$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1212/KCAlirZf9h_V1m2Vlk9I76NdzIY.mft File: KCAlirZf9h_V1m2Vlk9I76NdzIY.mft (raw, json) Hash identifier: 1WnqlPznEiQzEo19v3wzUVpAF8obqKCSBFR5ZlkKjZs= Subject key identifier: F2:2C:52:B9:00:B8:80:02:2A:92:10:A6:86:FE:1A:80:06:C4:DA:EB Authority key identifier: 28:20:25:8A:B6:5F:F6:1F:D5:D6:6D:95:96:4F:48:EF:A3:5D:CC:86 Certificate issuer: /CN=2820258AB65FF61FD5D66D95964F48EFA35DCC86 Certificate serial: 198C Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KCAlirZf9h_V1m2Vlk9I76NdzIY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1212/KCAlirZf9h_V1m2Vlk9I76NdzIY.mft Manifest number: 1984 Signing time: Sun 01 Mar 2026 21:30:32 +0000 Manifest this update: Sun 01 Mar 2026 21:30:32 +0000 Manifest next update: Mon 02 Mar 2026 03:30:32 +0000 Files and hashes: 1: KCAlirZf9h_V1m2Vlk9I76NdzIY.crl (hash: v0ClU4d/ee+HgwhKJbsKIbhkZjONl3BxjOwnWvFdJGk=) 2: NLKKhuGRjjycZyTf-_i8mAuCL5Q.roa (hash: cLFT6F50dW3SQc3+2AFxXkKj0rBzPHjD9HJqJjyi4lU=) 3: aVzNCR3v7HiuGe2nwYVocA3nKD0.roa (hash: VQYg6X41I9K3bkkDLyRhaxL9qX1DdOXnA2NK8J733MU=) 4: tlp2HUUJoI724WS_Ode64_P3E_A.roa (hash: LmhfGm6SiRVSi+vo4yMPXWogFAx5P2LYQsHA7fjHmp4=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1212/KCAlirZf9h_V1m2Vlk9I76NdzIY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1212/KCAlirZf9h_V1m2Vlk9I76NdzIY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KCAlirZf9h_V1m2Vlk9I76NdzIY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 03:30:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6540 (0x198c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2820258AB65FF61FD5D66D95964F48EFA35DCC86 Validity Not Before: Mar 1 21:30:32 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=F22C52B900B880022A9210A686FE1A8006C4DAEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:00:01:ef:f8:9d:ec:b2:12:09:20:58:1f:f3: bd:ff:df:54:3b:c9:ac:13:5f:ac:3e:9a:f0:59:2a: 74:83:21:ab:51:13:b2:13:63:81:d9:61:f8:5e:72: 60:1f:12:b1:10:b8:dc:7a:b2:56:21:d0:fb:d7:f2: aa:49:63:be:c8:7f:19:56:97:04:da:4e:53:1c:16: c3:31:42:cb:b6:b8:63:dc:61:e5:98:a1:85:70:f3: 67:09:3e:d7:5d:db:ba:22:5d:14:68:44:54:17:ce: af:66:c2:4f:e8:75:a9:e8:cc:15:f5:4e:86:ae:4d: bd:6c:c9:56:d8:e9:b3:55:b2:0b:eb:a7:5b:fb:a0: b1:ff:b0:ab:0f:f4:d2:07:47:cb:2c:90:1f:0e:ef: ef:7f:4a:20:a2:34:ae:d9:44:8f:d9:a7:52:23:ad: 22:31:a4:2d:eb:05:2e:7a:97:20:23:ab:b8:dc:74: 6e:b5:ef:14:54:01:f8:0d:d1:90:ef:1f:be:ed:99: aa:81:f8:f5:48:90:4c:c3:2c:07:cd:df:be:58:06: 0f:72:e1:81:bf:f1:58:33:a0:10:5c:bc:6c:0d:34: 36:2e:f3:d8:1a:b3:bd:d0:1b:c2:fa:72:fd:13:9f: ab:9b:01:90:e8:66:7d:12:2b:b9:80:20:93:cb:4f: 3f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:2C:52:B9:00:B8:80:02:2A:92:10:A6:86:FE:1A:80:06:C4:DA:EB X509v3 Authority Key Identifier: keyid:28:20:25:8A:B6:5F:F6:1F:D5:D6:6D:95:96:4F:48:EF:A3:5D:CC:86 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1212/KCAlirZf9h_V1m2Vlk9I76NdzIY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KCAlirZf9h_V1m2Vlk9I76NdzIY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1212/KCAlirZf9h_V1m2Vlk9I76NdzIY.