$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.mft File: A5B2B14D97513B6C0C82B1E540703EB912DFD229.mft (raw, json) Hash identifier: AqisLac1x8j3NdG5nIwe6ayhIO8rS3RXSRHGmBGwllI= Subject key identifier: ED:8B:51:5B:87:05:71:74:D9:26:BA:C6:58:58:01:A8:13:DE:79:09 Authority key identifier: A5:B2:B1:4D:97:51:3B:6C:0C:82:B1:E5:40:70:3E:B9:12:DF:D2:29 Certificate issuer: /CN=A5B2B14D97513B6C0C82B1E540703EB912DFD229 Certificate serial: 01607BD4299B6F0B3BEBEB38E654AE3040266DAE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.mft Manifest number: 8B Signing time: Fri 17 Apr 2026 08:41:08 +0000 Manifest this update: Fri 17 Apr 2026 08:36:08 +0000 Manifest next update: Sat 18 Apr 2026 09:34:08 +0000 Files and hashes: 1: 3133392e3232342e302e302f31362d3234203d3e203337393633.roa (hash: nfA+B4HJUdTdXpxBunZTC0Mmi3ww7Q0Bo7aWuz3zYNE=) 2: 34372e3131322e302e302f31352d3135203d3e203337393633.roa (hash: oc0h7t2xyM1D/ueNRTcOjQuhsadrMwiGPusBtoLIrSY=) 3: 34372e3131322e302e302f31362d3234203d3e203337393633.roa (hash: 9TzYa3+Sl+tIX8tXSaj70/Us2wMIqXbVo3JClonsi1M=) 4: 3133392e3132392e302e302f31362d3234203d3e203337393633.roa (hash: lmfFy/NByxflwbukOBqf2t5cvYb0y1mEUQilr1j5wEw=) 5: A5B2B14D97513B6C0C82B1E540703EB912DFD229.crl (hash: OS6yx81a7DoaIn7AJwjElN5MEUp7cP9q43lihZv4+1c=) 6: 34372e3131332e302e302f31362d3234203d3e203337393633.roa (hash: Sc9B64EYbOlhHpRQn2hDIXOE8wTsYGOAnrQ1OGOsB2U=) 7: 3133392e3139362e302e302f31362d3234203d3e203337393633.roa (hash: 19ycWnE82ngKdpq5CfFKBBUaYUxLiUYMUdelOP4EkI8=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 09:34:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:60:7b:d4:29:9b:6f:0b:3b:eb:eb:38:e6:54:ae:30:40:26:6d:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5B2B14D97513B6C0C82B1E540703EB912DFD229 Validity Not Before: Apr 17 08:36:08 2026 GMT Not After : Apr 18 09:34:08 2026 GMT Subject: CN=ED8B515B87057174D926BAC6585801A813DE7909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:58:d4:d0:ac:bc:36:9e:e2:1a:13:be:f2:cf: 09:0e:97:d3:0c:43:7c:18:06:0c:6f:df:f0:59:7e: 21:f5:50:47:1d:e7:ea:e7:94:c3:ea:98:47:24:d6: 74:ac:6d:87:a9:25:63:2f:0a:bf:e8:68:93:bb:18: 60:e0:5b:64:13:94:a0:64:3c:73:3e:82:5f:5f:58: bd:b2:f8:1b:55:5d:76:84:bc:4d:ee:c9:47:a8:19: 14:cb:5b:b9:c2:1d:bf:ff:ad:cd:8f:0a:5b:f6:43: 9a:e1:15:3b:7b:68:c3:93:ce:b6:62:6c:6a:7a:51: ed:e6:97:28:17:b3:03:1e:ea:36:d1:4b:01:96:0f: e5:e1:40:65:af:10:67:4c:2b:89:91:3d:5a:28:e1: df:0c:df:28:f1:d2:75:c9:8c:b8:7a:da:8c:6d:67: fb:f1:79:8a:d8:4b:fc:16:04:30:4c:ef:22:a5:2a: e2:83:31:02:f3:75:bb:36:77:68:c3:12:6d:b0:76: 22:c9:47:d1:3c:37:37:06:94:5a:5d:65:fb:53:4f: fc:a8:6d:c3:90:d0:3d:c2:c1:5b:5f:8f:d8:85:b2: c6:6e:02:47:4c:42:8d:42:22:fb:8a:0d:a8:a0:4f: b2:b3:fd:43:29:ed:ff:bc:51:65:06:d4:c7:c4:60: b6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:8B:51:5B:87:05:71:74:D9:26:BA:C6:58:58:01:A8:13:DE:79:09 X509v3 Authority Key Identifier: keyid:A5:B2:B1:4D:97:51:3B:6C:0C:82:B1:E5:40:70:3E:B9:12:DF:D2:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:c0:80:b0:15:d5:ec:3d:a4:13:fe:62:44:1a:11:a3:1c:4a: 34:06:4c:2a:a1:c2:4c:d3:1e:9a:18:9c:eb:04:9a:83:3b:e7: 0f:b2:fe:da:2e:f1:f7:4f:52:97:d2:ab:0b:55:37:e9:02:43: ec:d1:d4:24:d6:58:80:e4:13:03:d5:66:27:5b:76:25:1b:a4: 31:03:d7:d3:6f:e2:ce:0d:80:d7:ce:44:78:ef:1e:08:b1:6c: c1:e2:da:fd:bc:c3:30:37:c5:1f:42:d7:d6:0f:b3:dc:fe:ac: db:30:3c:22:5b:27:9a:79:cb:ae:a8:69:fe:96:93:22:87:bc: c2:85:bc:95:31:51:6e:24:70:e9:9d:62:aa:f4:77:33:30:09: c3:2e:1c:af:df:d9:7b:38:b7:28:19:36:91:08:30:4b:76:86: dd:45:3b:cd:6a:85:9c:05:b0:36:be:f5:ec:f4:5c:84:6a:df: dd:fa:92:d0:6d:08:19:8e:62:8d:7e:03:94:4e:c6:fb:f2:4d: 8a:10:b9:bb:3b:1d:fa:f7:02:ea:82:85:47:4b:33:61:9d:a1: b5:0a:88:48:12:7d:db:fd:9c:37:94:32:15:d7:cb:b4:62:a6: f5:27:c5:c7:d8:14:98:2b:cb:d9:98:dc:6a:bd:2d:7d:6d:ce: cc:3c:f6:5c -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUAWB71Cmbbws76+s45lSuMEAmba4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTVCMkIxNEQ5NzUxM0I2QzBDODJCMUU1NDA3MDNFQjkx MkRGRDIyOTAeFw0yNjA0MTcwODM2MDhaFw0yNjA0MTgwOTM0MDhaMDMxMTAvBgNV BAMTKEVEOEI1MTVCODcwNTcxNzREOTI2QkFDNjU4NTgwMUE4MTNERTc5MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxWNTQrLw2nuIaE77yzwkOl9MM Q3wYBgxv3/BZfiH1UEcd5+rnlMPqmEck1nSsbYepJWMvCr/oaJO7GGDgW2QTlKBk PHM+gl9fWL2y+BtVXXaEvE3uyUeoGRTLW7nCHb//rc2PClv2Q5rhFTt7aMOTzrZi bGp6Ue3mlygXswMe6jbRSwGWD+XhQGWvEGdMK4mRPVoo4d8M3yjx0nXJjLh62oxt Z/vxeYrYS/wWBDBM7yKlKuKDMQLzdbs2d2jDEm2wdiLJR9E8NzcGlFpdZftTT/yo bcOQ0D3CwVtfj9iFssZuAkdMQo1CIvuKDaigT7Kz/UMp7f+8UWUG1MfEYLaZAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQU7YtRW4cFcXTZJrrGWFgBqBPeeQkwHwYDVR0j BBgwFoAUpbKxTZdRO2wMgrHlQHA+uRLf0ikwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8xL0E1QjJCMTREOTc1MTNCNkMwQzgyQjFFNTQwNzAz RUI5MTJERkQyMjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvQTVCMkIxNEQ5NzUxM0I2QzBDODJCMUU1NDA3MDNFQjkxMkRGRDIyOS5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU4ODc2NDQwOTA2MzAxNDUvMS9BNUIyQjE0RDk3NTEz QjZDMEM4MkIxRTU0MDcwM0VCOTEyREZEMjI5Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH8CAsBXV7D2k E/5iRBoRoxxKNAZMKqHCTNMemhic6wSagzvnD7L+2i7x909Sl9KrC1U36QJD7NHU JNZYgOQTA9VmJ1t2JRukMQPX02/izg2A185EeO8eCLFsweLa/bzDMDfFH0LX1g+z 3P6s2zA8IlsnmnnLrqhp/paTIoe8woW8lTFRbiRw6Z1iqvR3MzAJwy4cr9/Zezi3 KBk2kQgwS3aG3UU7zWqFnAWwNr717PRchGrf3fqS0G0IGY5ijX4DlE7G+/JNihC5 uzsd+vcC6oKFR0szYZ2htQqISBJ92/2cN5QyFdfLtGKm9SfFx9gUmCvL2Zjcar0t fW3OzDz2XA== -----END CERTIFICATE-----Generated at Fri Apr 17 17:25:33 2026 by rpki-client