$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947471873/0/8421F0680EB1B3756485D0F7681F78067E9C172E.mft File: 8421F0680EB1B3756485D0F7681F78067E9C172E.mft (raw, json) Hash identifier: w26AyEygbNDaW14TaScm1ig/E6UQDCF7erar8RDJaxs= Subject key identifier: 18:3E:EE:57:15:1E:CA:E2:81:A5:10:C6:3E:7C:C2:CE:18:56:E7:8F Authority key identifier: 84:21:F0:68:0E:B1:B3:75:64:85:D0:F7:68:1F:78:06:7E:9C:17:2E Certificate issuer: /CN=8421F0680EB1B3756485D0F7681F78067E9C172E Certificate serial: 5EEDA6A8A406E0A8D6A97EDA2FE8DB1DD17C59F9 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8421F0680EB1B3756485D0F7681F78067E9C172E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947471873/0/8421F0680EB1B3756485D0F7681F78067E9C172E.mft Manifest number: 2E Signing time: Sun 22 Feb 2026 06:37:30 +0000 Manifest this update: Sun 22 Feb 2026 06:32:30 +0000 Manifest next update: Mon 23 Feb 2026 09:12:30 +0000 Files and hashes: 1: 8421F0680EB1B3756485D0F7681F78067E9C172E.crl (hash: QuLW2SyptK7SEk2OoOSrfLAQaOG3djFZqiVSfQKTTp0=) 2: 323430303a383230313a3a2f34382d313238203d3e203435303631.roa (hash: 36yhztcZ5Fu1fqVVziBV34gyTNeZzEm9a1ZFJhxb2Fs=) 3: 323430303a383230313a3a2f33322d313238203d3e203435303631.roa (hash: cCjZk6/D7FQRokzzWSYRnQwLRhmgRoE9l1n51OgrOrQ=) 4: 323430303a383230303a3a2f33322d313238203d3e203435303631.roa (hash: OJuPzB78ELG7oWhjMKLWmQEkKhS3FsL77IA5FBEyGug=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947471873/0/8421F0680EB1B3756485D0F7681F78067E9C172E.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947471873/0/8421F0680EB1B3756485D0F7681F78067E9C172E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8421F0680EB1B3756485D0F7681F78067E9C172E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Feb 2026 09:12:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:ed:a6:a8:a4:06:e0:a8:d6:a9:7e:da:2f:e8:db:1d:d1:7c:59:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8421F0680EB1B3756485D0F7681F78067E9C172E Validity Not Before: Feb 22 06:32:30 2026 GMT Not After : Feb 23 09:12:30 2026 GMT Subject: CN=183EEE57151ECAE281A510C63E7CC2CE1856E78F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1f:96:04:be:fe:03:51:ff:1e:aa:c1:59:c6: 39:27:f3:94:39:28:51:ba:5b:6e:f8:97:b7:aa:e4: 92:32:e4:f8:4c:1d:17:fa:e1:41:67:82:30:b8:95: f7:6b:c3:c7:43:f1:3d:9b:47:38:b8:b0:6c:3a:ad: c7:ad:6e:ab:da:18:89:67:a4:a9:53:e4:00:0e:21: 9b:32:ab:72:19:02:03:f4:cb:6c:79:89:6c:9e:58: a7:44:d2:d7:57:17:8c:0f:4c:56:48:84:a4:ec:9e: 52:8c:1a:88:c5:d3:25:26:4f:28:e3:c2:29:e7:4e: 29:e0:f4:db:ee:68:4c:cf:bf:9c:64:c4:60:a2:51: 46:a3:68:da:de:77:1d:c0:d4:71:0b:b6:e3:ad:53: 8e:ec:d8:c0:ee:97:9a:a4:d3:2e:04:e6:80:d9:f9: 00:8c:38:ae:1d:7e:ec:77:5b:5d:a5:e9:c5:65:cd: 0d:34:fa:d5:5e:a7:03:90:0e:57:e8:51:50:2d:af: 94:33:1d:b0:93:10:f8:c5:5b:68:53:2d:53:8c:dd: ae:94:17:eb:4a:47:87:0f:bc:4a:d8:63:05:3a:ed: a6:ef:86:0a:0d:12:b6:8f:16:74:58:3a:e7:a5:82: df:f2:3a:4a:20:5d:37:a8:25:19:4d:03:5f:8b:a7: 