$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.mft File: Z7bHlviRA1kP8cyQcd_kwN84_U0.mft (raw, json) Hash identifier: 4Kbq3TkvpK3i5crteQQJQZwAaLf+Ng93+axR2o1tqxE= Subject key identifier: 59:EA:CF:82:3B:3E:15:F6:9C:D6:25:5F:54:24:3B:C4:15:EB:80:6A Authority key identifier: 67:B6:C7:96:F8:91:03:59:0F:F1:CC:90:71:DF:E4:C0:DF:38:FD:4D Certificate issuer: /CN=67B6C796F89103590FF1CC9071DFE4C0DF38FD4D Certificate serial: 0310 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Z7bHlviRA1kP8cyQcd_kwN84_U0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.mft Manifest number: 030E Signing time: Mon 02 Mar 2026 05:00:02 +0000 Manifest this update: Mon 02 Mar 2026 05:00:02 +0000 Manifest next update: Mon 02 Mar 2026 11:00:02 +0000 Files and hashes: 1: Avn43BaBZTTez8dzXXC5ev5n_E4.roa (hash: Ub77vZnk4oLPBJQVHv+HVLLuQJPSrWkHLBI8wCAEF84=) 2: Z7bHlviRA1kP8cyQcd_kwN84_U0.crl (hash: vdpmaLjkevkLUyo7QRslXQJ+L3ZQ+zWZEdslYd2+teM=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Z7bHlviRA1kP8cyQcd_kwN84_U0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 10:59:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 784 (0x310) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67B6C796F89103590FF1CC9071DFE4C0DF38FD4D Validity Not Before: Mar 2 05:00:02 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=59EACF823B3E15F69CD6255F54243BC415EB806A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c5:04:fb:58:14:da:e3:78:b4:21:e8:0f:fe: ad:d0:0a:2c:6a:40:e7:4a:59:df:e4:ba:d4:9c:06: 1d:03:cf:b8:c3:ea:c3:ab:f5:d9:77:f3:6a:8c:6f: eb:8a:80:4d:b7:a9:ee:7d:e0:14:fe:e4:3c:de:fc: 76:1e:79:c5:4b:d0:a3:92:a6:ad:b8:c0:78:84:4e: a3:b3:e6:74:ff:20:c5:e8:ed:3a:65:4d:bc:44:f9: 8f:68:ed:31:96:45:4a:2a:3d:35:4e:27:2f:fb:36: 55:8e:c5:1e:c7:09:c4:96:25:39:14:cf:3d:7e:07: 75:a9:96:24:d5:a2:af:cf:30:09:a9:48:91:d7:41: b5:6c:7a:4c:ea:31:3a:43:16:80:e0:b5:4e:ac:4a: dd:0b:a5:9f:07:bd:c2:8b:bc:e4:4e:2e:92:74:68: 05:04:1d:fc:80:ac:ea:b0:07:51:2b:4f:35:2a:95: e7:52:5d:7b:65:52:4b:60:c5:25:28:2b:38:5a:2d: 7a:38:c5:e4:4a:91:e5:1d:ce:26:1e:48:b9:00:c4: c3:d2:3d:4c:9d:45:d6:6a:c0:99:66:ab:bd:5b:fc: 86:4d:97:e6:b2:9e:90:aa:e5:cc:3c:9e:c1:1b:2f: bd:74:8d:23:65:b8:03:85:87:f1:c3:26:a0:37:4a: 05:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:EA:CF:82:3B:3E:15:F6:9C:D6:25:5F:54:24:3B:C4:15:EB:80:6A X509v3 Authority Key Identifier: keyid:67:B6:C7:96:F8:91:03:59:0F:F1:CC:90:71:DF:E4:C0:DF:38:FD:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Z7bHlviRA1kP8cyQcd_kwN84_U0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:93:75:4f:05:77:c6:74:6b:0d:05:58:6c:88:4d:c7:51:ee: d6:67:e4:7f:c5:95:34:61:ab:6a:37:a2:60:d2:61:21:d9:39: 56:95:8e:e9:ca:e6:28:3a:6f:d8:60:e1:28:94:1d:b3:09:b5: 84:a0:ec:20:90:da:6b:ad:2d:69:d9:3a:24:14:ee:15:ea:c9: 02:37:d6:fe:2a:73:c2:b0:05:a0:0f:7b:79:f9:a3:32:53:f3: 5c:ba:04:3e:25:71:d7:4f:3f:b0:0b:f7:31:cf:d5:ce:f2:41: da:80:81:54:cd:a3:cf:20:3e:0e:e0:f8:f9:a8:73:c6:9a:97: 3a:da:7c:41:cd:d8:c6:f4:ea:4d:c5:ab:4e:d0:f9:93:1f:77: e3:bb:3e:b3:e1:87:38:05:a5:cd:7c:7b:4c:09:d0:78:20:0d: 7b:bc:03:bb:53:fb:37:82:31:61:2d:b9:a9:bd:a4:02:45:00: 81:02:17:2c:88:11:02:17:23:58:da:70:40:6a:0e:75:a5:7f: 75:6d:44:d6:08:2b:d6:e7:f4:ec:94:94:e6:6f:8d:1c:96:64: 19:00:de:79:92:56:49:a8:9f:ad:a9:cf:1e:97:3b:92:0b:de: c0:62:ee:b5:16:f9:b0:cb:c3:bd:61:18:3b:1a:25:c4:19:9a: 0c:44:c0:31 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICAxAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjdC NkM3OTZGODkxMDM1OTBGRjFDQzkwNzFERkU0QzBERjM4RkQ0RDAeFw0yNjAzMDIw NTAwMDJaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDU5RUFDRjgyM0IzRTE1 RjY5Q0Q2MjU1RjU0MjQzQkM0MTVFQjgwNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtxQT7WBTa43i0IegP/q3QCixqQOdKWd/kutScBh0Dz7jD6sOr 9dl382qMb+uKgE23qe594BT+5Dze/HYeecVL0KOSpq24wHiETqOz5nT/IMXo7Tpl TbxE+Y9o7TGWRUoqPTVOJy/7NlWOxR7HCcSWJTkUzz1+B3WpliTVoq/PMAmpSJHX QbVsekzqMTpDFoDgtU6sSt0LpZ8HvcKLvOROLpJ0aAUEHfyArOqwB1ErTzUqledS XXtlUktgxSUoKzhaLXo4xeRKkeUdziYeSLkAxMPSPUydRdZqwJlmq71b/IZNl+ay npCq5cw8nsEbL710jSNluAOFh/HDJqA3SgWPAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUWerPgjs+Ffac1iVfVCQ7xBXrgGowHwYDVR0jBBgwFoAUZ7bHlviRA1kP8cyQ cd/kwN84/U0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM5 Ni9aN2JIbHZpUkExa1A4Y3lRY2Rfa3dOODRfVTAuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1o3YkhsdmlSQTFrUDhjeVFjZF9rd044NF9VMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzOTYvWjdiSGx2aVJBMWtQ OGN5UWNkX2t3Tjg0X1UwLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAIqTdU8Fd8Z0aw0FWGyITcdR7tZn5H/FlTRhq2o3omDSYSHZOVaVjunK5ig6 b9hg4SiUHbMJtYSg7CCQ2mutLWnZOiQU7hXqyQI31v4qc8KwBaAPe3n5ozJT81y6 BD4lcddPP7AL9zHP1c7yQdqAgVTNo88gPg7g+Pmoc8aalzrafEHN2Mb06k3Fq07Q +ZMfd+O7PrPhhzgFpc18e0wJ0HggDXu8A7tT+zeCMWEtuam9pAJFAIECFyyIEQIX I1jacEBqDnWlf3VtRNYIK9bn9OyUlOZvjRyWZBkA3nmSVkmon62pzx6XO5IL3sBi 7rUW+bDLw71hGDsaJcQZmgxEwDE= -----END CERTIFICATE-----Generated at Mon Mar 2 09:07:18 2026 by rpki-client