$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3418/Iq75clj2o_y0l84acaepGCjcIzk.mft File: Iq75clj2o_y0l84acaepGCjcIzk.mft (raw, json) Hash identifier: wxcdrWOrP+9VS3V9lKUBR8j10Wek9lKVw2mZozgpgdw= Subject key identifier: 2B:4F:9C:4E:0F:73:F3:58:55:13:8F:33:06:39:2A:1F:BB:06:57:E5 Authority key identifier: 22:AE:F9:72:58:F6:A3:FC:B4:97:CE:1A:71:A7:A9:18:28:DC:23:39 Certificate issuer: /CN=22AEF97258F6A3FCB497CE1A71A7A91828DC2339 Certificate serial: 12 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Iq75clj2o_y0l84acaepGCjcIzk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3418/Iq75clj2o_y0l84acaepGCjcIzk.mft Manifest number: 11 Signing time: Sun 01 Mar 2026 22:28:09 +0000 Manifest this update: Sun 01 Mar 2026 22:28:09 +0000 Manifest next update: Mon 02 Mar 2026 04:28:09 +0000 Files and hashes: 1: AoYYwnAcS8KMMiGlwe5y5BVGSvE.roa (hash: srtZ4DM1gKafG3BNbYGZM2h4BgYnRACTG22udaAxFEo=) 2: Iq75clj2o_y0l84acaepGCjcIzk.crl (hash: 9xsRCpYUVsJIxXe/+2fSNWSsxIgNRPYib4mMu7/dKEI=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3418/Iq75clj2o_y0l84acaepGCjcIzk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3418/Iq75clj2o_y0l84acaepGCjcIzk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Iq75clj2o_y0l84acaepGCjcIzk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 04:28:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22AEF97258F6A3FCB497CE1A71A7A91828DC2339 Validity Not Before: Mar 1 22:28:09 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=2B4F9C4E0F73F35855138F3306392A1FBB0657E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:2a:73:2b:4c:5b:de:47:bd:9e:4f:a7:87:57: 09:a3:01:7e:95:c8:58:0d:80:18:90:f6:f1:bb:58: db:9d:09:b9:48:3f:e8:62:c9:ab:60:3b:f6:9e:07: 91:7c:30:cd:51:72:e2:40:ec:ad:9b:53:7a:d2:d1: b3:26:bb:98:56:fa:a5:e6:5a:f2:20:9d:84:af:25: 2b:60:eb:18:9a:05:da:94:7a:bc:11:7e:2b:20:f9: 34:a2:6f:35:8b:73:1e:84:f2:d6:6d:d3:96:c6:47: 37:93:6e:89:92:7e:86:9f:de:0f:87:b0:e8:66:59: e1:bd:18:92:99:ef:71:56:77:4c:3a:55:e5:b2:35: 70:77:be:1b:a4:81:18:ba:86:f7:58:08:64:5a:2e: ea:36:67:05:e9:79:d3:f9:6d:f4:d4:dd:74:a6:05: 85:60:e9:ce:17:63:42:b2:da:65:fa:c2:a1:05:a2: 6f:92:94:5f:71:99:6c:d7:f9:f9:3f:13:34:25:f3: 77:65:ef:ab:f6:40:3f:cb:14:2d:13:01:9c:b3:68: a8:0a:27:e9:71:9f:50:45:2a:a8:8e:be:67:1b:36: cd:f2:5b:30:ab:ad:f9:91:a0:d8:ce:62:fc:20:19: 82:b9:e3:c2:42:9f:13:ca:77:06:68:94:16:e3:58: 6d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:4F:9C:4E:0F:73:F3:58:55:13:8F:33:06:39:2A:1F:BB:06:57:E5 X509v3 Authority Key Identifier: keyid:22:AE:F9:72:58:F6:A3:FC:B4:97:CE:1A:71:A7:A9:18:28:DC:23:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3418/Iq75clj2o_y0l84acaepGCjcIzk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Iq75clj2o_y0l84acaepGCjcIzk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3418/Iq75clj2o_y0l84acaepGCjcIzk.