9e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:3E:EE:57:15:1E:CA:E2:81:A5:10:C6:3E:7C:C2:CE:18:56:E7:8F X509v3 Authority Key Identifier: keyid:84:21:F0:68:0E:B1:B3:75:64:85:D0:F7:68:1F:78:06:7E:9C:17:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947471873/0/8421F0680EB1B3756485D0F7681F78067E9C172E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8421F0680EB1B3756485D0F7681F78067E9C172E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947471873/0/8421F0680EB1B3756485D0F7681F78067E9C172E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:c7:cd:b2:9c:dc:fb:51:55:6b:23:94:b4:3b:f2:a1:36:76: 3c:44:d7:6a:46:03:c4:2a:c1:de:dc:64:47:fa:31:40:99:86: 0f:44:0a:57:2c:9d:ad:97:c7:6a:3f:f2:8c:f0:68:9f:99:b6: ad:01:47:a3:43:a1:23:42:a6:82:49:b3:17:e8:85:47:79:e2: 21:6c:5f:c5:ae:d8:83:91:6e:71:bf:cc:65:5f:c9:79:fe:12: 04:67:91:11:59:b3:9b:98:fe:eb:ea:20:cc:61:fb:0b:88:08: 61:7b:c0:db:8b:fa:52:2c:ca:17:f6:e2:ac:04:20:ec:4f:ec: 64:e9:8c:59:98:44:73:1e:a7:8b:e5:dc:db:cd:f5:f7:8d:ed: f7:4a:ec:e8:e0:1d:33:e1:4f:1a:87:98:ed:1d:4f:bf:90:a9: 7f:48:b7:b3:52:2f:07:d0:23:dd:21:43:8e:3b:2c:b0:22:bc: 9a:17:8a:d6:a4:9a:c5:da:70:a9:f4:a2:c3:a7:8d:0c:0a:9e: 79:32:e5:42:3a:50:54:f9:27:d7:cf:e4:dc:9a:ec:86:38:f8: b5:af:58:31:0b:91:57:d5:2b:6a:9d:5e:40:81:ac:29:40:37: 62:7d:86:84:40:a1:1f:1f:9e:5d:c6:1d:ef:db:de:94:8e:1a: ff:3d:b9:fe -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUXu2mqKQG4KjWqX7aL+jbHdF8WfkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQyMUYwNjgwRUIxQjM3NTY0ODVEMEY3NjgxRjc4MDY3 RTlDMTcyRTAeFw0yNjAyMjIwNjMyMzBaFw0yNjAyMjMwOTEyMzBaMDMxMTAvBgNV BAMTKDE4M0VFRTU3MTUxRUNBRTI4MUE1MTBDNjNFN0NDMkNFMTg1NkU3OEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJH5YEvv4DUf8eqsFZxjkn85Q5 KFG6W274l7eq5JIy5PhMHRf64UFngjC4lfdrw8dD8T2bRzi4sGw6rcetbqvaGIln pKlT5AAOIZsyq3IZAgP0y2x5iWyeWKdE0tdXF4wPTFZIhKTsnlKMGojF0yUmTyjj winnTing9NvuaEzPv5xkxGCiUUajaNredx3A1HELtuOtU47s2MDul5qk0y4E5oDZ +QCMOK4dfux3W12l6cVlzQ00+tVepwOQDlfoUVAtr5QzHbCTEPjFW2hTLVOM3a6U F+tKR4cPvErYYwU67abvhgoNEraPFnRYOuelgt/yOkogXTeoJRlNA1+Lp57TAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUGD7uVxUeyuKBpRDGPnzCzhhW548wHwYDVR0j BBgwFoAUhCHwaA6xs3VkhdD3aB94Bn6cFy4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzQ3MTg3My8wLzg0MjFGMDY4MEVCMUIzNzU2NDg1RDBGNzY4MUY3 ODA2N0U5QzE3MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvODQyMUYwNjgwRUIxQjM3NTY0ODVEMEY3NjgxRjc4MDY3RTlDMTcyRS5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDc0NzE4NzMvMC84NDIxRjA2ODBFQjFC Mzc1NjQ4NUQwRjc2ODFGNzgwNjdFOUMxNzJFLm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALMfNspzc+1FV ayOUtDvyoTZ2PETXakYDxCrB3txkR/oxQJmGD0QKVyydrZfHaj/yjPBon5m2rQFH o0OhI0KmgkmzF+iFR3niIWxfxa7Yg5Fucb/MZV/Jef4SBGeREVmzm5j+6+ogzGH7 C4gIYXvA24v6UizKF/birAQg7E/sZOmMWZhEcx6ni+Xc2831943t90rs6OAdM+FP GoeY7R1Pv5Cpf0i3s1IvB9Aj3SFDjjsssCK8mheK1qSaxdpwqfSiw6eNDAqeeTLl QjpQVPkn18/k3Jrshjj4ta9YMQuRV9Urap1eQIGsKUA3Yn2GhEChHx+eXcYd79ve lI4a/z25/g== -----END CERTIFICATE-----Generated at Mon Feb 23 02:06:11 2026 by rpki-client