$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft File: qP3wu66meVNpOJbHY_Ep2jtBg-s.mft (raw, json) Hash identifier: zpX6X0ehGTNZ8eVTLu6gEjU408u8mPqr/7v9f1zQYgs= Subject key identifier: 81:42:3B:A7:7A:B7:08:72:49:D6:8E:24:98:CC:5E:6A:24:72:0A:E3 Authority key identifier: A8:FD:F0:BB:AE:A6:79:53:69:38:96:C7:63:F1:29:DA:3B:41:83:EB Certificate issuer: /CN=A8FDF0BBAEA67953693896C763F129DA3B4183EB Certificate serial: 03AF Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qP3wu66meVNpOJbHY_Ep2jtBg-s.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft Manifest number: 03A6 Signing time: Mon 02 Mar 2026 02:30:26 +0000 Manifest this update: Mon 02 Mar 2026 02:30:26 +0000 Manifest next update: Mon 02 Mar 2026 08:30:26 +0000 Files and hashes: 1: 3gLZcEB9b6CcG88DthuUvQzuMng.roa (hash: sTik18vjb2qG/NYnXK3uG9tY/DL8xWE+DymUfLAIlnE=) 2: F0kSGnAIagivcV8g5cUdsyi-f3E.roa (hash: UcsToYzGinH+LaJVhXhSb5v+g/uBThplPaSlnEqw7FM=) 3: RXJSANHbZrdpPxa1bsPmTvjO39Q.roa (hash: 95CUp/VfY7PSkOcAscjkDxH3xv1Hjai/9RJJgyl0Hqs=) 4: WC1nHAg0yIPcV3WIpCTCZDMOWmM.roa (hash: aYTc6ZXigj8FqXcD/bFRpNLNct9j8zBZNjugMTj8hX8=) 5: qP3wu66meVNpOJbHY_Ep2jtBg-s.crl (hash: 9SXLMop/V2p+u+sBBHoq0B8HxoQs0ORgk+zAU6ltolk=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qP3wu66meVNpOJbHY_Ep2jtBg-s.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 08:30:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 943 (0x3af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A8FDF0BBAEA67953693896C763F129DA3B4183EB Validity Not Before: Mar 2 02:30:26 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=81423BA77AB7087249D68E2498CC5E6A24720AE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a7:40:c5:41:bc:f5:4e:9b:62:5d:a9:4a:2d: 3f:e6:d7:ce:78:ff:60:eb:5a:fc:45:18:10:55:5e: 31:48:05:87:80:17:55:a9:d6:e3:b2:13:d4:23:9e: f0:f4:51:84:ae:af:07:95:68:71:29:21:c8:1f:ac: 40:95:69:f7:c8:cd:b5:9f:bd:cf:9d:60:1b:03:8e: 6e:12:c1:53:bd:31:df:c5:b5:e0:67:df:39:04:60: 25:5f:3c:a5:5b:d9:61:9b:01:1f:4c:7e:ee:a7:00: e3:07:dd:69:a7:83:82:e5:99:f9:57:24:6d:1d:a9: 5b:0f:ee:45:21:3f:b4:b1:d9:d5:72:c3:6e:59:19: b9:d0:b7:46:65:b9:04:eb:e6:9d:d7:c8:10:1e:66: a2:ad:3f:07:5b:2f:a8:74:79:1a:9a:7b:fd:1e:7f: f2:a4:33:61:4a:4f:ad:8b:30:d4:b5:fe:a2:77:b0: de:f2:85:76:d2:1d:33:e1:08:f4:b5:9d:53:5e:3a: ae:67:ec:cb:a2:d3:39:ad:47:b5:1c:c4:90:a5:ea: 55:4e:24:55:e5:1a:e2:e2:0f:e3:77:2c:3f:4d:e6: 50:99:a8:4b:bb:fd:81:0d:12:db:31:1e:5c:20:69: ba:16:09:96:4a:0a:3c:f3:f1:c2:8b:2f:fc:7e:b9: 1a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:42:3B:A7:7A:B7:08:72:49:D6:8E:24:98:CC:5E:6A:24:72:0A:E3 X509v3 Authority