$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.mft File: 289BA9CBEB71D9603BED963E3B60B1790E8F78A2.mft (raw, json) Hash identifier: uNXpwSp8jGmHBCkmo6NNPBmmPztoo14VGVkJAjQ+HKU= Subject key identifier: 35:FA:9A:A0:77:3F:A3:54:2D:F1:93:09:6D:B8:94:08:66:CC:FD:28 Authority key identifier: 28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 Certificate issuer: /CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Certificate serial: 7A9D3EF18266D1318D8D1B9809C7C698BF69CA05 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.mft Manifest number: 55 Signing time: Sun 14 Jun 2026 05:52:49 +0000 Manifest this update: Sun 14 Jun 2026 05:47:49 +0000 Manifest next update: Mon 15 Jun 2026 06:55:49 +0000 Files and hashes: 1: 3130332e33362e3138342e302f32322d3234203d3e203535393939.roa (hash: ILEAKEw/avhbDeu4m2ADmVhOPgaksn/x3+BPKu++ptU=) 2: 34332e3234302e3137322e302f32322d3234203d3e203535393939.roa (hash: mo7Tlq7icLlWZZrE0DBNoPZPSx4BjXOEepnaJmmFW2A=) 3: 34332e3234302e3136382e302f32322d3234203d3e203535393939.roa (hash: UlvDqd+sZsCM1IT0FLHFXuu0FBnnLVYjAhKlTjcyc6M=) 4: 3136332e3132382e3233362e302f32332d3234203d3e203535393939.roa (hash: Ffs5m/bCSZ4yG5HoL5gNLWdfNoTnNUZzl65WVT8K/0I=) 5: 3130332e33362e3138382e302f32322d3234203d3e203535393939.roa (hash: CSVfya++arvHuYMasShJSRsQQS2NF/zkIZBUVm3nf70=) 6: 34332e3234302e3138302e302f32322d3234203d3e203535393939.roa (hash: 6hVPd1lMuKUrEarp0zQuo5D+Zot2aNV8wE88G4h6rDc=) 7: 3130332e33362e3137362e302f32322d3234203d3e203535393939.roa (hash: 2LnjFG+Q2LripW/PfbwL7eiTUvlgsDP08f4mqEdQzY8=) 8: 34332e3234302e3136342e302f32322d3234203d3e203535393939.roa (hash: S3OJ70919gSGQdFu+Fl7QUfepTBEXi5Q2KBXDNH4k8U=) 9: 289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl (hash: +BmI4gnMt+aXOVgBf2s6LZJoX4hXNkqqGIhy3nhY0AM=) 10: 34332e3234302e3138342e302f32322d3234203d3e203535393939.roa (hash: 1z9YhBL4mANr+MTfVawRwh8WOH/nnoSQGneVA1K0Ees=) 11: 323430323a353832303a3a2f33322d3438203d3e203535393939.roa (hash: TkMoNhxqxanWVebdWp3tiOB/dRJMGnbvd0EVuiJe5eM=) 12: 34332e3234302e3136302e302f32322d3234203d3e203535393939.roa (hash: 9JcjLYz4oF6pH0laB4eyeAqU+/WWtj3ZXZoHc/zYEJU=) 13: 34332e3234302e3138382e302f32322d3234203d3e203535393939.roa (hash: 4FP9rm3jQvabKWgTZtIEXK2vYYzk4TblYNjZ7mIhX1w=) 14: 3130332e33362e3138302e302f32322d3234203d3e203535393939.roa (hash: O6P1nJZq+NIRw0lpZM4G5mpjEJVkMUy02Fgiskir+iw=) 15: 34332e3234302e3137362e302f32322d3234203d3e203535393939.roa (hash: R0KVCUcJsMhiZNoSh/iH+0lgr3+OS5OBI1etaOPAPR0=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Jun 2026 06:55:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:9d:3e:f1:82:66:d1:31:8d:8d:1b:98:09:c7:c6:98:bf:69:ca:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Validity Not Before: Jun 14 05:47:49 2026 GMT Not After : Jun 15 06:55:49 2026 GMT Subject: CN=35FA9AA0773FA3542DF193096DB8940866CCFD28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:97:49:a7:47:cc:1b:3d:1c:89:5b:f5:99:7f: d2:e5:2f:96:06:8e:8a:52:68:8b:ad:86:46:9b:63: 39:7c:1d:7e:10:63:10:28:54:f1:9c:93:ba:93:e7: b3:45:2a:7d:2c:81:2b:fa:58:a3:06:ef:d2:4d:14: ab:b5:22:a0:ac:94:72:8a:7a:d5:9c:4c:7f:50:a8: 