$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.mft File: qaFpos8CL7oK84PKmXtFZP7V-Js.mft (raw, json) Hash identifier: kL78pmE+1uaihySaNwSAk0nwvV+nkwKzrXOfKJpRHj0= Subject key identifier: 2B:16:57:18:FF:B4:71:E6:D9:83:81:1B:34:9F:CF:8F:44:B9:98:BE Authority key identifier: A9:A1:69:A2:CF:02:2F:BA:0A:F3:83:CA:99:7B:45:64:FE:D5:F8:9B Certificate issuer: /CN=A9A169A2CF022FBA0AF383CA997B4564FED5F89B Certificate serial: 0292 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qaFpos8CL7oK84PKmXtFZP7V-Js.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.mft Manifest number: 0290 Signing time: Mon 02 Mar 2026 00:00:03 +0000 Manifest this update: Mon 02 Mar 2026 00:00:03 +0000 Manifest next update: Mon 02 Mar 2026 06:00:03 +0000 Files and hashes: 1: bd9GrxZEfHWtOWHMuYJUpax949Y.roa (hash: Vy2eK3SQCyGw1GNGKXYuy4gqV0cZkl9Rql6LWidAWcA=) 2: qaFpos8CL7oK84PKmXtFZP7V-Js.crl (hash: 16o1Q964WXeCIVp5FU3b99LGSqRetBjM1zhmCHkow5k=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qaFpos8CL7oK84PKmXtFZP7V-Js.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 05:59:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 658 (0x292) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9A169A2CF022FBA0AF383CA997B4564FED5F89B Validity Not Before: Mar 2 00:00:03 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=2B165718FFB471E6D983811B349FCF8F44B998BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:bf:94:ff:7b:7c:37:5a:1f:e8:b6:66:c3:6f: 66:38:b7:ae:da:2e:b1:ad:5c:ff:df:d7:a7:ad:7e: 70:4b:4f:7a:44:61:e8:b8:4d:e6:c5:b6:2f:95:6b: 48:87:0a:24:3a:f8:b7:f7:6f:36:c0:5f:ac:96:66: 8c:fb:47:ea:8a:ae:1b:f7:3f:f2:eb:4e:20:90:c7: 47:99:75:23:d0:0b:fe:4c:ba:60:7c:45:db:e8:0a: 8e:97:2a:87:33:b0:0a:be:54:cd:69:a8:71:14:25: 20:ca:dd:e8:72:a5:11:4d:9e:41:8b:97:66:1b:bc: 45:16:61:05:54:25:aa:c6:24:05:5d:b0:36:3b:da: 80:35:25:bb:ec:85:6e:30:5c:a6:91:52:70:7f:f1: 74:72:0a:27:32:4a:70:b5:dd:e3:eb:4d:d3:c2:55: 2c:ab:e3:37:59:98:9c:63:51:eb:29:63:8d:6a:1b: dd:6c:f4:44:87:eb:1e:7d:f8:60:93:05:1b:5f:58: f0:fc:5b:f1:cf:68:78:d7:46:3f:d5:b9:73:06:10: af:9c:56:1f:0a:8b:b5:0e:80:ad:c3:92:90:07:f2: ec:b8:a4:e1:7b:b9:53:f7:db:1b:8a:a5:bd:ea:c1: 65:04:13:7a:d3:d4:b6:06:d0:a7:bf:83:5a:ef:1f: c5:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:16:57:18:FF:B4:71:E6:D9:83:81:1B:34:9F:CF:8F:44:B9:98:BE X509v3 Authority Key Identifier: keyid:A9:A1:69:A2:CF:02:2F:BA:0A:F3:83:CA:99:7B:45:64:FE:D5:F8:9B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qaFpos8CL7oK84PKmXtFZP7V-Js.