$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3246/f_5usVL6-W0Yv8af0-O_mYYqqfE.mft File: f_5usVL6-W0Yv8af0-O_mYYqqfE.mft (raw, json) Hash identifier: ahw+WBCXBDR1hfbasXrUVkzhGR4y7VA6h0p9PWBexYM= Subject key identifier: 6E:2B:C3:67:11:F1:C0:7E:CF:8C:34:90:3D:C9:9C:70:1B:E2:90:8B Authority key identifier: 7F:FE:6E:B1:52:FA:F9:6D:18:BF:C6:9F:D3:E3:BF:99:86:2A:A9:F1 Certificate issuer: /CN=7FFE6EB152FAF96D18BFC69FD3E3BF99862AA9F1 Certificate serial: 0FD8 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/f_5usVL6-W0Yv8af0-O_mYYqqfE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3246/f_5usVL6-W0Yv8af0-O_mYYqqfE.mft Manifest number: 0FCE Signing time: Mon 02 Mar 2026 03:58:17 +0000 Manifest this update: Mon 02 Mar 2026 03:58:17 +0000 Manifest next update: Mon 02 Mar 2026 09:58:17 +0000 Files and hashes: 1: 81XUE6ph-YfMqkp2MvnqNYH6XP8.roa (hash: udMdA++dFCcVG2w6E/Jd7VL8jbt0XvwZh3yIc1S4UOg=) 2: QI7hCYlUpEmZ9XP7jFytqOC2BuA.roa (hash: B2VQAR+V2rhUi27sQmZcUtpp8hpz/dZWRrNQEVQ6oSI=) 3: RxXX7EeS9X_riwqI5vqWS_wvrBk.roa (hash: mhO0AgztC6j4+pI/1BuZcbLakKJ3LaGfmLDEYhL8yOk=) 4: f_5usVL6-W0Yv8af0-O_mYYqqfE.crl (hash: JSdZ9zpDmkne0wYh0lu15FkmcdR63Aob+ROeMBnc/8E=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3246/f_5usVL6-W0Yv8af0-O_mYYqqfE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3246/f_5usVL6-W0Yv8af0-O_mYYqqfE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/f_5usVL6-W0Yv8af0-O_mYYqqfE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 05:59:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4056 (0xfd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7FFE6EB152FAF96D18BFC69FD3E3BF99862AA9F1 Validity Not Before: Mar 2 03:58:17 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=6E2BC36711F1C07ECF8C34903DC99C701BE2908B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:36:62:65:34:c9:59:81:03:e3:f1:27:bf:fd: 14:73:01:0d:8c:a3:c9:94:c9:c4:1e:e2:f9:01:26: d5:08:e0:58:bd:57:a8:7b:7b:de:08:10:fb:a0:64: 7c:a2:24:47:5b:ec:95:2b:0c:44:17:7f:5b:3b:07: 2c:87:f6:d6:e6:3b:b1:5d:1b:8d:29:47:3e:be:ae: 0f:2c:56:5c:97:82:2f:ea:54:5a:7c:5a:e5:5e:e4: 55:a3:36:a2:1f:69:d2:45:e2:05:e3:30:bf:c8:0e: 94:7d:6c:bc:f9:72:38:c3:cd:82:31:a4:90:48:8c: 85:d9:32:0a:c6:4d:95:49:a9:1e:fe:44:be:9e:bf: 3d:e3:cb:59:98:8e:66:d9:79:e6:41:18:12:42:4f: e6:9c:a9:ab:ab:8d:07:41:a8:f6:2b:ee:64:b6:7f: 52:c2:3b:92:6b:e4:b4:c5:7a:74:62:d8:d3:9c:ce: bf:00:d9:72:50:c9:1f:3a:2f:f2:e3:af:a9:dd:d0: 31:c2:02:12:0c:31:0c:a4:6e:ed:8b:35:6a:5a:98: 99:a6:95:c3:28:a5:de:00:a1:09:70:8f:bc:f2:f6: 9d:89:45:2f:94:ed:29:d9:51:14:e4:66:f0:f3:50: f2:15:c0:cf:7b:98:bf:eb:d9:fe:bc:21:e6:10:6a: 26:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:2B:C3:67:11:F1:C0:7E:CF:8C:34:90:3D:C9:9C:70:1B:E2:90:8B X509v3 Authority Key