$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.mft File: D9EB5C6DC17682949F5243587DA38740C3EEA953.mft (raw, json) Hash identifier: aNQP3X3iyifWKA3GR8gUHJx9x8eWODHHiM5WZlZ3NCY= Subject key identifier: F3:96:CA:21:45:DD:36:69:88:D6:0C:48:79:52:0F:9A:6F:0F:BF:24 Authority key identifier: D9:EB:5C:6D:C1:76:82:94:9F:52:43:58:7D:A3:87:40:C3:EE:A9:53 Certificate issuer: /CN=D9EB5C6DC17682949F5243587DA38740C3EEA953 Certificate serial: 2FBA3796DB69AE1A40B71463A33B5477FA961D2E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.mft Manifest number: 71 Signing time: Sun 12 Apr 2026 18:34:16 +0000 Manifest this update: Sun 12 Apr 2026 18:29:16 +0000 Manifest next update: Mon 13 Apr 2026 22:25:16 +0000 Files and hashes: 1: 323430373a386238303a3a2f33322d3634203d3e203633363331.roa (hash: WdIf6CkgwHhBtmwW9wC8z2X2aD7F1CPhNusCG6l7zvk=) 2: 323430373a393038303a3a2f33322d3634203d3e203633363331.roa (hash: RtOoe4RmLFL3YbHfpUMA6V286a2QhifPZV7nvutl6kg=) 3: 3131392e3136312e3133362e302f32312d3234203d3e203633363331.roa (hash: q975HSO7Atv6pgfxEXanM5WMHvz/cN828nBH1I+FNos=) 4: 3131392e3136312e3134342e302f32312d3234203d3e203633363331.roa (hash: WUSgHCOBVUebvdwfVgY5RDlp2/uC/v+NAYmc5JoVMPE=) 5: 3131392e3136312e3136302e302f32312d3234203d3e203633363331.roa (hash: fm9f22URXj00X+QlA/PpQ/F1F4uphlfQee6cITcqhgg=) 6: D9EB5C6DC17682949F5243587DA38740C3EEA953.crl (hash: nN5lmlW9/USjbH9Khn93+JnR3EQFtIA3AdvXiLsO3MM=) 7: 3131392e3136312e3135322e302f32312d3234203d3e203633363331.roa (hash: BBTRwX86DtfzxU9rTrkCfkvyq+j6Fyat/htWxMwmilE=) 8: 3131392e3136312e3133382e302f32342d3234203d3e203633363331.roa (hash: TT0ksNomih+B2jCsvyApNDhVN1yErVHUo6JYmbCpCys=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Apr 2026 22:25:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:ba:37:96:db:69:ae:1a:40:b7:14:63:a3:3b:54:77:fa:96:1d:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9EB5C6DC17682949F5243587DA38740C3EEA953 Validity Not Before: Apr 12 18:29:16 2026 GMT Not After : Apr 13 22:25:16 2026 GMT Subject: CN=F396CA2145DD366988D60C4879520F9A6F0FBF24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:c0:86:59:d9:f8:59:a3:f5:d5:8f:4d:71:7f: d9:c6:e4:93:ee:09:83:d5:0e:2c:8f:66:01:77:ab: 44:0a:a9:c3:bf:99:e1:97:79:61:8b:96:5e:e7:34: c9:7c:5f:37:29:69:17:3c:71:1e:6a:c9:90:7e:cb: cf:92:46:04:9f:b1:01:b8:88:69:c8:a3:41:5e:3c: e5:ae:54:22:26:fb:63:ef:a7:0d:bd:e6:41:46:ad: 56:2e:c8:b7:64:70:cb:3c:dc:d9:62:77:05:e3:3b: c0:5e:8a:2d:73:42:cf:15:cf:04:79:47:05:b5:25: 86:4f:a6:a2:6b:11:ba:7b:26:86:d2:8a:d7:b1:d7: 15:dd:89:b4:6d:05:5e:06:71:e4:56:09:d2:b2:1d: e6:92:11:73:90:3c:b9:6c:7c:99:dd:31:4f:a3:8d: 82:cd:47:23:f0:a8:5d:ba:97:e3:b3:68:c9:5a:9b: 1e:c6:1b:41:ae:4f:6c:cb:af:af:53:e9:fc:f1:ea: a2:af:f0:cb:99:0f:fe:c3:cb:78:04:47:d7:a9:d0: e7:35:58:06:e0:06:bf:2a:d7:ef:8a:42:0a:1e:ea: 