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:d3:c7:bb:fd:d0:8d:a8:75:53:51:c6:2d:bb:2b:c4:fe:4f: 7b:1c:c5:0c:7e:de:b6:69:f7:3f:8c:98:64:6d:e4:91:92:dc: 68:e5:76:c5:1c:6c:51:c0:d3:ba:93:26:80:09:58:23:22:45: d9:f5:81:04:1b:03:d6:44:f8:21:34:db:a4:b9:aa:0a:1a:e9: a3:1b:19:44:8f:0f:fe:6a:05:34:2d:6c:7a:94:a3:e5:ab:ca: 7b:eb:04:73:d8:f8:06:bc:04:6c:08:c5:fa:03:6b:c4:55:96: a3:ea:1d:1b:41:60:b0:c5:d1:57:e8:f6:b3:59:36:28:78:06: bd:a8:ca:b6:74:2b:06:9e:9a:81:7b:83:5c:1a:d1:17:df:86: fd:d2:ca:d9:2a:98:10:f6:0d:8b:fa:1c:ad:cb:50:8c:7b:78: dc:f7:17:6c:1e:df:b5:42:09:d2:c7:f2:25:4c:0c:5a:1b:0c: 9d:2e:54:fd:be:36:b2:be:c7:66:c7:e5:f2:2c:46:08:44:f4: 01:da:15:9d:45:bb:76:02:70:01:8e:dd:cd:b0:ce:a7:fb:04: dd:c4:e8:32:87:2e:92:c5:02:c8:7a:cd:4f:1b:08:84:f2:7e: 29:c8:18:03:28:e3:49:11:3f:03:f6:8e:89:5f:89:8e:32:e7: e8:cc:39:aa -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgIBEjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMkFF Rjk3MjU4RjZBM0ZDQjQ5N0NFMUE3MUE3QTkxODI4REMyMzM5MB4XDTI2MDMwMTIy MjgwOVoXDTI3MDEwOTA4MjMxOFowMzExMC8GA1UEAxMoMkI0RjlDNEUwRjczRjM1 ODU1MTM4RjMzMDYzOTJBMUZCQjA2NTdFNTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOwqcytMW95HvZ5Pp4dXCaMBfpXIWA2AGJD28btY250JuUg/6GLJ q2A79p4HkXwwzVFy4kDsrZtTetLRsya7mFb6peZa8iCdhK8lK2DrGJoF2pR6vBF+ KyD5NKJvNYtzHoTy1m3TlsZHN5NuiZJ+hp/eD4ew6GZZ4b0YkpnvcVZ3TDpV5bI1 cHe+G6SBGLqG91gIZFou6jZnBel50/lt9NTddKYFhWDpzhdjQrLaZfrCoQWib5KU X3GZbNf5+T8TNCXzd2Xvq/ZAP8sULRMBnLNoqAon6XGfUEUqqI6+Zxs2zfJbMKut +ZGg2M5i/CAZgrnjwkKfE8p3BmiUFuNYbcsCAwEAAaOCAgwwggIIMB0GA1UdDgQW BBQrT5xOD3PzWFUTjzMGOSofuwZX5TAfBgNVHSMEGDAWgBQirvlyWPaj/LSXzhpx p6kYKNwjOTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zNDE4 L0lxNzVjbGoyb195MGw4NGFjYWVwR0NqY0l6ay5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvSXE3NWNsajJvX3kwbDg0YWNhZXBHQ2pjSXprLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzQxOC9JcTc1Y2xqMm9feTBs ODRhY2FlcEdDamNJemsubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWdPHu/3Qjah1U1HGLbsrxP5PexzFDH7etmn3P4yYZG3kkZLcaOV2xRxsUcDT upMmgAlYIyJF2fWBBBsD1kT4ITTbpLmqChrpoxsZRI8P/moFNC1sepSj5avKe+sE c9j4BrwEbAjF+gNrxFWWo+odG0FgsMXRV+j2s1k2KHgGvajKtnQrBp6agXuDXBrR F9+G/dLK2SqYEPYNi/ocrctQjHt43PcXbB7ftUIJ0sfyJUwMWhsMnS5U/b42sr7H Zsfl8ixGCET0AdoVnUW7dgJwAY7dzbDOp/sE3cToMocuksUCyHrNTxsIhPJ+KcgY AyjjSRE/A/aOiV+JjjLn6Mw5qg== -----END CERTIFICATE-----Generated at Mon Mar 2 03:38:53 2026 by rpki-client