$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft File: 8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft (raw, json) Hash identifier: pOGjiypYE29lzHmN49E8Ecb1+9M9M206E0oNArmg3Ds= Subject key identifier: 8C:A2:61:13:1C:2D:1E:03:E7:08:6F:62:88:66:D0:B5:42:B3:ED:90 Authority key identifier: 8B:D8:35:B2:E2:15:D6:86:F2:4F:B3:1A:8A:EC:EE:E4:4F:BD:BD:C8 Certificate issuer: /CN=8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8 Certificate serial: 5DAF3AF64B5D92139365F55230059C7C1D68C611 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft Manifest number: C6 Signing time: Thu 11 Jun 2026 04:43:17 +0000 Manifest this update: Thu 11 Jun 2026 04:38:17 +0000 Manifest next update: Fri 12 Jun 2026 06:17:17 +0000 Files and hashes: 1: 3136312e3234382e38342e302f32332d3234203d3e20323032373336.roa (hash: PNOmssIbHxITzlHe7RfPxz+xaJMGLHFeoLuHtEcKzhk=) 2: 3136312e3234382e38342e302f32332d3234203d3e20323134343332.roa (hash: mlTgfa8G8bpPl2rXhrQPOT+Ph5gV0rocuvelVPbWKdk=) 3: 3136312e3234382e38342e302f32332d3234203d3e20313937353337.roa (hash: s1FXph5zH5cjrNWCOsz0f6kZpe72KM5uAjTF3GadQzk=) 4: 8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.crl (hash: cDPTLmmW6Xhn/sy7lTEVWuzNAFs5J+yUsUo0MrTU/pg=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 06:17:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:af:3a:f6:4b:5d:92:13:93:65:f5:52:30:05:9c:7c:1d:68:c6:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8 Validity Not Before: Jun 11 04:38:17 2026 GMT Not After : Jun 12 06:17:17 2026 GMT Subject: CN=8CA261131C2D1E03E7086F628866D0B542B3ED90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c3:64:2c:f3:a7:59:3a:fa:b4:95:01:41:89: e5:6a:66:3c:d0:8c:eb:a0:c5:dd:ff:30:5a:fd:86: 0d:99:70:48:bc:01:85:4b:fd:02:78:5b:e5:c6:b3: d6:34:f2:0d:15:90:ac:2c:c4:93:00:da:ba:d0:10: f4:bd:a2:f1:9c:d3:3e:e2:3b:15:90:9b:2b:0f:d4: 51:ac:53:e0:74:64:00:f4:88:df:6f:e0:4a:72:fe: 02:5c:50:e3:c8:94:fc:f1:ed:4f:27:1e:71:eb:63: c8:d9:49:8e:d3:4f:3e:a0:2b:55:6d:a6:4a:af:73: 9b:70:68:7b:b6:e8:52:c8:24:74:e7:9a:05:84:cb: ce:82:76:bf:22:bd:ba:91:d4:fe:45:a3:41:7d:ab: a3:78:40:93:8b:3a:bb:d2:34:d9:81:9b:0a:11:2c: 09:19:07:fc:d6:fa:47:7b:6a:fe:c5:99:dd:be:6b: a5:b5:12:82:4b:b4:51:24:5c:61:23:f2:2f:21:a3: 60:f9:19:67:0b:46:ef:02:c4:55:b1:d2:3d:a3:36: fe:60:8e:35:17:10:4a:56:a5:ce:7f:55:cf:8d:b4: 72:a2:49:e4:82:f1:0e:f1:93:dc:cb:b8:58:c9:90: 69:42:ed:03:ab:1d:68:4e:37:db:90:9b:f8:44:52: 1e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:A2:61:13:1C:2D:1E:03:E7:08:6F:62:88:66:D0:B5:42:B3:ED:90 X509v3 Authority Key Identifier: