$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.mft File: 0AFFEB3DB5B290035312103A162969BF6E9D25E6.mft (raw, json) Hash identifier: /j7+KCHp36PZI53ThN4tWwHS9eotgyF0ikjYklEAcsw= Subject key identifier: 8D:AB:25:00:B6:25:D0:34:42:63:E4:86:E4:F0:96:E5:69:C5:69:BF Authority key identifier: 0A:FF:EB:3D:B5:B2:90:03:53:12:10:3A:16:29:69:BF:6E:9D:25:E6 Certificate issuer: /CN=0AFFEB3DB5B290035312103A162969BF6E9D25E6 Certificate serial: 2B254EBA8EB98D1AD2D79F56CF1C491185D90CB1 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0AFFEB3DB5B290035312103A162969BF6E9D25E6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.mft Manifest number: C4 Signing time: Sun 14 Jun 2026 05:17:46 +0000 Manifest this update: Sun 14 Jun 2026 05:12:46 +0000 Manifest next update: Mon 15 Jun 2026 05:31:46 +0000 Files and hashes: 1: 0AFFEB3DB5B290035312103A162969BF6E9D25E6.crl (hash: VMKeaQYTlKtSV2NU8NOv9bKjxpQDRB/0C3kMPEWcLBI=) 2: 323430313a626461303a3a2f33322d3332203d3e20313531323737.roa (hash: 9fwFD84ztG9UUivDa4dFwK8Y6fw7uNd0odjWh9t4he8=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0AFFEB3DB5B290035312103A162969BF6E9D25E6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 16:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:25:4e:ba:8e:b9:8d:1a:d2:d7:9f:56:cf:1c:49:11:85:d9:0c:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0AFFEB3DB5B290035312103A162969BF6E9D25E6 Validity Not Before: Jun 14 05:12:46 2026 GMT Not After : Jun 15 05:31:46 2026 GMT Subject: CN=8DAB2500B625D0344263E486E4F096E569C569BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1a:b3:04:22:fd:75:b2:17:83:5f:1d:00:c5: 24:a6:f8:ac:8b:17:94:34:95:37:e8:79:fd:bd:74: cf:86:fb:56:72:35:87:dc:9b:4a:60:c0:3a:90:ff: d8:21:4e:d6:4b:17:62:df:6d:18:a4:3a:5f:24:32: ca:b3:98:33:8f:99:ea:5d:8b:65:72:36:8c:f3:fd: 05:02:89:af:a6:57:0b:3d:a4:a1:42:2b:7a:94:ec: 87:5c:82:a7:5e:d0:cc:63:51:86:62:ec:e6:ef:e2: ac:a1:d9:a4:bc:63:3a:a2:6a:96:24:cf:63:c7:73: 3d:b4:19:81:20:f2:bb:02:f1:27:fd:c9:84:5e:ff: ff:31:a3:78:cc:81:71:e7:55:fa:5e:66:0b:26:cc: 62:63:01:a9:cd:be:86:93:fa:b5:dd:63:bb:54:9f: 56:8f:25:af:cb:67:7e:1f:5e:7e:11:82:6e:8e:36: 90:29:10:96:8d:f4:fc:6c:dc:9e:90:8d:32:4a:c7: 2c:3b:e3:e8:2c:15:e3:d9:c8:19:30:bd:2d:70:8d: f9:d8:5e:9a:85:d1:1b:53:28:65:39:28:ce:8b:f9: 0a:73:e7:ed:da:b0:ba:1a:f5:f9:15:1a:e6:9c:9e: bd:7f:bd:42:61:69:ad:53:81:2d:ac:68:11:f7:de: 81:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:AB:25:00:B6:25:D0:34:42:63:E4:86:E4:F0:96:E5:69:C5:69:BF X509v3 Authority Key Identifier: