
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.mft
File: D9EB5C6DC17682949F5243587DA38740C3EEA953.mft (raw, json)
Hash identifier: Lq1sAO0HEIZfCS9wGyzmZIozj7vTXn38K4uk7HqoAaU=
Subject key identifier: 3B:12:2D:B0:55:49:64:00:46:2B:7C:D6:CA:6C:D6:20:9E:C8:B2:EB
Authority key identifier: D9:EB:5C:6D:C1:76:82:94:9F:52:43:58:7D:A3:87:40:C3:EE:A9:53
Certificate issuer: /CN=D9EB5C6DC17682949F5243587DA38740C3EEA953
Certificate serial: 40052AB3FDB236266B4AF0C2F56C68116BF33A1A
Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer
Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.mft
Manifest number: FA
Signing time: Tue 14 Jul 2026 17:11:45 +0000
Manifest this update: Tue 14 Jul 2026 17:06:45 +0000
Manifest next update: Wed 15 Jul 2026 20:07:45 +0000
Files and hashes: 1: 3131392e3136312e3134332e302f32342d3234203d3e203633363331.roa (hash: q5UvvsX5qH7j9+5pZLRPJUdgPc2NxY5OKXVZ0NSCJAo=)
2: 3130332e37372e37352e302f32342d3234203d3e203633363331.roa (hash: a7l7+V4+dpfaquk22MoeFRXSKe1Gx6rGVmWsi2/A0CA=)
3: D9EB5C6DC17682949F5243587DA38740C3EEA953.crl (hash: 9/RK5p9Rcr563SuClG1LvlCJN8bDV8Su2JKY3KC//yk=)
4: 3130332e37372e37332e302f32342d3234203d3e203633363331.roa (hash: qzRlWsrI6PetcGa/KoRszsGPl8m2KxKVGBHbcN8k8R8=)
5: 3131392e3136312e3135352e302f32342d3234203d3e203633363331.roa (hash: x+ksNF78CQTw/L4V1wT8nZZBF8Nz+W+s1SYOjKA6wdo=)
6: 3131392e3136312e3134312e302f32342d3234203d3e203633363331.roa (hash: f4vNZ08uUNtuyklw4goVqXSaWbpQ5fYDLqZ5SHP2/5g=)
7: 3131392e3136312e3134342e302f32342d3234203d3e203633363331.roa (hash: 6ovO21OX+Y8oKycYWcOevNdq7wTJgYIGsvp+nnMw1x8=)
8: 323430373a386238303a3a2f33322d3634203d3e203633363331.roa (hash: WdIf6CkgwHhBtmwW9wC8z2X2aD7F1CPhNusCG6l7zvk=)
9: 3131392e3136312e3136302e302f32312d3231203d3e2030.roa (hash: cPpjqUpV6F29loCVOOwbyveyBY/0tKDAJE22QRL0osg=)
10: 3131392e3136312e3133372e302f32342d3234203d3e203633363331.roa (hash: uYXy1ZNlr/DDnhA91fdp96VTjAGbBGrKxJ/nJwBFE4c=)
11: 3131392e3136312e3134392e302f32342d3234203d3e203633363331.roa (hash: N5OiNy6gpNAI122IfWvxLK3QW0HsLsxWhpB7bPfA+x8=)
12: 3131392e3136312e3135332e302f32342d3234203d3e203633363331.roa (hash: /bES/Bm3e3I6uwLynFP1nPItfsrn7ti5dzc/15vqHrg=)
13: 3131392e3136312e3135322e302f32342d3234203d3e203633363331.roa (hash: 0O6HwC17CULgpOdtwyeoQhjd7sYNr0qRKV4vgoZ3uFs=)
14: 3130332e37372e38382e302f32322d3232203d3e2030.roa (hash: fR4BJhyIgU9EzBWn21D2hiiwP5vaUp6WzpNrB0SQRaY=)