keyid:8B:D8:35:B2:E2:15:D6:86:F2:4F:B3:1A:8A:EC:EE:E4:4F:BD:BD:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:88:b7:57:b0:7e:b3:f7:9b:e3:00:5b:7c:7a:3e:3b:f1:dd: 8a:ce:af:ec:38:1f:10:0c:6e:a1:20:04:1a:00:77:be:17:cb: e5:55:59:9a:b0:3c:78:31:08:36:84:4f:ec:0b:53:02:78:66: 21:0d:da:ac:18:1e:50:12:4f:66:63:f1:ae:d1:1c:85:17:03: c8:5a:57:b8:e4:ee:38:5c:70:17:27:a5:f8:6f:b6:56:02:94: 4e:d9:36:38:74:ea:30:b4:8f:51:13:4a:02:d6:d6:b7:c2:d9: df:e5:54:9e:86:75:37:b5:ac:f9:e4:5d:01:a3:aa:09:a5:65: 18:f9:31:18:39:a2:d1:f2:fc:7c:e3:52:62:3b:86:9f:4e:c1: d5:bf:9b:52:2f:11:2b:8d:26:d7:37:00:1f:d8:a3:47:cf:f4: 03:67:b6:f9:09:86:84:f7:29:9e:0c:c1:a2:a4:54:42:39:34: df:05:03:cc:27:80:e1:5b:0d:db:cf:c5:6a:d2:0c:07:b9:eb: 9c:95:a9:f1:ae:eb:f1:e8:81:ea:38:ab:ad:f0:79:f9:c6:0f: f9:ce:b8:38:84:87:a9:c5:02:b2:00:e7:a6:c8:c4:46:b9:bf: 0d:3c:53:ee:a9:96:cf:24:77:e2:48:09:b7:c3:e9:56:a1:94: 2a:d2:57:02 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUXa869ktdkhOTZfVSMAWcfB1oxhEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJEODM1QjJFMjE1RDY4NkYyNEZCMzFBOEFFQ0VFRTQ0 RkJEQkRDODAeFw0yNjA2MTEwNDM4MTdaFw0yNjA2MTIwNjE3MTdaMDMxMTAvBgNV BAMTKDhDQTI2MTEzMUMyRDFFMDNFNzA4NkY2Mjg4NjZEMEI1NDJCM0VEOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+w2Qs86dZOvq0lQFBieVqZjzQ jOugxd3/MFr9hg2ZcEi8AYVL/QJ4W+XGs9Y08g0VkKwsxJMA2rrQEPS9ovGc0z7i OxWQmysP1FGsU+B0ZAD0iN9v4Epy/gJcUOPIlPzx7U8nHnHrY8jZSY7TTz6gK1Vt pkqvc5twaHu26FLIJHTnmgWEy86Cdr8ivbqR1P5Fo0F9q6N4QJOLOrvSNNmBmwoR LAkZB/zW+kd7av7Fmd2+a6W1EoJLtFEkXGEj8i8ho2D5GWcLRu8CxFWx0j2jNv5g jjUXEEpWpc5/Vc+NtHKiSeSC8Q7xk9zLuFjJkGlC7QOrHWhON9uQm/hEUh6LAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUjKJhExwtHgPnCG9iiGbQtUKz7ZAwHwYDVR0j BBgwFoAUi9g1suIV1obyT7Maiuzu5E+9vcgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzU4NjE3OS8xLzhCRDgzNUIyRTIxNUQ2ODZGMjRGQjMxQThBRUNF RUU0NEZCREJEQzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvOEJEODM1QjJFMjE1RDY4NkYyNEZCMzFBOEFFQ0VFRTQ0RkJEQkRDOC5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODU5MTEyMTc1ODYxNzkvMS84QkQ4MzVCMkUyMTVE Njg2RjI0RkIzMUE4QUVDRUVFNDRGQkRCREM4Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUYi3V7B+s/eb 4wBbfHo+O/Hdis6v7DgfEAxuoSAEGgB3vhfL5VVZmrA8eDEINoRP7AtTAnhmIQ3a rBgeUBJPZmPxrtEchRcDyFpXuOTuOFxwFyel+G+2VgKUTtk2OHTqMLSPURNKAtbW t8LZ3+VUnoZ1N7Ws+eRdAaOqCaVlGPkxGDmi0fL8fONSYjuGn07B1b+bUi8RK40m 1zcAH9ijR8/0A2e2+QmGhPcpngzBoqRUQjk03wUDzCeA4VsN28/FatIMB7nrnJWp 8a7r8eiB6jirrfB5+cYP+c64OISHqcUCsgDnpsjERrm/DTxT7qmWzyR34kgJt8Pp VqGUKtJXAg== -----END CERTIFICATE-----Generated at Thu Jun 11 17:53:57 2026 by rpki-client