$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265551361/0/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.mft File: D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.mft (raw, json) Hash identifier: zdu5eXUFakZ7hnSe6ixwGf3zoFvHH9d04j8YlzXIEH0= Subject key identifier: 6E:9D:6F:9F:88:00:0E:AC:DF:BF:2A:09:5E:1D:A3:79:D2:E8:30:EB Authority key identifier: D2:FF:1D:7C:6D:F1:DD:77:5A:61:06:97:0D:05:FF:44:BC:AD:19:43 Certificate issuer: /CN=D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943 Certificate serial: 262034D933CECB2BFDD59846820894B803F55D5F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265551361/0/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.mft Manifest number: AF Signing time: Fri 29 May 2026 19:43:17 +0000 Manifest this update: Fri 29 May 2026 19:38:17 +0000 Manifest next update: Sat 30 May 2026 20:41:17 +0000 Files and hashes: 1: D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.crl (hash: 67qgbMbtpu8q0Shm1/+X7DWn2s+G0urusqE/8ZxbNq4=) 2: 323430623a613030303a6663333a3a2f34382d3438203d3e20313531333033.roa (hash: TiSdjmUDUZ7Io/2Ke/Pu2qkV+pzBX0aVcs8lYCtTick=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265551361/0/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265551361/0/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:20:34:d9:33:ce:cb:2b:fd:d5:98:46:82:08:94:b8:03:f5:5d:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943 Validity Not Before: May 29 19:38:17 2026 GMT Not After : May 30 20:41:17 2026 GMT Subject: CN=6E9D6F9F88000EACDFBF2A095E1DA379D2E830EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:69:79:2c:fa:e4:53:f3:c6:24:6e:86:97:68: be:02:fb:a6:00:22:1b:fa:fd:e3:29:c7:1f:7d:0a: 55:dc:01:08:d3:aa:4b:9d:00:5e:72:30:e0:9b:11: 5d:fb:05:19:d7:6a:62:17:62:d1:4c:2d:02:37:b0: 8a:b8:ce:41:07:bf:f2:9d:e7:07:fa:a7:f7:54:a0: 10:44:be:fa:c4:56:f1:12:fa:21:11:15:39:73:36: b1:4c:a2:f4:a9:e4:10:48:be:02:88:07:73:14:04: 6e:eb:4c:d2:bb:50:3d:6a:0d:54:c9:4c:9b:64:e4: 67:ec:d5:a9:9a:e5:68:bc:20:3e:22:b7:ec:ff:ad: b1:4a:aa:d6:3a:f3:65:67:de:be:dc:03:80:d8:40: 16:4f:e7:5f:39:94:e4:3e:5a:8d:8a:35:e2:a1:e7: a5:c9:5f:b3:29:97:ab:2d:f0:9a:0f:c6:ca:69:bf: 2a:ad:85:a9:17:fe:b3:bb:76:87:98:05:08:99:8f: 47:69:08:73:5d:92:6e:13:3d:11:24:50:ad:52:6f: 17:4f:1d:a7:e1:ba:1d:d8:f4:cf:07:01:2b:4c:35: 33:7d:ed:e2:55:5f:67:25:3e:25:40:26:44:8e:b3: 4f:56:5d:01:f4:53:b6:1a:27:c1:5d:2d:27:52:a0: 07:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:9D:6F:9F:88:00:0E:AC:DF:BF:2A:09:5E:1D:A3:79:D2:E8:30:EB X509v3 Authority Key Identifier: keyid:D2:FF:1D:7C:6D:F1:DD:77:5A:61:06:97:0D:05:FF:44:BC:AD:19:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265551361/0/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265551361/0/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:52:86:66:d0:3d:22:c4:f9:90:92:28:8d:4d:36:00:1c:57: 67:d4:d0:3c:dd:90:fe:da:81:c7:8b:2d:57:09:b0:2d:16:72: 76:23:bb:82:66:a7:6a:14:75:6a:69:0a:bc:b4:6e:c2:36:d6: de:da:bb:1a:2d:b4:c9:71:95:8b:66:81:9a:4d:62:b2:84:91: 66:5d:a9:a6:b1:d8:c6:c8:f6:45:be:ba:51:50:6d:b0:e4:56: 0e:84:0e:93:1a:d9:c6:ac:9f:66:b6:9d:0d:3c:d9:84:23:b5: 64:62:b0:8b:fd:46:99:ef:d4:6d:16:5c:29:67:50:4a:df:63: 82:ff:ed:00:2c:37:64:f3:7f:dd:58:0d:40:53:35:19:d6:0f: cb:cb:a4:df:88:7e:c1:31:bd:78:dd:67:d2:89:2f:9b:b6:d5: 3e:15:d2:14:d1:9e:51:1f:03:c2:ec:de:89:28:a3:b1:d4:fe: ac:e3:79:48:36:62:fa:f7:a2:45:bb:fb:64:a7:e4:df:8a:1f: 1a:f7:47:b7:48:15:3f:5c:52:80:08:b1:65:31:f8:a2:b6:d1: d2:2a:f0:06:06:53:00:bd:f5:84:d5:5c:6f:63:bd:1a:af:af: ec:90:18:a0:09:75:13:6e:d8:66:47:f6:01:1d:7a:c8:4a:a9: 2f:36:6c:6d -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUJiA02TPOyyv91ZhGggiUuAP1XV8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJGRjFEN0M2REYxREQ3NzVBNjEwNjk3MEQwNUZGNDRC Q0FEMTk0MzAeFw0yNjA1MjkxOTM4MTdaFw0yNjA1MzAyMDQxMTdaMDMxMTAvBgNV BAMTKDZFOUQ2RjlGODgwMDBFQUNERkJGMkEwOTVFMURBMzc5RDJFODMwRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqaXks+uRT88YkboaXaL4C+6YA Ihv6/eMpxx99ClXcAQjTqkudAF5yMOCbEV37BRnXamIXYtFMLQI3sIq4zkEHv/Kd 5wf6p/dUoBBEvvrEVvES+iERFTlzNrFMovSp5BBIvgKIB3MUBG7rTNK7UD1qDVTJ TJtk5Gfs1ama5Wi8ID4it+z/rbFKqtY682Vn3r7cA4DYQBZP5185lOQ+Wo2KNeKh 56XJX7Mpl6st8JoPxsppvyqthakX/rO7doeYBQiZj0dpCHNdkm4TPREkUK1SbxdP Hafhuh3Y9M8HAStMNTN97eJVX2clPiVAJkSOs09WXQH0U7YaJ8FdLSdSoAdTAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUbp1vn4gADqzfvyoJXh2jedLoMOswHwYDVR0j BBgwFoAU0v8dfG3x3XdaYQaXDQX/RLytGUMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTU1MTM2MS8wL0QyRkYxRDdDNkRGMURENzc1QTYxMDY5NzBEMDVG RjQ0QkNBRDE5NDMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDJGRjFEN0M2REYxREQ3NzVBNjEwNjk3MEQwNUZGNDRCQ0FEMTk0My5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODUzODkyNjU1NTEzNjEvMC9EMkZGMUQ3QzZERjFE RDc3NUE2MTA2OTcwRDA1RkY0NEJDQUQxOTQzLm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXVKGZtA9IsT5 kJIojU02ABxXZ9TQPN2Q/tqBx4stVwmwLRZydiO7gmanahR1amkKvLRuwjbW3tq7 Gi20yXGVi2aBmk1isoSRZl2pprHYxsj2Rb66UVBtsORWDoQOkxrZxqyfZradDTzZ hCO1ZGKwi/1Gme/UbRZcKWdQSt9jgv/tACw3ZPN/3VgNQFM1GdYPy8uk34h+wTG9 eN1n0okvm7bVPhXSFNGeUR8DwuzeiSijsdT+rON5SDZi+veiRbv7ZKfk34ofGvdH t0gVP1xSgAixZTH4orbR0irwBgZTAL31hNVcb2O9Gq+v7JAYoAl1E27YZkf2AR16 yEqpLzZsbQ== -----END CERTIFICATE-----Generated at Fri May 29 22:05:33 2026 by rpki-client