keyid:0A:FF:EB:3D:B5:B2:90:03:53:12:10:3A:16:29:69:BF:6E:9D:25:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0AFFEB3DB5B290035312103A162969BF6E9D25E6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:2e:50:62:17:1c:e4:c9:38:4e:39:07:ba:43:f3:e4:db:77: 08:63:92:ff:cb:ec:ba:1c:b4:ab:71:1c:64:2a:3b:c2:56:33: 79:58:fe:ec:89:b7:a9:35:ef:e3:18:bb:9f:85:bb:ca:c5:df: 03:51:90:07:f6:0a:6a:35:5e:f9:69:7b:f5:da:5f:c5:36:dc: 38:6b:a7:ed:1e:df:65:5c:b3:db:98:23:8f:58:23:45:4b:dc: c1:66:34:b1:87:ab:9f:bf:16:39:c7:00:61:07:93:80:9a:6d: 6e:40:d8:87:cc:70:21:d6:3f:7f:b5:47:1d:98:b6:75:45:f3: d5:87:5a:96:1e:56:83:3e:8d:42:3d:2b:80:b8:cd:7c:a1:7c: eb:f4:2b:39:35:0e:85:15:7b:4a:75:d1:df:d4:87:82:71:3d: 73:e5:19:8d:45:59:a3:d0:29:30:c0:54:c8:8b:d9:05:40:2a: aa:9c:6e:df:3a:04:39:dd:39:4a:b4:38:01:04:3c:29:7a:e0: e5:90:20:cf:b8:44:de:c8:a0:36:f9:8a:06:6f:e0:a9:08:0a: 7c:44:a7:60:6f:de:5f:37:ee:91:04:fc:77:35:87:9b:72:9d: 96:58:da:f2:02:c6:a2:df:ce:24:87:ce:8c:47:0f:76:dc:3b: 85:48:49:47 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUKyVOuo65jRrS159WzxxJEYXZDLEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEFGRkVCM0RCNUIyOTAwMzUzMTIxMDNBMTYyOTY5QkY2 RTlEMjVFNjAeFw0yNjA2MTQwNTEyNDZaFw0yNjA2MTUwNTMxNDZaMDMxMTAvBgNV BAMTKDhEQUIyNTAwQjYyNUQwMzQ0MjYzRTQ4NkU0RjA5NkU1NjlDNTY5QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRGrMEIv11sheDXx0AxSSm+KyL F5Q0lTfoef29dM+G+1ZyNYfcm0pgwDqQ/9ghTtZLF2LfbRikOl8kMsqzmDOPmepd i2VyNozz/QUCia+mVws9pKFCK3qU7Idcgqde0MxjUYZi7Obv4qyh2aS8YzqiapYk z2PHcz20GYEg8rsC8Sf9yYRe//8xo3jMgXHnVfpeZgsmzGJjAanNvoaT+rXdY7tU n1aPJa/LZ34fXn4Rgm6ONpApEJaN9Pxs3J6QjTJKxyw74+gsFePZyBkwvS1wjfnY XpqF0RtTKGU5KM6L+Qpz5+3asLoa9fkVGuacnr1/vUJhaa1TgS2saBH33oHxAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUjaslALYl0DRCY+SG5PCW5WnFab8wHwYDVR0j BBgwFoAUCv/rPbWykANTEhA6Filpv26dJeYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzM4OTU3MS8wLzBBRkZFQjNEQjVCMjkwMDM1MzEyMTAzQTE2Mjk2 OUJGNkU5RDI1RTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMEFGRkVCM0RCNUIyOTAwMzUzMTIxMDNBMTYyOTY5QkY2RTlEMjVFNi5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODU5MTEyMTczODk1NzEvMC8wQUZGRUIzREI1QjI5 MDAzNTMxMjEwM0ExNjI5NjlCRjZFOUQyNUU2Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACy5QYhcc5Mk4 TjkHukPz5Nt3CGOS/8vsuhy0q3EcZCo7wlYzeVj+7Im3qTXv4xi7n4W7ysXfA1GQ B/YKajVe+Wl79dpfxTbcOGun7R7fZVyz25gjj1gjRUvcwWY0sYern78WOccAYQeT gJptbkDYh8xwIdY/f7VHHZi2dUXz1Ydalh5Wgz6NQj0rgLjNfKF86/QrOTUOhRV7 SnXR39SHgnE9c+UZjUVZo9ApMMBUyIvZBUAqqpxu3zoEOd05SrQ4AQQ8KXrg5ZAg z7hE3sigNvmKBm/gqQgKfESnYG/eXzfukQT8dzWHm3Kdllja8gLGot/OJIfOjEcP dtw7hUhJRw== -----END CERTIFICATE-----Generated at Sun Jun 14 08:37:52 2026 by rpki-client