$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.mft File: 0AFFEB3DB5B290035312103A162969BF6E9D25E6.mft (raw, json) Hash identifier: y2Sy9Y9UN4OPeUPkWOzxNqutmFRLyhS7fs4JGqV+4cw= Subject key identifier: 25:8B:AC:D7:E4:F0:FD:39:4D:1C:35:6B:B0:8E:27:61:D9:70:B7:E5 Authority key identifier: 0A:FF:EB:3D:B5:B2:90:03:53:12:10:3A:16:29:69:BF:6E:9D:25:E6 Certificate issuer: /CN=0AFFEB3DB5B290035312103A162969BF6E9D25E6 Certificate serial: 75CCB82A947DEEB3288051AA3CF6AB2D14B2197F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0AFFEB3DB5B290035312103A162969BF6E9D25E6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.mft Manifest number: 39 Signing time: Mon 02 Mar 2026 09:03:17 +0000 Manifest this update: Mon 02 Mar 2026 08:58:17 +0000 Manifest next update: Tue 03 Mar 2026 12:07:17 +0000 Files and hashes: 1: 0AFFEB3DB5B290035312103A162969BF6E9D25E6.crl (hash: VvRcQRmKb47gDK2RWTytTtrndOAlCRs30h1weC48efQ=) 2: 323430313a626461303a3a2f33322d3332203d3e20313531323737.roa (hash: 9fwFD84ztG9UUivDa4dFwK8Y6fw7uNd0odjWh9t4he8=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0AFFEB3DB5B290035312103A162969BF6E9D25E6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 04:07:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:cc:b8:2a:94:7d:ee:b3:28:80:51:aa:3c:f6:ab:2d:14:b2:19:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0AFFEB3DB5B290035312103A162969BF6E9D25E6 Validity Not Before: Mar 2 08:58:17 2026 GMT Not After : Mar 3 12:07:17 2026 GMT Subject: CN=258BACD7E4F0FD394D1C356BB08E2761D970B7E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:92:3a:3a:1c:17:af:c1:24:a5:78:75:0c:32: c4:96:6a:8b:35:7d:3a:9e:91:30:c3:93:13:26:00: 82:89:c5:30:ef:53:9f:6d:94:46:f7:b1:e5:ec:6c: 54:c3:3c:03:a3:23:8a:d8:9f:97:fd:40:df:d7:e4: bf:53:90:a4:69:68:e1:eb:47:b6:fd:31:50:68:1d: fd:8f:9d:38:db:ec:0b:80:38:06:bc:99:60:cb:3a: b2:19:b2:c5:b3:c1:9d:2e:73:88:80:40:49:e3:11: 91:1b:d0:39:19:99:16:c8:55:db:e9:8e:4b:1a:c3: e0:98:44:6a:5c:3a:08:cf:66:43:f0:ad:d0:c1:89: d0:8e:9f:d1:82:3f:d4:3f:23:5d:17:7f:66:d9:2b: 53:19:b9:f1:56:51:6f:b8:92:27:f2:d8:4a:91:8f: 05:3a:a5:bd:48:ca:d7:6c:82:a1:df:e7:43:51:19: eb:90:2f:50:a7:99:2a:45:41:8d:3e:69:75:02:5d: 9b:46:22:91:c2:2d:60:53:55:3c:1a:22:64:46:09: 2f:2e:c5:98:eb:5a:1a:41:8f:d2:c2:09:c5:ce:73: 29:db:e7:b3:95:92:8f:ac:b5:a0:f3:25:08:68:eb: 23:f8:12:3c:8b:36:e6:12:c7:68:32:f3:63:6d:4d: 84:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:8B:AC:D7:E4:F0:FD:39:4D:1C:35:6B:B0:8E:27:61:D9:70:B7:E5 X509v3 Authority Key Identifier: keyid:0A:FF:EB:3D:B5:B2:90:03:53:12:10:3A:16:29:69:BF:6E:9D:25:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0AFFEB3DB5B290035312103A162969BF6E9D25E6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:ff:6f:75:8a:af:84:c7:ac:b1:54:64:f0:c5:68:93:ce:0c: 63:e3:f8:43:4c:e8:91:ca:32:d8:1a:f8:b6:37:0f:30:04:40: ed:82:4e:21:23:14:c6:3f:2f:8b:11:51:df:5d:aa:7b:b3:93: 97:2d:b6:8c:d5:99:1d:02:54:6a:17:23:c8:a8:3d:1d:ad:5d: b7:f1:ab:2c:b4:74:a3:70:7f:9e:bb:8a:9c:58:ac:6b:41:68: 06:9e:c9:d8:73:dc:61:b7:57:7a:4d:b1:c9:d8:a2:9d:b2:1e: bd:77:87:dd:6f:0e:d9:c8:95:9e:26:77:18:b9:f7:79:d7:7e: 28:4e:54:c4:c6:5a:5d:8d:a2:31:1a:c6:5b:03:23:53:02:17: b3:29:88:7a:34:a2:e3:3d:8f:99:df:c0:f9:a9:91:ec:4d:6f: 7b:2f:e8:a6:85:7b:40:3d:b1:fe:ce:4a:c3:32:24:52:85:96: 87:12:e9:d5:f5:0d:0f:0e:75:f7:e7:cc:62:58:69:57:67:7d: 03:b2:32:3a:47:06:4b:58:dc:7a:d2:e7:bd:68:e3:14:a5:ed: 4c:c6:53:4f:f9:66:3d:2e:b9:5f:f8:a2:de:41:7b:e6:83:5a: a4:91:7f:8c:b7:d9:ed:4a:e6:08:b8:d6:53:a4:f2:8a:39:a8: 30:70:6c:75 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUdcy4KpR97rMogFGqPParLRSyGX8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEFGRkVCM0RCNUIyOTAwMzUzMTIxMDNBMTYyOTY5QkY2 RTlEMjVFNjAeFw0yNjAzMDIwODU4MTdaFw0yNjAzMDMxMjA3MTdaMDMxMTAvBgNV BAMTKDI1OEJBQ0Q3RTRGMEZEMzk0RDFDMzU2QkIwOEUyNzYxRDk3MEI3RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpkjo6HBevwSSleHUMMsSWaos1 fTqekTDDkxMmAIKJxTDvU59tlEb3seXsbFTDPAOjI4rYn5f9QN/X5L9TkKRpaOHr R7b9MVBoHf2PnTjb7AuAOAa8mWDLOrIZssWzwZ0uc4iAQEnjEZEb0DkZmRbIVdvp jksaw+CYRGpcOgjPZkPwrdDBidCOn9GCP9Q/I10Xf2bZK1MZufFWUW+4kify2EqR jwU6pb1IytdsgqHf50NRGeuQL1CnmSpFQY0+aXUCXZtGIpHCLWBTVTwaImRGCS8u xZjrWhpBj9LCCcXOcynb57OVko+staDzJQho6yP4EjyLNuYSx2gy82NtTYR3AgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUJYus1+Tw/TlNHDVrsI4nYdlwt+UwHwYDVR0j BBgwFoAUCv/rPbWykANTEhA6Filpv26dJeYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzM4OTU3MS8wLzBBRkZFQjNEQjVCMjkwMDM1MzEyMTAzQTE2Mjk2 OUJGNkU5RDI1RTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMEFGRkVCM0RCNUIyOTAwMzUzMTIxMDNBMTYyOTY5QkY2RTlEMjVFNi5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODU5MTEyMTczODk1NzEvMC8wQUZGRUIzREI1QjI5 MDAzNTMxMjEwM0ExNjI5NjlCRjZFOUQyNUU2Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmf9vdYqvhMes sVRk8MVok84MY+P4Q0zokcoy2Br4tjcPMARA7YJOISMUxj8vixFR312qe7OTly22 jNWZHQJUahcjyKg9Ha1dt/GrLLR0o3B/nruKnFisa0FoBp7J2HPcYbdXek2xydii nbIevXeH3W8O2ciVniZ3GLn3edd+KE5UxMZaXY2iMRrGWwMjUwIXsymIejSi4z2P md/A+amR7E1vey/opoV7QD2x/s5KwzIkUoWWhxLp1fUNDw519+fMYlhpV2d9A7Iy OkcGS1jcetLnvWjjFKXtTMZTT/lmPS65X/ii3kF75oNapJF/jLfZ7UrmCLjWU6Ty ijmoMHBsdQ== -----END CERTIFICATE-----Generated at Mon Mar 2 13:33:11 2026 by rpki-client