15: 3131392e3136312e3133362e302f32342d3234203d3e203633363331.roa (hash: NksUuzaBeVkKNYYjX7N4wyQP9lOFOqUoF5HK3727RWk=)
16: 3131392e3136312e3134372e302f32342d3234203d3e203633363331.roa (hash: nG5OMbfJfXjqu0EBfh5ujK0tpWUhR/z7nnDCbIOL/P0=)
17: 3131392e3136312e3135382e302f32342d3234203d3e203633363331.roa (hash: LQZaiQ/Qd/M/fCrq9bHgdqWNP7ugk6V735y0mDkj9fA=)
18: 3130332e37372e37342e302f32342d3234203d3e203633363331.roa (hash: +SACmmpAElpqmXII63Jhjhb5xmU61Ubzx0s1wYb2aAg=)
19: 3131392e3136312e3135312e302f32342d3234203d3e203633363331.roa (hash: 34DEjgc+uFzAvaJR2gQqwSseBX9CZsTiDQ1qcyMCy+A=)
20: 3131392e3136312e3134302e302f32342d3234203d3e203633363331.roa (hash: eing/mIPhXhe93XLvq3RC5YRPf8OivgAJSu54LJSd48=)
21: 3131392e3136312e3135392e302f32342d3234203d3e203633363331.roa (hash: +SiM0cwCxJkpIIpaeYtLkv/nxt4GytCuAhasO+bG19M=)
22: 3130332e37372e37322e302f32342d3234203d3e203633363331.roa (hash: x17cHSRYcX/Kt66624cs2XAt5w4hzS22OUj6QmZWVd8=)
23: 323430373a393038303a3a2f33322d3634203d3e203633363331.roa (hash: RtOoe4RmLFL3YbHfpUMA6V286a2QhifPZV7nvutl6kg=)
24: 3131392e3136312e3134382e302f32342d3234203d3e203633363331.roa (hash: 5KmbHs67IA/wY5tBVDS22+6mTsCdZcqAE09P4TvLmS4=)
25: 3131392e3136312e3133392e302f32342d3234203d3e203633363331.roa (hash: nydKiRyHm3PHN6iWfg7icv7RBMzkwjFy+ct03JbKQdw=)
26: 3131392e3136312e3135372e302f32342d3234203d3e203633363331.roa (hash: tUiIUTqcTNvN/U4B9L5lCpdQw6TwFJaaWBbk34dQlvI=)
27: 3131392e3136312e3135302e302f32342d3234203d3e203633363331.roa (hash: okNrHQWlAZcM0ybXfs5gjhn4SzMvRZc5F26x1wSUssw=)
28: 3131392e3136312e3135362e302f32342d3234203d3e203633363331.roa (hash: 7XOgZuVkvvQZdo3gGn56dhtyiau+6lvq0uc3bf0+xMY=)
29: 3131392e3136312e3133382e302f32342d3234203d3e203633363331.roa (hash: lHQp/Div7ulKm97od1SQswQ3yI5J9U71XxLou9kga38=)
30: 3130332e37372e37322e302f32322d3232203d3e203633363331.roa (hash: NpW6AlD0eVdPdmCTOskky2wwQE64FmrJNHWbldBZcxc=)
31: 3131392e3136312e3134322e302f32342d3234203d3e203633363331.roa (hash: GCzj2v7L5bU/5xAICc7Mo0IWDU6IPyXLJDYDlG2dtII=)
32: 3131392e3136312e3135362e302f32322d3232203d3e203633363331.roa (hash: mGhhS9V+FPXHBGr0eZP7LW1/tN5GxJ8237aMyOgPCuA=)
33: 3131392e3136312e3134362e302f32342d3234203d3e203633363331.roa (hash: OABa4cNuqzmJY4gHN33EpjQDWN7uNzrp8aMvvXUl78s=)
34: 3131392e3136312e3135342e302f32342d3234203d3e203633363331.roa (hash: Ci42JOqMjSAJ3WJUTwnlTLR8G5pTY1EIpg2hwNySDug=)
