$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096336767583256578/0/2BB6173D81890E4789E1B4BA6A2E3A916C38A34B.mft File: 2BB6173D81890E4789E1B4BA6A2E3A916C38A34B.mft (raw, json) Hash identifier: hNLeLThN+vEQQaMpPybPcL2LX7XJpAu3QEsjE4HtgAo= Subject key identifier: EF:65:57:88:7A:8A:88:A5:8B:DB:B9:CC:9F:BD:32:49:B3:C8:16:DB Authority key identifier: 2B:B6:17:3D:81:89:0E:47:89:E1:B4:BA:6A:2E:3A:91:6C:38:A3:4B Certificate issuer: /CN=2BB6173D81890E4789E1B4BA6A2E3A916C38A34B Certificate serial: 09234934152965BBBDF6F10F1AF385AEE5230F64 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2BB6173D81890E4789E1B4BA6A2E3A916C38A34B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096336767583256578/0/2BB6173D81890E4789E1B4BA6A2E3A916C38A34B.mft Manifest number: 14 Signing time: Mon 27 Apr 2026 08:48:45 +0000 Manifest this update: Mon 27 Apr 2026 08:43:45 +0000 Manifest next update: Tue 28 Apr 2026 12:35:45 +0000 Files and hashes: 1: 323430313a643932303a3a2f32382d313238203d3e203633373138.roa (hash: wqKyq4CT7ZBhjVas93N8o2f4ItHVxa4rAXSDsabJnzU=) 2: 2BB6173D81890E4789E1B4BA6A2E3A916C38A34B.crl (hash: CscAUb2qPMseq8Ef5Ke7PV5WOZYe6Qe1pyVwkX8Jp94=) 3: 3130332e3130352e3232302e302f32322d3332203d3e203633373138.roa (hash: UoMxgKtAhyszzVVZnBqAdDpPta7+jHjGEznfu4FR8Iw=) 4: 3138302e3137382e3139322e302f31382d3332203d3e203633373138.roa (hash: p/FOxsVY6yCDcHHnlzBhiEH5nnmslBPLMVOfQrX5mgI=) 5: 3138302e3137382e3235322e302f32322d3332203d3e2034383337.roa (hash: YA2y5WDqbbqXlH3plbuoacVKmNM5TSdO8J/ShSoYXBU=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096336767583256578/0/2BB6173D81890E4789E1B4BA6A2E3A916C38A34B.crl rsync://rpki-rps.cnnic.cn/repo/A1096336767583256578/0/2BB6173D81890E4789E1B4BA6A2E3A916C38A34B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2BB6173D81890E4789E1B4BA6A2E3A916C38A34B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 11:12:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:23:49:34:15:29:65:bb:bd:f6:f1:0f:1a:f3:85:ae:e5:23:0f:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2BB6173D81890E4789E1B4BA6A2E3A916C38A34B Validity Not Before: Apr 27 08:43:45 2026 GMT Not After : Apr 28 12:35:45 2026 GMT Subject: CN=EF6557887A8A88A58BDBB9CC9FBD3249B3C816DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:60:6f:0a:03:0f:7a:6b:2d:53:20:75:79:95: 00:58:c4:11:74:59:a3:34:9c:9d:fb:c5:c8:0a:d2: 77:5a:5e:22:ea:9e:6d:cf:d2:6e:1c:06:a5:10:8d: f6:79:02:d5:68:17:96:eb:e2:e2:4f:fa:4c:12:c6: 4c:1d:ee:c2:3a:fb:3a:56:b1:a1:71:c7:66:3c:26: ef:b8:ae:0b:ab:16:8e:d3:8d:2f:b2:47:02:96:f1: 20:f0:1e:6c:0c:a2:f4:c4:1d:4d:4d:01:99:b1:a8: 76:6f:c3:fe:b9:ee:85:47:09:25:b0:85:78:03:27: 81:df:6e:fb:45:68:40:c7:1e:78:7c:57:95:a1:f4: e4:16:86:2d:c4:33:57:96:69:2d:38:b8:63:b4:1f: a8:67:ba:66:35:1e:4d:d7:ed:54:a8:0e:ec:69:e3: b1:72:cd:75:7e:1e:33:ee:fa:d4:ae:d4:a2:40:36: 8a:79:89:40:99:7a:8c:de:a4:eb:38:26:16:3b:2b: e8:86:b3:24:b0:d3:73:a5:28:15:ca:4d:1b:89:a6: 9d:02:ec:70:ad:34:96:63:88:16:64:bf:7a:14:77: 82:93:75:9f:21:83:0a:ab:e7:ed:56:db:41:9d:f8: 8f:9a:d5:5c:02:e0:5f:ac:da:9d:e0:e6:be:22:c6: 00:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:65:57:88:7A:8A:88:A5:8B:DB:B9:CC:9F:BD:32:49:B3:C8:16:DB X509v3 Authority Key Identifier: keyid:2B:B6:17:3D:81:89:0E:47:89:E1:B4:BA:6A:2E:3A:91:6C:38:A3:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096336767583256578/0/2BB6173D81890E4789E1B4BA6A2E3A916C38A34B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2BB6173D81890E4789E1B4BA6A2E3A916C38A34B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096336767583256578/0/2BB6173D81890E4789E1B4BA6A2E3A916C38A34B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:b6:65:6b:6c:36:33:66:15:c4:b7:0e:3d:ae:48:ad:0c:61: b3:00:01:b0:99:38:1c:1b:db:9c:4b:fe:69:17:b0:b2:4c:a4: 83:16:7e:ec:3d:47:73:d9:7b:ba:ec:37:18:09:6f:03:df:a1: 68:d0:5b:81:f2:bc:5c:46:9d:96:bd:08:b8:55:d3:f1:c5:28: d5:00:91:a6:03:1c:67:2e:cc:61:d8:04:da:08:65:93:f5:99: bf:ee:7d:36:e5:43:05:3d:ac:9d:b7:62:a7:bf:ed:fc:cc:86: 80:06:3e:de:ff:c2:aa:ae:40:3a:50:f2:4e:88:b1:13:b4:31: be:0e:13:bc:12:84:2f:68:db:4e:be:df:37:86:fb:88:d1:27: 21:fc:6e:11:24:30:83:a8:54:a6:ec:c7:7a:c7:c1:1f:2a:0f: 35:ee:19:6a:04:3e:5f:36:cd:86:26:43:d3:0e:ed:7e:ba:f3: 1d:c4:22:bd:b2:c7:ab:98:22:da:0a:64:bf:15:a2:26:13:1c: 3b:dd:c4:5d:0c:1e:5f:a1:59:3b:ef:3c:fb:ce:d1:f1:e7:5b: 79:dd:19:e7:7a:93:94:7a:1b:dc:7e:1a:20:6b:90:af:d2:7b: 83:1d:b7:f8:98:15:66:51:eb:67:86:79:b0:69:2e:d1:45:ca: 8b:e1:97:0d -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUCSNJNBUpZbu99vEPGvOFruUjD2QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkJCNjE3M0Q4MTg5MEU0Nzg5RTFCNEJBNkEyRTNBOTE2 QzM4QTM0QjAeFw0yNjA0MjcwODQzNDVaFw0yNjA0MjgxMjM1NDVaMDMxMTAvBgNV BAMTKEVGNjU1Nzg4N0E4QTg4QTU4QkRCQjlDQzlGQkQzMjQ5QjNDODE2REIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpYG8KAw96ay1TIHV5lQBYxBF0 WaM0nJ37xcgK0ndaXiLqnm3P0m4cBqUQjfZ5AtVoF5br4uJP+kwSxkwd7sI6+zpW saFxx2Y8Ju+4rgurFo7TjS+yRwKW8SDwHmwMovTEHU1NAZmxqHZvw/657oVHCSWw hXgDJ4HfbvtFaEDHHnh8V5Wh9OQWhi3EM1eWaS04uGO0H6hnumY1Hk3X7VSoDuxp 47FyzXV+HjPu+tSu1KJANop5iUCZeozepOs4JhY7K+iGsySw03OlKBXKTRuJpp0C 7HCtNJZjiBZkv3oUd4KTdZ8hgwqr5+1W20Gd+I+a1VwC4F+s2p3g5r4ixgCtAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQU72VXiHqKiKWL27nMn70ySbPIFtswHwYDVR0j BBgwFoAUK7YXPYGJDkeJ4bS6ai46kWw4o0swDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMzNjc2NzU4MzI1NjU3OC8wLzJCQjYxNzNEODE4OTBFNDc4OUUxQjRCQTZBMkUz QTkxNkMzOEEzNEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkJCNjE3M0Q4MTg5MEU0Nzg5RTFCNEJBNkEyRTNBOTE2QzM4QTM0Qi5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwOTYzMzY3Njc1ODMyNTY1NzgvMC8yQkI2MTczRDgxODkw RTQ3ODlFMUI0QkE2QTJFM0E5MTZDMzhBMzRCLm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcrZla2w2M2YV xLcOPa5IrQxhswABsJk4HBvbnEv+aRewskykgxZ+7D1Hc9l7uuw3GAlvA9+haNBb gfK8XEadlr0IuFXT8cUo1QCRpgMcZy7MYdgE2ghlk/WZv+59NuVDBT2snbdip7/t /MyGgAY+3v/Cqq5AOlDyToixE7Qxvg4TvBKEL2jbTr7fN4b7iNEnIfxuESQwg6hU puzHesfBHyoPNe4ZagQ+XzbNhiZD0w7tfrrzHcQivbLHq5gi2gpkvxWiJhMcO93E XQweX6FZO+88+87R8edbed0Z53qTlHob3H4aIGuQr9J7gx23+JgVZlHrZ4Z5sGku 0UXKi+GXDQ== -----END CERTIFICATE-----Generated at Mon Apr 27 21:59:43 2026 by rpki-client