$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.mft File: 0AFFEB3DB5B290035312103A162969BF6E9D25E6.mft (raw, json) Hash identifier: Rt2snMY4raqEDGmc8VBtpN9IZyQ72CAsA3j4A7ohW2s= Subject key identifier: B1:AE:AE:34:94:C5:FD:23:E1:82:BC:18:AD:5D:DE:1A:77:C2:09:89 Authority key identifier: 0A:FF:EB:3D:B5:B2:90:03:53:12:10:3A:16:29:69:BF:6E:9D:25:E6 Certificate issuer: /CN=0AFFEB3DB5B290035312103A162969BF6E9D25E6 Certificate serial: 6A0353EBBF4424956647C2C013A51843D66E8216 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0AFFEB3DB5B290035312103A162969BF6E9D25E6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.mft Manifest number: 76 Signing time: Fri 17 Apr 2026 10:54:43 +0000 Manifest this update: Fri 17 Apr 2026 10:49:43 +0000 Manifest next update: Sat 18 Apr 2026 14:36:43 +0000 Files and hashes: 1: 323430313a626461303a3a2f33322d3332203d3e20313531323737.roa (hash: 9fwFD84ztG9UUivDa4dFwK8Y6fw7uNd0odjWh9t4he8=) 2: 0AFFEB3DB5B290035312103A162969BF6E9D25E6.crl (hash: 8jZDyUTrd351ZaVTliMcBdmtMEvfU64dobiqX2J1/i4=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0AFFEB3DB5B290035312103A162969BF6E9D25E6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 14:36:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:03:53:eb:bf:44:24:95:66:47:c2:c0:13:a5:18:43:d6:6e:82:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0AFFEB3DB5B290035312103A162969BF6E9D25E6 Validity Not Before: Apr 17 10:49:43 2026 GMT Not After : Apr 18 14:36:43 2026 GMT Subject: CN=B1AEAE3494C5FD23E182BC18AD5DDE1A77C20989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:08:6e:d3:76:e6:61:64:19:58:d5:f0:58:e5: ea:f3:ce:00:b1:05:e5:3b:6b:32:2a:51:da:e3:d0: 1d:06:13:57:de:07:0e:9c:9c:4e:9c:57:0d:48:f7: e0:a3:d7:92:af:dd:67:46:f3:0a:cf:dd:c2:d2:f5: 91:26:5d:96:fa:0a:fd:7b:f0:62:6e:fa:0f:5b:a5: ff:16:a0:54:4c:f5:6e:be:28:cf:53:62:2e:bb:ab: 75:f3:c1:84:9d:7a:65:75:8d:a1:7a:2d:e5:46:f1: bf:77:16:49:32:5f:e8:7f:d9:1f:f1:79:d1:7d:5b: c8:9c:bd:4b:cd:d4:2b:6f:4d:cb:06:d4:bf:c3:74: 37:f7:4e:db:97:4f:b0:e5:47:35:c1:38:6d:86:18: ba:12:33:ee:bf:53:e3:aa:73:e5:a5:cf:9d:63:b2: 1e:f8:89:23:f5:16:97:f9:6a:11:19:88:a1:b7:f7: 55:e6:a4:c0:cc:2f:1e:67:64:b7:f1:ed:45:fb:89: 95:65:7e:ad:d0:e7:55:82:06:07:f3:c4:4b:28:fa: d1:5e:88:6d:c6:f9:b6:08:eb:c7:9f:3f:f9:ba:c3: ee:95:76:5e:74:18:d0:d1:15:5d:1d:05:6b:55:36: 26:61:58:a6:bd:fa:64:a0:c0:32:77:43:00:4d:5e: 65:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:AE:AE:34:94:C5:FD:23:E1:82:BC:18:AD:5D:DE:1A:77:C2:09:89 X509v3 Authority Key Identifier: keyid:0A:FF:EB:3D:B5:B2:90:03:53:12:10:3A:16:29:69:BF:6E:9D:25:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0AFFEB3DB5B290035312103A162969BF6E9D25E6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:e4:88:22:54:d2:d1:98:a1:df:db:0e:b7:52:c0:a4:a0:0d: 97:63:0e:0c:b0:6a:8e:12:bb:15:6f:ae:9a:32:f5:ed:95:99: ee:fd:d2:8b:0a:86:7c:76:82:e3:5b:9a:59:b9:a9:7a:2c:02: 13:84:12:7d:8f:bc:96:38:15:3a:03:80:df:24:97:87:97:ef: 9f:68:73:6d:72:b1:ea:2c:b8:01:c0:71:4c:de:05:a0:c9:b1: f1:36:14:ad:fa:3d:20:f6:08:f7:cc:0c:61:95:b5:cf:a1:94: 98:b9:f4:b4:79:41:cf:c1:06:1e:e9:e6:a8:a8:56:d1:f0:97: 1c:ed:b4:4f:7e:89:4a:b6:60:0b:86:1f:08:94:9e:c5:7e:a8: 60:ff:12:76:48:e4:c6:44:80:76:81:12:43:51:8b:da:12:f9: 4d:c8:f2:3e:14:23:01:47:dc:e5:a5:6d:f3:6a:74:8d:e2:a0: 5d:d0:9c:34:ef:5d:21:fc:e6:62:d1:ee:6e:7e:ad:35:cc:df: f1:ee:43:c5:4f:ca:41:6a:5e:e4:c8:bd:1b:1f:61:30:27:05: 71:5b:80:65:7f:d7:15:72:3a:4a:2b:ae:97:2b:89:b4:58:11: 85:52:33:c5:f4:27:bb:dd:18:3d:d6:9d:76:4c:06:ac:75:61: 12:db:13:47 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUagNT679EJJVmR8LAE6UYQ9ZughYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEFGRkVCM0RCNUIyOTAwMzUzMTIxMDNBMTYyOTY5QkY2 RTlEMjVFNjAeFw0yNjA0MTcxMDQ5NDNaFw0yNjA0MTgxNDM2NDNaMDMxMTAvBgNV BAMTKEIxQUVBRTM0OTRDNUZEMjNFMTgyQkMxOEFENURERTFBNzdDMjA5ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhCG7TduZhZBlY1fBY5erzzgCx BeU7azIqUdrj0B0GE1feBw6cnE6cVw1I9+Cj15Kv3WdG8wrP3cLS9ZEmXZb6Cv17 8GJu+g9bpf8WoFRM9W6+KM9TYi67q3XzwYSdemV1jaF6LeVG8b93FkkyX+h/2R/x edF9W8icvUvN1CtvTcsG1L/DdDf3TtuXT7DlRzXBOG2GGLoSM+6/U+Oqc+Wlz51j sh74iSP1Fpf5ahEZiKG391XmpMDMLx5nZLfx7UX7iZVlfq3Q51WCBgfzxEso+tFe iG3G+bYI68efP/m6w+6Vdl50GNDRFV0dBWtVNiZhWKa9+mSgwDJ3QwBNXmUpAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUsa6uNJTF/SPhgrwYrV3eGnfCCYkwHwYDVR0j BBgwFoAUCv/rPbWykANTEhA6Filpv26dJeYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzM4OTU3MS8wLzBBRkZFQjNEQjVCMjkwMDM1MzEyMTAzQTE2Mjk2 OUJGNkU5RDI1RTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMEFGRkVCM0RCNUIyOTAwMzUzMTIxMDNBMTYyOTY5QkY2RTlEMjVFNi5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODU5MTEyMTczODk1NzEvMC8wQUZGRUIzREI1QjI5 MDAzNTMxMjEwM0ExNjI5NjlCRjZFOUQyNUU2Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACeSIIlTS0Zih 39sOt1LApKANl2MODLBqjhK7FW+umjL17ZWZ7v3SiwqGfHaC41uaWbmpeiwCE4QS fY+8ljgVOgOA3ySXh5fvn2hzbXKx6iy4AcBxTN4FoMmx8TYUrfo9IPYI98wMYZW1 z6GUmLn0tHlBz8EGHunmqKhW0fCXHO20T36JSrZgC4YfCJSexX6oYP8SdkjkxkSA doESQ1GL2hL5TcjyPhQjAUfc5aVt82p0jeKgXdCcNO9dIfzmYtHubn6tNczf8e5D xU/KQWpe5Mi9Gx9hMCcFcVuAZX/XFXI6SiuulyuJtFgRhVIzxfQnu90YPdaddkwG rHVhEtsTRw== -----END CERTIFICATE-----Generated at Fri Apr 17 21:36:51 2026 by rpki-client