$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129852931/0/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.mft File: 3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.mft (raw, json) Hash identifier: 5pNvN7tPZTf64H/p7pUYgbr3ch/uSBacZZQWJk6HkbY= Subject key identifier: 6D:F1:B3:F7:97:A6:AD:0F:69:A0:50:06:D6:F3:5F:BB:04:EE:8E:76 Authority key identifier: 3D:C3:23:89:D8:EB:00:BB:31:C6:A9:5B:34:AF:C8:57:6A:80:7A:0A Certificate issuer: /CN=3DC32389D8EB00BB31C6A95B34AFC8576A807A0A Certificate serial: 3670D398825FC95978AA97D78D4950727DB3C3F3 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129852931/0/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.mft Manifest number: AE Signing time: Fri 29 May 2026 12:42:49 +0000 Manifest this update: Fri 29 May 2026 12:37:49 +0000 Manifest next update: Sat 30 May 2026 15:09:49 +0000 Files and hashes: 1: 3130332e3232332e3132312e302f32342d3234203d3e20313532333230.roa (hash: wzRfwIBhTwNZEHuoPqB4pgLkBoUBXIsG3gE0j7DP/GE=) 2: 34352e3235342e32372e302f32342d3234203d3e20313532333230.roa (hash: 8ey7xc7GrXn7mmv3ISFSPmAtts9JOcGCGnrt0IYw5NA=) 3: 34352e3235342e32362e302f32342d3234203d3e20313532333230.roa (hash: zQnT6ObBiJ3XRQBU4LCMwXOfUmhlF2FqQYNCv6Fc46M=) 4: 3130332e3232332e3132302e302f32342d3234203d3e20313532333230.roa (hash: 5HY0Ue/vWpU1LvYH7L0XmoUxw5TaIDzLdoP5LOndIDk=) 5: 3130332e3232332e3132302e302f32322d3234203d3e20313532333230.roa (hash: QDhDhO+o5EAhmJMJ47IlDxl87DbWK8fpZhIHG6UPABU=) 6: 34352e3235342e32342e302f32322d3234203d3e20313532333230.roa (hash: /jlOtfFFIhy/vioYOPrruZVnaBj+JGwUse/ni91LtIM=) 7: 3130332e3232332e3132332e302f32342d3234203d3e20313532333230.roa (hash: BpauxASw+QwtCt0D3PSjlF+wZywrzS5unEAJDnk9hrM=) 8: 3130332e3232332e3132322e302f32342d3234203d3e20313532333230.roa (hash: ENw2cTESVh99EP8BLMv1kqoTtl4yUiDM0XZMs1ujX6o=) 9: 3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.crl (hash: ioqZgANSWbXriggqBuPtNDZXOD3Cq4WR0Gq57H1u+qs=) 10: 34352e3235342e32352e302f32342d3234203d3e20313532333230.roa (hash: qjKwVJnGzyI/LX79Tj4cDa3KV/Elv2yjd5+GDsO75bY=) 11: 34352e3235342e32342e302f32342d3234203d3e20313532333230.roa (hash: HRYgKbtmr+OMYx/1qW6f1p5CaBZOf7Km54MLi7qIJYQ=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129852931/0/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129852931/0/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:09:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:70:d3:98:82:5f:c9:59:78:aa:97:d7:8d:49:50:72:7d:b3:c3:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3DC32389D8EB00BB31C6A95B34AFC8576A807A0A Validity Not Before: May 29 12:37:49 2026 GMT Not After : May 30 15:09:49 2026 GMT Subject: CN=6DF1B3F797A6AD0F69A05006D6F35FBB04EE8E76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ca:bf:8f:47:ae:50:48:01:e2:56:bb:34:41: 5a:b4:c6:ad:52:d0:a4:0d:6e:4e:90:60:d5:fe:10: 89:9a:4f:48:f5:24:9b:26:29:76:49:a0:d9:9f:e9: d3:9f:f7:5b:29:74:bd:9a:6c:42:5d:78:0b:77:eb: 86:e0:6a:73:12:2a:6b:cb:e7:b0:ba:f4:61:37:bd: 4c:ca:59:64:55:92:a8:f1:ed:a7:17:e9:4b:b1:46: 14:e2:6a:d8:25:c5:d0:40:6b:98:53:c9:b4:b0:7c: 38:c6:b5:9c:9e:82:3e:0c:13:74:10:56:5b:25:92: ad:28:56:4e:3d:88:34:83:a8:fb:3e:fc:59:43:94: 62:3a:d2:bd:06:fe:7a:00:3d:95:35:ed:19:b8:80: 