16:a0:ec:c0:e5:b3:35:de:06:33:75:ae:ce:fb:95: c2:51:53:7e:61:d9:ea:ac:b5:16:36:90:86:70:9c: 0c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:96:CA:21:45:DD:36:69:88:D6:0C:48:79:52:0F:9A:6F:0F:BF:24 X509v3 Authority Key Identifier: keyid:D9:EB:5C:6D:C1:76:82:94:9F:52:43:58:7D:A3:87:40:C3:EE:A9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:9e:7c:d9:e5:23:3f:05:47:da:2c:4b:37:c4:14:57:0c:fe: 00:98:e8:3e:c1:34:df:72:12:8f:56:9c:0d:18:f3:09:67:0e: 09:a7:81:c8:04:8e:81:7a:cb:47:5b:5e:53:31:b4:84:9a:72: 0b:3a:04:eb:f6:cc:58:64:fd:b7:e0:d0:a4:ac:51:16:ea:71: 9f:07:8d:7e:5c:e9:20:aa:4b:2d:68:30:d2:63:f7:93:d9:4a: 52:9e:b6:b2:04:70:57:61:f3:22:cf:c2:8c:4d:26:5a:53:b5: b8:d2:5d:fd:2e:cd:68:2d:55:a0:ba:d0:c0:5b:1e:cd:92:d3: 24:fb:bb:5b:17:0d:d4:a7:26:44:2d:0e:ca:cf:a4:ff:e5:9c: d2:94:fb:53:47:26:d7:61:63:52:59:c1:30:6c:cd:3e:0b:e6: dc:13:5a:f5:62:00:2e:cb:d6:5f:de:b2:32:a0:56:0f:3f:06: 88:68:19:bf:11:40:22:2e:44:48:96:ae:38:8c:ed:82:d0:17: 50:67:32:2d:42:ea:85:1a:c0:70:7a:4b:41:6e:2e:ce:3e:3a: 3e:f9:71:45:a8:3f:5e:af:93:70:71:12:d2:d0:d0:e2:f9:00: 49:58:38:4f:f8:2a:d7:23:fe:70:23:16:c0:39:24:77:c0:ec: 1c:60:e8:66 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUL7o3lttprhpAtxRjoztUd/qWHS4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlFQjVDNkRDMTc2ODI5NDlGNTI0MzU4N0RBMzg3NDBD M0VFQTk1MzAeFw0yNjA0MTIxODI5MTZaFw0yNjA0MTMyMjI1MTZaMDMxMTAvBgNV BAMTKEYzOTZDQTIxNDVERDM2Njk4OEQ2MEM0ODc5NTIwRjlBNkYwRkJGMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiwIZZ2fhZo/XVj01xf9nG5JPu CYPVDiyPZgF3q0QKqcO/meGXeWGLll7nNMl8XzcpaRc8cR5qyZB+y8+SRgSfsQG4 iGnIo0FePOWuVCIm+2Pvpw295kFGrVYuyLdkcMs83NlidwXjO8Beii1zQs8VzwR5 RwW1JYZPpqJrEbp7JobSitex1xXdibRtBV4GceRWCdKyHeaSEXOQPLlsfJndMU+j jYLNRyPwqF26l+OzaMlamx7GG0GuT2zLr69T6fzx6qKv8MuZD/7Dy3gER9ep0Oc1 WAbgBr8q1++KQgoe6hag7MDlszXeBjN1rs77lcJRU35h2eqstRY2kIZwnAx/AgMB AAGjggIdMIICGTAdBgNVHQ4EFgQU85bKIUXdNmmI1gxIeVIPmm8PvyQwHwYDVR0j BBgwFoAU2etcbcF2gpSfUkNYfaOHQMPuqVMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njg2NDY0MS8wL0Q5RUI1QzZEQzE3NjgyOTQ5RjUyNDM1ODdEQTM4 NzQwQzNFRUE5NTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDlFQjVDNkRDMTc2ODI5NDlGNTI0MzU4N0RBMzg3NDBDM0VFQTk1My5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODIzMzAzNDY4NjQ2NDEvMC9EOUVCNUM2REMxNzY4 Mjk0OUY1MjQzNTg3REEzODc0MEMzRUVBOTUzLm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASZ582eUjPwVH 2ixLN8QUVwz+AJjoPsE033ISj1acDRjzCWcOCaeByASOgXrLR1teUzG0hJpyCzoE 6/bMWGT9t+DQpKxRFupxnweNflzpIKpLLWgw0mP3k9lKUp62sgRwV2HzIs/CjE0m WlO1uNJd/S7NaC1VoLrQwFsezZLTJPu7WxcN1KcmRC0Oys+k/+Wc0pT7U0cm12Fj UlnBMGzNPgvm3BNa9WIALsvWX96yMqBWDz8GiGgZvxFAIi5ESJauOIztgtAXUGcy LULqhRrAcHpLQW4uzj46PvlxRag/Xq+TcHES0tDQ4vkASVg4T/gq1yP+cCMWwDkk d8DsHGDoZg== -----END CERTIFICATE-----Generated at Mon Apr 13 11:03:42 2026 by rpki-client