$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft File: 528FB7389148F9961BE07564A1BCC28DE1440954.mft (raw, json) Hash identifier: /NWkkBTGUoxH8qQn61t8p64EAxZHWel3dvNGUUeomRc= Subject key identifier: 6D:57:4E:87:B1:35:AF:FF:A2:1A:A2:06:38:9D:D9:EE:73:F3:38:10 Authority key identifier: 52:8F:B7:38:91:48:F9:96:1B:E0:75:64:A1:BC:C2:8D:E1:44:09:54 Certificate issuer: /CN=528FB7389148F9961BE07564A1BCC28DE1440954 Certificate serial: 6D894BA22B12AC49E1DADD70506724D6CFCD2645 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/528FB7389148F9961BE07564A1BCC28DE1440954.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft Manifest number: C3 Signing time: Sat 13 Jun 2026 13:46:49 +0000 Manifest this update: Sat 13 Jun 2026 13:41:49 +0000 Manifest next update: Sun 14 Jun 2026 17:16:49 +0000 Files and hashes: 1: 3130332e3135322e3234372e302f32342d3234203d3e20313532343735.roa (hash: phf4Dfqb5M3Ykxs2j+sNy+Y1lZxL1CrzZ7fuUfc1kQM=) 2: 3130332e3135322e3234372e302f32342d3234203d3e20313335333931.roa (hash: EcqA+WlWeIsBbUwVfChqaarTFSzboqSnaqEftxipkFg=) 3: 528FB7389148F9961BE07564A1BCC28DE1440954.crl (hash: Z3L74J6soJNiPpQOc8Dl3lW1ByRVPFZr7jYNTmUbD/E=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.crl rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/528FB7389148F9961BE07564A1BCC28DE1440954.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 16:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:89:4b:a2:2b:12:ac:49:e1:da:dd:70:50:67:24:d6:cf:cd:26:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528FB7389148F9961BE07564A1BCC28DE1440954 Validity Not Before: Jun 13 13:41:49 2026 GMT Not After : Jun 14 17:16:49 2026 GMT Subject: CN=6D574E87B135AFFFA21AA206389DD9EE73F33810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b1:79:49:0a:31:4e:e1:9c:ef:a8:aa:55:72: 0a:17:15:d7:98:15:4a:5f:85:56:04:f6:e7:f0:8a: f9:7b:cb:52:cb:f2:6d:4e:59:c5:db:fb:ce:cc:4d: 61:6f:16:38:d9:5b:e4:0b:06:1e:56:45:08:c8:51: 6b:a9:48:57:ec:ee:03:19:ad:6f:58:7f:fe:89:d4: 2b:b2:4f:0c:1c:e7:1e:54:4e:0f:55:35:4e:a4:b1: 1c:7d:be:e0:ee:c9:88:6c:0c:05:86:8b:91:91:3c: 3a:a6:48:37:d3:b6:1a:0e:fc:02:f0:4d:54:db:37: d7:90:3b:4e:36:c3:a9:2e:69:22:bd:04:04:e4:40: 1b:35:96:76:1d:5c:f8:b9:92:c3:8b:1e:e2:36:90: ac:22:70:53:98:66:9d:8e:4a:29:64:ef:b9:cd:a1: 17:6c:6e:fd:8a:30:66:3f:61:bb:0a:47:d0:d2:1a: 55:ab:6f:8c:ff:04:4c:b7:cb:31:11:cc:01:f2:31: c2:1e:f7:b1:c3:d9:18:22:c7:ff:d5:08:7c:31:7d: d2:b9:ac:52:89:19:81:66:46:28:ac:03:3d:f7:15: 2a:0a:4e:04:64:bb:8a:b7:1a:30:e5:c1:f6:14:43: de:81:9d:74:57:6b:b5:d6:bf:95:07:ac:e6:79:4b: 2a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:57:4E:87:B1:35:AF:FF:A2:1A:A2:06:38:9D:D9:EE:73:F3:38:10 X509v3 Authority Key Identifier: keyid:52:8F:B7:38:91:48:F9:96:1B:E0:75:64:A1:BC:C2:8D:E1:44:09:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/528FB7389148F9961BE07564A1BCC28DE1440954.