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:23:d9:2b:c3:ee:f1:9d:8a:73:d0:17:11:e9:a1:3b:84:50: 6c:03:53:a0:10:5f:c5:49:ee:c1:e7:40:21:38:e2:92:3b:4d: 1a:16:78:02:4a:83:ac:2b:c2:85:18:6e:b6:6b:a0:67:f0:b2: 16:c6:bd:f4:0f:99:33:74:5d:53:f6:e2:b5:05:5c:e9:1b:4c: 50:fa:ef:f7:d0:22:b5:5d:8b:53:db:c3:42:11:e1:84:09:4f: a4:ca:67:f6:24:87:95:8e:e9:a3:4c:2a:9d:7b:24:3d:c5:df: a9:23:47:56:c2:a4:8c:72:7d:a6:d4:8d:4a:b5:c5:4f:db:5b: 35:3f:57:e4:91:24:41:db:02:2f:71:00:fa:b5:bc:e4:73:de: 08:7d:0f:da:25:e3:8a:38:04:e2:2e:d6:b9:2d:8f:8a:c4:74: a7:12:93:ec:d7:35:2d:73:59:81:ed:66:06:3c:6c:40:6b:97: 9a:59:9a:39:9d:94:6d:c9:12:65:26:4f:50:9e:c9:ed:55:cc: d9:d0:3f:1b:c2:a9:df:fd:c9:03:59:5f:40:3a:ad:5e:73:e3: cc:f4:74:e6:31:cb:01:9e:05:a9:e4:ba:69:09:76:89:4f:3c: 7f:ff:5a:1d:c6:6d:e6:60:ee:12:e8:46:72:a9:f5:65:ea:ad: c3:69:6a:e1 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICGYwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjgy MDI1OEFCNjVGRjYxRkQ1RDY2RDk1OTY0RjQ4RUZBMzVEQ0M4NjAeFw0yNjAzMDEy MTMwMzJaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKEYyMkM1MkI5MDBCODgw MDIyQTkyMTBBNjg2RkUxQTgwMDZDNERBRUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYAAHv+J3sshIJIFgf873/31Q7yawTX6w+mvBZKnSDIatRE7IT Y4HZYfhecmAfErEQuNx6slYh0PvX8qpJY77IfxlWlwTaTlMcFsMxQsu2uGPcYeWY oYVw82cJPtdd27oiXRRoRFQXzq9mwk/odanozBX1ToauTb1syVbY6bNVsgvrp1v7 oLH/sKsP9NIHR8sskB8O7+9/SiCiNK7ZRI/Zp1IjrSIxpC3rBS56lyAjq7jcdG61 7xRUAfgN0ZDvH77tmaqB+PVIkEzDLAfN375YBg9y4YG/8VgzoBBcvGwNNDYu89ga s73QG8L6cv0Tn6ubAZDoZn0SK7mAIJPLTz83AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU8ixSuQC4gAIqkhCmhv4agAbE2uswHwYDVR0jBBgwFoAUKCAlirZf9h/V1m2V lk9I76NdzIYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTIx Mi9LQ0FsaXJaZjloX1YxbTJWbGs5STc2TmR6SVkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0tDQWxpclpmOWhfVjFtMlZsazlJNzZOZHpJWS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEyMTIvS0NBbGlyWmY5aF9W MW0yVmxrOUk3Nk5keklZLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAHIj2SvD7vGdinPQFxHpoTuEUGwDU6AQX8VJ7sHnQCE44pI7TRoWeAJKg6wr woUYbrZroGfwshbGvfQPmTN0XVP24rUFXOkbTFD67/fQIrVdi1Pbw0IR4YQJT6TK Z/Ykh5WO6aNMKp17JD3F36kjR1bCpIxyfabUjUq1xU/bWzU/V+SRJEHbAi9xAPq1 vORz3gh9D9ol44o4BOIu1rktj4rEdKcSk+zXNS1zWYHtZgY8bEBrl5pZmjmdlG3J EmUmT1Ceye1VzNnQPxvCqd/9yQNZX0A6rV5z48z0dOYxywGeBankumkJdolPPH// Wh3GbeZg7hLoRnKp9WXqrcNpauE= -----END CERTIFICATE-----Generated at Mon Mar 2 02:11:17 2026 by rpki-client