$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.mft File: htsNiHRv_AgU5YmhOSQPL3QtDFY.mft (raw, json) Hash identifier: QCjtnaLsAIyK5UU2YJdih/t8fQwfd88YVJzLckcoTlg= Subject key identifier: 06:60:7C:8B:56:6F:30:CF:A2:44:0A:44:80:67:B9:D8:80:4B:AF:58 Authority key identifier: 86:DB:0D:88:74:6F:FC:08:14:E5:89:A1:39:24:0F:2F:74:2D:0C:56 Certificate issuer: /CN=86DB0D88746FFC0814E589A139240F2F742D0C56 Certificate serial: 184F Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/htsNiHRv_AgU5YmhOSQPL3QtDFY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.mft Manifest number: 1840 Signing time: Wed 05 Nov 2025 20:13:57 +0000 Manifest this update: Wed 05 Nov 2025 20:13:57 +0000 Manifest next update: Thu 06 Nov 2025 02:13:57 +0000 Files and hashes: 1: 60bHviOsET_Vf8_DbJjRc6w43N8.roa (hash: T5b8IcOXmQ/CmW/IN+qCnH8UHN6n56w3kxeNCdfLklg=) 2: MdRapk3WgYtPpDew7zRI01gV_U0.roa (hash: jgcVNykiiTdGm3gLvxeJ7XnhfVBnnblsgA09FtNRzA0=) 3: YE4mdPIQk-iboVxs-qaXSZWIHiI.roa (hash: ykL33NbMpu4kkRnT9X5W6Z6BNXk+SqiKJo3zDjd6Ekw=) 4: htsNiHRv_AgU5YmhOSQPL3QtDFY.crl (hash: 2rTyn1ysvUSYA9I9C7luLSxKp3O3JW4sFHdYEtZrR7Q=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/htsNiHRv_AgU5YmhOSQPL3QtDFY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 23:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6223 (0x184f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86DB0D88746FFC0814E589A139240F2F742D0C56 Validity Not Before: Nov 5 20:13:57 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=06607C8B566F30CFA2440A448067B9D8804BAF58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3c:ee:3b:31:ea:ea:cb:92:3d:c3:54:aa:27: da:d0:7d:54:8f:63:4f:19:44:7a:f7:bf:03:bf:60: 74:ac:5c:4f:6a:7b:fa:48:f7:30:46:57:97:17:f3: 3e:45:2a:b6:45:02:43:02:19:83:90:7f:dd:ef:84: dd:5c:71:ad:9a:a2:c4:f6:2a:51:b2:2b:a1:12:9c: 1a:da:49:05:12:ff:35:75:5b:ff:d5:a5:06:8a:46: 40:b4:ce:ac:4d:bc:a5:41:f9:23:71:78:af:cb:df: d5:59:c9:18:d7:93:c7:e0:e5:50:d9:67:0a:54:3c: 4c:cf:ff:97:df:0e:86:59:f6:96:39:64:f3:79:19: 97:ec:a3:3d:91:8f:05:5e:03:dc:2a:56:0d:b4:24: f3:3c:c0:2c:39:1c:95:32:91:20:f9:fa:57:46:80: 7c:ed:a3:0b:e2:24:0f:f8:88:62:a8:0f:ee:b3:3e: 44:a2:3b:01:2c:f1:af:e0:06:a4:0b:59:b3:9b:ef: 82:aa:0e:02:83:86:36:06:e5:df:44:9a:68:b0:6e: f5:57:a9:81:11:c4:05:c5:d7:10:a5:88:07:a2:97: 2b:32:4d:06:b1:2c:33:9d:2b:a9:57:4c:49:7f:df: bb:44:6c:6c:80:7f:77:db:1a:b0:02:56:c6:5f:90: 59:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:60:7C:8B:56:6F:30:CF:A2:44:0A:44:80:67:B9:D8:80:4B:AF:58 X509v3 Authority Key Identifier: keyid:86:DB:0D:88:74:6F:FC:08:14:E5:89:A1:39:24:0F:2F:74:2D:0C:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/htsNiHRv_AgU5YmhOSQPL3QtDFY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:30:0b:fb:f5:ae:45:6d:ac:6e:50:39:09:d0:ef:db:e3:79: 6b:e9:e1:30:79:52:5b:d1:ae:41:44:03:58:d6:04:b9:8a:f3: 7f:b6:82:79:bc:63:a9:5e:7b:bd:f5:3e:84:8a:b6:dc:2b:70: fb:a2:54:21:c7:e6:5a:2a:47:80:77:81:b7:9f:0f:3c:5c:51: 31:7e:d1:f2:84:2e:1d:e6:6d:6b:06:46:ca:ac:3d:00:c1:65: 1e:e8:0a:af:24:80:91:37:ba:74:f4:9e:e5:ec:dc:42:4b:c8: 5b:d2:49:4e:23:ef:dd:df:d8:d8:ab:58:40:f8:42:63:3d:9a: ee:5d:39:93:8a:bd:bd:2d:ff:87:cb:cc:44:0c:c6:fe:fe:44: b7:dd:9a:99:42:3f:b0:64:25:55:f4:59:93:30:74:2a:26:90: b2:37:93:5b:70:50:bb:18:1a:95:81:44:15:31:ee:1f:ef:05: a2:48:e1:d7:98:21:75:b8:18:5b:3b:13:26:e2:fd:56:00:7f: b4:96:e5:36:74:64:e9:f0:e8:13:3f:f8:c6:9a:ef:e5:a5:0d: fe:b7:77:a7:a6:42:ab:cc:65:63:dd:4a:e7:53:b3:6a:ca:43: ba:6c:a5:7c:75:2b:81:9f:c0:de:d4:f2:39:07:e0:a0:5c:ec: c6:fb:3b:f8 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICGE8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODZE QjBEODg3NDZGRkMwODE0RTU4OUExMzkyNDBGMkY3NDJEMEM1NjAeFw0yNTExMDUy MDEzNTdaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDA2NjA3QzhCNTY2RjMw Q0ZBMjQ0MEE0NDgwNjdCOUQ4ODA0QkFGNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrPO47Merqy5I9w1SqJ9rQfVSPY08ZRHr3vwO/YHSsXE9qe/pI 9zBGV5cX8z5FKrZFAkMCGYOQf93vhN1cca2aosT2KlGyK6ESnBraSQUS/zV1W//V pQaKRkC0zqxNvKVB+SNxeK/L39VZyRjXk8fg5VDZZwpUPEzP/5ffDoZZ9pY5ZPN5 GZfsoz2RjwVeA9wqVg20JPM8wCw5HJUykSD5+ldGgHztowviJA/4iGKoD+6zPkSi OwEs8a/gBqQLWbOb74KqDgKDhjYG5d9EmmiwbvVXqYERxAXF1xCliAeilysyTQax LDOdK6lXTEl/37tEbGyAf3fbGrACVsZfkFlrAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUBmB8i1ZvMM+iRApEgGe52IBLr1gwHwYDVR0jBBgwFoAUhtsNiHRv/AgU5Ymh OSQPL3QtDFYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc3 Ni9odHNOaUhSdl9BZ1U1WW1oT1NRUEwzUXRERlkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2h0c05pSFJ2X0FnVTVZbWhPU1FQTDNRdERGWS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3NzYvaHRzTmlIUnZfQWdV NVltaE9TUVBMM1F0REZZLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAIcwC/v1rkVtrG5QOQnQ79vjeWvp4TB5UlvRrkFEA1jWBLmK83+2gnm8Y6le e731PoSKttwrcPuiVCHH5loqR4B3gbefDzxcUTF+0fKELh3mbWsGRsqsPQDBZR7o Cq8kgJE3unT0nuXs3EJLyFvSSU4j793f2NirWED4QmM9mu5dOZOKvb0t/4fLzEQM xv7+RLfdmplCP7BkJVX0WZMwdComkLI3k1twULsYGpWBRBUx7h/vBaJI4deYIXW4 GFs7Eybi/VYAf7SW5TZ0ZOnw6BM/+Maa7+WlDf63d6emQqvMZWPdSudTs2rKQ7ps pXx1K4GfwN7U8jkH4KBc7Mb7O/g= -----END CERTIFICATE-----Generated at Wed Nov 5 21:41:43 2025 by rpki-client