$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.mft File: A5B2B14D97513B6C0C82B1E540703EB912DFD229.mft (raw, json) Hash identifier: 70Ni3e9Aq8CAue/FkcBCw/CgvcNe2YE3u1uE/7Go4/8= Subject key identifier: 16:82:D8:9D:97:58:62:29:F1:06:84:F5:8D:12:D4:54:27:E5:99:80 Authority key identifier: A5:B2:B1:4D:97:51:3B:6C:0C:82:B1:E5:40:70:3E:B9:12:DF:D2:29 Certificate issuer: /CN=A5B2B14D97513B6C0C82B1E540703EB912DFD229 Certificate serial: 2918CB3D46914386DEB3FC7033BCA900BCCAB950 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.mft Manifest number: 3A Signing time: Sun 01 Mar 2026 21:53:16 +0000 Manifest this update: Sun 01 Mar 2026 21:48:16 +0000 Manifest next update: Tue 03 Mar 2026 00:11:16 +0000 Files and hashes: 1: 34372e3131322e302e302f31362d3234203d3e203337393633.roa (hash: 9TzYa3+Sl+tIX8tXSaj70/Us2wMIqXbVo3JClonsi1M=) 2: 34372e3131322e302e302f31352d3135203d3e203337393633.roa (hash: oc0h7t2xyM1D/ueNRTcOjQuhsadrMwiGPusBtoLIrSY=) 3: A5B2B14D97513B6C0C82B1E540703EB912DFD229.crl (hash: HMw4NlkDI+IQ7/m/oe4Z3wqD7p5wQcBPf8FlbDCB2Eo=) 4: 34372e3131332e302e302f31362d3234203d3e203337393633.roa (hash: Sc9B64EYbOlhHpRQn2hDIXOE8wTsYGOAnrQ1OGOsB2U=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 00:11:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:18:cb:3d:46:91:43:86:de:b3:fc:70:33:bc:a9:00:bc:ca:b9:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5B2B14D97513B6C0C82B1E540703EB912DFD229 Validity Not Before: Mar 1 21:48:16 2026 GMT Not After : Mar 3 00:11:16 2026 GMT Subject: CN=1682D89D97586229F10684F58D12D45427E59980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:80:17:5f:32:fa:51:50:91:49:6e:a9:2a:63: 00:70:5f:30:47:5c:3a:15:6f:3d:0f:57:5a:d5:1a: af:fa:90:27:82:a9:05:bf:d6:00:4c:23:96:05:c4: 5e:57:6b:fe:fa:03:ed:60:21:de:ce:4e:90:ff:77: cc:f9:a1:39:a1:6d:9a:6c:1e:43:c7:c0:d5:c4:3c: 56:3b:63:18:93:43:00:4a:b4:35:86:a8:2c:a4:8b: 54:74:4f:cd:f6:75:8b:00:bd:c6:2e:18:c0:42:95: 97:03:46:de:2f:a1:a9:49:4a:3f:2c:f7:06:d5:54: 12:dc:b3:95:f2:8f:b9:d0:9c:8c:e4:5e:f7:0e:09: c1:73:09:c2:55:49:88:8e:04:5b:5b:04:d7:16:7e: 22:94:f0:b9:9c:ff:19:a6:30:16:3a:af:a4:b1:c3: 82:9d:37:9b:53:a7:4e:cd:ad:fc:67:78:57:2e:72: b2:1f:60:f6:a5:00:07:88:53:b9:7e:07:11:57:eb: 07:13:78:66:53:99:c4:f7:5b:bd:6f:32:f8:b8:c1: 1b:d4:dd:6a:d2:f3:cf:8e:a5:4c:d9:3d:74:d6:67: cb:27:8c:c1:a4:8a:92:8d:96:48:10:08:84:04:35: 9b:78:f0:a2:26:4f:6d:3e:69:8d:cb:bb:0a:75:21: 89:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:82:D8:9D:97:58:62:29:F1:06:84:F5:8D:12:D4:54:27:E5:99:80 X509v3 Authority Key Identifier: keyid:A5:B2:B1:4D:97:51:3B:6C:0C:82:B1:E5:40:70:3E:B9:12:DF:D2:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:d2:89:e2:3b:7e:6b:8c:28:b2:88:01:e7:56:71:48:22:87: 11:95:ae:c8:4a:0c:a0:1b:db:be:70:d5:1a:a1:8d:38:49:0c: 60:d5:61:c9:25:03:9c:ed:a8:f0:84:b3:3e:41:67:ba:25:13: 75:29:ea:de:02:89:24:35:21:88:54:ae:ec:28:f5:8a:49:ff: 07:d0:c1:b9:42:a0:f5:c0:a4:2a:1d:52:14:fb:6f:7c:01:f0: b2:e6:b4:e0:56:d0:d1:9b:cf:b1:e4:73:fa:6e:9c:ce:c0:05: 6a:9a:41:09:60:f4:3d:7c:e3:8f:cf:a2:03:0a:ab:5d:c1:d7: 13:79:5f:e3:dc:c6:4c:e7:bb:cd:55:db:47:a8:2b:f5:55:1a: 58:e1:de:63:78:da:02:bf:b5:07:05:85:03:2e:a9:c3:60:d4: 17:fc:9b:e2:e4:df:f7:1d:07:ed:27:a2:5e:ea:f0:49:8a:4a: 90:5b:e8:81:fb:ef:91:39:11:30:ff:17:8f:f4:6b:0c:ff:a9: 0b:81:61:c5:87:c4:41:3e:42:94:27:d3:9b:5c:ea:00:1e:56: a6:7e:48:1d:3a:8f:bd:45:48:aa:4d:67:e8:87:39:23:fb:aa: db:49:69:b8:dd:10:f3:5d:ee:ec:fc:a3:24:96:af:8a:0c:85: 5a:c2:52:0f -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUKRjLPUaRQ4bes/xwM7ypALzKuVAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTVCMkIxNEQ5NzUxM0I2QzBDODJCMUU1NDA3MDNFQjkx MkRGRDIyOTAeFw0yNjAzMDEyMTQ4MTZaFw0yNjAzMDMwMDExMTZaMDMxMTAvBgNV BAMTKDE2ODJEODlEOTc1ODYyMjlGMTA2ODRGNThEMTJENDU0MjdFNTk5ODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSgBdfMvpRUJFJbqkqYwBwXzBH XDoVbz0PV1rVGq/6kCeCqQW/1gBMI5YFxF5Xa/76A+1gId7OTpD/d8z5oTmhbZps HkPHwNXEPFY7YxiTQwBKtDWGqCyki1R0T832dYsAvcYuGMBClZcDRt4voalJSj8s 9wbVVBLcs5Xyj7nQnIzkXvcOCcFzCcJVSYiOBFtbBNcWfiKU8Lmc/xmmMBY6r6Sx w4KdN5tTp07NrfxneFcucrIfYPalAAeIU7l+BxFX6wcTeGZTmcT3W71vMvi4wRvU 3WrS88+OpUzZPXTWZ8snjMGkipKNlkgQCIQENZt48KImT20+aY3Luwp1IYltAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUFoLYnZdYYinxBoT1jRLUVCflmYAwHwYDVR0j BBgwFoAUpbKxTZdRO2wMgrHlQHA+uRLf0ikwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8xL0E1QjJCMTREOTc1MTNCNkMwQzgyQjFFNTQwNzAz RUI5MTJERkQyMjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvQTVCMkIxNEQ5NzUxM0I2QzBDODJCMUU1NDA3MDNFQjkxMkRGRDIyOS5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU4ODc2NDQwOTA2MzAxNDUvMS9BNUIyQjE0RDk3NTEz QjZDMEM4MkIxRTU0MDcwM0VCOTEyREZEMjI5Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANdKJ4jt+a4wo sogB51ZxSCKHEZWuyEoMoBvbvnDVGqGNOEkMYNVhySUDnO2o8ISzPkFnuiUTdSnq 3gKJJDUhiFSu7Cj1ikn/B9DBuUKg9cCkKh1SFPtvfAHwsua04FbQ0ZvPseRz+m6c zsAFappBCWD0PXzjj8+iAwqrXcHXE3lf49zGTOe7zVXbR6gr9VUaWOHeY3jaAr+1 BwWFAy6pw2DUF/yb4uTf9x0H7SeiXurwSYpKkFvogfvvkTkRMP8Xj/RrDP+pC4Fh xYfEQT5ClCfTm1zqAB5Wpn5IHTqPvUVIqk1n6Ic5I/uq20lpuN0Q813u7PyjJJav igyFWsJSDw== -----END CERTIFICATE-----Generated at Mon Mar 2 10:47:21 2026 by rpki-client