$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947471873/0/8421F0680EB1B3756485D0F7681F78067E9C172E.mft File: 8421F0680EB1B3756485D0F7681F78067E9C172E.mft (raw, json) Hash identifier: ToaKpYsgf/XwbNkBOWfkabbiKbZPpTosJqdm46bG8LY= Subject key identifier: 41:29:FB:70:0C:95:5D:BB:13:F3:6C:31:93:28:6D:A9:B8:75:AD:BF Authority key identifier: 84:21:F0:68:0E:B1:B3:75:64:85:D0:F7:68:1F:78:06:7E:9C:17:2E Certificate issuer: /CN=8421F0680EB1B3756485D0F7681F78067E9C172E Certificate serial: 31B8DBAEBB6F3E2F7FA17D522B9B831CA5845830 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8421F0680EB1B3756485D0F7681F78067E9C172E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947471873/0/8421F0680EB1B3756485D0F7681F78067E9C172E.mft Manifest number: B1 Signing time: Fri 29 May 2026 11:17:48 +0000 Manifest this update: Fri 29 May 2026 11:12:48 +0000 Manifest next update: Sat 30 May 2026 14:45:48 +0000 Files and hashes: 1: 3131342e32382e3132382e302f31392d3139203d3e2034383132.roa (hash: xqw7IomjKxBRLvFlgY2UqqWMCB7OIYkSZ42ZB2kiYMc=) 2: 8421F0680EB1B3756485D0F7681F78067E9C172E.crl (hash: maOc+Se4PZ0WD9tY5mWiJqwd0BCUIejGPKjIYSDkxAI=) 3: 3131342e32382e3133342e302f32342d3234203d3e2034383337.roa (hash: UYKWkrVdhnWPxrHTELoGMnyGsAs4tF9fFKf83dqOGqw=) 4: 34352e3131352e34342e302f32322d3232203d3e2034383131.roa (hash: y/MSFBJdojfDrNGDV6JXxCEFfy6JVkgRu8xQqlGA1+o=) 5: 3130332e31332e3234342e302f32322d3232203d3e203435303631.roa (hash: s7xNgeXINQ5XzPzluG6befi4PDsxGcgFDif9YN8Cjtc=) 6: 323430303a383230313a3a2f34382d313238203d3e203435303631.roa (hash: 36yhztcZ5Fu1fqVVziBV34gyTNeZzEm9a1ZFJhxb2Fs=) 7: 3131342e3134312e3132382e302f31382d3138203d3e203435303631.roa (hash: //+6nQlQDBn0BXAXI99nw4HMz9l6KIJ4wurfWegCjHI=) 8: 34352e3131362e35322e302f32322d3232203d3e203435303631.roa (hash: Q2GLAzJCuXolF8zvE4SK4DiSfrkjkP04MyuCM9i3+zc=) 9: 3130332e3235312e38342e302f32322d3232203d3e203435303631.roa (hash: Uqm3SQ0Upe1tVgTu+kaQINPzkGJ7F/HFSydp7geQGOU=) 10: 3131342e32382e37322e302f32312d3231203d3e2034383131.roa (hash: z+KkAbE1tNzpn5jtmiDv8aWslLlp03fmv+ixrqjR+0c=) 11: 3132312e35352e302e302f31382d3138203d3e203435303631.roa (hash: NhqqQJvDACKCKhJecfErnOqf7SHXIpNF0kxLCWZji7g=) 12: 3131342e32382e3132382e302f32302d3230203d3e2034383131.roa (hash: 7ctkGQpyisi9zH2u2VKxvHKRSH6rZz0X8ZJdtm7yPBk=) 13: 3131342e3134312e3132382e302f31392d3139203d3e203435303631.roa (hash: rX71zn663mC+PXbN9bZFqHBjL7EmPtxQN3yowzWIv7k=) 14: 3131342e32382e3134342e302f32302d3230203d3e2034383131.roa (hash: E1m38mZb/SG7oWaFlqcUfpVkwaATD41p5lliHG3KeOw=) 15: 3131342e3134312e3136302e302f31392d3139203d3e203435303631.roa (hash: JCIREiuOF9Kv/Vlb/fhDKY/AqbnrP7VRNXpBzQfkI54=) 16: 