$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.mft File: DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.mft (raw, json) Hash identifier: 8NE11hbASvVZ1umDOzzHGJkFhXGz0L48a7wECvwFG8Y= Subject key identifier: BB:AF:97:EA:2B:53:A1:DB:8E:0B:B7:01:F6:21:6B:C2:80:33:37:38 Authority key identifier: DB:B2:3C:7E:E4:92:21:2E:A8:58:B7:8E:1C:66:BF:22:98:E5:AC:D4 Certificate issuer: /CN=A91D5F3D0000/serialNumber=DBB23C7EE492212EA858B78E1C66BF2298E5ACD4 Certificate serial: 0A909237D9479695D8934E393A81C0C7E1003BF6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.mft Manifest number: 22 Signing time: Fri 17 Apr 2026 02:38:40 +0000 Manifest this update: Fri 17 Apr 2026 02:33:40 +0000 Manifest next update: Sat 18 Apr 2026 05:31:40 +0000 Files and hashes: 1: AS9808.roa (hash: AHYNmoZ9GvBUBjFtZYhT8u8FT12bb4BXPDjdDOn7frI=) 2: DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.crl (hash: TzxSUvSwHOQflMlunpeQn/RaxOvij3DCk6O8Gz2Tjzs=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.crl rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 05:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:90:92:37:d9:47:96:95:d8:93:4e:39:3a:81:c0:c7:e1:00:3b:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5F3D0000, serialNumber=DBB23C7EE492212EA858B78E1C66BF2298E5ACD4 Validity Not Before: Apr 17 02:33:40 2026 GMT Not After : Apr 18 05:31:40 2026 GMT Subject: CN=BBAF97EA2B53A1DB8E0BB701F6216BC280333738 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:37:49:63:c5:4a:5d:ea:ce:da:c8:c4:4f:10: 65:1a:4c:b9:e8:73:e6:ad:f6:8b:8c:28:0d:e5:45: 87:2c:d5:b3:3f:09:77:b4:22:25:2f:75:4b:5d:00: 91:3e:e1:ea:39:04:45:3a:3c:01:bf:14:1a:04:73: 7a:df:44:e6:2b:fa:ec:3d:a7:4c:b7:5b:f9:8e:a3: c0:97:d6:2d:5b:f1:b5:d4:5f:fa:ad:80:f6:46:1c: 11:d8:8e:49:c3:d2:f6:63:b6:28:38:07:3a:be:d8: ce:a2:c0:73:8d:f8:37:34:38:cb:e8:4d:e6:7e:44: 89:47:c0:4b:fc:ce:38:35:35:2e:24:76:20:c9:cc: f5:f5:86:b2:4c:47:44:4b:14:cd:83:88:3b:af:9a: 54:07:00:2a:47:8f:e5:c8:77:cf:2f:ab:80:e3:5b: f4:b2:90:27:3d:72:2b:d6:20:3a:f0:bf:cc:1b:d4: 01:34:12:39:a8:3b:1c:7d:00:5d:f4:c0:4b:88:ee: 82:bd:e8:dc:6f:af:0b:4d:48:db:28:f5:61:3e:61: 7a:2d:84:0e:81:0e:2f:e6:58:31:91:a1:c8:69:89: 29:8a:a5:7e:7f:12:79:72:d7:67:b4:92:68:49:f5: 22:a7:33:b7:db:e2:b0:fb:93:88:c9:8b:4a:46:22: 0b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:AF:97:EA:2B:53:A1:DB:8E:0B:B7:01:F6:21:6B:C2:80:33:37:38 X509v3 Authority Key Identifier: keyid:DB:B2:3C:7E:E4:92:21:2E:A8:58:B7:8E:1C:66:BF:22:98:E5:AC:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:73:a8:52:de:d9:8e:19:1d:b2:b3:b7:04:fa:91:44:b3:b4: dd:18:07:25:46:e4:07:e7:14:7f:42:29:54:5a:eb:de:a6:32: b7:26:23:ee:2b:a1:f1:bc:d2:44:ac:f7:d6:19:88:13:25:24: f6:30:a3:21:46:d2:54:fd:25:67:79:0b:a5:92:eb:1a:6b:d7: 83:d2:2f:c6:c5:99:85:bf:73:6f:08:b5:3e:fd:20:b4:fe:7a: f0:e3:3a:cf:a9:db:0c:7c:fd:f5:7c:65:af:59:1b:3a:05:cd: 04:05:9e:2c:bb:b2:73:76:17:dc:fb:76:1c:98:89:2c:88:70: 9e:02:78:11:f3:3f:e9:0b:06:75:f4:7d:b0:ab:85:f7:79:b5: b1:6b:17:f0:5d:92:93:a8:2d:70:f1:ea:36:cf:fd:f1:e8:ff: c8:78:3e:5d:4f:28:e0:87:81:52:d8:16:1b:07:73:e9:c7:eb: b1:06:13:39:1e:29:5f:6f:74:e5:87:ae:f5:d8:9c:ca:e8:ab: 52:d5:8f:87:d1:0e:6a:38:ae:e8:d9:f8:df:ed:21:e4:de:f2: bc:44:28:19:fe:c0:d5:7a:1f:46:4f:c7:57:9a:3a:e2:bb:e3: 4d:27:35:16:de:e8:9a:ee:f7:df:26:d8:1b:03:c3:e9:b4:3b: 36:5b:2e:d7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCpCSN9lHlpXYk045OoHAx+EAO/YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDVGM0QwMDAwMTEwLwYDVQQFEyhEQkIyM0M3RUU0 OTIyMTJFQTg1OEI3OEUxQzY2QkYyMjk4RTVBQ0Q0MB4XDTI2MDQxNzAyMzM0MFoX DTI2MDQxODA1MzE0MFowMzExMC8GA1UEAxMoQkJBRjk3RUEyQjUzQTFEQjhFMEJC NzAxRjYyMTZCQzI4MDMzMzczODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJQ3SWPFSl3qztrIxE8QZRpMuehz5q32i4woDeVFhyzVsz8Jd7QiJS91S10A kT7h6jkERTo8Ab8UGgRzet9E5iv67D2nTLdb+Y6jwJfWLVvxtdRf+q2A9kYcEdiO ScPS9mO2KDgHOr7YzqLAc434NzQ4y+hN5n5EiUfAS/zOODU1LiR2IMnM9fWGskxH REsUzYOIO6+aVAcAKkeP5ch3zy+rgONb9LKQJz1yK9YgOvC/zBvUATQSOag7HH0A XfTAS4jugr3o3G+vC01I2yj1YT5hei2EDoEOL+ZYMZGhyGmJKYqlfn8SeXLXZ7SS aEn1Iqczt9visPuTiMmLSkYiC78CAwEAAaOCAh0wggIZMB0GA1UdDgQWBBS7r5fq K1Oh244LtwH2IWvCgDM3ODAfBgNVHSMEGDAWgBTbsjx+5JIhLqhYt44cZr8imOWs 1DAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk0ODcyODM0MDk1Nzc1NzQ3LzAvREJCMjND N0VFNDkyMjEyRUE4NThCNzhFMUM2NkJGMjI5OEU1QUNENC5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvMjdJOGZ1U1NJ UzZvV0xlT0hHYV9JcGpsck5RLmNlcjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUH MAuGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NDg3MjgzNDA5 NTc3NTc0Ny8wL0RCQjIzQzdFRTQ5MjIxMkVBODU4Qjc4RTFDNjZCRjIyOThFNUFD RDQubWZ0MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8E EjAQMAYEAgABBQAwBgQCAAIFADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqG SIb3DQEBCwUAA4IBAQBkc6hS3tmOGR2ys7cE+pFEs7TdGAclRuQH5xR/QilUWuve pjK3JiPuK6HxvNJErPfWGYgTJST2MKMhRtJU/SVneQulkusaa9eD0i/GxZmFv3Nv CLU+/SC0/nrw4zrPqdsMfP31fGWvWRs6Bc0EBZ4su7Jzdhfc+3YcmIksiHCeAngR 8z/pCwZ19H2wq4X3ebWxaxfwXZKTqC1w8eo2z/3x6P/IeD5dTyjgh4FS2BYbB3Pp x+uxBhM5Hilfb3Tlh6712JzK6KtS1Y+H0Q5qOK7o2fjf7SHk3vK8RCgZ/sDVeh9G T8dXmjriu+NNJzUW3uia7vffJtgbA8PptDs2Wy7X -----END CERTIFICATE-----Generated at Fri Apr 17 15:55:28 2026 by rpki-client