$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129852931/0/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.mft File: 3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.mft (raw, json) Hash identifier: WaH0DLMwHt5JYgmA49ZwgoF2Ncwf4hp7bA0oy654hyo= Subject key identifier: F0:30:BB:5B:64:10:CC:6C:64:3B:EE:07:19:E1:72:36:23:FB:2B:A2 Authority key identifier: 3D:C3:23:89:D8:EB:00:BB:31:C6:A9:5B:34:AF:C8:57:6A:80:7A:0A Certificate issuer: /CN=3DC32389D8EB00BB31C6A95B34AFC8576A807A0A Certificate serial: 211F185E0D03053223A0D83C5243185B3B30707C Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129852931/0/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.mft Manifest number: 76 Signing time: Fri 17 Apr 2026 17:34:44 +0000 Manifest this update: Fri 17 Apr 2026 17:29:44 +0000 Manifest next update: Sat 18 Apr 2026 18:57:44 +0000 Files and hashes: 1: 3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.crl (hash: 2KtprIXHNYnpzh3UOAUEkbfG2WEL9BpQO2+nQqnrQNE=) 2: 34352e3235342e32352e302f32342d3234203d3e20313532333230.roa (hash: qjKwVJnGzyI/LX79Tj4cDa3KV/Elv2yjd5+GDsO75bY=) 3: 3130332e3232332e3132322e302f32342d3234203d3e20313532333230.roa (hash: ENw2cTESVh99EP8BLMv1kqoTtl4yUiDM0XZMs1ujX6o=) 4: 3130332e3232332e3132332e302f32342d3234203d3e20313532333230.roa (hash: BpauxASw+QwtCt0D3PSjlF+wZywrzS5unEAJDnk9hrM=) 5: 3130332e3232332e3132312e302f32342d3234203d3e20313532333230.roa (hash: wzRfwIBhTwNZEHuoPqB4pgLkBoUBXIsG3gE0j7DP/GE=) 6: 3130332e3232332e3132302e302f32322d3234203d3e20313532333230.roa (hash: QDhDhO+o5EAhmJMJ47IlDxl87DbWK8fpZhIHG6UPABU=) 7: 34352e3235342e32362e302f32342d3234203d3e20313532333230.roa (hash: zQnT6ObBiJ3XRQBU4LCMwXOfUmhlF2FqQYNCv6Fc46M=) 8: 34352e3235342e32342e302f32322d3234203d3e20313532333230.roa (hash: /jlOtfFFIhy/vioYOPrruZVnaBj+JGwUse/ni91LtIM=) 9: 34352e3235342e32372e302f32342d3234203d3e20313532333230.roa (hash: 8ey7xc7GrXn7mmv3ISFSPmAtts9JOcGCGnrt0IYw5NA=) 10: 3130332e3232332e3132302e302f32342d3234203d3e20313532333230.roa (hash: 5HY0Ue/vWpU1LvYH7L0XmoUxw5TaIDzLdoP5LOndIDk=) 11: 34352e3235342e32342e302f32342d3234203d3e20313532333230.roa (hash: HRYgKbtmr+OMYx/1qW6f1p5CaBZOf7Km54MLi7qIJYQ=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129852931/0/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129852931/0/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:1f:18:5e:0d:03:05:32:23:a0:d8:3c:52:43:18:5b:3b:30:70:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3DC32389D8EB00BB31C6A95B34AFC8576A807A0A Validity Not Before: Apr 17 17:29:44 2026 GMT Not After : Apr 18 18:57:44 2026 GMT Subject: CN=F030BB5B6410CC6C643BEE0719E1723623FB2BA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:06:78:4e:9c:c3:4a:b5:94:59:98:12:20:f0: e2:91:08:5b:60:c2:4a:93:8a:d5:2d:16:70:06:00: 48:d5:91:a3:88:21:aa:12:c3:4f:ce:b7:f3:22:91: 07:a4:9f:3d:66:9e:b0:af:1b:4f:12:ca:28:3f:51: bd:c3:bd:a8:36:2d:1a:ef:23:2d:38:3f:01:ac:c4: 18:42:b4:f1:c9:6f:7a:a6:cd:53:f2:83:8f:7d:37: 09:50:69:a0:7c:5f:3d:67:62:1f:0c:66:26:c4:1c: 22:43:ac:94:39:ba:d6:ad:dc:bb:c6:7b:cd:2a:34: 5b:14:00:69:98:33:a5:cd:9c:3a:9f:dc:8a:8b:36: 75:8f:ff:63:82:8f:1d:10:fb:23:93:3c:89:05:73: eb:2c:e2:3a:f6:f4:3c:e4:0c:67:33:fa:68:24:c6: 04:4f:10:7c:67:dd:82:1e:e4:16:1d:a4:07:12:60: c0:7d:df:0d:24:38:55:75:94:63:13:87:eb:af:24: 2d:27:14:12:4b:b1:2b:91:4b:47:da:6f:fb:cd:80: a1:e5:d1:7a:be:4c:22:38:8a:cb:70:61:0c:82:0e: eb:c8:c8:80:f3:a3:95:22:c1:2f:84:3d:80:ae:64: 12:2a:aa:ad:c1:4a:17:9e:48:72:b0:da:05:d2:d1: 74:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:30:BB:5B:64:10:CC:6C:64:3B:EE:07:19:E1:72:36:23:FB:2B:A2 X509v3 Authority Key Identifier: keyid:3D:C3:23:89:D8:EB:00:BB:31:C6:A9:5B:34:AF:C8:57:6A:80:7A:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129852931/0/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129852931/0/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:2e:74:37:2a:12:d5:88:f3:48:68:58:df:07:11:8b:96:4f: 9b:d1:ea:12:0a:ba:09:eb:2c:87:e3:82:bb:e7:00:6e:d3:98: 99:f8:3b:00:97:78:62:8e:65:23:1c:64:b0:41:ba:5a:c2:36: f6:d6:86:90:d7:90:ac:92:bc:12:a4:cc:35:cb:0d:ac:bb:a2: 58:30:e1:0c:69:91:c0:9a:13:e4:d0:93:4e:18:4e:ff:2c:93: 49:3a:bc:96:0d:81:9d:fa:e3:0f:e3:a3:c4:e2:ea:4b:1a:f3: ee:79:96:36:9e:b5:a2:2a:a2:ca:b4:06:39:13:8c:58:b3:44: 8e:24:86:2a:f5:49:2b:2c:04:11:df:d9:1d:63:e6:d9:be:70: fc:9b:15:3c:69:f0:f5:b8:11:72:cb:be:39:70:9e:27:c1:8f: fc:d0:e4:f7:cb:42:ec:f9:57:6a:2c:78:09:d2:64:42:a1:f6: af:1e:7e:5c:88:e5:38:93:f0:08:88:10:9b:b5:31:08:98:4c: ae:da:ce:6e:99:fe:0b:75:37:92:8e:1a:26:ba:e7:96:d5:2a: 3a:11:21:21:f4:76:d2:f6:ed:8c:8a:d4:44:30:6b:8a:51:02: e4:a5:e0:fe:d6:84:23:b9:9d:85:df:3a:fa:11:3c:8a:17:00: 68:8f:b8:90 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUIR8YXg0DBTIjoNg8UkMYWzswcHwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0RDMzIzODlEOEVCMDBCQjMxQzZBOTVCMzRBRkM4NTc2 QTgwN0EwQTAeFw0yNjA0MTcxNzI5NDRaFw0yNjA0MTgxODU3NDRaMDMxMTAvBgNV BAMTKEYwMzBCQjVCNjQxMENDNkM2NDNCRUUwNzE5RTE3MjM2MjNGQjJCQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzBnhOnMNKtZRZmBIg8OKRCFtg wkqTitUtFnAGAEjVkaOIIaoSw0/Ot/MikQeknz1mnrCvG08Syig/Ub3Dvag2LRrv Iy04PwGsxBhCtPHJb3qmzVPyg499NwlQaaB8Xz1nYh8MZibEHCJDrJQ5utat3LvG e80qNFsUAGmYM6XNnDqf3IqLNnWP/2OCjx0Q+yOTPIkFc+ss4jr29DzkDGcz+mgk xgRPEHxn3YIe5BYdpAcSYMB93w0kOFV1lGMTh+uvJC0nFBJLsSuRS0fab/vNgKHl 0Xq+TCI4istwYQyCDuvIyIDzo5UiwS+EPYCuZBIqqq3BSheeSHKw2gXS0XShAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQU8DC7W2QQzGxkO+4HGeFyNiP7K6IwHwYDVR0j BBgwFoAUPcMjidjrALsxxqlbNK/IV2qAegowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTg1MjkzMS8wLzNEQzMyMzg5RDhFQjAwQkIzMUM2QTk1QjM0QUZD ODU3NkE4MDdBMEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0RDMzIzODlEOEVCMDBCQjMxQzZBOTVCMzRBRkM4NTc2QTgwN0EwQS5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODg1NTMxMjk4NTI5MzEvMC8zREMzMjM4OUQ4RUIw MEJCMzFDNkE5NUIzNEFGQzg1NzZBODA3QTBBLm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALC50NyoS1Yjz SGhY3wcRi5ZPm9HqEgq6Cessh+OCu+cAbtOYmfg7AJd4Yo5lIxxksEG6WsI29taG kNeQrJK8EqTMNcsNrLuiWDDhDGmRwJoT5NCTThhO/yyTSTq8lg2BnfrjD+OjxOLq Sxrz7nmWNp61oiqiyrQGOROMWLNEjiSGKvVJKywEEd/ZHWPm2b5w/JsVPGnw9bgR csu+OXCeJ8GP/NDk98tC7PlXaix4CdJkQqH2rx5+XIjlOJPwCIgQm7UxCJhMrtrO bpn+C3U3ko4aJrrnltUqOhEhIfR20vbtjIrURDBrilEC5KXg/taEI7mdhd86+hE8 ihcAaI+4kA== -----END CERTIFICATE-----Generated at Fri Apr 17 20:04:33 2026 by rpki-client