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:08:95:c7:6f:f3:25:cd:d2:05:76:39:64:22:57:b7:b4:a5: 5b:8f:79:aa:88:55:04:a1:c1:48:0f:ef:c7:b7:fe:cd:ee:fc: d4:9b:ef:36:ed:a8:0e:e4:50:bb:82:f0:95:94:53:2c:ce:a5: ee:42:d6:68:64:17:ef:42:73:71:3f:0f:26:74:71:f6:36:33: 1f:43:87:f0:6d:85:a9:64:68:49:e8:1f:d5:54:d1:df:0e:ff: f9:de:4a:8b:12:32:89:0d:00:1e:a5:66:2f:3a:cd:55:dd:22: dd:f8:ec:cd:68:9c:a8:9e:57:3e:d5:f3:4f:91:f2:7d:92:49: 74:6b:d3:e9:d7:fb:f7:7f:74:43:ba:72:17:22:81:0f:5b:9f: 51:63:5c:43:00:51:f7:c0:37:d5:e0:6c:a8:1c:42:4e:97:e7: f5:4a:23:68:2f:51:27:6d:71:d4:da:0c:53:95:82:7c:25:07: 8e:09:45:b6:39:b8:83:d5:f7:87:16:da:d5:29:03:73:3f:e9: db:13:3f:bc:e8:9a:71:a8:c5:68:c6:9b:32:03:a2:5f:1b:a4: e6:e9:eb:11:0e:40:d7:75:43:c4:5e:24:7a:bf:9f:e6:6b:fd: 18:1b:2e:06:97:bb:79:bf:e8:a5:3a:d0:df:dc:e4:a0:3e:3e: fc:ee:90:ed -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUbYlLoisSrEnh2t1wUGck1s/NJkUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4RkI3Mzg5MTQ4Rjk5NjFCRTA3NTY0QTFCQ0MyOERF MTQ0MDk1NDAeFw0yNjA2MTMxMzQxNDlaFw0yNjA2MTQxNzE2NDlaMDMxMTAvBgNV BAMTKDZENTc0RTg3QjEzNUFGRkZBMjFBQTIwNjM4OUREOUVFNzNGMzM4MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjsXlJCjFO4ZzvqKpVcgoXFdeY FUpfhVYE9ufwivl7y1LL8m1OWcXb+87MTWFvFjjZW+QLBh5WRQjIUWupSFfs7gMZ rW9Yf/6J1CuyTwwc5x5UTg9VNU6ksRx9vuDuyYhsDAWGi5GRPDqmSDfTthoO/ALw TVTbN9eQO042w6kuaSK9BATkQBs1lnYdXPi5ksOLHuI2kKwicFOYZp2OSilk77nN oRdsbv2KMGY/YbsKR9DSGlWrb4z/BEy3yzERzAHyMcIe97HD2Rgix//VCHwxfdK5 rFKJGYFmRiisAz33FSoKTgRku4q3GjDlwfYUQ96BnXRXa7XWv5UHrOZ5SyrpAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUbVdOh7E1r/+iGqIGOJ3Z7nPzOBAwHwYDVR0j BBgwFoAUUo+3OJFI+ZYb4HVkobzCjeFECVQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU5MTE5NTcyMTUzMTM5My8wLzUyOEZCNzM4OTE0OEY5OTYxQkUwNzU2NEExQkND MjhERTE0NDA5NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTI4RkI3Mzg5MTQ4Rjk5NjFCRTA3NTY0QTFCQ0MyOERFMTQ0MDk1NC5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1OTExOTU3MjE1MzEzOTMvMC81MjhGQjczODkxNDhG OTk2MUJFMDc1NjRBMUJDQzI4REUxNDQwOTU0Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoQiVx2/zJc3S BXY5ZCJXt7SlW495qohVBKHBSA/vx7f+ze781JvvNu2oDuRQu4LwlZRTLM6l7kLW aGQX70JzcT8PJnRx9jYzH0OH8G2FqWRoSegf1VTR3w7/+d5KixIyiQ0AHqVmLzrN Vd0i3fjszWicqJ5XPtXzT5HyfZJJdGvT6df79390Q7pyFyKBD1ufUWNcQwBR98A3 1eBsqBxCTpfn9UojaC9RJ21x1NoMU5WCfCUHjglFtjm4g9X3hxba1SkDcz/p2xM/ vOiacajFaMabMgOiXxuk5unrEQ5A13VDxF4ker+f5mv9GBsuBpe7eb/opTrQ39zk oD4+/O6Q7Q== -----END CERTIFICATE-----Generated at Sun Jun 14 05:47:35 2026 by rpki-client