$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096716299456741377/0/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.mft File: BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.mft (raw, json) Hash identifier: h1o4On5T5hKSWXynAIYRWYSPkYlwhhPLOmjJNiyikfk= Subject key identifier: 9D:96:54:C5:29:F0:0A:29:0B:C2:48:19:36:E5:09:AD:74:D6:19:76 Authority key identifier: BF:2C:C5:E7:AE:10:27:E3:3C:52:47:AB:67:FB:D6:96:13:5E:32:B3 Certificate issuer: /CN=BF2CC5E7AE1027E33C5247AB67FBD696135E32B3 Certificate serial: 63CE3C923090DB25E983F83F1B11F644B16870DC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.mft Manifest number: 4E Signing time: Thu 11 Jun 2026 14:28:51 +0000 Manifest this update: Thu 11 Jun 2026 14:23:51 +0000 Manifest next update: Fri 12 Jun 2026 17:13:51 +0000 Files and hashes: 1: 3130332e3135312e3134382e302f32332d3233203d3e2034383038.roa (hash: FlqyfG9yxugYR7L+XBIV8TN1BCjELPR+chHd21WXr9k=) 2: 3130332e3232332e37362e302f32322d3232203d3e2030.roa (hash: lsMCQiUAYT2yLHixyfGmRfrF8XX2XYil8P8ZKQUWZ5w=) 3: 3130332e3232332e36342e302f32322d3232203d3e2030.roa (hash: rIF3hyIEEl6Mher4Y63kJzfGvu+uKEDr/8wbeQZhnQc=) 4: 3130332e3232332e36382e302f32322d3232203d3e2030.roa (hash: 4xQOioC1mdU6Yv1xuNedR2u5RvEAiHf8+gk7vks3wcs=) 5: BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.crl (hash: t1HIguks+zrPskRlbAmESlJTYMvFxI3TeOsgbHvbQaM=) 6: 3130332e3232332e37322e302f32322d3232203d3e2030.roa (hash: FqYstaJDjg7tmxEGtum6iSsLgTAPX+rihadYFc4vywQ=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.crl rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 17:13:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:ce:3c:92:30:90:db:25:e9:83:f8:3f:1b:11:f6:44:b1:68:70:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF2CC5E7AE1027E33C5247AB67FBD696135E32B3 Validity Not Before: Jun 11 14:23:51 2026 GMT Not After : Jun 12 17:13:51 2026 GMT Subject: CN=9D9654C529F00A290BC2481936E509AD74D61976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:b7:b0:ff:bb:be:9a:0b:82:5d:74:4d:27:2d: f4:d1:05:28:0e:2f:32:2b:83:6d:1f:de:4d:c3:02: bb:66:eb:67:31:58:22:14:1c:b5:2d:9d:9d:d3:62: 0e:f1:4d:0e:8f:20:86:36:81:8e:6c:85:77:c5:fb: f6:63:a7:54:19:e0:c2:90:fd:58:fc:73:78:95:27: 27:d7:d7:67:60:3d:26:df:a6:a7:4e:d8:32:98:98: a6:c8:89:87:61:0b:cd:da:d6:aa:88:37:ce:c8:3a: 58:17:4d:fc:fb:14:95:d9:d5:2b:42:df:4f:24:94: bc:fb:57:c9:b5:b5:bd:d5:dc:45:b3:66:bb:c8:fb: 87:8f:8f:4b:a7:bf:a1:28:11:e7:af:a6:68:f9:e7: 16:ea:ab:30:10:ee:84:a5:35:af:97:42:50:58:95: 30:2a:c0:1d:47:7a:20:5b:fa:18:0c:42:a0:ed:73: da:52:6b:84:3b:47:d0:3e:13:c0:31:77:c4:47:dc: 29:73:ff:6a:38:17:24:77:11:9a:81:9d:31:43:c8: 21:ea:28:d5:b3:c5:ba:e2:f0:77:23:a5:34:da:4a: 96:f0:6c:9b:10:b5:2a:45:46:0a:6f:a1:59:e1:5e: a2:07:08:40:11:49:a2:24:91:b9:db:fe:eb:6f:e1: 91:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:96:54:C5:29:F0:0A:29:0B:C2:48:19:36:E5:09:AD:74:D6:19:76 X509v3 Authority Key Identifier: keyid:BF:2C:C5:E7:AE:10:27:E3:3C:52:47:AB:67:FB:D6:96:13:5E:32:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:53:b6:40:f0:e7:97:ba:a2:a8:07:79:02:37:32:97:49:4f: eb:3f:e6:13:31:31:c5:9a:16:53:72:ba:9d:4e:3b:18:a2:2b: 95:d1:8d:ec:81:bc:6d:d2:e1:ba:08:6c:a7:f6:ef:e0:73:c4: d6:7b:82:09:b7:a4:af:b9:4f:d1:f4:ff:33:f8:8c:8d:6a:3b: da:76:ae:13:d2:bc:10:a9:90:fe:3a:64:e3:e9:c5:2a:7b:e8: 11:38:05:8e:a9:fd:15:dc:d5:ad:f9:64:f7:ed:47:f0:29:a0: 83:7d:5c:99:0f:c4:5d:f5:c6:f2:be:d4:1f:12:d9:2e:58:8d: 62:f5:02:ff:d1:04:4e:45:cb:a3:a6:83:b6:fa:38:c9:d9:7a: a1:67:36:35:1f:d7:a3:2f:20:9e:e3:c1:be:ff:f2:c9:86:c7: b8:48:36:ef:ce:5b:9f:7f:fc:d2:06:9f:e1:9f:56:a5:41:2f: 74:14:b4:f3:1f:19:bb:b4:89:a1:ce:81:ea:6d:e3:38:1a:99: 7c:2b:c2:eb:bc:dd:a7:04:18:40:2e:24:79:46:32:f9:5a:ff: 5b:fa:1a:b9:b2:d2:88:a1:07:da:54:80:4a:16:11:92:ed:86: 2a:b6:2d:55:1f:6c:3c:6e:0a:da:97:06:11:e2:3e:2f:14:0b: e9:38:b6:40 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUY848kjCQ2yXpg/g/GxH2RLFocNwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYyQ0M1RTdBRTEwMjdFMzNDNTI0N0FCNjdGQkQ2OTYx MzVFMzJCMzAeFw0yNjA2MTExNDIzNTFaFw0yNjA2MTIxNzEzNTFaMDMxMTAvBgNV BAMTKDlEOTY1NEM1MjlGMDBBMjkwQkMyNDgxOTM2RTUwOUFENzRENjE5NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyt7D/u76aC4JddE0nLfTRBSgO LzIrg20f3k3DArtm62cxWCIUHLUtnZ3TYg7xTQ6PIIY2gY5shXfF+/Zjp1QZ4MKQ /Vj8c3iVJyfX12dgPSbfpqdO2DKYmKbIiYdhC83a1qqIN87IOlgXTfz7FJXZ1StC 308klLz7V8m1tb3V3EWzZrvI+4ePj0unv6EoEeevpmj55xbqqzAQ7oSlNa+XQlBY lTAqwB1HeiBb+hgMQqDtc9pSa4Q7R9A+E8Axd8RH3Clz/2o4FyR3EZqBnTFDyCHq KNWzxbri8HcjpTTaSpbwbJsQtSpFRgpvoVnhXqIHCEARSaIkkbnb/utv4ZE/AgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUnZZUxSnwCikLwkgZNuUJrXTWGXYwHwYDVR0j BBgwFoAUvyzF564QJ+M8UkerZ/vWlhNeMrMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcxNjI5OTQ1Njc0MTM3Ny8wL0JGMkNDNUU3QUUxMDI3RTMzQzUyNDdBQjY3RkJE Njk2MTM1RTMyQjMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQkYyQ0M1RTdBRTEwMjdFMzNDNTI0N0FCNjdGQkQ2OTYxMzVFMzJCMy5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwOTY3MTYyOTk0NTY3NDEzNzcvMC9CRjJDQzVFN0FFMTAy N0UzM0M1MjQ3QUI2N0ZCRDY5NjEzNUUzMkIzLm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADlO2QPDnl7qi qAd5Ajcyl0lP6z/mEzExxZoWU3K6nU47GKIrldGN7IG8bdLhughsp/bv4HPE1nuC Cbekr7lP0fT/M/iMjWo72nauE9K8EKmQ/jpk4+nFKnvoETgFjqn9FdzVrflk9+1H 8Cmgg31cmQ/EXfXG8r7UHxLZLliNYvUC/9EETkXLo6aDtvo4ydl6oWc2NR/Xoy8g nuPBvv/yyYbHuEg2785bn3/80gaf4Z9WpUEvdBS08x8Zu7SJoc6B6m3jOBqZfCvC 67zdpwQYQC4keUYy+Vr/W/oaubLSiKEH2lSAShYRku2GKrYtVR9sPG4K2pcGEeI+ LxQL6Ti2QA== -----END CERTIFICATE-----Generated at Fri Jun 12 03:56:00 2026 by rpki-client