$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.mft File: D9EB5C6DC17682949F5243587DA38740C3EEA953.mft (raw, json) Hash identifier: wCmbwtSBCaO7audyewyzRiTwNaxVIpQFsEHpQLQmWoM= Subject key identifier: 9D:D2:CD:0D:12:A8:EF:AE:1D:8A:32:70:7D:56:CC:F4:5F:20:E5:66 Authority key identifier: D9:EB:5C:6D:C1:76:82:94:9F:52:43:58:7D:A3:87:40:C3:EE:A9:53 Certificate issuer: /CN=D9EB5C6DC17682949F5243587DA38740C3EEA953 Certificate serial: 55EA6815F66BB20564D79E4448E118387244A72A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.mft Manifest number: 2F Signing time: Sun 22 Feb 2026 22:32:30 +0000 Manifest this update: Sun 22 Feb 2026 22:27:30 +0000 Manifest next update: Tue 24 Feb 2026 00:01:30 +0000 Files and hashes: 1: 3131392e3136312e3133362e302f32312d3234203d3e203633363331.roa (hash: q975HSO7Atv6pgfxEXanM5WMHvz/cN828nBH1I+FNos=) 2: D9EB5C6DC17682949F5243587DA38740C3EEA953.crl (hash: 8keV5B8X+8BwEgCR4Dw8eShqGXmFHSQ7Z+xQPTN0jmI=) 3: 3131392e3136312e3133382e302f32342d3234203d3e203633363331.roa (hash: TT0ksNomih+B2jCsvyApNDhVN1yErVHUo6JYmbCpCys=) 4: 323430373a393038303a3a2f33322d3634203d3e203633363331.roa (hash: RtOoe4RmLFL3YbHfpUMA6V286a2QhifPZV7nvutl6kg=) 5: 3131392e3136312e3134342e302f32312d3234203d3e203633363331.roa (hash: WUSgHCOBVUebvdwfVgY5RDlp2/uC/v+NAYmc5JoVMPE=) 6: 3131392e3136312e3135322e302f32312d3234203d3e203633363331.roa (hash: BBTRwX86DtfzxU9rTrkCfkvyq+j6Fyat/htWxMwmilE=) 7: 323430373a386238303a3a2f33322d3634203d3e203633363331.roa (hash: WdIf6CkgwHhBtmwW9wC8z2X2aD7F1CPhNusCG6l7zvk=) 8: 3131392e3136312e3136302e302f32312d3234203d3e203633363331.roa (hash: fm9f22URXj00X+QlA/PpQ/F1F4uphlfQee6cITcqhgg=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Feb 2026 09:42:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:ea:68:15:f6:6b:b2:05:64:d7:9e:44:48:e1:18:38:72:44:a7:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9EB5C6DC17682949F5243587DA38740C3EEA953 Validity Not Before: Feb 22 22:27:30 2026 GMT Not After : Feb 24 00:01:30 2026 GMT Subject: CN=9DD2CD0D12A8EFAE1D8A32707D56CCF45F20E566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8c:96:d0:2a:db:c9:8c:79:8b:8c:a3:79:29: 22:2f:ee:2a:e5:50:e0:db:22:3b:81:70:f8:0b:92: 4b:cf:c4:80:b6:1f:62:d5:08:ee:0b:74:55:08:a6: 9c:68:35:14:cf:e2:15:35:25:e2:62:b0:38:48:2b: 49:ef:44:b1:f0:c2:69:26:f1:5a:9b:fc:ce:6b:6e: bc:0c:3c:67:ac:c6:c8:fb:d3:78:14:f9:3c:7e:7d: 92:2d:cf:b0:b3:66:78:60:bd:8b:52:f6:77:29:97: a1:cb:a0:3e:0b:03:45:a2:61:61:9c:fe:ec:4c:6a: ed:82:e2:25:00:2c:9e:45:d2:16:f2:d0:79:b3:82: 51:1d:3e:f9:a3:fd:52:66:66:4b:33:2f:7f:7c:dd: df:d7:1a:c6:e1:39:30:b4:ac:49:81:82:ef:53:30: 60:fc:f8:a8:1d:6f:42:d5:f5:5e:d1:26:00:46:58: 02:a7:19:94:27:af:dc:e1:db:7e:aa:05:e2:a6:95: 78:cf:41:a9:18:8a:83:98:3f:d6:f2:2c:d6:3d:f1: 78:b3:5d:76:d2:f4:ce:b3:12:3d:8f:94:af:9c:26: 