$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft File: 8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft (raw, json) Hash identifier: MmojZjmYJKQvT72eLVax1v9IEzi0nNabrVRC2y9Uu1k= Subject key identifier: 7A:8A:DD:26:91:1C:44:19:38:5B:2F:1B:73:84:F7:C7:0B:23:54:56 Authority key identifier: 8B:D8:35:B2:E2:15:D6:86:F2:4F:B3:1A:8A:EC:EE:E4:4F:BD:BD:C8 Certificate issuer: /CN=8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8 Certificate serial: 54B59234AE5CB127FAB613551E54321D8650AD68 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft Manifest number: 83 Signing time: Sun 26 Apr 2026 22:23:34 +0000 Manifest this update: Sun 26 Apr 2026 22:18:34 +0000 Manifest next update: Tue 28 Apr 2026 00:23:34 +0000 Files and hashes: 1: 3136312e3234382e38342e302f32332d3234203d3e20313937353337.roa (hash: s1FXph5zH5cjrNWCOsz0f6kZpe72KM5uAjTF3GadQzk=) 2: 3136312e3234382e38342e302f32332d3234203d3e20323134343332.roa (hash: mlTgfa8G8bpPl2rXhrQPOT+Ph5gV0rocuvelVPbWKdk=) 3: 8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.crl (hash: FbzEyHWNy+HVakaFd3zm3jVqQ/0ZQ1QGw1L0S0I+/30=) 4: 3136312e3234382e38342e302f32332d3234203d3e20323032373336.roa (hash: PNOmssIbHxITzlHe7RfPxz+xaJMGLHFeoLuHtEcKzhk=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 00:23:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:b5:92:34:ae:5c:b1:27:fa:b6:13:55:1e:54:32:1d:86:50:ad:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8 Validity Not Before: Apr 26 22:18:34 2026 GMT Not After : Apr 28 00:23:34 2026 GMT Subject: CN=7A8ADD26911C4419385B2F1B7384F7C70B235456 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3d:43:88:92:59:b7:fb:75:0c:3e:3f:cd:99: 55:4f:8c:24:ab:a1:3c:c7:dc:53:67:3d:f3:43:35: 4b:7e:16:44:81:92:82:61:63:4c:e9:da:98:13:53: 28:7d:9e:b5:6a:20:4e:4e:06:29:92:f4:70:df:14: 97:fd:a6:af:d4:4b:16:ac:30:e4:ee:d1:cd:62:72: 62:2a:ff:6f:ae:bf:e7:6b:49:23:84:89:0c:07:57: 20:57:83:b1:33:94:f6:39:53:98:d7:50:8f:6b:69: 73:10:c0:03:05:ba:df:06:9d:6a:f3:a5:86:05:e4: 11:85:d1:dd:de:70:c1:74:3c:8e:aa:75:14:12:7d: 17:5d:38:0b:a7:9e:ba:3f:9f:b5:02:9e:0e:e5:d7: 19:dc:0a:09:0c:5a:85:7b:ce:d1:b7:94:16:81:c0: e0:cc:85:7f:7b:31:9e:f0:aa:80:b1:e5:c3:a2:38: 05:d7:2b:b5:15:a6:10:70:a1:8a:45:49:33:d6:a7: b9:4e:c3:a2:b7:2e:c6:4e:36:f2:79:c0:5e:b7:9e: 97:95:db:d2:7e:1b:ce:81:05:5d:05:a4:3e:39:09: d5:45:03:4c:a0:0b:ae:d4:1a:01:ac:fe:8f:18:ae: 48:c9:24:bd:12:5f:17:b7:2a:c0:72:2b:f5:ea:e3: b5:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:8A:DD:26:91:1C:44:19:38:5B:2F:1B:73:84:F7:C7:0B:23:54:56 X509v3 Authority Key Identifier: keyid:8B:D8:35:B2:E2:15:D6:86:F2:4F:B3:1A:8A:EC:EE:E4:4F:BD:BD:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:49:f4:a7:56:fa:8e:a1:73:35:ce:43:b6:12:56:00:b0:31: 0a:28:f3:cf:92:e8:d6:d0:ff:0f:30:8c:7a:88:a7:68:9f:75: 5b:e9:28:46:18:76:95:c2:56:56:50:be:0d:16:52:1f:1c:62: 01:1d:75:ed:1e:19:8f:75:9b:24:07:bc:8d:bd:d2:f1:1b:4e: 64:7d:29:bf:92:e6:cb:67:9e:66:13:a9:ef:1e:1e:41:66:1d: 6f:c5:19:07:64:09:60:cf:59:dc:a8:ea:94:93:be:63:d5:f0: ca:49:2e:6c:69:42:3c:84:65:27:0c:54:b1:89:f7:5a:60:15: c5:c9:90:15:1a:24:d7:27:0a:66:9d:02:7a:30:bf:3d:21:13: 20:79:ce:00:e1:de:cb:c7:77:63:df:65:2d:f0:e6:95:7d:e1: dd:64:b5:01:a3:bd:4b:f2:e2:9a:ba:7d:fc:60:c1:73:3f:36: e2:6b:fc:78:70:ed:b1:b0:21:55:f6:ff:3a:a2:0a:af:b9:90: e3:0e:b5:ab:53:f9:72:d6:6c:7d:cb:a6:0a:db:58:30:65:8e: 2a:8e:16:f6:32:20:4e:18:f4:87:8c:1f:88:25:bf:14:08:b7: 83:2e:80:06:d3:ce:81:d3:30:26:7a:59:30:c2:e8:33:1a:86: 51:8c:5e:5c -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUVLWSNK5csSf6thNVHlQyHYZQrWgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJEODM1QjJFMjE1RDY4NkYyNEZCMzFBOEFFQ0VFRTQ0 RkJEQkRDODAeFw0yNjA0MjYyMjE4MzRaFw0yNjA0MjgwMDIzMzRaMDMxMTAvBgNV BAMTKDdBOEFERDI2OTExQzQ0MTkzODVCMkYxQjczODRGN0M3MEIyMzU0NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgPUOIklm3+3UMPj/NmVVPjCSr oTzH3FNnPfNDNUt+FkSBkoJhY0zp2pgTUyh9nrVqIE5OBimS9HDfFJf9pq/USxas MOTu0c1icmIq/2+uv+drSSOEiQwHVyBXg7EzlPY5U5jXUI9raXMQwAMFut8GnWrz pYYF5BGF0d3ecMF0PI6qdRQSfRddOAunnro/n7UCng7l1xncCgkMWoV7ztG3lBaB wODMhX97MZ7wqoCx5cOiOAXXK7UVphBwoYpFSTPWp7lOw6K3LsZONvJ5wF63npeV 29J+G86BBV0FpD45CdVFA0ygC67UGgGs/o8YrkjJJL0SXxe3KsByK/Xq47XlAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUeordJpEcRBk4Wy8bc4T3xwsjVFYwHwYDVR0j BBgwFoAUi9g1suIV1obyT7Maiuzu5E+9vcgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzU4NjE3OS8xLzhCRDgzNUIyRTIxNUQ2ODZGMjRGQjMxQThBRUNF RUU0NEZCREJEQzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvOEJEODM1QjJFMjE1RDY4NkYyNEZCMzFBOEFFQ0VFRTQ0RkJEQkRDOC5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODU5MTEyMTc1ODYxNzkvMS84QkQ4MzVCMkUyMTVE Njg2RjI0RkIzMUE4QUVDRUVFNDRGQkRCREM4Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEEn0p1b6jqFz Nc5DthJWALAxCijzz5Lo1tD/DzCMeoinaJ91W+koRhh2lcJWVlC+DRZSHxxiAR11 7R4Zj3WbJAe8jb3S8RtOZH0pv5Lmy2eeZhOp7x4eQWYdb8UZB2QJYM9Z3KjqlJO+ Y9XwykkubGlCPIRlJwxUsYn3WmAVxcmQFRok1ycKZp0CejC/PSETIHnOAOHey8d3 Y99lLfDmlX3h3WS1AaO9S/Limrp9/GDBcz824mv8eHDtsbAhVfb/OqIKr7mQ4w61 q1P5ctZsfcumCttYMGWOKo4W9jIgThj0h4wfiCW/FAi3gy6ABtPOgdMwJnpZMMLo MxqGUYxeXA== -----END CERTIFICATE-----Generated at Mon Apr 27 09:18:56 2026 by rpki-client