$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft File: 3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft (raw, json) Hash identifier: yL5TtFe4ZKmNu9OL7quM0EQ8BhGkY5l8VTCnQBA1KG4= Subject key identifier: 92:2A:04:0B:14:50:04:D1:1E:08:46:80:31:4E:2A:C1:36:FB:89:DF Authority key identifier: 3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 Certificate issuer: /CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Certificate serial: 5FA8693634996A5C4D3D98C4E5B131BFA1244E2E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft Manifest number: 7F Signing time: Fri 17 Apr 2026 16:49:43 +0000 Manifest this update: Fri 17 Apr 2026 16:44:43 +0000 Manifest next update: Sat 18 Apr 2026 18:56:43 +0000 Files and hashes: 1: 3231312e3136312e3131302e302f32342d3234203d3e20313436373732.roa (hash: iVAXKRVA2OAi2gvS05dFXtSfuZgHOruHMQhgHWIEYzE=) 2: 34352e3235302e3138342e302f32322d3232203d3e2034383136.roa (hash: RI+idagZL3rCO8K59vR3lwVwbOqjyorKRH3k++Z9FWE=) 3: 34352e3235302e3138302e302f32332d3233203d3e20313436373732.roa (hash: +b2dhVOVKDtioYPTzWNdeYIhHzc/eT7XuKHHyYYXG4c=) 4: 34352e3234382e3131302e302f32342d3234203d3e20313436373732.roa (hash: CUo6KI0C02tUysr9K890TtQgm00S71yWpThJcqrvcys=) 5: 34352e3235302e3138302e302f32332d3233203d3e2034383136.roa (hash: h33Ywf61tukA2QkrBnvDjXYDOBhCWihy9GsVOA4UzB4=) 6: 3130332e3231392e3130302e302f32332d3233203d3e203137363233.roa (hash: a2fwyzRSRqL4WwFa/yyzGlykbolRD7Y3AfnVVrYXKX4=) 7: 3130332e3139312e3234322e302f32332d3233203d3e2034383136.roa (hash: 3MO4WAS/mIlJMIrVI+85+WeNsWtQva36XIGPGXTaHbI=) 8: 3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl (hash: jl4qzg3feB0HQpPdy/CCy9kJgtkRqv4x/nNYxwxysFI=) 9: 3130332e3136312e3235352e302f32342d3234203d3e20313436373732.roa (hash: gOtBt5dxmbqpIh35k3uBcEVYq2I9ADjt7aYmNTPxKwo=) 10: 3130332e3231362e3235322e302f32342d3234203d3e2034383136.roa (hash: aO+DkS0zTHdPvPxlggzUbAE4Lu26a9KguQs3DYxkPts=) 11: 34352e3235302e3138302e302f32332d3233203d3e203137363233.roa (hash: z5CNtqggfpBwQHvrd01NKsHY76dW1RQ+2zq6ZLkT6L8=) 12: 3231312e3136312e3130392e302f32342d3234203d3e20313436373732.roa (hash: RaWNNSXVR8tps2og/Ak+iaDGQJ/KY1pty8OUWmINtkg=) 13: 3130332e3136312e3235342e302f32342d3234203d3e20313436373732.roa (hash: fj/sfPPmAd9753TITYEO7kcwQ/mY2SreemFgpWZQiKQ=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a8:69:36:34:99:6a:5c:4d:3d:98:c4:e5:b1:31:bf:a1:24:4e:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Validity Not Before: Apr 17 16:44:43 2026 GMT Not After : Apr 18 18:56:43 2026 GMT Subject: CN=922A040B145004D11E084680314E2AC136FB89DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:f1:f4:57:22:f8:36:e7:dd:a8:67:5e:42:ca: 47:c5:b0:cd:12:76:3c:4f:ac:a2:1f:93:1e:f4:5a: f0:76:02:99:72:9e:84:f3:5a:86:2d:29:1d:bb:01: cf:de:8e:7c:e8:94:d7:12:46:3a:db:98:74:4f:45: 83:0e:ab:55:d0:57:ab:e8:91:ed:40:c9:ae:c5:52: b8:fd:6b:68:3d:88:05:0d:ca:56:f6:d1:82:ba:10: c5:0f:17:30:ee:7d:d6:9b:50:a7:73:a2:a1:55:c7: 43:2c:65:80:35:1a:cd:c4:b2:4b:c2:9d:2b:7e:66: 