$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2620/IdyHWWXCumHR2su0je4UBVSqWu8.mft File: IdyHWWXCumHR2su0je4UBVSqWu8.mft (raw, json) Hash identifier: 6RtoEfsCuteB7r8iFB9nf06aydh0XnSnSIm7TVgFVvM= Subject key identifier: E6:80:90:B1:B9:42:51:2A:C2:9F:64:03:96:02:39:A3:F1:F0:1B:32 Authority key identifier: 21:DC:87:59:65:C2:BA:61:D1:DA:CB:B4:8D:EE:14:05:54:AA:5A:EF Certificate issuer: /CN=21DC875965C2BA61D1DACBB48DEE140554AA5AEF Certificate serial: 1AB2 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/IdyHWWXCumHR2su0je4UBVSqWu8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2620/IdyHWWXCumHR2su0je4UBVSqWu8.mft Manifest number: 1A8A Signing time: Sun 01 Mar 2026 23:58:30 +0000 Manifest this update: Sun 01 Mar 2026 23:58:30 +0000 Manifest next update: Mon 02 Mar 2026 05:58:30 +0000 Files and hashes: 1: 03jlFIcxvAmA3C5U7_9B0v9GibA.roa (hash: CSLt773YUcSOyOct/CyvyTY2UDmDv8gybELr2Ag5fSk=) 2: 1Xks-WUm3pcNmeXHkBTFP82Tb5Y.roa (hash: 6iugeGTnecaw3IRQJp1VDS8/5GfP0avVtWLU6Iq4zs8=) 3: 2ChXnade0ZV5QZ3UzM0ntWbjmfU.roa (hash: MSukEcj6iFt/K2A/JJ35lPrfqVxDc0DKjXnHiF6t+6Y=) 4: 2st-WRdkexySnyA8DN2_C7Bn5xI.roa (hash: 97fHMMwYgMi2oDnRiCMz8G6GO7TkdL1GAdnoyFzFh4k=) 5: 4LSqAFYo-egbk1WcU7dL8LU_7V0.roa (hash: PsV66nuXalt7velT5yXgPHNl6L6BeqDzdTdAlkcBL1E=) 6: 5TxT3MkayH-eXPccrMS5Up3Bo10.roa (hash: bCWm0bHm0frrZCZJFIuLicfBbmJHYC1KCjRxIyglGQQ=) 7: BEjawcARrAqv1IHHVMmsh1DIMqk.roa (hash: l8njPsxDdT4LJubJ6uMq068HM4+a/sWkNXYsVh7586s=) 8: CekDs25z6vQY5BwZW31nCn-SImU.roa (hash: OU5wiDIHygwfhvKV5wPAXJxVhO93BO43Uuv2itZVRa8=) 9: CmaDrcDhrSB4J3ocBZP1Rz3TGO8.roa (hash: xHq+8jMpJ3y0EVmPniKuArkPjjhaN/3UsYVDGdbXTmg=) 10: Cnzv8biqRJCUuFlcAiPl0R3KlJo.roa (hash: 1qi0+IeeeSqpocVU1DkuXZM3/QgnSe8bv3U1spRgll0=) 11: EA4uAG-qCXzSaPCcS19FXvprl7Y.roa (hash: K+i/b7H6oRT/9X4Hzk2EYOhflgnC67oZbVdEyUZrWQo=) 12: I5OjS6LxUMkhwr68x-5t9j2PKqU.roa (hash: 9ka2g4BJfnhZ8xVi/4xh0mdL0rXVetmLoCyPGx4fU2M=) 13: IdyHWWXCumHR2su0je4UBVSqWu8.crl (hash: qJ2IokmSY2pyUpGYf4YRrDPRct3wru2G+zo1Yhm4HmQ=) 14: M2Lcm5KJ-0vM5e_U21vCbnWPrnE.roa (hash: UTbd0u8IdzpM6wVVjXV+yR6rdiJjMTsFMFw7buVoZFQ=) 15: Q31Q6e5O3hefG5z_F16DnunZ3V8.roa (hash: x56NN6TBpshLg/jJX/rabcRpAGH04kH66FqWSyUL5mA=) 16: QT4sAk4QcweiTGVccZkIdWmBzkM.roa (hash: 4Hk4GIzLEHx9JWt8HUKAT3oGW5XFrXP1LZvem88fXp0=) 17: QXJKevQfrqPMxBIoXUOGIaQyJw0.roa (hash: EKuUrtSKos5Un0/ZBGTI+LP+1XdLGLhPB/Og5RcgVc8=) 18: STXcaM9sBT1Trl53pmflsdbfQ-c.roa (hash: C5dtm4Wrh9eNeHYEivcYgOAFM5I5rVwcpZrApXDZWEk=) 19: Vf0EWqoh1S1KtWYiE0tHaauPgNk.roa (hash: iw67ex3KMhM78BshYX0X8TAC88quRI6+LqFhC+AbZzc=) 20: XP1TeQZydcphjjmbRXq_HWrP1gk.roa (hash: CVazUv//fRhBLRD8RwC0Fk4j1JYekiFVPvnwGkaXiC8=) 21: XfQXOTKHpIzrhomPsrkB379Njg0.roa (hash: tm28prrsHHIdc/fagSX6t713I2/ncPkbX7nkWOP2hqs=) 22: af-EHeZo6e596vaEvKVTWaEoJDY.roa (hash: 42ybUlFkcRnHHyu/iHLBkUynJTFqDwMneXSD1BVYLas=) 23: jGKVP5AyIpaJY_AX7r0aS7EhjSk.roa (hash: rqnNypr7tucbEs+tmBI0LVS0Vn6f5puJDxqbKrBvQX4=) 24: lavSXflNsN2mcVZGIwlcHiGWriE.roa (hash: KL5BE0HysWO7038j+bAUuw6ihHXAMqSqwnjNMFnpuwA=) 25: oxHNRjU7C846WiHFbf56tcEKJyA.roa (hash: y56fr6e9KTD9lwRz2IGkkkE89JG6FVeb7dPOTL4dzxY=) 26: sWj1ni_Fr-4BkEbkc3aWAgTXyes.roa (hash: zZ0JHmG0/Bxprsqr78enb2ahJrW3fY72/+Gt/rJafBs=) 27: sXRYBTCKcMpSiWX_yFhSaEpfkyI.roa (hash: 8ZOnG7e/zdHiCxRQy4SRsPJUWEv5xkL//vABQV+ATG8=) 28: tkqVNxepgrss0_proul-YA3tOPU.roa (hash: +s1yBXbq7JebgQLhF6St4gtAnyboEtNX9nSRGW4VZuE=) 29: vDUfEQvUDr6mT0nq25oZIbZQCWM.roa (hash: eiLRA8yWtBnq2qiv25rvIQSQWQk8ljdCzbs8EO/88Uo=) 30: ymrGINw8MvYEo9Te4dh8zGpSEIg.roa (hash: s19UKerzeiaWlSAZGgwUzM0bCjLsmRI2sbkgIhd0rds=) 31: yoqPCR_0MI64ewIYP02tHvr5vqA.roa (hash: NqWabWFfU3AP5Dh7fuOqhVE8rlfJ7vpJxrHBzEzV9Ak=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2620/IdyHWWXCumHR2su0je4UBVSqWu8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2620/IdyHWWXCumHR2su0je4UBVSqWu8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/IdyHWWXCumHR2su0je4UBVSqWu8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 05:58:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6834 (0x1ab2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21DC875965C2BA61D1DACBB48DEE140554AA5AEF Validity Not Before: Mar 1 23:58:30 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=E68090B1B942512AC29F6403960239A3F1F01B32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:14:fa:5f:fc:6c:3b:90:84:16:c8:16:f7:1a: 76:ea:da:ef:9a:17:a6:a5:24:93:14:18:19:af:9b: d9:0b:22:9a:b6:18:da:c0:a1:e9:13:00:79:17:fc: d2:ee:ef:cb:cd:ae:96:d3:80:a3:b4:c7:17:a8:21: 12:20:77:ee:50:36:91:d8:34:03:07:92:b4:de:fe: 5a:79:ab:5a:34:9a:b4:79:d0:2a:dc:7d:11:95:42: 43:21:ea:0a:0e:8d:96:bc:a5:4d:af:fa:17:cc:8c: 29:38:3b:19:d1:50:21:63:69:b9:3a:02:68:6c:68: 6c:73:88:44:67:cc:ab:4f:44:45:58:b3:3c:cb:af: 6e:c9:b9:61:43:4e:8b:ec:63:3c:ce:de:71:ef:d4: d5:b7:f7:4b:62:7d:9e:37:2b:10:99:5e:1a:49:69: 7f:b0:69:25:a8:b7:6f:3c:6d:fb:51:88:f0:1e:c6: 08:e1:bb:45:2c:d3:bf:c5:30:7e:cf:a9:4b:28:ec: 83:07:c6:ef:bd:b0:ec:f1:be:6e:57:2f:0f:46:dd: b1:ba:43:e7:57:9d:63:12:6f:c1:fa:50:48:6e:b0: a4:af:97:7d:57:93:2f:1c:16:6d:a6:e5:35:62:ab: e2:46:ea:db:c8:c0:71:72:e7:d7:ee:de:0d:9a:64: a9:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:80:90:B1:B9:42:51:2A:C2:9F:64:03:96:02:39:A3:F1:F0:1B:32 X509v3 Authority Key Identifier: keyid:21:DC:87:59:65:C2:BA:61:D1:DA:CB:B4:8D:EE:14:05:54:AA:5A:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2620/IdyHWWXCumHR2su0je4UBVSqWu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/IdyHWWXCumHR2su0je4UBVSqWu8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2620/IdyHWWXCumHR2su0je4UBVSqWu8.