35: 3131392e3136312e3134352e302f32342d3234203d3e203633363331.roa (hash: pUhjYD0PQ8rwZ1DafU0Rvby54ZCdFvTYF7jxsVBaHpI=)
36: 3131302e3137322e3232342e302f32322d3232203d3e2030.roa (hash: vfSoXvfxdoOO8Tcwj9aUwTPHooLMqelVtrGaoAhknTQ=)
Validation: OK
Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.crl
rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.mft
rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer
rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl
rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 Jul 2026 20:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:05:2a:b3:fd:b2:36:26:6b:4a:f0:c2:f5:6c:68:11:6b:f3:3a:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D9EB5C6DC17682949F5243587DA38740C3EEA953
Validity
Not Before: Jul 14 17:06:45 2026 GMT
Not After : Jul 15 20:07:45 2026 GMT
Subject: CN=3B122DB055496400462B7CD6CA6CD6209EC8B2EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:6e:66:2b:ab:c2:2e:72:90:25:89:ad:e3:57:
03:f4:64:7d:0e:4c:19:16:49:27:58:3f:d9:ec:b4:
cf:3f:18:25:19:db:9e:0f:83:ff:d7:6f:c3:ff:d8:
f1:4a:05:18:5b:50:82:14:33:fc:a3:5c:c5:59:9d:
dc:4a:cd:1b:c7:4e:8d:2e:4e:9f:2f:a4:db:a1:41:
57:b8:49:9a:38:fd:ae:98:2d:ba:d8:26:78:ea:4b:
fc:2f:94:39:fc:cd:16:d0:e3:28:58:2f:82:da:a9:
58:4e:58:b4:30:a4:08:03:8e:b2:e7:f6:83:86:c4:
01:1e:e8:08:4a:0c:a8:74:84:d0:f2:de:6f:4f:c6:
af:5c:0b:17:3e:9b:e2:ed:49:63:22:dd:31:67:ab:
cc:8d:c4:e4:40:57:9c:ce:04:e5:3b:c0:30:30:f7:
70:31:32:57:e4:c4:9d:6c:cb:3c:d6:ce:73:cc:2a:
8d:5f:c3:03:44:a8:9b:e2:5c:8b:14:d5:6f:33:7c:
b1:99:8d:61:2e:22:98:d7:09:ef:79:df:25:9e:41:
b9:83:83:f5:6b:78:05:7d:77:c7:b1:12:89:03:59:
2c:7c:fe:cc:ea:6b:ae:fc:42:1f:ba:f9:89:42:87:
0a:ac:52:92:40:c6:73:3c:50:1f:61:05:79:87:8a:
91:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:12:2D:B0:55:49:64:00:46:2B:7C:D6:CA:6C:D6:20:9E:C8:B2:EB
X509v3 Authority Key Identifier:
keyid:D9:EB:5C:6D:C1:76:82:94:9F:52:43:58:7D:A3:87:40:C3:EE:A9:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:e1:e5:08:59:be:d2:5b:21:11:7d:24:8b:fe:16:56:4c:f7:
27:fb:4b:75:8e:23:63:fe:30:f2:3e:35:9d:1d:1e:7a:f4:f1:
4b:13:d7:53:12:2a:31:54:3a:b7:89:af:66:e1:20:14:cf:ea:
40:e7:44:eb:7a:13:8f:82:f5:63:7e:ee:d0:19:e2:5b:a0:ef:
43:25:67:5c:5a:77:9a:7f:3b:de:c0:d9:2c:18:51:85:01:1d:
4b:93:e9:cc:07:75:29:26:92:d2:15:fa:27:2d:9d:55:53:85:
ff:05:7e:ef:96:ea:4f:9b:d5:42:7e:55:ba:b6:83:98:35:f5:
82:a3:fd:01:d0:cd:9d:a3:db:69:7e:24:91:fa:b8:eb:0b:cd:
0c:a3:2e:93:ec:c7:7a:76:a5:c8:70:d6:de:fd:8d:89:65:2d:
aa:2a:bf:ec:26:72:b5:2a:29:1b:72:69:f9:0d:cc:86:55:37:
cb:4d:b8:2e:e9:e6:6d:79:e4:92:6b:7b:6f:7b:54:78:3d:9d:
7f:42:08:be:24:e5:28:c5:0f:7c:b6:95:f5:27:14:ab:d2:b0:
ac:fe:39:06:89:41:cc:ee:6d:48:35:4b:f1:44:50:2e:58:22:
16:ae:aa:d9:0d:46:e9:ce:9e:2c:4e:af:ca:06:30:d9:de:43:
a3:16:8f:f4
-----BEGIN CERTIFICATE-----
MIIFEzCCA/ugAwIBAgIUQAUqs/2yNiZrSvDC9WxoEWvzOhowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDlFQjVDNkRDMTc2ODI5NDlGNTI0MzU4N0RBMzg3NDBD
M0VFQTk1MzAeFw0yNjA3MTQxNzA2NDVaFw0yNjA3MTUyMDA3NDVaMDMxMTAvBgNV
BAMTKDNCMTIyREIwNTU0OTY0MDA0NjJCN0NENkNBNkNENjIwOUVDOEIyRUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3bmYrq8IucpAlia3jVwP0ZH0O
TBkWSSdYP9nstM8/GCUZ254Pg//Xb8P/2PFKBRhbUIIUM/yjXMVZndxKzRvHTo0u
Tp8vpNuhQVe4SZo4/a6YLbrYJnjqS/wvlDn8zRbQ4yhYL4LaqVhOWLQwpAgDjrLn
9oOGxAEe6AhKDKh0hNDy3m9Pxq9cCxc+m+LtSWMi3TFnq8yNxORAV5zOBOU7wDAw
93AxMlfkxJ1syzzWznPMKo1fwwNEqJviXIsU1W8zfLGZjWEuIpjXCe953yWeQbmD
g/VreAV9d8exEokDWSx8/szqa678Qh+6+YlChwqsUpJAxnM8UB9hBXmHipEdAgMB
AAGjggIdMIICGTAdBgNVHQ4EFgQUOxItsFVJZABGK3zWymzWIJ7IsuswHwYDVR0j
BBgwFoAU2etcbcF2gpSfUkNYfaOHQMPuqVMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud
HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2
NTU4MjMzMDM0Njg2NDY0MS8wL0Q5RUI1QzZEQzE3NjgyOTQ5RjUyNDM1ODdEQTM4
NzQwQzNFRUE5NTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5
bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1
LzEvRDlFQjVDNkRDMTc2ODI5NDlGNTI0MzU4N0RBMzg3NDBDM0VFQTk1My5jZXIw
fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu
bmljLmNuL3JlcG8vQTEwNjU1ODIzMzAzNDY4NjQ2NDEvMC9EOUVCNUM2REMxNzY4
Mjk0OUY1MjQzNTg3REEzODc0MEMzRUVBOTUzLm1mdDAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI
KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeOHlCFm+0lsh
EX0ki/4WVkz3J/tLdY4jY/4w8j41nR0eevTxSxPXUxIqMVQ6t4mvZuEgFM/qQOdE
63oTj4L1Y37u0BniW6DvQyVnXFp3mn873sDZLBhRhQEdS5PpzAd1KSaS0hX6Jy2d
VVOF/wV+75bqT5vVQn5VuraDmDX1gqP9AdDNnaPbaX4kkfq46wvNDKMuk+zHenal
yHDW3v2NiWUtqiq/7CZytSopG3Jp+Q3MhlU3y024LunmbXnkkmt7b3tUeD2df0II
viTlKMUPfLaV9ScUq9KwrP45BolBzO5tSDVL8URQLlgiFq6q2Q1G6c6eLE6vygYw
2d5DoxaP9A==
-----END CERTIFICATE-----
Generated at Tue Jul 14 19:59:03 2026 by rpki-client