$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129852931/0/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.mft File: 3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.mft (raw, json) Hash identifier: cDWUr+huCxLCBgfs/I+g5GtK+Lw8tYmp/r9lGwjzNl8= Subject key identifier: 18:07:09:47:B2:EE:61:59:71:27:61:73:53:3B:7D:09:CC:8E:45:D9 Authority key identifier: 3D:C3:23:89:D8:EB:00:BB:31:C6:A9:5B:34:AF:C8:57:6A:80:7A:0A Certificate issuer: /CN=3DC32389D8EB00BB31C6A95B34AFC8576A807A0A Certificate serial: 2728C33271A8B3A95F55A948452A93C7624E555A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129852931/0/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.mft Manifest number: C2 Signing time: Sat 13 Jun 2026 06:51:23 +0000 Manifest this update: Sat 13 Jun 2026 06:46:23 +0000 Manifest next update: Sun 14 Jun 2026 09:09:23 +0000 Files and hashes: 1: 3130332e3232332e3132332e302f32342d3234203d3e20313532333230.roa (hash: BpauxASw+QwtCt0D3PSjlF+wZywrzS5unEAJDnk9hrM=) 2: 3130332e3232332e3132302e302f32342d3234203d3e20313532333230.roa (hash: 5HY0Ue/vWpU1LvYH7L0XmoUxw5TaIDzLdoP5LOndIDk=) 3: 3130332e3232332e3132302e302f32322d3234203d3e20313532333230.roa (hash: QDhDhO+o5EAhmJMJ47IlDxl87DbWK8fpZhIHG6UPABU=) 4: 34352e3235342e32352e302f32342d3234203d3e20313532333230.roa (hash: qjKwVJnGzyI/LX79Tj4cDa3KV/Elv2yjd5+GDsO75bY=) 5: 34352e3235342e32342e302f32322d3234203d3e20313532333230.roa (hash: /jlOtfFFIhy/vioYOPrruZVnaBj+JGwUse/ni91LtIM=) 6: 34352e3235342e32362e302f32342d3234203d3e20313532333230.roa (hash: zQnT6ObBiJ3XRQBU4LCMwXOfUmhlF2FqQYNCv6Fc46M=) 7: 34352e3235342e32372e302f32342d3234203d3e20313532333230.roa (hash: 8ey7xc7GrXn7mmv3ISFSPmAtts9JOcGCGnrt0IYw5NA=) 8: 3130332e3232332e3132322e302f32342d3234203d3e20313532333230.roa (hash: ENw2cTESVh99EP8BLMv1kqoTtl4yUiDM0XZMs1ujX6o=) 9: 34352e3235342e32342e302f32342d3234203d3e20313532333230.roa (hash: HRYgKbtmr+OMYx/1qW6f1p5CaBZOf7Km54MLi7qIJYQ=) 10: 3130332e3232332e3132312e302f32342d3234203d3e20313532333230.roa (hash: wzRfwIBhTwNZEHuoPqB4pgLkBoUBXIsG3gE0j7DP/GE=) 11: 3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.crl (hash: Aa4TogvXPDHQAZYzDK093Djl0feJE/CMhCeCRpmBbxU=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129852931/0/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129852931/0/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 09:09:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:28:c3:32:71:a8:b3:a9:5f:55:a9:48:45:2a:93:c7:62:4e:55:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3DC32389D8EB00BB31C6A95B34AFC8576A807A0A Validity Not Before: Jun 13 06:46:23 2026 GMT Not After : Jun 14 09:09:23 2026 GMT Subject: CN=18070947B2EE615971276173533B7D09CC8E45D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:56:30:72:c8:88:73:75:cb:7b:d7:e1:19:b7: 31:9b:25:a4:23:aa:ed:0c:ae:e8:30:39:c5:60:05: bd:d5:15:a8:1c:07:b6:8e:0f:d5:6e:b2:ac:fb:09: 18:ee:cc:d6:2e:13:11:22:cf:52:cf:5c:ee:88:fd: f9:c3:83:7e:03:ad:0a:ee:f4:bb:0a:5f:c1:ef:fd: 6a:74:a8:3e:d5:92:65:03:14:57:09:e4:66:55:c7: ea:78:79:29:13:b3:b8:9f:c4:3c:a3:39:1f:a6:30: db:cd:65:d8:55:b7:e9:c4:bd:b7:57:65:7c:81:cf: 9f:d1:a0:19:69:94:0a:ec:30:4d:e3:49:06:6f:06: b6:bf:a9:2d:fe:02:f3:d5:af:49:a3:d5:ba:b8:44: 