Key Identifier: keyid:A8:FD:F0:BB:AE:A6:79:53:69:38:96:C7:63:F1:29:DA:3B:41:83:EB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qP3wu66meVNpOJbHY_Ep2jtBg-s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:0f:b7:c3:85:87:89:f9:53:56:14:16:ee:e9:51:58:9e:97: f5:9d:df:2b:62:e4:58:9f:7d:21:07:58:71:76:a7:19:4f:68: b9:00:87:4d:48:38:40:ad:ac:cb:59:48:4f:91:92:9b:4e:a8: 17:55:3d:d6:01:97:7a:fd:b7:9f:5a:c9:16:bb:b1:7b:95:60: 3e:fe:b8:0f:5b:d4:b4:4f:8a:3b:ab:78:85:3d:69:aa:4e:2f: 91:88:1f:2b:de:dd:8b:95:95:f0:8c:34:9e:c4:8d:84:d1:d0: f7:bc:c0:a9:8b:b5:4a:14:3d:df:02:3d:34:b7:40:86:cb:6f: e7:1e:4f:23:10:ce:0c:c4:17:4d:a3:a1:8b:2b:d4:0d:b7:a4: c4:08:14:45:bb:e5:48:70:91:46:81:82:73:59:c7:df:52:cc: 38:30:08:c5:56:09:5f:85:f5:52:5d:c7:81:a6:34:99:ab:86: 28:f2:98:a3:ab:ef:e4:97:76:43:13:78:96:47:4d:2a:ef:2e: e2:3c:bd:2c:e6:6d:b3:b6:c8:ad:ef:0a:db:58:c6:be:6e:a8: 7a:89:a9:c6:5d:3f:ed:20:96:a4:f9:6d:55:69:5b:fa:3d:a6: c3:13:b3:d7:2c:ff:37:9f:42:88:e7:dc:35:74:ac:92:45:ed: 7e:bf:82:af -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICA68wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQThG REYwQkJBRUE2Nzk1MzY5Mzg5NkM3NjNGMTI5REEzQjQxODNFQjAeFw0yNjAzMDIw MjMwMjZaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDgxNDIzQkE3N0FCNzA4 NzI0OUQ2OEUyNDk4Q0M1RTZBMjQ3MjBBRTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyp0DFQbz1TptiXalKLT/m1854/2DrWvxFGBBVXjFIBYeAF1Wp 1uOyE9QjnvD0UYSurweVaHEpIcgfrECVaffIzbWfvc+dYBsDjm4SwVO9Md/FteBn 3zkEYCVfPKVb2WGbAR9Mfu6nAOMH3Wmng4LlmflXJG0dqVsP7kUhP7Sx2dVyw25Z GbnQt0ZluQTr5p3XyBAeZqKtPwdbL6h0eRqae/0ef/KkM2FKT62LMNS1/qJ3sN7y hXbSHTPhCPS1nVNeOq5n7Mui0zmtR7UcxJCl6lVOJFXlGuLiD+N3LD9N5lCZqEu7 /YENEtsxHlwgaboWCZZKCjzz8cKLL/x+uRqZAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUgUI7p3q3CHJJ1o4kmMxeaiRyCuMwHwYDVR0jBBgwFoAUqP3wu66meVNpOJbH Y/Ep2jtBg+swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTg1 L3FQM3d1NjZtZVZOcE9KYkhZX0VwMmp0Qmctcy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvcVAzd3U2Nm1lVk5wT0piSFlfRXAyanRCZy1zLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTg1L3FQM3d1NjZtZVZOcE9K YkhZX0VwMmp0Qmctcy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAbD7fDhYeJ+VNWFBbu6VFYnpf1nd8rYuRYn30hB1hxdqcZT2i5AIdNSDhArazL WUhPkZKbTqgXVT3WAZd6/befWskWu7F7lWA+/rgPW9S0T4o7q3iFPWmqTi+RiB8r 3t2LlZXwjDSexI2E0dD3vMCpi7VKFD3fAj00t0CGy2/nHk8jEM4MxBdNo6GLK9QN t6TECBRFu+VIcJFGgYJzWcffUsw4MAjFVglfhfVSXceBpjSZq4Yo8pijq+/kl3ZD E3iWR00q7y7iPL0s5m2ztsit7wrbWMa+bqh6ianGXT/tIJak+W1VaVv6PabDE7PX LP83n0KI59w1dKySRe1+v4Kv -----END CERTIFICATE-----Generated at Mon Mar 2 07:41:10 2026 by rpki-client