$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265551361/0/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.mft File: D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.mft (raw, json) Hash identifier: lDkl1XlozACrWUL5gT9pyp+E3xNyvbMEsXaW2YBTTfA= Subject key identifier: 7B:F5:0D:98:85:9F:C6:80:44:08:8F:AE:C2:17:97:57:69:56:39:1E Authority key identifier: D2:FF:1D:7C:6D:F1:DD:77:5A:61:06:97:0D:05:FF:44:BC:AD:19:43 Certificate issuer: /CN=D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943 Certificate serial: 1B0BDF8E70A36E3E581AB242CFBE37C1BDAD5650 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265551361/0/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.mft Manifest number: 2F Signing time: Sun 22 Feb 2026 19:32:30 +0000 Manifest this update: Sun 22 Feb 2026 19:27:30 +0000 Manifest next update: Mon 23 Feb 2026 21:59:30 +0000 Files and hashes: 1: 323430623a613030303a6663333a3a2f34382d3438203d3e20313531333033.roa (hash: TiSdjmUDUZ7Io/2Ke/Pu2qkV+pzBX0aVcs8lYCtTick=) 2: D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.crl (hash: 2n5FATmZlBnyo7VAL6dFgcnFcQmQrnjtx2kips8LhSE=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265551361/0/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265551361/0/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Feb 2026 09:42:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:0b:df:8e:70:a3:6e:3e:58:1a:b2:42:cf:be:37:c1:bd:ad:56:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943 Validity Not Before: Feb 22 19:27:30 2026 GMT Not After : Feb 23 21:59:30 2026 GMT Subject: CN=7BF50D98859FC68044088FAEC21797576956391E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:12:a1:90:87:3c:0b:c0:9d:e0:ee:43:ad:d8: 47:01:14:d9:7c:e9:42:c3:0d:6c:52:fd:78:52:3b: bb:9e:5e:c5:3a:d2:23:e5:b4:79:dc:01:45:d2:13: 56:aa:e8:cf:ee:7e:c9:a4:b9:b2:da:ea:4d:99:b5: c5:90:18:31:ea:4f:55:5f:d4:a6:7c:57:52:88:e5: 67:2c:29:0a:40:ff:15:41:45:c2:c1:30:c0:f8:43: 39:55:68:7c:15:b2:18:84:20:a2:82:d9:6f:3e:71: 01:39:70:2a:d1:7a:6e:04:ea:0d:59:6f:72:08:5a: fd:ce:4b:6c:ec:aa:f7:99:ff:94:1a:68:68:b8:80: 9b:b9:6f:af:75:10:5f:46:83:c1:1f:10:2a:50:38: da:49:15:ba:ce:19:dc:a1:52:9d:f7:42:11:43:c5: b0:41:e5:4e:b3:a5:cf:4a:54:32:f7:64:78:ae:08: 77:eb:07:d9:72:5c:4f:f6:fb:40:2d:9a:00:24:d4: 89:c1:c9:3f:9e:1a:ab:5f:74:13:e3:2a:b4:95:a5: 8c:64:32:6f:80:00:14:61:e6:ba:80:1a:06:95:47: 43:48:6a:0b:45:ea:7b:ac:6d:df:22:63:e4:5b:76: 57:79:e4:6d:89:14:5c:9f:44:cd:e2:de:d0:8f:0f: ea:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:F5:0D:98:85:9F:C6:80:44:08:8F:AE:C2:17:97:57:69:56:39:1E X509v3 Authority Key Identifier: keyid:D2:FF:1D:7C:6D:F1:DD:77:5A:61:06:97:0D:05:FF:44:BC:AD:19:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265551361/0/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265551361/0/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:77:6d:cd:cf:e4:25:39:a4:2e:2a:b1:48:5c:02:a8:45:5f: 85:7d:7f:8a:52:30:44:ea:cc:18:d1:8f:2a:22:04:01:b4:7e: 0d:b3:b3:5e:0d:e7:4b:bd:ce:cd:01:17:84:93:d2:00:f6:59: 3d:48:e7:2d:ec:d3:81:1e:ef:bb:6b:51:a0:d0:d2:3a:c1:6c: 60:45:23:31:0e:85:50:63:d5:1b:77:1c:4b:26:02:4f:1d:53: d1:87:50:60:ff:03:d3:b0:39:58:1c:07:ba:e1:92:e3:e1:f9: 28:99:4e:a3:98:8e:24:1b:77:0c:c8:52:44:b9:8a:30:8b:71: 29:b5:21:b5:ed:af:8c:c4:ce:a4:c1:b7:cd:b4:5c:30:14:c8: 9c:c0:a4:7a:9a:f2:e2:39:a2:f4:0f:38:f7:0f:17:96:06:20: 43:c1:ea:67:d2:5d:38:5a:cc:2d:30:b5:6e:e5:d3:e9:2e:8b: 8a:a2:00:22:07:e9:59:6f:a7:56:a8:7d:20:df:e7:6f:76:22: ff:b5:06:37:03:ab:5b:d9:34:66:e1:4b:d3:c5:a1:d5:23:84: 11:34:7b:0b:f3:55:3d:44:24:44:e8:e5:1c:1d:e3:fd:20:a9: 7b:29:f6:eb:b0:a3:6f:50:4a:e9:c3:dd:f0:14:9b:fc:2c:94: 6e:4d:67:e4 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUGwvfjnCjbj5YGrJCz743wb2tVlAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJGRjFEN0M2REYxREQ3NzVBNjEwNjk3MEQwNUZGNDRC Q0FEMTk0MzAeFw0yNjAyMjIxOTI3MzBaFw0yNjAyMjMyMTU5MzBaMDMxMTAvBgNV BAMTKDdCRjUwRDk4ODU5RkM2ODA0NDA4OEZBRUMyMTc5NzU3Njk1NjM5MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEEqGQhzwLwJ3g7kOt2EcBFNl8 6ULDDWxS/XhSO7ueXsU60iPltHncAUXSE1aq6M/ufsmkubLa6k2ZtcWQGDHqT1Vf 1KZ8V1KI5WcsKQpA/xVBRcLBMMD4QzlVaHwVshiEIKKC2W8+cQE5cCrRem4E6g1Z b3IIWv3OS2zsqveZ/5QaaGi4gJu5b691EF9Gg8EfECpQONpJFbrOGdyhUp33QhFD xbBB5U6zpc9KVDL3ZHiuCHfrB9lyXE/2+0AtmgAk1InByT+eGqtfdBPjKrSVpYxk Mm+AABRh5rqAGgaVR0NIagtF6nusbd8iY+Rbdld55G2JFFyfRM3i3tCPD+qHAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUe/UNmIWfxoBECI+uwheXV2lWOR4wHwYDVR0j BBgwFoAU0v8dfG3x3XdaYQaXDQX/RLytGUMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTU1MTM2MS8wL0QyRkYxRDdDNkRGMURENzc1QTYxMDY5NzBEMDVG RjQ0QkNBRDE5NDMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDJGRjFEN0M2REYxREQ3NzVBNjEwNjk3MEQwNUZGNDRCQ0FEMTk0My5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODUzODkyNjU1NTEzNjEvMC9EMkZGMUQ3QzZERjFE RDc3NUE2MTA2OTcwRDA1RkY0NEJDQUQxOTQzLm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ3dtzc/kJTmk LiqxSFwCqEVfhX1/ilIwROrMGNGPKiIEAbR+DbOzXg3nS73OzQEXhJPSAPZZPUjn LezTgR7vu2tRoNDSOsFsYEUjMQ6FUGPVG3ccSyYCTx1T0YdQYP8D07A5WBwHuuGS 4+H5KJlOo5iOJBt3DMhSRLmKMItxKbUhte2vjMTOpMG3zbRcMBTInMCkepry4jmi 9A849w8XlgYgQ8HqZ9JdOFrMLTC1buXT6S6LiqIAIgfpWW+nVqh9IN/nb3Yi/7UG NwOrW9k0ZuFL08Wh1SOEETR7C/NVPUQkROjlHB3j/SCpeyn267Cjb1BK6cPd8BSb /CyUbk1n5A== -----END CERTIFICATE-----Generated at Mon Feb 23 02:21:53 2026 by rpki-client