68:6f:43:a0:9b:b4:9e:40:41:ab:f1:ec:71:e7:cf: 4b:96:f1:69:d8:71:94:69:6a:d7:7f:75:b3:ec:6a: 16:c2:51:50:d7:10:cb:58:a6:bc:d0:cb:1e:2b:55: c7:c5:63:d5:7d:c6:92:10:6c:45:57:6a:fa:c6:cd: bb:ef:b0:f1:cb:39:a0:89:a9:8a:03:3a:c8:ac:6d: e6:ed:27:03:1b:b3:3c:99:fc:13:92:0c:2c:0c:1c: 9f:cc:c7:8f:3e:1c:f1:5e:ed:56:12:51:03:64:46: c6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F1:B3:F7:97:A6:AD:0F:69:A0:50:06:D6:F3:5F:BB:04:EE:8E:76 X509v3 Authority Key Identifier: keyid:3D:C3:23:89:D8:EB:00:BB:31:C6:A9:5B:34:AF:C8:57:6A:80:7A:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129852931/0/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129852931/0/3DC32389D8EB00BB31C6A95B34AFC8576A807A0A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:17:92:44:11:14:50:4a:b0:99:cb:60:91:48:35:9e:8d:26: 5f:e0:86:b5:31:ae:a0:85:43:66:e3:cc:5d:62:c8:fd:45:61: 71:7b:57:50:55:1a:c3:94:d5:b3:19:f6:48:81:60:d8:8c:eb: ff:ab:50:da:a6:6c:18:3d:15:8d:35:df:97:98:3e:f4:57:c7: 51:b6:c2:45:9f:0a:27:d5:a8:f1:a1:23:03:df:7f:a9:fe:39: cb:5b:c7:66:59:38:05:76:63:42:f6:47:d7:0f:1b:5a:7c:b6: f1:9c:3e:06:02:85:66:36:aa:be:64:49:f1:ca:b3:31:6f:ff: 35:dd:f1:b7:5b:b4:e6:02:90:f7:e0:f1:95:47:c0:15:b1:85: 79:76:bf:6d:61:4a:08:2d:38:80:7b:02:7a:2c:03:ac:0d:fd: 2b:89:45:a8:96:38:e1:4d:c6:bd:87:3b:a7:92:11:a1:32:df: 5c:80:5c:92:21:56:0f:c7:5e:55:80:ad:e5:12:03:88:22:c7: 80:c8:d3:f9:0d:5b:79:6c:64:f0:9c:3b:22:1d:04:3a:8f:ad: d3:76:b3:ac:7b:29:33:f4:49:90:b7:24:b4:9e:e2:ca:2f:91: 07:33:4a:28:28:f8:a2:3e:98:68:c5:51:1d:6a:f3:1b:30:b8: c4:5f:f7:56 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUNnDTmIJfyVl4qpfXjUlQcn2zw/MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0RDMzIzODlEOEVCMDBCQjMxQzZBOTVCMzRBRkM4NTc2 QTgwN0EwQTAeFw0yNjA1MjkxMjM3NDlaFw0yNjA1MzAxNTA5NDlaMDMxMTAvBgNV BAMTKDZERjFCM0Y3OTdBNkFEMEY2OUEwNTAwNkQ2RjM1RkJCMDRFRThFNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiyr+PR65QSAHiVrs0QVq0xq1S 0KQNbk6QYNX+EImaT0j1JJsmKXZJoNmf6dOf91spdL2abEJdeAt364bganMSKmvL 57C69GE3vUzKWWRVkqjx7acX6UuxRhTiatglxdBAa5hTybSwfDjGtZyegj4ME3QQ Vlslkq0oVk49iDSDqPs+/FlDlGI60r0G/noAPZU17Rm4gGhvQ6CbtJ5AQavx7HHn z0uW8WnYcZRpatd/dbPsahbCUVDXEMtYprzQyx4rVcfFY9V9xpIQbEVXavrGzbvv sPHLOaCJqYoDOsisbebtJwMbszyZ/BOSDCwMHJ/Mx48+HPFe7VYSUQNkRsaZAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUbfGz95emrQ9poFAG1vNfuwTujnYwHwYDVR0j BBgwFoAUPcMjidjrALsxxqlbNK/IV2qAegowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTg1MjkzMS8wLzNEQzMyMzg5RDhFQjAwQkIzMUM2QTk1QjM0QUZD ODU3NkE4MDdBMEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0RDMzIzODlEOEVCMDBCQjMxQzZBOTVCMzRBRkM4NTc2QTgwN0EwQS5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODg1NTMxMjk4NTI5MzEvMC8zREMzMjM4OUQ4RUIw MEJCMzFDNkE5NUIzNEFGQzg1NzZBODA3QTBBLm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHBeSRBEUUEqw mctgkUg1no0mX+CGtTGuoIVDZuPMXWLI/UVhcXtXUFUaw5TVsxn2SIFg2Izr/6tQ 2qZsGD0VjTXfl5g+9FfHUbbCRZ8KJ9Wo8aEjA99/qf45y1vHZlk4BXZjQvZH1w8b Wny28Zw+BgKFZjaqvmRJ8cqzMW//Nd3xt1u05gKQ9+DxlUfAFbGFeXa/bWFKCC04 gHsCeiwDrA39K4lFqJY44U3GvYc7p5IRoTLfXIBckiFWD8deVYCt5RIDiCLHgMjT +Q1beWxk8Jw7Ih0EOo+t03azrHspM/RJkLcktJ7iyi+RBzNKKCj4oj6YaMVRHWrz GzC4xF/3Vg== -----END CERTIFICATE-----Generated at Fri May 29 22:05:30 2026 by rpki-client