24:62:0b:8f:b9:70:18:c8:2e:35:2b:d2:83:de:0a: 64:d8:d8:b1:fb:23:08:39:af:18:d0:64:00:b1:6c: e1:4c:b3:0e:84:b8:f5:30:1f:51:55:99:45:4e:eb: b0:64:3c:06:43:9e:f7:c1:a4:0a:a0:97:97:41:eb: ac:62:4a:35:2d:c6:51:c8:bb:f0:fc:5c:09:7e:bd: b2:b5:26:fc:52:ea:93:10:fd:00:f2:ca:c1:f1:52: 65:23:af:b5:cd:25:af:46:8f:b6:70:53:da:04:ab: 3f:2d:fa:a1:2e:a5:b5:4c:66:e2:e5:90:63:02:58: 6e:08:8a:0f:11:37:23:dd:15:fd:26:d3:d7:08:ad: 39:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:2A:04:0B:14:50:04:D1:1E:08:46:80:31:4E:2A:C1:36:FB:89:DF X509v3 Authority Key Identifier: keyid:3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:9d:21:a2:58:75:25:8e:48:83:fa:d5:99:f4:f2:b6:15:93: 6f:ee:f4:54:54:0f:2e:a6:ea:d9:31:d0:7c:b5:f7:12:4c:5f: 06:83:83:ca:c6:99:f5:dc:09:03:99:b4:9b:dd:f5:ed:64:4b: d0:a5:47:18:87:95:80:04:fd:55:30:92:6c:17:ca:98:63:7c: 5f:b9:e1:6b:d5:5d:cb:5e:fd:cc:e8:ee:ed:53:f3:7e:e1:71: 8c:5e:94:fd:47:b3:6a:65:59:69:26:be:29:45:28:0b:d6:5e: d8:90:6b:b9:d3:5b:44:15:53:11:bd:6b:1e:e9:69:c1:4c:14: 35:f9:91:fe:58:34:94:28:bb:57:e4:6e:b6:a2:c9:78:01:3c: e7:f9:d3:14:b4:1a:c2:ea:77:62:b0:ca:87:e4:a2:75:e8:e1: d3:47:b6:ba:3d:44:3c:63:43:9c:a0:ea:f6:db:6a:b2:c3:f8: f1:ad:f7:7e:1b:c8:6c:83:d0:72:15:cb:b6:1a:a0:b1:5d:f8: 33:5a:58:3d:b1:6b:1f:b4:bb:eb:b7:1b:0b:7a:df:bc:d2:f7: e7:41:83:8a:50:8d:ba:ef:bc:85:e4:95:18:36:36:4e:20:b2: 67:70:15:96:ff:1b:ae:35:47:99:20:6d:c6:4c:24:09:f2:5e: c3:e1:75:af -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUX6hpNjSZalxNPZjE5bExv6EkTi4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0Qzcy RjFBMTJCODAeFw0yNjA0MTcxNjQ0NDNaFw0yNjA0MTgxODU2NDNaMDMxMTAvBgNV BAMTKDkyMkEwNDBCMTQ1MDA0RDExRTA4NDY4MDMxNEUyQUMxMzZGQjg5REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCS8fRXIvg2592oZ15CykfFsM0S djxPrKIfkx70WvB2AplynoTzWoYtKR27Ac/ejnzolNcSRjrbmHRPRYMOq1XQV6vo ke1Aya7FUrj9a2g9iAUNylb20YK6EMUPFzDufdabUKdzoqFVx0MsZYA1Gs3EskvC nSt+ZiRiC4+5cBjILjUr0oPeCmTY2LH7Iwg5rxjQZACxbOFMsw6EuPUwH1FVmUVO 67BkPAZDnvfBpAqgl5dB66xiSjUtxlHIu/D8XAl+vbK1JvxS6pMQ/QDyysHxUmUj r7XNJa9Gj7ZwU9oEqz8t+qEupbVMZuLlkGMCWG4Iig8RNyPdFf0m09cIrTlnAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUkioECxRQBNEeCEaAMU4qwTb7id8wHwYDVR0j BBgwFoAUPQHNaSjd6NJqyWJl8fkExy8aErgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTQyMDI4OS8wLzNEMDFDRDY5MjhEREU4RDI2QUM5NjI2NUYxRjkw NEM3MkYxQTEyQjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0QzcyRjFBMTJCOC5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODUzODkyNjU0MjAyODkvMC8zRDAxQ0Q2OTI4RERF OEQyNkFDOTYyNjVGMUY5MDRDNzJGMUExMkI4Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVp0holh1JY5I g/rVmfTythWTb+70VFQPLqbq2THQfLX3EkxfBoODysaZ9dwJA5m0m9317WRL0KVH GIeVgAT9VTCSbBfKmGN8X7nha9Vdy179zOju7VPzfuFxjF6U/UezamVZaSa+KUUo C9Ze2JBrudNbRBVTEb1rHulpwUwUNfmR/lg0lCi7V+RutqLJeAE85/nTFLQawup3 YrDKh+Sidejh00e2uj1EPGNDnKDq9ttqssP48a33fhvIbIPQchXLthqgsV34M1pY PbFrH7S767cbC3rfvNL350GDilCNuu+8heSVGDY2TiCyZ3AVlv8brjVHmSBtxkwk CfJew+F1rw== -----END CERTIFICATE-----Generated at Fri Apr 17 23:40:10 2026 by rpki-client