$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.mft File: 4LWzbEhxQqoAYPpbVHULJsXPW9w.mft (raw, json) Hash identifier: p9J2koeumE6BiAwKPN5NaiSPTcCYTa7pTqexCYCetfw= Subject key identifier: E6:0A:2E:E9:38:6F:8C:B4:CC:5F:D5:51:C6:B6:7F:AE:A7:E4:C3:1A Authority key identifier: E0:B5:B3:6C:48:71:42:AA:00:60:FA:5B:54:75:0B:26:C5:CF:5B:DC Certificate issuer: /CN=E0B5B36C487142AA0060FA5B54750B26C5CF5BDC Certificate serial: 0561 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/4LWzbEhxQqoAYPpbVHULJsXPW9w.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.mft Manifest number: 0560 Signing time: Sun 01 Mar 2026 18:58:54 +0000 Manifest this update: Sun 01 Mar 2026 18:58:54 +0000 Manifest next update: Mon 02 Mar 2026 00:58:54 +0000 Files and hashes: 1: 4LWzbEhxQqoAYPpbVHULJsXPW9w.crl (hash: 7PndbIEll7wEc3Fp4MpQVarPrGEtEbRxScd62XszzZE=) 2: nQe8cqEREUIsJzuFPvvw2A1_6e4.roa (hash: M7HEBLqrcF9Cc43K//Uhar4sJlCkmK82tTZ8yw7MBD8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/4LWzbEhxQqoAYPpbVHULJsXPW9w.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 00:58:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1377 (0x561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E0B5B36C487142AA0060FA5B54750B26C5CF5BDC Validity Not Before: Mar 1 18:58:54 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=E60A2EE9386F8CB4CC5FD551C6B67FAEA7E4C31A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:59:56:da:d2:cb:7f:a2:3b:9e:7f:2b:fe:7e: d2:68:1a:40:3f:d8:ee:3b:2e:46:d9:c9:8f:5a:e2: 63:fe:f3:1c:a1:6d:e2:eb:70:e6:93:e2:35:18:24: 72:e8:30:84:77:c9:53:90:39:26:13:0c:4a:5b:24: 2f:70:dd:15:22:2f:c0:92:eb:56:4c:25:bb:26:29: 67:82:6d:e2:86:ad:de:8a:79:8a:69:2c:ea:ec:50: 40:90:c8:f4:9f:33:af:d2:2a:e9:0b:40:2e:39:c9: bb:3f:75:9d:ef:7d:b8:3c:98:23:8e:21:f1:e3:a3: 2c:a7:fa:2f:b8:95:6c:d9:bd:a5:dc:85:0a:f2:c8: 58:6e:76:c9:33:d1:a1:cc:22:49:1e:3c:fe:cf:a6: 82:1d:78:7b:29:78:07:19:98:40:e0:3e:7d:8c:c5: 0c:00:4f:f3:e9:b3:42:29:7e:2e:4b:30:f1:e2:bf: 1d:39:85:78:33:e5:4f:bf:f6:db:2f:1d:64:5f:f6: de:1f:14:c7:d2:89:33:b5:d3:04:e6:74:f4:dd:03: 39:d7:8d:3d:cf:02:34:de:f0:18:66:7c:b0:a5:04: 03:58:6d:5a:88:c9:5b:09:a7:52:0d:c1:2f:e8:a0: e4:c4:c8:9b:6c:f9:f3:2f:38:5c:e9:aa:21:8b:b4: c6:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:0A:2E:E9:38:6F:8C:B4:CC:5F:D5:51:C6:B6:7F:AE:A7:E4:C3:1A X509v3 Authority Key Identifier: keyid:E0:B5:B3:6C:48:71:42:AA:00:60:FA:5B:54:75:0B:26:C5:CF:5B:DC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/4LWzbEhxQqoAYPpbVHULJsXPW9w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:f5:b1:97:4a:74:51:01:e1:49:8f:e1:4c:8d:52:b6:69:64: 2d:a2:fe:cf:b6:52:8d:6c:0e:1b:45:2e:34:32:a2:d7:da:47: 2b:13:6c:95:75:d3:7e:03:6e:79:86:ab:f6:04:cb:35:1d:a3: 5d:72:79:30:a7:06:96:0c:e3:81:e8:03:ea:0a:5b:27:9b:20: cf:39:a0:40:f6:be:71:ef:9c:a6:81:de:30:a4:82:b3:77:d5: 37:b0:eb:0e:79:1e:97:4c:63:e1:82:87:f3:57:4c:79:b1:ef: d7:fa:72:a7:29:e2:f8:c9:61:89:25:dc:51:ff:7b:53:f7:f5: 75:cf:0d:98:07:6e:45:ce:03:fc:16:8b:67:db:96:f0:59:71: 09:dd:e1:5d:e9:9c:5a:c7:8f:80:c9:ea:11:71:0f:df:a5:de: b5:07:cd:44:ab:f9:f3:16:eb:45:e5:9e:0f:19:8a:f4:d9:57: 23:4b:9e:18:2d:87:27:22:9f:d5:69:65:1b:79:4e:5f:77:1b: 7d:d5:85:a7:89:e9:29:ff:58:0f:56:35:77:0f:22:6d:a7:6f: 23:a4:54:fe:fd:14:02:cc:6b:ce:65:11:44:ed:29:de:42:7b: 80:6e:28:d6:3f:3e:61:10:ec:73:b3:de:f8:c9:54:89:31:16: a3:83:68:52 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICBWEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTBC NUIzNkM0ODcxNDJBQTAwNjBGQTVCNTQ3NTBCMjZDNUNGNUJEQzAeFw0yNjAzMDEx ODU4NTRaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKEU2MEEyRUU5Mzg2RjhD QjRDQzVGRDU1MUM2QjY3RkFFQTdFNEMzMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmWVba0st/ojuefyv+ftJoGkA/2O47LkbZyY9a4mP+8xyhbeLr cOaT4jUYJHLoMIR3yVOQOSYTDEpbJC9w3RUiL8CS61ZMJbsmKWeCbeKGrd6KeYpp LOrsUECQyPSfM6/SKukLQC45ybs/dZ3vfbg8mCOOIfHjoyyn+i+4lWzZvaXchQry yFhudskz0aHMIkkePP7PpoIdeHspeAcZmEDgPn2MxQwAT/Pps0Ipfi5LMPHivx05 hXgz5U+/9tsvHWRf9t4fFMfSiTO10wTmdPTdAznXjT3PAjTe8BhmfLClBANYbVqI yVsJp1INwS/ooOTEyJts+fMvOFzpqiGLtMbvAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQU5gou6ThvjLTMX9VRxrZ/rqfkwxowHwYDVR0jBBgwFoAU4LWzbEhxQqoAYPpb VHULJsXPW9wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTA0 LzRMV3piRWh4UXFvQVlQcGJWSFVMSnNYUFc5dy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvNExXemJFaHhRcW9BWVBwYlZIVUxKc1hQVzl3LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTA0LzRMV3piRWh4UXFvQVlQ cGJWSFVMSnNYUFc5dy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBO9bGXSnRRAeFJj+FMjVK2aWQtov7PtlKNbA4bRS40MqLX2kcrE2yVddN+A255 hqv2BMs1HaNdcnkwpwaWDOOB6APqClsnmyDPOaBA9r5x75ymgd4wpIKzd9U3sOsO eR6XTGPhgofzV0x5se/X+nKnKeL4yWGJJdxR/3tT9/V1zw2YB25FzgP8Fotn25bw WXEJ3eFd6Zxax4+AyeoRcQ/fpd61B81Eq/nzFutF5Z4PGYr02VcjS54YLYcnIp/V aWUbeU5fdxt91YWniekp/1gPVjV3DyJtp28jpFT+/RQCzGvOZRFE7SneQnuAbijW Pz5hEOxzs974yVSJMRajg2hS -----END CERTIFICATE-----Generated at Sun Mar 1 23:55:31 2026 by rpki-client