$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft File: 67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft (raw, json) Hash identifier: nxFFoqNc2N+mCa+Tzf4wzxNrFoSxrkJbGe/QlCtlBg0= Subject key identifier: 81:ED:CC:CC:22:79:7A:4F:73:5D:14:A0:F8:B1:2D:27:6E:34:2A:CF Authority key identifier: 67:96:6D:34:EF:BF:4C:BC:FB:00:CF:9C:20:45:39:BF:E0:A2:53:16 Certificate issuer: /CN=67966D34EFBF4CBCFB00CF9C204539BFE0A25316 Certificate serial: 42E0CF3DAD25DB2ACA7423DE548632FB6AFA224E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft Manifest number: C1 Signing time: Thu 11 Jun 2026 13:43:49 +0000 Manifest this update: Thu 11 Jun 2026 13:38:49 +0000 Manifest next update: Fri 12 Jun 2026 13:50:49 +0000 Files and hashes: 1: 3130332e3134302e31342e302f32332d3332203d3e20313339303931.roa (hash: Dm1g3UjQyhGbjlFkBoWW9J4T2d5S6s8go1jP82Lkdfk=) 2: 3130332e3134302e31342e302f32332d3332203d3e203137363231.roa (hash: 2cWU5UH8whnz87agI1VludkKe4lf2cSxtmFnl04vmyI=) 3: 67966D34EFBF4CBCFB00CF9C204539BFE0A25316.crl (hash: BZvCVDsmt7fjpNGU7RoM2oXUX1AQqtC2ChZMpj+Klnw=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.crl rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 13:50:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:e0:cf:3d:ad:25:db:2a:ca:74:23:de:54:86:32:fb:6a:fa:22:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67966D34EFBF4CBCFB00CF9C204539BFE0A25316 Validity Not Before: Jun 11 13:38:49 2026 GMT Not After : Jun 12 13:50:49 2026 GMT Subject: CN=81EDCCCC22797A4F735D14A0F8B12D276E342ACF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ac:97:23:b1:05:2a:8b:40:2f:00:02:dd:c1: bf:e0:0b:e1:99:3c:98:43:18:40:fb:e3:8f:aa:7f: b6:d6:bb:ee:1d:2a:b9:23:b0:ec:90:8a:04:be:50: 09:dc:86:d9:e1:4c:ba:db:08:a7:7c:d8:fe:71:a8: a8:73:c1:88:95:ea:83:d3:81:1b:55:a9:ff:27:51: 6d:dc:02:ca:87:c6:ab:29:74:f7:6b:16:cf:5d:f3: d8:17:65:29:e4:09:d9:89:b0:27:35:86:7f:58:a2: d4:94:5f:db:b5:51:8a:58:07:f8:3e:50:14:cc:a9: b5:aa:26:2f:2f:06:bc:fb:ee:91:22:04:d7:67:d3: 40:3a:d7:27:a3:5d:17:96:ee:f3:ce:22:b8:8e:b4: 49:6f:e6:41:26:ca:2a:6b:13:d5:f7:1b:da:a5:58: fc:50:5f:25:16:50:46:f9:9b:9b:9e:45:a1:43:63: 95:12:79:20:30:a9:83:f6:6e:84:88:e1:1f:61:ff: 19:f1:86:7b:59:69:d7:dc:db:5c:2f:9f:33:86:fb: 15:fc:f2:f1:19:b4:c9:fc:39:8b:9b:8f:d9:6a:23: 19:5b:96:89:ab:43:1b:ad:18:84:a1:64:36:e8:85: 95:f1:66:1d:4d:8f:be:de:f5:5d:f3:fd:01:07:e5: 24:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:ED:CC:CC:22:79:7A:4F:73:5D:14:A0:F8:B1:2D:27:6E:34:2A:CF X509v3 Authority Key Identifier: keyid:67:96:6D:34:EF:BF:4C:BC:FB:00:CF:9C:20:45:39:BF:E0:A2:53:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:b3:3c:5e:3a:98:6e:4a:9b:49:40:84:2b:90:e4:b5:a6:6e: 2f:da:b8:38:b5:aa:9d:a7:57:0b:ce:6d:27:a0:23:59:59:a6: 16:7f:b9:31:90:05:e0:10:c4:16:24:e9:bf:e4:07:20:f6:a0: 07:fe:2f:75:70:a7:5c:3c:98:1b:e4:1f:fd:e2:23:1e:6f:92: c2:17:1c:22:f5:eb:51:e1:f0:4a:38:dd:75:fe:af:2c:63:e5: b5:de:69:41:e7:37:1e:cc:1c:82:77:8e:9b:36:cd:ca:5e:c7: 8c:3e:a7:b1:6a:0a:53:04:c6:ec:2f:88:12:1e:37:37:a3:e5: 80:ff:f6:3a:3f:79:84:b9:82:6b:0e:cf:d1:54:9c:25:f3:d4: 03:8b:86:a6:3f:f6:5e:4e:54:e8:f2:95:bd:2c:37:38:9a:26: 62:57:ff:c8:d2:af:21:e8:f9:87:71:74:08:41:0a:a9:85:f6: 89:3a:3d:a1:2b:8f:27:87:2a:13:a6:93:c0:45:b3:fd:1e:10: ee:a9:b9:9a:c2:ef:e3:56:16:2a:38:0d:4c:f3:60:18:46:7f: a3:8f:f4:0d:23:69:23:a8:03:a6:34:2f:8e:9a:81:6a:6c:79: f8:66:d5:9b:7c:40:77:52:4b:b4:a3:b0:b1:ad:b6:29:ad:5a: b8:ab:be:d3 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUQuDPPa0l2yrKdCPeVIYy+2r6Ik4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc5NjZEMzRFRkJGNENCQ0ZCMDBDRjlDMjA0NTM5QkZF MEEyNTMxNjAeFw0yNjA2MTExMzM4NDlaFw0yNjA2MTIxMzUwNDlaMDMxMTAvBgNV BAMTKDgxRURDQ0NDMjI3OTdBNEY3MzVEMTRBMEY4QjEyRDI3NkUzNDJBQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCarJcjsQUqi0AvAALdwb/gC+GZ PJhDGED744+qf7bWu+4dKrkjsOyQigS+UAnchtnhTLrbCKd82P5xqKhzwYiV6oPT gRtVqf8nUW3cAsqHxqspdPdrFs9d89gXZSnkCdmJsCc1hn9YotSUX9u1UYpYB/g+ UBTMqbWqJi8vBrz77pEiBNdn00A61yejXReW7vPOIriOtElv5kEmyiprE9X3G9ql WPxQXyUWUEb5m5ueRaFDY5USeSAwqYP2boSI4R9h/xnxhntZadfc21wvnzOG+xX8 8vEZtMn8OYubj9lqIxlblomrQxutGIShZDbohZXxZh1Nj77e9V3z/QEH5SShAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUge3MzCJ5ek9zXRSg+LEtJ240Ks8wHwYDVR0j BBgwFoAUZ5ZtNO+/TLz7AM+cIEU5v+CiUxYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4Mjc0MTU3Nzg1OTA3NC8wLzY3OTY2RDM0RUZCRjRDQkNGQjAwQ0Y5QzIwNDUz OUJGRTBBMjUzMTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjc5NjZEMzRFRkJGNENCQ0ZCMDBDRjlDMjA0NTM5QkZFMEEyNTMxNi5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODI3NDE1Nzc4NTkwNzQvMC82Nzk2NkQzNEVGQkY0 Q0JDRkIwMENGOUMyMDQ1MzlCRkUwQTI1MzE2Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAabM8XjqYbkqb SUCEK5DktaZuL9q4OLWqnadXC85tJ6AjWVmmFn+5MZAF4BDEFiTpv+QHIPagB/4v dXCnXDyYG+Qf/eIjHm+SwhccIvXrUeHwSjjddf6vLGPltd5pQec3HswcgneOmzbN yl7HjD6nsWoKUwTG7C+IEh43N6PlgP/2Oj95hLmCaw7P0VScJfPUA4uGpj/2Xk5U 6PKVvSw3OJomYlf/yNKvIej5h3F0CEEKqYX2iTo9oSuPJ4cqE6aTwEWz/R4Q7qm5 msLv41YWKjgNTPNgGEZ/o4/0DSNpI6gDpjQvjpqBamx5+GbVm3xAd1JLtKOwsa22 Ka1auKu+0w== -----END CERTIFICATE-----Generated at Fri Jun 12 03:46:56 2026 by rpki-client