Identifier: keyid:7F:FE:6E:B1:52:FA:F9:6D:18:BF:C6:9F:D3:E3:BF:99:86:2A:A9:F1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3246/f_5usVL6-W0Yv8af0-O_mYYqqfE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/f_5usVL6-W0Yv8af0-O_mYYqqfE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3246/f_5usVL6-W0Yv8af0-O_mYYqqfE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:0f:f8:0c:77:bb:83:49:0f:bd:e3:a0:1b:e9:10:e0:d0:12: e5:22:69:c6:fa:92:ca:1a:8e:b5:90:00:46:2c:18:e2:62:e8: c2:f3:8d:65:9e:96:08:80:6e:32:1d:42:65:31:23:24:66:40: 4f:00:5b:8f:12:ee:b2:80:41:64:6f:1d:cd:88:20:bf:f1:fe: 8f:3e:87:57:ae:6b:87:9b:c8:6b:c5:74:59:c9:d7:43:aa:73: 3a:3c:ea:72:44:b4:3d:9d:ed:a3:4b:07:a3:2c:43:a8:03:0b: 77:6d:9c:6a:62:43:e6:cb:39:9f:9b:ed:78:09:2a:a0:05:3a: 82:59:3f:0b:4e:11:9d:ed:19:66:0f:0b:f4:66:29:2b:22:3a: ad:2c:c5:44:77:d6:91:76:97:46:56:a9:7f:7d:1f:a1:ca:9e: df:66:4f:8e:2f:93:65:b8:25:30:d9:72:55:e3:d2:b9:f7:e4: fe:ee:eb:8d:ab:3b:ae:e9:60:aa:a6:7c:ab:02:12:1e:06:7f: 96:b5:af:b9:a6:7e:f4:32:3f:fe:33:75:09:6b:ed:dc:df:18: d3:fe:53:be:65:58:60:fe:55:a8:fa:40:c6:e0:43:0e:34:77: dd:e1:fa:d1:3d:56:36:e9:45:f3:0d:2f:6e:34:c3:55:c9:95: f4:b1:4c:a8 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICD9gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0ZG RTZFQjE1MkZBRjk2RDE4QkZDNjlGRDNFM0JGOTk4NjJBQTlGMTAeFw0yNjAzMDIw MzU4MTdaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDZFMkJDMzY3MTFGMUMw N0VDRjhDMzQ5MDNEQzk5QzcwMUJFMjkwOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7NmJlNMlZgQPj8Se//RRzAQ2Mo8mUycQe4vkBJtUI4Fi9V6h7 e94IEPugZHyiJEdb7JUrDEQXf1s7ByyH9tbmO7FdG40pRz6+rg8sVlyXgi/qVFp8 WuVe5FWjNqIfadJF4gXjML/IDpR9bLz5cjjDzYIxpJBIjIXZMgrGTZVJqR7+RL6e vz3jy1mYjmbZeeZBGBJCT+acqaurjQdBqPYr7mS2f1LCO5Jr5LTFenRi2NOczr8A 2XJQyR86L/Ljr6nd0DHCAhIMMQykbu2LNWpamJmmlcMopd4AoQlwj7zy9p2JRS+U 7SnZURTkZvDzUPIVwM97mL/r2f68IeYQaiZNAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUbivDZxHxwH7PjDSQPcmccBvikIswHwYDVR0jBBgwFoAUf/5usVL6+W0Yv8af 0+O/mYYqqfEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI0 Ni9mXzV1c1ZMNi1XMFl2OGFmMC1PX21ZWXFxZkUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2ZfNXVzVkw2LVcwWXY4YWYwLU9fbVlZcXFmRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNDYvZl81dXNWTDYtVzBZ djhhZjAtT19tWVlxcWZFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAG4P+Ax3u4NJD73joBvpEODQEuUiacb6ksoajrWQAEYsGOJi6MLzjWWelgiA bjIdQmUxIyRmQE8AW48S7rKAQWRvHc2IIL/x/o8+h1eua4ebyGvFdFnJ10Oqczo8 6nJEtD2d7aNLB6MsQ6gDC3dtnGpiQ+bLOZ+b7XgJKqAFOoJZPwtOEZ3tGWYPC/Rm KSsiOq0sxUR31pF2l0ZWqX99H6HKnt9mT44vk2W4JTDZclXj0rn35P7u642rO67p YKqmfKsCEh4Gf5a1r7mmfvQyP/4zdQlr7dzfGNP+U75lWGD+Vaj6QMbgQw40d93h +tE9VjbpRfMNL240w1XJlfSxTKg= -----END CERTIFICATE-----Generated at Mon Mar 2 05:34:37 2026 by rpki-client