3131342e3134312e3134382e302f32322d3232203d3e203435303631.roa (hash: GAjhPK7uIzL9Jk1ZUM2oYaioJeK2HkXJIrHGIBCS68A=) 17: 3131342e32382e3136302e302f31392d3139203d3e203435303631.roa (hash: TjgLKPNifN+3Wr/+k2dIOHUJlqXOKSiGUcoZKgFaxSY=) 18: 3230322e3132322e3131322e302f32312d3231203d3e203435303631.roa (hash: p64OlJWN4xzR7Eauh13Kq9y9HsakhADFQc1EpncoPyA=) 19: 323430303a383230303a3a2f33322d313238203d3e203435303631.roa (hash: OJuPzB78ELG7oWhjMKLWmQEkKhS3FsL77IA5FBEyGug=) 20: 323430303a383230313a3a2f33322d313238203d3e203435303631.roa (hash: cCjZk6/D7FQRokzzWSYRnQwLRhmgRoE9l1n51OgrOrQ=) 21: 3131382e3132362e33322e302f31392d3139203d3e203435303631.roa (hash: oxCUlAGrmEVENEvphgoHrtULEK4PmQscKpU+wwYDSQQ=) 22: 3131342e32382e36382e302f32322d3232203d3e2034383131.roa (hash: k2DANdr4kGbHw5DbBF4H016ZNcLf5+VxwPnYFQBum2I=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947471873/0/8421F0680EB1B3756485D0F7681F78067E9C172E.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947471873/0/8421F0680EB1B3756485D0F7681F78067E9C172E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8421F0680EB1B3756485D0F7681F78067E9C172E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:45:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:b8:db:ae:bb:6f:3e:2f:7f:a1:7d:52:2b:9b:83:1c:a5:84:58:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8421F0680EB1B3756485D0F7681F78067E9C172E Validity Not Before: May 29 11:12:48 2026 GMT Not After : May 30 14:45:48 2026 GMT Subject: CN=4129FB700C955DBB13F36C3193286DA9B875ADBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:17:4e:58:ba:58:c3:89:d7:0a:94:64:d4:4b: 4c:75:6a:d3:e2:d9:0f:4d:71:bc:e5:e7:f7:71:25: 0d:5c:9f:2b:ec:0b:33:e7:8e:f6:29:3c:38:df:79: ae:3c:38:bb:02:b9:50:7f:cd:33:88:23:14:67:e6: fb:db:0c:93:45:04:8f:61:6b:07:5e:ca:c7:d4:13: 7f:f2:6f:e0:7a:5c:f1:0b:1b:38:9f:9d:6b:07:f6: 35:02:43:7c:ec:5a:45:c2:dd:a4:c4:79:07:1f:33: 16:d4:43:a8:51:46:a2:d2:f5:e8:f9:84:46:28:5d: 06:75:65:43:7d:7b:0f:fa:f9:46:26:34:4c:1e:1c: f2:ec:56:b3:dd:f4:2e:5d:f4:be:9c:88:2f:bc:99: b5:61:eb:a1:bc:69:2e:bd:97:69:29:89:57:22:68: 32:48:ac:2c:e0:2b:e2:93:8d:5a:6c:33:c1:a3:b6: bf:96:d8:f8:50:22:93:4e:a4:16:be:b7:76:61:fa: 1a:43:88:a4:8a:bf:ca:54:ed:53:3c:22:1a:4c:17: 92:33:e2:25:13:18:1d:6c:d7:26:be:49:c0:de:50: 90:7b:aa:ae:cc:92:f6:a8:20:3e:0d:7e:20:43:72: 51:a4:c1:f3:e6:0d:5e:25:95:d2:5e:1c:ea:4f:f3: ea:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:29:FB:70:0C:95:5D:BB:13:F3:6C:31:93:28:6D:A9:B8:75:AD:BF X509v3 Authority Key Identifier: keyid:84:21:F0:68:0E:B1:B3:75:64:85:D0:F7:68:1F:78:06:7E:9C:17:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947471873/0/8421F0680EB1B3756485D0F7681F78067E9C172E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8421F0680EB1B3756485D0F7681F78067E9C172E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947471873/0/8421F0680EB1B3756485D0F7681F78067E9C172E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:88:da:27:45:9a:81:49:d0:7c:ef:74:2c:19:d6:10:77:e9: 35:60:69:62:7c:69:c4:a0:ce:c1:14:0a:da:3a:7e:33:cf:f8: 0b:1e:fa:a1:89:58:f7:36:4b:38:80:53:8e:df:e1:d6:5a:50: de:17:71:69:45:1f:9b:b6:79:54:4c:af:26:97:fe:b4:4c:fe: b5:43:d6:31:65:03:07:66:71:6f:a6:1a:82:61:be:08:2e:7b: 40:bd:3a:14:20:13:de:a7:c6:b2:3e:35:87:a2:84:87:39:56: 87:f8:64:6c:ce:5d:41:3f:cf:35:78:2d:c3:95:0b:51:09:77: fe:ec:80:f7:fd:fa:0b:b6:2a:dc:54:02:45:d6:99:21:e2:60: c5:3f:3f:40:15:30:bd:d1:53:35:f7:2d:02:4a:02:97:3e:40: 39:5f:6b:47:9d:ff:ac:33:00:88:29:9c:fd:74:70:cf:03:52: f0:26:b2:d4:ad:a2:3f:47:3c:18:42:8d:dd:ca:a5:78:df:0c: 84:4a:ae:a3:81:70:d1:f7:b6:22:0b:c4:06:1f:76:69:96:68: a8:ce:88:6f:c7:02:0f:99:04:b8:8a:f7:09:4f:b9:a7:eb:13: 59:40:7f:b2:a0:a3:a3:cc:72:5a:bb:9a:30:2e:7d:02:28:4f: a4:3d:83:4d -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUMbjbrrtvPi9/oX1SK5uDHKWEWDAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQyMUYwNjgwRUIxQjM3NTY0ODVEMEY3NjgxRjc4MDY3 RTlDMTcyRTAeFw0yNjA1MjkxMTEyNDhaFw0yNjA1MzAxNDQ1NDhaMDMxMTAvBgNV BAMTKDQxMjlGQjcwMEM5NTVEQkIxM0YzNkMzMTkzMjg2REE5Qjg3NUFEQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbF05YuljDidcKlGTUS0x1atPi 2Q9Ncbzl5/dxJQ1cnyvsCzPnjvYpPDjfea48OLsCuVB/zTOIIxRn5vvbDJNFBI9h awdeysfUE3/yb+B6XPELGzifnWsH9jUCQ3zsWkXC3aTEeQcfMxbUQ6hRRqLS9ej5 hEYoXQZ1ZUN9ew/6+UYmNEweHPLsVrPd9C5d9L6ciC+8mbVh66G8aS69l2kpiVci aDJIrCzgK+KTjVpsM8Gjtr+W2PhQIpNOpBa+t3Zh+hpDiKSKv8pU7VM8IhpMF5Iz 4iUTGB1s1ya+ScDeUJB7qq7MkvaoID4NfiBDclGkwfPmDV4lldJeHOpP8+pBAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUQSn7cAyVXbsT82wxkyhtqbh1rb8wHwYDVR0j BBgwFoAUhCHwaA6xs3VkhdD3aB94Bn6cFy4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzQ3MTg3My8wLzg0MjFGMDY4MEVCMUIzNzU2NDg1RDBGNzY4MUY3 ODA2N0U5QzE3MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvODQyMUYwNjgwRUIxQjM3NTY0ODVEMEY3NjgxRjc4MDY3RTlDMTcyRS5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDc0NzE4NzMvMC84NDIxRjA2ODBFQjFC Mzc1NjQ4NUQwRjc2ODFGNzgwNjdFOUMxNzJFLm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALYjaJ0WagUnQ fO90LBnWEHfpNWBpYnxpxKDOwRQK2jp+M8/4Cx76oYlY9zZLOIBTjt/h1lpQ3hdx aUUfm7Z5VEyvJpf+tEz+tUPWMWUDB2Zxb6YagmG+CC57QL06FCAT3qfGsj41h6KE hzlWh/hkbM5dQT/PNXgtw5ULUQl3/uyA9/36C7Yq3FQCRdaZIeJgxT8/QBUwvdFT NfctAkoClz5AOV9rR53/rDMAiCmc/XRwzwNS8Cay1K2iP0c8GEKN3cqleN8MhEqu o4Fw0fe2IgvEBh92aZZoqM6Ib8cCD5kEuIr3CU+5p+sTWUB/sqCjo8xyWruaMC59 AihPpD2DTQ== -----END CERTIFICATE-----Generated at Fri May 29 22:05:21 2026 by rpki-client