$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/479/Al4teU5v-uKVus5JEQDj0YuccUE.mft File: Al4teU5v-uKVus5JEQDj0YuccUE.mft (raw, json) Hash identifier: uJw/mQgrvrMPt4lFb8FUKYpGmhBjk+xHP14z1FKXyow= Subject key identifier: 68:95:0B:9B:9B:3C:EB:1D:C5:A5:7A:20:50:6D:0C:00:C8:05:DE:63 Authority key identifier: 02:5E:2D:79:4E:6F:FA:E2:95:BA:CE:49:11:00:E3:D1:8B:9C:71:41 Certificate issuer: /CN=025E2D794E6FFAE295BACE491100E3D18B9C7141 Certificate serial: 2250 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Al4teU5v-uKVus5JEQDj0YuccUE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/479/Al4teU5v-uKVus5JEQDj0YuccUE.mft Manifest number: 2248 Signing time: Sun 01 Mar 2026 21:28:25 +0000 Manifest this update: Sun 01 Mar 2026 21:28:25 +0000 Manifest next update: Mon 02 Mar 2026 03:28:25 +0000 Files and hashes: 1: Al4teU5v-uKVus5JEQDj0YuccUE.crl (hash: z/fsye9PdbUXPbzCfjsWHzw6m6UP+ROzj4QXhDRtL0g=) 2: EdKuHFR3MnqwbaM43wM36itNt9A.roa (hash: 5cCZZWRuvcXUASqOAxLpFZlKl075UZSbaOkBkN6iYao=) 3: jqRpm9JiE0rTpOHGGDbx3TEszO4.roa (hash: fUSzDqDIpPhopoceHTVJRAtJ3jDg6hbeIkOZQ0Cna1k=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/479/Al4teU5v-uKVus5JEQDj0YuccUE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/479/Al4teU5v-uKVus5JEQDj0YuccUE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Al4teU5v-uKVus5JEQDj0YuccUE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 03:28:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8784 (0x2250) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=025E2D794E6FFAE295BACE491100E3D18B9C7141 Validity Not Before: Mar 1 21:28:25 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=68950B9B9B3CEB1DC5A57A20506D0C00C805DE63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f8:52:ea:be:09:16:4c:60:da:89:fc:09:a2: ee:ac:81:ee:8c:e7:9d:62:13:ff:7b:b5:18:3f:b1: 04:6d:56:47:1f:98:4a:4f:b1:51:93:c2:c6:9b:53: b0:d2:05:fa:f9:21:8b:e5:09:9e:0a:cf:f1:ed:a8: b2:23:09:60:24:fe:55:be:e7:50:f6:51:17:92:21: 02:ae:64:78:45:9c:fc:cc:82:38:bd:eb:ff:01:6e: 5f:fd:d6:23:08:1f:11:45:65:26:fc:5c:00:cd:32: ce:77:12:98:5d:06:f0:d2:de:12:17:6f:9f:1f:e2: 6c:de:38:7b:08:38:d2:21:4b:98:54:ad:63:bf:50: 49:2e:e0:67:cf:c2:fb:8c:10:86:f6:6a:21:7e:9f: 1c:51:0f:ae:31:db:c6:17:6b:a4:9d:71:49:d1:3f: af:29:0d:8a:58:87:88:31:b4:05:1d:ec:0b:d5:76: 85:e3:cb:11:0e:d6:6f:1e:a0:81:3c:a3:ba:ee:b8: 0b:80:35:cb:9e:d1:ae:aa:3d:04:ec:32:18:d6:0f: f7:04:45:e9:da:ce:d5:ca:27:16:86:b3:9f:ca:dc: 26:36:63:9c:0e:9f:a1:cc:a1:e6:91:56:ec:2d:1d: c5:11:c9:9e:9d:3a:07:be:f3:68:98:61:f7:19:2a: ff:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:95:0B:9B:9B:3C:EB:1D:C5:A5:7A:20:50:6D:0C:00:C8:05:DE:63 X509v3 Authority Key Identifier: keyid:02:5E:2D:79:4E:6F:FA:E2:95:BA:CE:49:11:00:E3:D1:8B:9C:71:41 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/479/Al4teU5v-uKVus5JEQDj0YuccUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Al4teU5v-uKVus5JEQDj0YuccUE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/479/Al4teU5v-uKVus5JEQDj0YuccUE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:1e:76:fc:0f:0a:20:98:d1:6d:fa:4b:13:f2:2c:b9:c5:46: fd:8b:a8:6f:c1:8b:64:c0:4e:cf:84:0c:4a:a6:d0:cc:eb:d8: e1:dd:b2:9f:f4:62:e6:ea:13:8a:4c:3e:3e:c0:72:0e:f0:4f: 6d:4a:54:f6:d4:b3:c7:53:07:32:a2:64:bb:28:69:33:41:49: af:8e:ad:97:0e:63:cc:6d:8e:ca:ee:86:ae:c9:a7:60:59:64: 26:27:91:77:5a:da:dd:7f:f5:9f:29:ad:a9:e9:68:f2:32:a4: f3:30:b4:2e:19:88:6b:0d:ef:5d:66:16:39:66:17:b0:14:73: 59:b1:e4:9c:44:11:3c:bd:e0:fd:ce:8a:84:93:fd:1b:2d:12: 59:89:74:f1:b6:e8:55:72:e1:03:06:f1:26:06:d3:6e:83:86: 19:24:f1:8b:85:b5:20:51:d7:c2:2a:aa:4e:76:c8:6a:51:dd: d8:8a:a7:49:7f:33:24:91:63:89:cd:65:21:f4:ba:73:5d:45: c5:6e:6f:a1:91:c3:11:fe:1a:1e:d9:e3:b8:67:c2:48:41:38: 11:39:32:9d:6b:e2:6f:e4:d6:c7:9b:54:c3:cd:05:4d:31:54: 2a:52:fc:5f:7f:2a:e0:13:05:04:3a:a4:82:19:ee:77:a2:05: 46:54:8b:a4 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICIlAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDI1 RTJENzk0RTZGRkFFMjk1QkFDRTQ5MTEwMEUzRDE4QjlDNzE0MTAeFw0yNjAzMDEy MTI4MjVaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDY4OTUwQjlCOUIzQ0VC MURDNUE1N0EyMDUwNkQwQzAwQzgwNURFNjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4+FLqvgkWTGDaifwJou6sge6M551iE/97tRg/sQRtVkcfmEpP sVGTwsabU7DSBfr5IYvlCZ4Kz/HtqLIjCWAk/lW+51D2UReSIQKuZHhFnPzMgji9 6/8Bbl/91iMIHxFFZSb8XADNMs53EphdBvDS3hIXb58f4mzeOHsIONIhS5hUrWO/ UEku4GfPwvuMEIb2aiF+nxxRD64x28YXa6SdcUnRP68pDYpYh4gxtAUd7AvVdoXj yxEO1m8eoIE8o7ruuAuANcue0a6qPQTsMhjWD/cERenaztXKJxaGs5/K3CY2Y5wO n6HMoeaRVuwtHcURyZ6dOge+82iYYfcZKv+TAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUaJULm5s86x3FpXogUG0MAMgF3mMwHwYDVR0jBBgwFoAUAl4teU5v+uKVus5J EQDj0YuccUEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDc5 L0FsNHRlVTV2LXVLVnVzNUpFUURqMFl1Y2NVRS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvQWw0dGVVNXYtdUtWdXM1SkVRRGowWXVjY1VFLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDc5L0FsNHRlVTV2LXVLVnVz NUpFUURqMFl1Y2NVRS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAfHnb8DwogmNFt+ksT8iy5xUb9i6hvwYtkwE7PhAxKptDM69jh3bKf9GLm6hOK TD4+wHIO8E9tSlT21LPHUwcyomS7KGkzQUmvjq2XDmPMbY7K7oauyadgWWQmJ5F3 Wtrdf/WfKa2p6WjyMqTzMLQuGYhrDe9dZhY5ZhewFHNZseScRBE8veD9zoqEk/0b LRJZiXTxtuhVcuEDBvEmBtNug4YZJPGLhbUgUdfCKqpOdshqUd3YiqdJfzMkkWOJ zWUh9LpzXUXFbm+hkcMR/hoe2eO4Z8JIQTgROTKda+Jv5NbHm1TDzQVNMVQqUvxf fyrgEwUEOqSCGe53ogVGVIuk -----END CERTIFICATE-----Generated at Mon Mar 2 01:58:05 2026 by rpki-client