5d:ff:df:82:f2:7f:b5:c0:25:90:df:e9:53:89:60: f8:9d:e2:3f:f5:77:5f:b6:c3:45:07:d9:25:82:d7: ce:62:53:81:f6:dc:66:74:19:6b:c2:40:9b:63:2b: a8:31:71:a1:90:49:ab:48:86:17:a3:07:42:23:5a: 54:bc:40:5f:7e:a0:71:11:6e:9f:55:6f:79:85:34: 1c:b2:08:0f:12:05:57:af:d0:33:66:86:96:e0:b1: 88:18:0f:97:b0:6c:06:ad:9f:fa:bd:76:e8:4e:28: 02:e7:4e:fc:9f:fe:ca:ff:26:04:0a:1e:31:38:6c: 73:4b:91:ce:79:29:20:49:15:1b:1d:43:94:c6:9d: 88:78:24:3b:76:da:79:e9:3e:5a:5d:73:b3:48:42: ae:9c:fb:5e:a5:0d:0e:9f:23:5d:be:35:d1:e2:10: ee:2e:0e:fc:3c:e9:52:3e:ba:95:90:97:13:39:d2: 37:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:FA:9A:A0:77:3F:A3:54:2D:F1:93:09:6D:B8:94:08:66:CC:FD:28 X509v3 Authority Key Identifier: keyid:28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:e2:b0:e0:68:47:6b:94:7a:cb:12:bf:9c:e5:12:b2:67:83: 54:5c:4c:34:9e:ec:cb:90:ca:f3:75:37:33:83:b7:de:c2:16: 29:b5:0b:95:7f:2c:f3:f7:af:9a:e5:f3:de:1f:bb:03:e0:44: df:61:ce:22:14:2b:65:ed:cf:47:e5:bc:56:33:59:ee:04:d9: 66:3f:1c:87:f1:43:47:54:84:34:d4:c7:d4:a1:78:a7:ec:6d: 78:8e:a7:b9:20:6f:b1:c4:21:ce:24:c4:2a:ad:f2:3c:ed:8e: 84:6e:5a:ee:ae:ef:ee:bd:d7:ea:26:21:bf:40:88:37:63:98: 0d:b1:96:31:fb:a9:3b:24:de:1d:30:b0:c7:d7:26:3f:7b:ed: 82:41:be:f9:ef:7d:88:62:d0:57:f5:38:39:29:64:d8:2f:cf: 08:8a:82:88:a3:c2:90:e0:5d:0d:6f:8c:7e:53:9b:10:79:12: 69:b9:ca:80:be:d6:77:84:e9:88:e0:28:5e:1b:c8:62:4e:33: ba:8b:58:a9:80:12:6b:c8:91:97:30:e3:99:89:83:d3:21:a9: e8:8e:79:30:92:76:7a:a7:0d:24:0d:0c:97:07:2c:23:cd:67: f8:5f:fd:a3:e7:22:b9:8f:48:f3:df:f3:d5:09:44:60:d5:e5: 81:db:9a:fa -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUep0+8YJm0TGNjRuYCcfGmL9pygUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkw RThGNzhBMjAeFw0yNjA2MTQwNTQ3NDlaFw0yNjA2MTUwNjU1NDlaMDMxMTAvBgNV BAMTKDM1RkE5QUEwNzczRkEzNTQyREYxOTMwOTZEQjg5NDA4NjZDQ0ZEMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvl0mnR8wbPRyJW/WZf9LlL5YG jopSaIuthkabYzl8HX4QYxAoVPGck7qT57NFKn0sgSv6WKMG79JNFKu1IqCslHKK etWcTH9QqF3/34Lyf7XAJZDf6VOJYPid4j/1d1+2w0UH2SWC185iU4H23GZ0GWvC QJtjK6gxcaGQSatIhhejB0IjWlS8QF9+oHERbp9Vb3mFNByyCA8SBVev0DNmhpbg sYgYD5ewbAatn/q9duhOKALnTvyf/sr/JgQKHjE4bHNLkc55KSBJFRsdQ5TGnYh4 JDt22nnpPlpdc7NIQq6c+16lDQ6fI12+NdHiEO4uDvw86VI+upWQlxM50jdfAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUNfqaoHc/o1Qt8ZMJbbiUCGbM/SgwHwYDVR0j BBgwFoAUKJupy+tx2WA77ZY+O2CxeQ6PeKIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjY5Mzg5OTU5NTg3NDMwNS8wLzI4OUJBOUNCRUI3MUQ5NjAzQkVEOTYzRTNCNjBC MTc5MEU4Rjc4QTIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkwRThGNzhBMi5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwOTY2OTM4OTk1OTU4NzQzMDUvMC8yODlCQTlDQkVCNzFE OTYwM0JFRDk2M0UzQjYwQjE3OTBFOEY3OEEyLm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXeKw4GhHa5R6 yxK/nOUSsmeDVFxMNJ7sy5DK83U3M4O33sIWKbULlX8s8/evmuXz3h+7A+BE32HO IhQrZe3PR+W8VjNZ7gTZZj8ch/FDR1SENNTH1KF4p+xteI6nuSBvscQhziTEKq3y PO2OhG5a7q7v7r3X6iYhv0CIN2OYDbGWMfupOyTeHTCwx9cmP3vtgkG++e99iGLQ V/U4OSlk2C/PCIqCiKPCkOBdDW+MflObEHkSabnKgL7Wd4TpiOAoXhvIYk4zuotY qYASa8iRlzDjmYmD0yGp6I55MJJ2eqcNJA0MlwcsI81n+F/9o+ciuY9I89/z1QlE YNXlgdua+g== -----END CERTIFICATE-----Generated at Sun Jun 14 12:44:49 2026 by rpki-client