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:6b:ec:7b:87:b7:ca:1a:cf:a1:c7:f1:0e:20:32:01:a6:06: 8f:e3:86:d5:94:1b:1a:56:a9:76:8c:64:95:bf:7c:ea:dc:b3: 92:f0:cc:1e:d0:e4:aa:79:bd:b0:3c:77:f1:6e:ed:80:91:59: 40:2b:9a:c3:6c:84:3d:81:7a:16:ae:ef:8f:35:69:7a:8f:0b: dd:26:d7:d7:a5:ce:e0:c2:70:34:5d:a6:56:1f:93:6c:c3:93: 1d:6a:5a:23:dd:3e:94:78:a5:4a:e5:01:10:22:4c:3f:1d:e2: db:7e:d4:66:8c:5d:fc:46:63:f2:25:ea:7f:bb:29:d9:4b:f2: 3d:22:5e:37:ca:e8:33:3a:6e:8f:02:26:b4:b2:4a:40:e8:4b: a6:a0:d8:0e:64:df:fa:12:a3:e9:bd:a5:0f:67:0d:6c:86:be: 52:c4:c2:38:ec:c6:5f:c2:09:7f:b4:4a:0d:1c:ce:3b:11:b9: 94:1f:f0:dc:a2:b2:b8:76:49:92:72:37:76:6e:35:5a:9d:3b: 0e:43:3c:6a:d8:66:da:96:b3:b3:35:bb:73:72:ee:6f:21:3e: b7:57:93:dc:ed:7b:4f:e1:af:dd:8a:66:01:26:72:c8:4a:ae: c1:ce:ce:90:52:c0:73:52:98:03:84:23:57:de:df:f2:9a:10: 27:00:7a:ab -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICApIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTlB MTY5QTJDRjAyMkZCQTBBRjM4M0NBOTk3QjQ1NjRGRUQ1Rjg5QjAeFw0yNjAzMDIw MDAwMDNaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDJCMTY1NzE4RkZCNDcx RTZEOTgzODExQjM0OUZDRjhGNDRCOTk4QkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjv5T/e3w3Wh/otmbDb2Y4t67aLrGtXP/f16etfnBLT3pEYei4 TebFti+Va0iHCiQ6+Lf3bzbAX6yWZoz7R+qKrhv3P/LrTiCQx0eZdSPQC/5MumB8 RdvoCo6XKoczsAq+VM1pqHEUJSDK3ehypRFNnkGLl2YbvEUWYQVUJarGJAVdsDY7 2oA1JbvshW4wXKaRUnB/8XRyCicySnC13ePrTdPCVSyr4zdZmJxjUespY41qG91s 9ESH6x59+GCTBRtfWPD8W/HPaHjXRj/VuXMGEK+cVh8Ki7UOgK3DkpAH8uy4pOF7 uVP32xuKpb3qwWUEE3rT1LYG0Ke/g1rvH8UhAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUKxZXGP+0cebZg4EbNJ/Pj0S5mL4wHwYDVR0jBBgwFoAUqaFpos8CL7oK84PK mXtFZP7V+JswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM5 OS9xYUZwb3M4Q0w3b0s4NFBLbVh0RlpQN1YtSnMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3FhRnBvczhDTDdvSzg0UEttWHRGWlA3Vi1Kcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzOTkvcWFGcG9zOENMN29L ODRQS21YdEZaUDdWLUpzLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAC1r7HuHt8oaz6HH8Q4gMgGmBo/jhtWUGxpWqXaMZJW/fOrcs5LwzB7Q5Kp5 vbA8d/Fu7YCRWUArmsNshD2Behau7481aXqPC90m19elzuDCcDRdplYfk2zDkx1q WiPdPpR4pUrlARAiTD8d4tt+1GaMXfxGY/Il6n+7KdlL8j0iXjfK6DM6bo8CJrSy SkDoS6ag2A5k3/oSo+m9pQ9nDWyGvlLEwjjsxl/CCX+0Sg0czjsRuZQf8Nyisrh2 SZJyN3ZuNVqdOw5DPGrYZtqWs7M1u3Ny7m8hPrdXk9zte0/hr92KZgEmcshKrsHO zpBSwHNSmAOEI1fe3/KaECcAeqs= -----END CERTIFICATE-----Generated at Mon Mar 2 05:07:07 2026 by rpki-client