8d:0b:a8:22:ab:06:dc:49:8a:ee:d6:1d:2a:f2:0f: c6:ee:bd:8f:0f:71:7c:7f:86:63:fd:63:28:f8:e1: e7:75:97:3a:e0:57:38:27:55:2e:71:33:17:22:22: 95:75:cc:f2:4e:5a:aa:a9:21:7e:e3:6f:77:b6:8c: fe:61:a4:6e:34:d6:33:df:72:0a:4a:ed:cc:b0:75: 83:85:0b:51:63:9f:79:1f:27:eb:26:76:fa:20:94: 46:85:25:0d:da:f6:0c:54:1b:f6:a8:05:51:93:62: b6:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:07:09:47:B2:EE:61:59:71:27:61:73:53:3B:7D:09:CC:8E:45:D9 X509v3 Authority Key Identifier: keyid:3D:C3:23:89:D8:EB:00:BB:31:C6:A9:5B:34:AF:C8:57:6A:80:7A:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129852931/0/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129852931/0/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:0d:1f:fa:c6:ad:d5:ba:84:43:50:f4:91:f1:99:13:1a:75: 8d:94:b3:fa:41:e6:d7:2f:4e:5a:0d:95:7a:a2:67:f2:27:7d: ce:7c:b6:6c:3a:a5:ee:fd:89:0e:81:30:42:11:2a:02:81:fb: 68:2e:18:1a:56:8c:a1:90:8d:df:00:7e:0b:19:60:71:4d:b2: 17:b8:0c:cd:c2:01:05:0d:29:4e:c3:48:7c:50:5f:ff:21:62: 2e:d8:39:61:11:5a:12:e1:fb:ab:a5:0d:c3:8c:a3:c4:78:e3: 4d:81:8d:b4:b4:71:ca:7a:bf:34:a1:f3:d7:57:18:bb:49:d4: 4f:13:59:2d:d9:9a:e8:45:7f:87:e4:2a:5a:65:18:bd:36:b5: f5:90:31:0b:6d:59:fa:14:84:71:af:76:0f:6c:3f:6e:bd:2b: 98:8b:a3:79:f2:69:64:b6:0a:8d:d4:a4:9e:fb:9d:cb:e7:36: 4f:cf:f3:53:69:67:64:7a:60:30:ff:ee:23:b9:ed:e6:be:2d: 62:d4:20:d3:8d:55:bd:47:46:98:05:f6:5a:19:e0:c7:26:66: 79:b8:39:c0:fe:7b:ab:f7:6b:f6:bf:f9:70:e9:1a:fa:15:d0: d6:8a:b1:8d:aa:c5:6c:1a:25:a6:02:1a:61:2c:24:4a:b5:0e: d9:5e:13:84 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUJyjDMnGos6lfValIRSqTx2JOVVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0RDMzIzODlEOEVCMDBCQjMxQzZBOTVCMzRBRkM4NTc2 QTgwN0EwQTAeFw0yNjA2MTMwNjQ2MjNaFw0yNjA2MTQwOTA5MjNaMDMxMTAvBgNV BAMTKDE4MDcwOTQ3QjJFRTYxNTk3MTI3NjE3MzUzM0I3RDA5Q0M4RTQ1RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/VjByyIhzdct71+EZtzGbJaQj qu0MrugwOcVgBb3VFagcB7aOD9Vusqz7CRjuzNYuExEiz1LPXO6I/fnDg34DrQru 9LsKX8Hv/Wp0qD7VkmUDFFcJ5GZVx+p4eSkTs7ifxDyjOR+mMNvNZdhVt+nEvbdX ZXyBz5/RoBlplArsME3jSQZvBra/qS3+AvPVr0mj1bq4RI0LqCKrBtxJiu7WHSry D8buvY8PcXx/hmP9Yyj44ed1lzrgVzgnVS5xMxciIpV1zPJOWqqpIX7jb3e2jP5h pG401jPfcgpK7cywdYOFC1Fjn3kfJ+smdvoglEaFJQ3a9gxUG/aoBVGTYraHAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUGAcJR7LuYVlxJ2FzUzt9CcyORdkwHwYDVR0j BBgwFoAUPcMjidjrALsxxqlbNK/IV2qAegowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTg1MjkzMS8wLzNEQzMyMzg5RDhFQjAwQkIzMUM2QTk1QjM0QUZD ODU3NkE4MDdBMEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0RDMzIzODlEOEVCMDBCQjMxQzZBOTVCMzRBRkM4NTc2QTgwN0EwQS5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODg1NTMxMjk4NTI5MzEvMC8zREMzMjM4OUQ4RUIw MEJCMzFDNkE5NUIzNEFGQzg1NzZBODA3QTBBLm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACg0f+sat1bqE Q1D0kfGZExp1jZSz+kHm1y9OWg2VeqJn8id9zny2bDql7v2JDoEwQhEqAoH7aC4Y GlaMoZCN3wB+CxlgcU2yF7gMzcIBBQ0pTsNIfFBf/yFiLtg5YRFaEuH7q6UNw4yj xHjjTYGNtLRxynq/NKHz11cYu0nUTxNZLdma6EV/h+QqWmUYvTa19ZAxC21Z+hSE ca92D2w/br0rmIujefJpZLYKjdSknvudy+c2T8/zU2lnZHpgMP/uI7nt5r4tYtQg 041VvUdGmAX2WhngxyZmebg5wP57q/dr9r/5cOka+hXQ1oqxjarFbBolpgIaYSwk SrUO2V4ThA== -----END CERTIFICATE-----Generated at Sun Jun 14 02:33:54 2026 by rpki-client