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:27:97:1c:71:89:0c:bf:73:e9:12:af:7d:42:8c:66:4a:92: 13:9e:f0:96:fa:d1:21:7c:8c:29:78:e2:ae:bc:d4:53:0c:7c: 2a:09:51:c0:85:f0:c9:c0:8e:c3:35:ab:08:3c:15:e8:f5:47: c7:fb:3c:c3:25:53:7d:08:47:80:dd:0f:1f:c7:a7:67:1f:cc: 06:21:cc:2a:dc:73:de:72:25:ac:3d:05:a5:8a:e5:b6:d4:7b: df:3b:7b:72:39:79:f6:31:9f:94:08:a0:d0:ca:e9:59:d4:54: 5c:c0:7c:72:0a:b6:d9:a0:b7:33:60:cc:f1:01:95:27:fb:0e: ac:be:b4:38:91:1e:2b:08:5a:f7:45:87:db:f7:f9:93:17:6c: f7:c1:e8:a6:9a:ee:c7:f5:64:48:84:7c:93:b8:f6:0f:fe:9d: 07:77:da:e7:11:a5:97:a4:46:60:db:83:1d:fc:f9:13:60:bd: 99:ec:b8:b3:b3:1a:fc:43:a9:17:b4:3f:83:47:b9:ee:a5:93: b3:01:11:1f:97:12:fa:8e:e1:be:ed:26:9c:7d:a6:4f:30:3f: b8:61:34:24:3d:42:f7:25:e8:d4:ed:70:28:f0:a2:29:e5:9b: 50:7a:f3:2c:bd:cc:cc:ff:cd:4f:b0:53:71:c2:ed:28:b0:a6: ad:f5:32:de -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICGrIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjFE Qzg3NTk2NUMyQkE2MUQxREFDQkI0OERFRTE0MDU1NEFBNUFFRjAeFw0yNjAzMDEy MzU4MzBaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKEU2ODA5MEIxQjk0MjUx MkFDMjlGNjQwMzk2MDIzOUEzRjFGMDFCMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCSFPpf/Gw7kIQWyBb3Gnbq2u+aF6alJJMUGBmvm9kLIpq2GNrA oekTAHkX/NLu78vNrpbTgKO0xxeoIRIgd+5QNpHYNAMHkrTe/lp5q1o0mrR50Crc fRGVQkMh6goOjZa8pU2v+hfMjCk4OxnRUCFjabk6AmhsaGxziERnzKtPREVYszzL r27JuWFDTovsYzzO3nHv1NW390tifZ43KxCZXhpJaX+waSWot288bftRiPAexgjh u0Us07/FMH7PqUso7IMHxu+9sOzxvm5XLw9G3bG6Q+dXnWMSb8H6UEhusKSvl31X ky8cFm2m5TViq+JG6tvIwHFy59fu3g2aZKkHAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU5oCQsblCUSrCn2QDlgI5o/HwGzIwHwYDVR0jBBgwFoAUIdyHWWXCumHR2su0 je4UBVSqWu8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjYy MC9JZHlIV1dYQ3VtSFIyc3UwamU0VUJWU3FXdTguY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0lkeUhXV1hDdW1IUjJzdTBqZTRVQlZTcVd1OC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI2MjAvSWR5SFdXWEN1bUhS MnN1MGplNFVCVlNxV3U4Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAF4nlxxxiQy/c+kSr31CjGZKkhOe8Jb60SF8jCl44q681FMMfCoJUcCF8MnA jsM1qwg8Fej1R8f7PMMlU30IR4DdDx/Hp2cfzAYhzCrcc95yJaw9BaWK5bbUe987 e3I5efYxn5QIoNDK6VnUVFzAfHIKttmgtzNgzPEBlSf7Dqy+tDiRHisIWvdFh9v3 +ZMXbPfB6Kaa7sf1ZEiEfJO49g/+nQd32ucRpZekRmDbgx38+RNgvZnsuLOzGvxD qRe0P4NHue6lk7MBER+XEvqO4b7tJpx9pk8wP7hhNCQ9Qvcl6NTtcCjwoinlm1B6 8yy9zMz/zU+wU3HC7Siwpq31Mt4= -----END CERTIFICATE-----Generated at Mon Mar 2 05:51:31 2026 by rpki-client