$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft File: 528FB7389148F9961BE07564A1BCC28DE1440954.mft (raw, json) Hash identifier: 7Tur1QvlOGJCTXzNqtttg53YV8+OW2njV51dj45c37c= Subject key identifier: F3:FF:3C:DA:C2:54:EF:11:B6:D4:32:49:FD:C5:88:BD:3C:56:D9:21 Authority key identifier: 52:8F:B7:38:91:48:F9:96:1B:E0:75:64:A1:BC:C2:8D:E1:44:09:54 Certificate issuer: /CN=528FB7389148F9961BE07564A1BCC28DE1440954 Certificate serial: 5A961D10513534D2D753DEE82E6BDD5F539FDFEE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/528FB7389148F9961BE07564A1BCC28DE1440954.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft Manifest number: 77 Signing time: Fri 17 Apr 2026 16:04:43 +0000 Manifest this update: Fri 17 Apr 2026 15:59:43 +0000 Manifest next update: Sat 18 Apr 2026 18:29:43 +0000 Files and hashes: 1: 3130332e3135322e3234372e302f32342d3234203d3e20313335333931.roa (hash: EcqA+WlWeIsBbUwVfChqaarTFSzboqSnaqEftxipkFg=) 2: 3130332e3135322e3234372e302f32342d3234203d3e20313532343735.roa (hash: phf4Dfqb5M3Ykxs2j+sNy+Y1lZxL1CrzZ7fuUfc1kQM=) 3: 528FB7389148F9961BE07564A1BCC28DE1440954.crl (hash: dwqmv8qIeBB+pn5EjO7gWzdP12BuPiPwpVpcjry63tI=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.crl rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/528FB7389148F9961BE07564A1BCC28DE1440954.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:96:1d:10:51:35:34:d2:d7:53:de:e8:2e:6b:dd:5f:53:9f:df:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528FB7389148F9961BE07564A1BCC28DE1440954 Validity Not Before: Apr 17 15:59:43 2026 GMT Not After : Apr 18 18:29:43 2026 GMT Subject: CN=F3FF3CDAC254EF11B6D43249FDC588BD3C56D921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:33:10:55:84:fe:ff:3c:0f:14:15:96:fd:a9: 45:dc:1e:a0:bd:23:36:6a:9f:cf:12:d4:2e:06:6a: 25:b5:c9:16:4f:22:f2:b6:b2:b9:42:2d:10:5f:a1: d2:1b:53:83:42:c5:20:b5:47:26:03:0f:41:b4:e7: 92:46:42:d8:ff:2c:a0:46:68:28:53:f2:91:70:a0: 96:25:06:23:c9:07:d7:79:71:b9:d8:54:79:4e:97: f6:c2:fd:c4:65:3c:ee:78:25:7f:73:18:a0:b3:b9: f8:e3:47:38:7d:10:48:26:db:e6:0e:f4:8c:81:5e: f9:be:5a:95:25:77:da:9b:42:26:5f:c1:31:32:2e: bf:50:02:ca:81:ec:d3:a6:87:ba:8e:17:58:a6:1d: d0:19:65:ce:b2:84:49:b5:7e:ec:47:f4:09:78:0e: 36:50:f2:ae:46:8e:4e:b7:f8:f0:2b:45:fc:33:9f: c8:63:a3:ee:93:d3:1c:0d:7c:74:30:34:c6:9a:d2: 76:81:25:d4:47:e4:4d:a1:79:81:48:44:60:0b:6a: db:1f:31:02:9e:51:fe:3e:88:a3:6d:20:8e:ab:ea: b0:f2:56:33:e4:e7:fe:0e:ec:60:7e:9d:21:6c:ce: fd:02:8a:56:8e:f3:7d:f6:05:5f:73:9e:b3:d9:36: 44:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:FF:3C:DA:C2:54:EF:11:B6:D4:32:49:FD:C5:88:BD:3C:56:D9:21 X509v3 Authority Key Identifier: keyid:52:8F:B7:38:91:48:F9:96:1B:E0:75:64:A1:BC:C2:8D:E1:44:09:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/528FB7389148F9961BE07564A1BCC28DE1440954.