba:e2:56:f9:63:c9:49:94:ad:fe:c2:4f:87: 82:77:01:f5:19:32:cf:5c:00:51:91:05:a3:dd:6d:b6:30:9e: bb:2a:d5:a5:04:9a:64:b2:08:72:23:c0:a1:cf:1c:46:53:ae: b9:d0:14:b9 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUabFcKx6jqCv9O11zh3HYiNvvfGgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc5NjZEMzRFRkJGNENCQ0ZCMDBDRjlDMjA0NTM5QkZF MEEyNTMxNjAeFw0yNjA0MTcxMzU5NDNaFw0yNjA0MTgxNTE2NDNaMDMxMTAvBgNV BAMTKEFEQ0JFNzcxMUYyMzE0NkM1RkNENDlEQTVDQzM2QzBFMkIyODNBNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh8rS1foP9G3/oaz8KaPUB+Sr0 oacBxl0j8eIgJU9FhIYsfULd4oScb7mlR5El8y7cXVzqmirL7xmYyiedYaaH2B/k rpkjDvWO7/dYnzI/rB+4TIl1kROpO79o+oU8UHKIpa3kQFFONCrLLDhUP69GUFv4 DzNZUp3qwv0WQV5a9d87yOh1QhpLRXwMkRBCpXZO1f4JoRKhi5GoCyOnchfnknFU yl4+2hXfldfe1STIvVkJplAIt37T3VM+e0H2YmLqPdsqJuIoKN4+rj2X0+tbTdMR OfCIeo4evoV3ZRroHgmSbdKzfvkYoCCXyb6J15+EXF2IR/HLtZv9dJqWK7RLAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUrcvncR8jFGxfzUnaXMNsDisoOncwHwYDVR0j BBgwFoAUZ5ZtNO+/TLz7AM+cIEU5v+CiUxYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4Mjc0MTU3Nzg1OTA3NC8wLzY3OTY2RDM0RUZCRjRDQkNGQjAwQ0Y5QzIwNDUz OUJGRTBBMjUzMTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjc5NjZEMzRFRkJGNENCQ0ZCMDBDRjlDMjA0NTM5QkZFMEEyNTMxNi5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODI3NDE1Nzc4NTkwNzQvMC82Nzk2NkQzNEVGQkY0 Q0JDRkIwMENGOUMyMDQ1MzlCRkUwQTI1MzE2Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXf8tpEf/CIrZ 7GriZTyVBDyz2iTgPPWKPLOvUxmthitrLC5QG2ZLBn+0ej+EwBQ6VQJP5ZkMjHzI 0oA9lNwGBTvswmO1JzVmK+6rjKUCKiMKquTUmeHoWzBdIxlzmDd62o5zxgzsqkxD C3ovlTW65lmYQuNQliG+QXZAXON7Mp0X/d7N8OBF8hM0vdUSSLpDIPeUwFcZRmKm bsxCWItZFvb5N3grM6O2J4NAt8lVx+P6kCb3jQsVMsAZJtY3mGULrWe52oIECbiP l0S64lb5Y8lJlK3+wk+HgncB9Rkyz1wAUZEFo91ttjCeuyrVpQSaZLIIciPAoc8c RlOuudAUuQ== -----END CERTIFICATE-----Generated at Sat Apr 18 00:41:16 2026 by rpki-client