10:c6:9b:4f:80:b8:2a:93:32:b8:85:a4:7c:fc:b1: 69:3c:d8:03:88:b6:a0:07:1c:61:5b:87:19:ec:e8: 48:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:D2:CD:0D:12:A8:EF:AE:1D:8A:32:70:7D:56:CC:F4:5F:20:E5:66 X509v3 Authority Key Identifier: keyid:D9:EB:5C:6D:C1:76:82:94:9F:52:43:58:7D:A3:87:40:C3:EE:A9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:99:f1:01:4b:3f:c5:ef:4c:25:39:57:11:37:73:50:3d:12: 79:22:af:21:cf:02:db:1a:ac:68:03:7e:c1:d4:84:a8:f4:e5: a5:31:0c:db:67:df:be:77:4b:f6:a0:89:39:8b:3a:b9:a2:1b: a9:a3:d7:5f:dd:05:44:3a:91:e6:0f:ee:48:da:61:af:98:dd: 58:cb:0c:ad:b8:4c:2e:b7:66:38:7d:78:33:9b:5f:c5:10:75: a1:73:64:38:8b:95:4d:70:2a:43:a5:c5:a8:d1:ac:1b:82:d9: 70:cc:5e:77:94:c0:88:b9:db:f4:68:c9:68:39:20:05:a0:89: 72:90:57:cf:af:14:62:1a:8d:a5:4c:da:98:b0:85:9a:bb:c4: c0:11:a6:23:bf:5e:b5:ad:03:23:50:29:91:c7:ce:2b:0e:33: c9:59:96:ad:cf:70:a4:ac:91:d8:b5:7c:65:39:e3:09:30:d8: 70:40:ee:a2:cb:6f:38:69:57:2c:01:c7:c6:2f:dc:7b:49:6a: e4:61:4b:5e:5f:8e:25:96:70:d0:30:de:b9:26:f6:f2:09:83: 15:46:a6:4d:65:c6:88:ca:63:f5:35:14:f7:3e:b7:48:bf:bd: eb:37:32:29:0a:f0:95:aa:71:57:50:a3:d4:04:1d:46:59:31: 6b:17:96:06 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUVepoFfZrsgVk155ESOEYOHJEpyowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlFQjVDNkRDMTc2ODI5NDlGNTI0MzU4N0RBMzg3NDBD M0VFQTk1MzAeFw0yNjAyMjIyMjI3MzBaFw0yNjAyMjQwMDAxMzBaMDMxMTAvBgNV BAMTKDlERDJDRDBEMTJBOEVGQUUxRDhBMzI3MDdENTZDQ0Y0NUYyMEU1NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIjJbQKtvJjHmLjKN5KSIv7irl UODbIjuBcPgLkkvPxIC2H2LVCO4LdFUIppxoNRTP4hU1JeJisDhIK0nvRLHwwmkm 8Vqb/M5rbrwMPGesxsj703gU+Tx+fZItz7CzZnhgvYtS9ncpl6HLoD4LA0WiYWGc /uxMau2C4iUALJ5F0hby0HmzglEdPvmj/VJmZkszL3983d/XGsbhOTC0rEmBgu9T MGD8+Kgdb0LV9V7RJgBGWAKnGZQnr9zh236qBeKmlXjPQakYioOYP9byLNY98Xiz XXbS9M6zEj2PlK+cJhDGm0+AuCqTMriFpHz8sWk82AOItqAHHGFbhxns6Eg1AgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUndLNDRKo764dijJwfVbM9F8g5WYwHwYDVR0j BBgwFoAU2etcbcF2gpSfUkNYfaOHQMPuqVMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njg2NDY0MS8wL0Q5RUI1QzZEQzE3NjgyOTQ5RjUyNDM1ODdEQTM4 NzQwQzNFRUE5NTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDlFQjVDNkRDMTc2ODI5NDlGNTI0MzU4N0RBMzg3NDBDM0VFQTk1My5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODIzMzAzNDY4NjQ2NDEvMC9EOUVCNUM2REMxNzY4 Mjk0OUY1MjQzNTg3REEzODc0MEMzRUVBOTUzLm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqpnxAUs/xe9M JTlXETdzUD0SeSKvIc8C2xqsaAN+wdSEqPTlpTEM22ffvndL9qCJOYs6uaIbqaPX X90FRDqR5g/uSNphr5jdWMsMrbhMLrdmOH14M5tfxRB1oXNkOIuVTXAqQ6XFqNGs G4LZcMxed5TAiLnb9GjJaDkgBaCJcpBXz68UYhqNpUzamLCFmrvEwBGmI79eta0D I1ApkcfOKw4zyVmWrc9wpKyR2LV8ZTnjCTDYcEDuostvOGlXLAHHxi/ce0lq5GFL Xl+OJZZw0DDeuSb28gmDFUamTWXGiMpj9TUU9z63SL+96zcyKQrwlapxV1Cj1AQd RlkxaxeWBg== -----END CERTIFICATE-----Generated at Mon Feb 23 02:06:07 2026 by rpki-client