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cd:2b:fa:fc:e6:39:bf:a0:f0:34:47:cb:c2:22:cc:2c:89:20: 02:4b:89:79:b4:5e:b4:73:c9:3f:a4:cd:b3:7e:a5:9e:0c:42: 12:de:12:af:bb:1e:19:91:ca:2f:98:53:bd:de:af:79:29:14: 7f:c7:db:80:ec:26:a7:22:28:a7:d1:0c:b9:b6:c2:30:1a:3c: 50:ff:b6:0e:77:b1:d5:da:3e:a7:ff:1c:52:9b:2f:d7:93:64: 7d:9c:cc:94:aa:5c:d4:85:1c:ad:4b:e7:08:f2:94:e9:f0:79: df:2c:41:10:4e:6a:ea:4e:b4:d2:f7:64:6f:49:07:c0:5c:85: 4f:f7:8a:6c:b3:d7:d6:8a:3d:27:2f:9b:cc:05:8d:dd:e7:9f: 85:e5:30:f1:25:2f:72:ac:0c:2a:1d:0a:a5:a2:cc:be:42:1c: 51:8f:23:ab:8c:41:2d:a5:2c:e0:98:df:e9:6e:52:fb:62:cb: 25:6e:ce:49:f5:5f:2b:64:d2:3a:b4:f7:ec:5a:3b:68:5b:3a: 50:f7:8c:b5:f1:2c:a5:8a:aa:ff:16:48:ee:97:94:15:04:88: fd:df:f5:ba:af:50:97:17:20:e7:5a:4e:d2:e9:11:ca:ad:56: 0d:80:6c:55:ba:6a:11:61:8d:af:6a:fe:60:12:b0:61:83:5a: 3f:51:cc:19 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUWpYdEFE1NNLXU97oLmvdX1Of3+4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4RkI3Mzg5MTQ4Rjk5NjFCRTA3NTY0QTFCQ0MyOERF MTQ0MDk1NDAeFw0yNjA0MTcxNTU5NDNaFw0yNjA0MTgxODI5NDNaMDMxMTAvBgNV BAMTKEYzRkYzQ0RBQzI1NEVGMTFCNkQ0MzI0OUZEQzU4OEJEM0M1NkQ5MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLMxBVhP7/PA8UFZb9qUXcHqC9 IzZqn88S1C4GaiW1yRZPIvK2srlCLRBfodIbU4NCxSC1RyYDD0G055JGQtj/LKBG aChT8pFwoJYlBiPJB9d5cbnYVHlOl/bC/cRlPO54JX9zGKCzufjjRzh9EEgm2+YO 9IyBXvm+WpUld9qbQiZfwTEyLr9QAsqB7NOmh7qOF1imHdAZZc6yhEm1fuxH9Al4 DjZQ8q5Gjk63+PArRfwzn8hjo+6T0xwNfHQwNMaa0naBJdRH5E2heYFIRGALatsf MQKeUf4+iKNtII6r6rDyVjPk5/4O7GB+nSFszv0CilaO8332BV9znrPZNkTvAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQU8/882sJU7xG21DJJ/cWIvTxW2SEwHwYDVR0j BBgwFoAUUo+3OJFI+ZYb4HVkobzCjeFECVQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU5MTE5NTcyMTUzMTM5My8wLzUyOEZCNzM4OTE0OEY5OTYxQkUwNzU2NEExQkND MjhERTE0NDA5NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTI4RkI3Mzg5MTQ4Rjk5NjFCRTA3NTY0QTFCQ0MyOERFMTQ0MDk1NC5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1OTExOTU3MjE1MzEzOTMvMC81MjhGQjczODkxNDhG OTk2MUJFMDc1NjRBMUJDQzI4REUxNDQwOTU0Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzSv6/OY5v6Dw NEfLwiLMLIkgAkuJebRetHPJP6TNs36lngxCEt4Sr7seGZHKL5hTvd6veSkUf8fb gOwmpyIop9EMubbCMBo8UP+2Dnex1do+p/8cUpsv15NkfZzMlKpc1IUcrUvnCPKU 6fB53yxBEE5q6k600vdkb0kHwFyFT/eKbLPX1oo9Jy+bzAWN3eefheUw8SUvcqwM Kh0KpaLMvkIcUY8jq4xBLaUs4Jjf6W5S+2LLJW7OSfVfK2TSOrT37Fo7aFs6UPeM tfEspYqq/xZI7peUFQSI/d/1uq9Qlxcg51pO0ukRyq1WDYBsVbpqEWGNr2r+YBKw YYNaP1HMGQ== -----END CERTIFICATE-----Generated at Sat Apr 18 08:07:32 2026 by rpki-client